SECURITY WARNINGS & Notices - Please post them here

[polonus]

Hi malware fighters,

Stay alert of hidden iFrame injection attacks...
    * In the past, it was common for attackers to inject their malicious Iframes at the bottom / end of the webpage. Attackers are now injecting malicious Iframes anywhere in the webpage.
    * Many websites which were found to be infected in past months by malicious hidden Iframes appear to still be infected with them. Meaning most web site owners or hosting providers are not policing the content that they are serving on the web.

Our data shows many previously infected websites are still infected with hidden malicious Iframes today. Due to different obfuscation techniques detection by a majority of the Antivirus vendors remains poor, avast has very good detection with the shields, and webbrowser users can get protected with the use of extensions like NoScript abd RequestPolicy in thr Mozilla browser types (like Firefox and Flock etc.), see for the latest of these attacks http://twitter.com/dasient_new_mal

polonus

[Asyn]

Critical vulnerability in QuickTime 7.6.6
http://www.h-online.com/security/news/item/Critical-vulnerability-in-QuickTime-7-6-6-1046499.html
asyn

[Asyn]

WPA2 security hole discovered
http://www.infosecurity-us.com/blog/2010/7/23/wpa2-exposed-with-hole-196-vulnerability/189.aspx
asyn

[Hermite15]

WPA2 security hole discovered
http://www.infosecurity-us.com/blog/2010/7/23/wpa2-exposed-with-hole-196-vulnerability/189.aspx
asyn

well the thing is that all LAN communication is also encrypted in Win7, which already excludes the stealing of data, even if WPA2 was broken. edit after further reading: >>> Remains a possible access to the router, and the stealing of the connection...live examples and reports needed here

edit: found other articles:
http://www.pcmag.com/article2/0,2817,2366994,00.asp
http://gizmodo.com/5596919/gulp-security-researcher-discovers-wpa2-vulnerability

okay: the attack is  "may be" only possible from an insider, someone on your LAN, not from the outside ... waiting for a demo

and now:

The vulnerability will be presented at BlackHat Arsenal by AirTight Networks senior wireless security researcher Md Sohail Ahmad........................................................

................................
Ahmad claims that this behavior is to spec (page 196 of the IEEE 802.11 standard, hence "Hole 196") and that there's nothing to fix in the implementation. The only way to protect your network is to monitor all wireless traffic for it. AirTight networks, incidentally, sells Wireless Intrusion Prevention Systems.
 

[Asyn]

live examples and reports needed here

AirTight will present a public Webinar on August 4 at 11am Pacific.
http://www.airtightnetworks.com/home/airtight-media/webinars/wpa2-hole196-vulnerability.html
asyn

[polonus]

Hi Logos,

Just fire up Fiddler 2.0 in a browser and see what is being sent chunked, whenever that what is encrypted, with one click we will make it is unchunked and de-compressed and readable. If a machine can render something then someone somehow can show what is to be rendered for human eyes to be deciphered...just logical,Logos, just logical and you just need the rendering tool, sniffer whatever,

polonus

[Hermite15]

Hi Logos,

Just fire up Fiddler 2.0 in a browser and see what is being sent chunked, whenever that what is encrypted, with one click we will make it is unchunked and de-compressed and readable. If a machine can render something then someone somehow can show what is to be rendered for human eyes to be deciphered...just logical,Logos, just logical and you just need the rendering tool, sniffer whatever,

polonus

hmm...Polonus...seems a bit more complicated then that ... as Fiddler2 will only allow you to decrypt your own traffic, the one that your browser already decrypts
 back to topic...we already know from the article links I posted I that the potential flaw in WPA2 only affects the LAN if an insider is originating the procedure. And Asyn: read again the end of my last post

[polonus]

Hi Logos,

It appears from these revelations that all comes pre-backdoored by design then, the uninformed to find out about this,
only after it has been revealed,

polonus

[Hermite15]

Hi Logos,

It appears from these revelations that all comes pre-backdoored by design then, the uninformed to find out about this,
only after it has been revealed,

polonus

the company who "reveals" the flaw, and is supposed to demonstrate it, is also a company selling wi-fi monitoring software, and they already advise to use that, saying that the protocol can't be patched anyway and the only way out is to acquire >>> full time monitoring software.

[luzagodo]

Good read,thanks.

[polonus]

Hi malware fighters,

Firefox warning abused by rogue av: http://www.f-secure.com/weblog/archives/00001997.html

polonus

[YoKenny]

Hi malware fighters,

Firefox warning abused by rogue av: http://www.f-secure.com/weblog/archives/00001997.html

polonus

I don't use Firefox

[bob3160]

Hi malware fighters,

Firefox warning abused by rogue av: http://www.f-secure.com/weblog/archives/00001997.html

polonus

I don't use Firefox

Then I guess this message wasn't meant for you. 

[Hermite15]

Details of 100 million Facebook users published online

http://www.msnbc.msn.com/id/38463013/ns/technology_and_science-security/
http://www.bbc.co.uk/news/technology-10802730

[Asyn]

Details of 100 million Facebook users published online

I posted a related link here:
http://forum.avast.com/index.php?topic=28748.msg526326#msg526326
asyn