Browsing Category: Microsoft

Sirefef Malware Found Using Unicode Right-to-Left Override Technique

Categories: Malware, Microsoft

Old malware tricks never really die, they just get recycled and passed down to the next generation of attackers. The latest technique to get run through the wayback machine is the use of the right-to-left override character in Unicode, a tactic that enables malware authors to hide the real name of a malicious executable or, in a recent case, a registry key.

Read more...

Microsoft Fixes ASLR/DEP Bypass Bug

Categories: Microsoft

Buried in the details of the Microsoft Patch Tuesday release for August is the explanation of an important change that the company made to Windows that defeats a group of exploit mitigation bypasses. The change is a small one, but it prevents dangerous attacks that previously worked on most supported version of Windows.

Read more...

Watering-Hole Attack Compromises Key Tibetan Site

Categories: Malware, Microsoft

In what has become a familiar scenario over the last couple of years, attackers have compromised a key Tibetan web site and loaded it with code that redirects some users to a third-party site that installs an APT-style backdoor. The attack has hit the Web site of the Central Tibetan Administration, a site belonging to[...]

Read more...

Microsoft Expands MAPP Program to Incident Response Teams

Categories: Microsoft, Web Security

Microsoft is expanding its MAPP program that shares attack and protection information with other security vendors and will now be sharing some data with incident responders, as well. The new system will enable organizations such as CERTs and internal IR teams to exchange information on specific attacks and general threats.

Read more...