Anne Saita

Adobe, Microsoft Issue Updates for Critical Flaws in Flash Player

Adobe earlier today issued a security update for its Flash Player to seal serious security vulnerabilities that could crash and possibly allow remote control of machines with the popular media software installed.Microsoft also issued a security advisory for similar vulnerabilities that could impact users of Internet Explorer 10 as well as all supported editions of Windows 8 and Windows Server 2012.

Dorkbot Now Worming Its Way through Skype

The Dorkbot worm that fooled many a Facebook and Twitter user is now socially engineering Skype users into downloading the malware, whose payload now includes a mechanism to lock down machines.Various antivirus and security companies are reporting the latest iteration rummages through an infected Skype user’s contact list and sends the message “Lol is this your new profile pic?” in English. It sends a similar message in German, too.

Proxy Service a Front for Malware Distribution

Hundreds of thousands of users who signed up for an inexpensive proxy service called Proxybox.name got quite a steal alright. They ended up installing a Trojan horse linked to a botnet first detected last summer.Researchers at Symantec reverse engineered the Backdoor.Proxybox malware and unearthed a major black hat operation and perhaps the actual malware developer.


Several Web sites in Sweden, including the nation’s central bank and two government affiliates, were hit with attacks this week, supposedly in retaliation for a police raid on an Internet company tied to The Pirate Bay, the world’s largest file sharing site.That site also was offline until Wednesday, but its officials say it was due to broken Power Distribution Unit.

Sophos is warning of a new trick to get Twitter users to open direct messages from trusted users that ultimately infect their machines with malware.In a blog post, senior technology consultant Graham Clulely said the initial message is a tweet claiming the recipient’s been captured on a Facebook video. One version makes it sound like something scandalous was taped without the person’s knowledge.

A Sprint spokeswoman today responded to a software developer’s claim that millions of Virgin Mobile users are vulnerable to attacks due to inadequate authentication mechanisms.In an email sent to Computerworld, Stephanie Vinge Walsh said Virgin Mobile, a subsidiary of Sprint, has multiple safeguards to prevent someone from tampering with users’ accounts.