Jun 28
Thursday, June 28th, 2007
A complex, ongoing attack on MySpace.com users is turning victim’s sites and computers into hosts for serving phishing scams and computer viruses. Earlier this week, some MySpace user pages were seeded with computer code seeking to exploit one of three recently-patched security holes in Microsoft Windows and Internet Explorer. MySpace visitors who browse one of these pages are redirected to a fake MySpace login page aiming to steal the visitor’s MySpace user name and password. A screen shot of an infected MySpace profile. Clicking anywhere on the live version of this page will redirect the visitor to a fake login page and try to seed the visitor’s PC with malicious software. We’ve seen a similar attack against MySpace, but this new one has a twist. A scam victim’s MySpace page is altered to include code redirecting users to a phishing page. Meanwhile, if the user’s computer does not have […]
Read more…
Posted in News, Security, Virus | No Comments »
Jun 28
Thursday, June 28th, 2007
Shhh, don’t tell anyone
RealNetworks has patched a vulnerability in its RealPlayer and HelixPlayer software that made it possible for attackers to run arbitrary code on a victim’s machine. The security hole affects applications running on Windows, Mac and Linux platforms.…
Read more…
Posted in News, Security | No Comments »
Jun 28
Thursday, June 28th, 2007
Rated less fun than scooping up whale poo
Summer’s here, and ’tis the season to be compiling lists. One of the most eagerly awaited is the Ten Worst Jobs in Science, issued by Popular Science magazine. This year the roster of horrible occupations has gained widespread attention because it includes “Microsoft Security Grunt”.…
Read more…
Posted in News, Virus | No Comments »
Jun 28
Thursday, June 28th, 2007
The Metasploit menace inside your firewall
Interview Wade Alcorn recently published a paper explaining the technical details behind Inter-protocol Exploitation [PDF, 120kb].…
Read more…
Posted in News, Virus | No Comments »
Jun 27
Wednesday, June 27th, 2007
Drumbeats get louder
The recent acquisition of SecureWave by PatchLink was not so much an acquisition as a merger, with PatchLink being the senior partner. With 3400 customers it had about twice the customer base as SecureWave and it also had about twice the staff.…
Read more…
Posted in News, Virus | No Comments »
