SECURITY WARNINGS & Notices - Please post them here

[Alan Baxter]

Thanks.  Entering http://174.122.92.41/en/index.php in the url bar gets me to the socialnetworksecurity.org English language page.

[SafeSurf]

Flash Drives Dangerously Hard to Purge of Sensitive Data:
http://www.theregister.co.uk/2011/02/21/flash_drive_erasing_peril/

[Asyn]

Microsoft Security Advisory (2491888)
Vulnerability in Microsoft Malware Protection Engine Could Allow Elevation of Privilege
http://www.microsoft.com/technet/security/advisory/2491888.mspx

[YoKenny]

Microsoft Security Advisory (2491888)
Vulnerability in Microsoft Malware Protection Engine Could Allow Elevation of Privilege
http://www.microsoft.com/technet/security/advisory/2491888.mspx

Key statement

When this security advisory was issued, had Microsoft received any reports that this vulnerability was being exploited?
No. Microsoft had not received any information to indicate that this vulnerability had been publicly used to attack customers when this security advisory was originally issued.

[YoKenny]

20 years of innovative Windows malware
http://infoworld.com/d/security/20-years-innovative-windows-malware-021

[Asyn]

Trojan targets Mac OS X
http://nakedsecurity.sophos.com/2011/02/26/mac-os-x-backdoor-trojan-now-in-beta/

[CharleyO]

***

Man sentenced to jail for eBay fraud

A man who used the website eBay to dishonestly obtain nearly $40,000 has been sentenced to three years in jail by a Brisbane District Court Judge.

Philip John Heggie, 19, today pleaded guilty to 20 charges, including fraud and computer hacking, and another 91 charges of breaching bail conditions.

http://www.abc.net.au/news/stories/2011/03/01/3151995.htm?site=brisbane&section=news&date=(none)


***

[spg SCOTT]

Britons caught out by bad web ads
http://www.bbc.co.uk/news/technology-12608651

I have seen the extent of this on another forum, with an increased number of system tool infections...

[Hermite15]

LastPass security hole (cross site scripting)

http://forum.avast.com/index.php?topic=72774.msg606137#msg606137

[SpeedyPC]

The anti-social network: boys jailed for $26m 'Crimebook' scam

http://www.smh.com.au/technology/technology-news/the-antisocial-network-boys-jailed-for-26m--crimebook--scam-20110303-1bfxw.html

[Hermite15]

Rogue AV pimps finally show love for alternative browsers...Ruse spoofs Firefox, Chrome, Safari

http://www.theregister.co.uk/2011/03/02/rogue_av_mimics_firefox/

[DavidR]

It never ceases to amaze me how many people will actually fall for this and click the Start Protection, etc. etc.

Basically they don't know what their browser can and can't do.

[bob3160]

Is avast! warning us about this

[DavidR]

Well the problem is the initial is just a pop-up/ad, the main payload comes from clicking the Start Protection. Then would we see if it is blocked/detected.

[Asyn]

WordPress.com Suffers Largest DDoS Attack In Its History
http://techcrunch.com/2011/03/03/wordpress-com-suffers-major-ddos-attack/