Browsing Tag: Microsoft

Categories: Malware, Vulnerabilities

The growing use of social networking sites is leaving PC inadvertently open to identity thieves warned Hugh Thompson, chief security strategist at People Security.

Speaking at the RSA Europe Conference, Thompson said that people were unaware just how many clues they left for fraudsters. He said such carelessness was fuelling the rise of cybercrime. He told the conference about the way he managed to access one of his wife’s friend’s bank account in a couple of hours using publicly available data – a process that he had previously documented in a Scientific American article. He warned that most people’s private accounts could be accessed in this way.  Read the full article [Techworld/Maxswell Cooter]

Read more...

Categories: Malware

[img_assist|nid=679|title=|desc=|link=none|align=left|width=115|height=115]One week after the release of its Microsoft Security Essentials utility, Microsoft is sharing some very useful data on malware infections globally.In the first week alone, the tool counted four million detections on 535,752 distinct machines, with ID-theft related Trojans sitting atop the detected category in the US. China has lots of potentially unwanted software threats, and worms (particularly Conficker) are very active in Brazil.

Read more...

[img_assist|nid=494|title=|desc=|link=none|align=left|width=115|height=115]Microsoft has announced plans to give away free versions of its COFEE (Computer Online Forensic Evidence Extractor) utility to help law enforcement agencies in cyber-crime investigations. COFEE uses digital forensic technologies to help investigators gather evidence of live computer activity at the scene of a crime, regardless of technical expertise.

Read more...

Categories: Vulnerabilities

[img_assist|nid=492|title=|desc=|link=none|align=right|width=100|height=151]Mozilla temporarily added the dangerous Microsoft .NET Framework Assistant add-on to its blacklist over the weekend, a move that effectively disabled the dangerous extension and plug-in for all Firefox users. However, after some clarifications from Redmond, the add-on was unblocked.

Read more...

Categories: Podcasts, Web Security

The Big Story podcast with Ryan Naraine – October 19, 2009 [img_assist|nid=489|title=|desc=|link=none|align=right|width=115|height=115]In the debut installment of the ‘Big Story’ podcast, Threatpost editor-in-Chief Ryan Naraine chats with Mozilla VP of Engineering Mike Shaver (right) on his decision to blacklist – then unblock – the controversial Microsoft-created Firefox add-ons.

Read more...

Categories: Malware

By Sergey Golovanov
Here are some technical details on the Outlook Web Access phishing scheme.
1. The Spam
According to our preliminary research, the spam emails which attacked OWA users, including Kaspersky, were sent using the pushdo botnet – which is based on malware from the Backdoor.Win32.NewRes family. These Trojans spread via spam, social networks (in conjunction with the Koobface family) and through hacked websites.

Read more...

Categories: Vulnerabilities

Since moving to a monthly schedule in October 2003, Microsoft has released about 400 security bulletins based on an informal count of releases in its bulletin archives. The bulletins address about 745 vulnerabilities across almost every Microsoft product.
About 230, or more than half of the bulletins, addressed security vulnerabilities that were described by Microsoft as “critical.” This definition is what Microsoft typically uses for vulnerabilities that allow attackers to take full administrative control of a system from a remote location. Read the full story [Jaikumar Vijayan/Computerworld]

Read more...