SECURITY WARNINGS & Notices - Please post them here

[Hermite15]

Moslim jihad against facebook blasphemy groups: http://www.virtualjihad.net/

interesting...

[polonus]

Hi malware fighters,

Sasfis trojan tricks Windows with new technique: http://blog.trendmicro.com/sasfis-malware-uses-a-new-trick/

polonus

[polonus]

Hi malware fighters,

Look for these fake-AV threats from blog sites: http://blog.trendmicro.com/doorway-pages-and-other-fakeav-stealth-tactics/
Recently spotted a couple in the virus and worms reported there...

pol

[mkis]

Not sure if this has already been posted

Removal instructions for Sysinternals Antivirus
http://forums.malwarebytes.org/index.php?showtopic=52821

[ozzieguy]

I get this warning daily - and really do not know where it is coming from.

http://www.shemel.co.cc/le.php\{gzip}

[Alan Baxter]

Security Advisory for Flash Player, Adobe Reader and Acrobat
http://blogs.adobe.com/psirt/2010/06/security_advisory_for_adobe_re.html

A Security Advisory has been posted in regards to a new Adobe Reader, Acrobat and Flash Player issue (CVE-2010-1297). A critical  vulnerability exists in Flash Player 10.0.45.2 and earlier versions for Windows, Macintosh, Linux and Solaris operating systems, and the authplay.dll component that ships with Adobe Reader and Acrobat 9.x for Windows, Macintosh and UNIX operating systems. This vulnerability could cause a crash and potentially allow an attacker to take control of the affected system. There are reports that this vulnerability is being actively exploited in the wild against both Adobe Flash Player, and Adobe Reader and Acrobat.

The Flash Player 10.1 Release Candidate available on http://labs.adobe.com/technologies/flashplayer10/ does not appear to be vulnerable.

Adobe Reader and Acrobat 8.x are confirmed not vulnerable. Mitigations for Adobe Reader and Acrobat 9.x are included in the Security Advisory.

[polonus]

Hi Alan Baxter,

With a penetration rate of 97% this is a gaping vulnerability risk and could affect millions and millions of computers, so go here to update: http://labs.adobe.com/downloads/flashplayer10.html#android

polonus

[Asyn]

Hi Alan Baxter,

With a penetration rate of 97% this is a gaping vulnerability risk and could affect millions and millions of computers, so go here to update: http://labs.adobe.com/downloads/flashplayer10.html#android

polonus

Hi D.,
is this a stable release..??
asyn

[polonus]

Hi Asyn,

While waiting for a security update, users are advised to go and download the release candidate from
http://labs.adobe.com/technologies/flashplayer10 found here: http://labs.adobe.com/downloads/flashplayer10.html
It is stable enough,

pol

[Hermite15]

Hi Alan Baxter,

With a penetration rate of 97% this is a gaping vulnerability risk and could affect millions and millions of computers, so go here to update: http://labs.adobe.com/downloads/flashplayer10.html#android

polonus

Hi D.,
is this a stable release..??
asyn

yep, been using several successive beta and RCs of it for many weeks, no problem.

[polonus]

Hi Logos,

Thanks for confirming this, for our users. Secunia PSI cannot solve all our patching/upgrading problems.
And now has three bugs: http://www.theregister.co.uk/2010/06/02/secunia_bug_check_tool/
(only form a problem when you feed up wrongly yourself...)

polonus

[Asyn]

Thanks guys..!!
asyn

[nmb]

Virtualjihad.net has been suspended. They served a ddos tool.

[Chris Thomas]

I have been using Flash RC from the day one when it was released....

I was just hoping if my statistics that they wean from my PC can be of some use to make flash better....

HTML 5 is the future...

[Pondus]

More adobe........

Critical vulnerability in Adobe Flash Player, Adobe Reader and Acrobat
http://www.norman.com/security_center/security_center_archive/2010/83636/en

quote:
As of this writing no updates are available. There are reports that this vulnerability is being actively exploited.