SECURITY WARNINGS & Notices - Please post them here

[polonus]

10 year old API vulnerability, issue 69,  troubles java 7: http://archives.neohapsis.com/archives/fulldisclosure/2013-07/0172.html
article author Adam Gowdiak
If you can do without java uninstall it,

polonus

PS Let us make it a two-in-one java alert: http://www.securityweek.com/multiple-java-instances-keep-enterprise-systems-vulnerable-attack-report
link source Security Week's Fahmida Y. Rashid

[Dwarden]

it would be really nice if Oracle joined the MS security initiative ...
since Adobe and some others joined it, it really helped to decrease the amount of critical vulnerabilities ...
anyway the whole Java 7 story is real tragedy (i can understand Java 6 was old code and under massive amount of attacks)
thanks a lot for posting this ;( the details about go totally around the Java sandbox is nasty

[SpeedyPC]

Chinese Hackers discovered second Android master key vulnerability
http://thehackernews.com/2013/07/chinese-hackers-discovered-second.html

[Asyn]

Windows Media Player 12 Plugin: Arbitrary File Read Vulnerability
http://www.rawsec.net/wmp-vulnerability.html

[Asyn]

Ubuntu Forums got hacked
http://ubuntuforums.org/announce.html

[polonus]

Hi forum friends,

During my automated security scannings
I have found that an enormous amount of websites
are still vulnerable to configuration insecurities.

These insecurities are grossly underestimated
by webmasters and sloppy IT staff alike,
opening up a goldmine of unintended information for malicious attackers.
At least security through obscurity should be a priority.

Important insecurities found:
1. excessive headers
(info can be used to pinpoint security flaws to attackers).

2. clickjacking (X-frame option header not returned),
malcontent can be embedded in a frame.

ASP netsites can be scanned here at: https://asafaweb.com/Scan?Url=
Other sites can be scanned at: safersite.de

polonus

[bob3160]

Urausy Lockscreen: Your computer will remain locked for 3 days, 11 hours and 20 minutes!

The good thing for us is that it's detected by avast!.

[bob3160]

Who do you trust
Virus total scan results:
https://www.virustotal.com/en/file/7d01bd6c9fef5b1cdddee4de1d5a03edce07c2b706fc566753949992775fcf67/analysis/1372871468/


or avast!:

Link received from a "friend" first analyzed and reported clean.
Thanks avast! for always having my back!

[Lisandro]

Use different passwords for different sites.

Hello,

You are receiving this message because you have an account registered with this address on ubuntuforums.org.

The Ubuntu forums software was compromised by an external attacker. As a result, the attacker has gained access to read your username, email address and an encrypted copy of your password from the forum database.

If you have used this password and email address to authenticate at any other website, you are urged to reset the password on those accounts immediately as the attacker may be able to use the compromised personal information to access these other accounts. It is important to have a distinct password for different accounts.

The ubuntuforums.org website is currently offline and we are working to restore this service. Please take the time to change your ubuntuforums.org account password when service is restored.

We apologize for any inconvenience to the Ubuntu community, thank you for your understanding.

The Canonical Sysadmins.

[Secondmineboy]

Multisystem Trojan Janicab attacks Windows and MacOSX via scripts

Analysis Report in the Avast Blog:http://blog.avast.com/2013/07/22/multisystem-trojan-janicab-attacks-windows-and-macosx-via-scripts/

There are also many JS: Detections added with Database version 130724-0

http://www.avast.com/de-de/virus-update-history

[Asyn]

Orbit Downloader versions causing massive SYN flooding
http://seclists.org/bugtraq/2013/Jul/155

[mchain]

Watch for malicious links!   https://www.facebook.com/photo.php?fbid=10151592091117426&set=a.449448457425.237286.38282497425&type=1&relevant_count=1

Not sure it this goes here:  http://www.tomsguide.com/us/free-antivirus-best-popular-most-effective-review,review-1788-2.html  (For users that think avast! will protect against anything, even from themselves).

One item left out:  Use of a torrent program:  Use of such is not a problem as the program itself may be clean, but connections to unknown computers and unknown status of such is.

[CraigB]

Malwarebytes Adopts Aggressive PUP Policy
http://blog.malwarebytes.org/news/2013/07/malwarebytes-adopts-aggressive-pup-policy/

[Secondmineboy]

Digital Carjackers Show Off New Attacks

http://www.youtube.com/watch?v=oqe6S6m73Zw&feature=youtu.be

I hope that this does not happen to me sometime........

[Asyn]

Ubuntu Forums got hacked
http://ubuntuforums.org/announce.html

Ubuntu Forums are back up and a post mortem
http://blog.canonical.com/2013/07/30/ubuntu-forums-are-back-up-and-a-post-mortem/