Hackers Using Automation, Geolocation in Social Networking Attacks

MOSCOW — Attackers have been focusing a lot of attention on social networking destinations such as Facebook, Twitter and even LinkedIn for some time now, but they recently have begun shifting their tactics to make their attacks much more effective and precise through the use of geolocation and...

Aurora Attack Malware Components May Be Four Years Old

Although the first known attacks using the Aurora malware that compromised Google weren’t discovered until late last year, some parts of the malware codebase has been in existence in China for nearly four years, raising questions about how many other attacks it might have been used in during that...

Emergency IE Patch Coming on January 21

This is just a quick heads-up that the emergency security patch for Microsoft’s Internet Explorer will be released tomorrow January 21, 2009. The update, rated critical for all versions of IE, will cover a remote code execution flaw that has already been used in targeted attacks against U.S...

How DEP Can Mitigate IE Zero-Day Attacks

Jonathan Ness of Microsoft’s Security Research and Defense team explains the inner workings of the Data Execution Prevention technology that can help mitigate the targeted attacks exploiting the vulnerability in Internet Explorer right now...

Microsoft: Emergency IE Patch Coming

Microsoft has started dropping broad hints that an emergency patch for Internet Explorer will be released very soon to counter targeted attacks and the publication of exploit code for a “browse and you’re owned” vulnerability in its flagship Web browser. UPDATE: Here is the official confirmation...

Targeted attacks use 'Recession Relief' theme

Internet fraudsters are increasingly taking advantage of the deepening recession to dupe unsuspecting email recipients. The e-mail often includes a request for personal details on the pretense of receiving some financial reward, which later leads to fraud. Common themes include prize wins,...

Microsoft issues PowerPoint zero-day warning

Microsoft has issued an advisory to warn about an under-attack zero-day vulnerability affecting its PowerPoint software. According to the pre-patch advisory, the flaw allows remote code execution if a user opens a booby-trapped PowerPoint file. The company described the attacks as “limited and...

Attack of the mini-botnets

From DarkReading.com Kelly Jackson Higgins Big-name botnets like Kraken/Bobax, Srizbi, Rustock, the former Storm — and even the possible botnet-in-waiting, Conficker — have gained plenty of notoriety, but it’s the smaller and less conspicuous ones you can’t see that are doing the most damage...

Symantec Enterprise Firewall Gateway Security - HTTP Proxy Internal IP Leakage

Symantec Enterprise Firewall Gateway Security - HTTP Proxy Internal IP Leakage source: https://www.securityfocus.com/bid/17936/info Symantec Enterprise Firewall and Gateway Security products are prone to an information-disclosure weakness. The vendor has reported that the NAT/HTTP proxy component...

Symantec Enterprise Firewall / Gateway Security - HTTP Proxy Internal IP Leakage

source: https://www.securityfocus.com/bid/17936/info Symantec Enterprise Firewall and Gateway Security products are prone to an information-disclosure weakness. The vendor has reported that the NAT/HTTP proxy component of the products may reveal the internal IP addresses of protected computers. A...

msieLocalFile.txt

Microsoft Internet Explorer permits to examine the existence of local files Description: There is a security bug in Microsoft Internet Explorer, which allows to check up existence of local files in system directories Root C:/, WINDOWS, SYSTEM, SYSTEM32, DESKTOP, COMMAND, Internet Explorer...

Emule 0.42e - Remote Denial of Service

!/usr/bin/perl system"cls"; Emule 0.42e Remote Denial Of Service Exploit Coded by Rafel Ivgi, The-Insider usage: perl emule042e.pl use IO::Socket; my $host = $ARGV0; my $port = $ARGV1; my $times = $ARGV2; if $host unless$port $port="4711"; unless$times $times="50"; print "Emule 0.42e Remote Denia...

Mandrake 6.1/7.0/7.1 - '/perl' HTTP Directory Disclosure

source: https://www.securityfocus.com/bid/1678/info The default configuration files for versions of modperl shipped with Mandrake Linux 6.1 through 7.1 contain a misconfiguration that can be a security concern in some situations. The /perl directory is part of the webserver's root tree the...

hotmail.browser.trust.txt

Date: Wed, 5 May 1999 17:31:34 -0500 From: David L. Nicol To: [email protected] Subject: hotmail claims vulnerability patched, so here it is Dear Paul: I am reading your previous article on hotmail security, http://www.news.com/News/Item/0,4,33996,00.html and I'm CCing this message to the...