Microsoft has said it plans to send out six security bulletins, three of which it has rated as “critical” (its highest severity rating), in its monthly Patch Tuesday release on July 10. All three of the critical vulnerabilities can result in the takeover of users’ compromised systems, according to Microsoft’s Advance Notification for July, 2007, announcement. Without providing details, the company said the three “critical” issues affect Windows and Office, and specifically Excel, and its Microsoft .Net Framework offering.
Read more…
Mobile-device manufacturer RIM is unconcerned about a new release of software that aims to compromise the security of a BlackBerry device. The latest version of legal spying software FlexiSpy enables remote third parties to bug the voice calls, log SMS and mobile email messages and track the location of a BlackBerry user. Ian Robertson, senior manager of security and research at RIM, said users need not be particularly worried about the capability of FlexiSpy.
Read more…
It seems as if someone is trying to entice people who are after the Grand Theft Auto mod video, into infecting themselves with a Trojan horse virus. Even though YouTube videos are still safe, this has not stopped those criminals who have nothing better to do in finding new ways in to enticing people who use Youtube to then get infected with the latest Trojan horse.
Read more…
In one of this year’s largest data breaches, financial processing company Fidelity National Information Services revealed on Tuesday that a subsidiary’s employee stole 2.3 million consumer records containing credit card, bank account and other personal information. Although Fidelity said the data was not used for identity theft or other fraudulent activity, it revealed that the employee sold it to a data broker, who then sold it to several direct marketing companies. Fidelity said in a prepared statement that about 2.2 million records stolen from Certegy Check Services contained bank account information; 99,000 contained credit card information.
Read more…
Now that Apple’s iPhone is finally on sale, the race is on to see who can unlock it. Locked phones can only be used with the mobile service from one carrier, a move designed to guarantee carriers recover the cost of subsidising a handset through monthly service charges. But the cost of the iPhone, which is priced at either $499 (ÂŁ250) or $599 (ÂŁ300) depending on the model, is not subsidised by AT&T.
Read more…
Researchers are warning of a widespread MySpace drive-by exploit attack meant to compromise machines so more highly-profitable phishing schemes remain successful. MySpace users become infected when they visit a profile page containing malicious JavaScript and then are silently redirected to an Internet Explorer exploit, which was patched in April, Johannes Ullrich, chief research officer of the SANS Internet Storm Center, told SCMagazine.com today.
Read more…
A hacker successfully attacked a Web page within Microsoft Corp.’s U.K. domain, resulting in the display of a photograph of a child waving the flag of Saudi Arabia. It was “unfortunate” that the site was vulnerable, said Roger Halbheer, chief security advisor for Microsoft in Europe, the Middle East and Africa. The problem has since been fixed. However, the hack highlights how large software companies with technical expertise can still prove vulnerable to hackers.
Read more…
Kaspersky Internet Security technological prototype represents a new generation platform for creating applications specifically designated for complex protection of personal computers and workstations. Uniting the substantially improved functional abilities of version 5.0, Kaspersky Lab protection products with the latest technological innovations introduced by the company the Kaspersky Internet Security solution secures the most effective and complete protection of a computer from all sorts of electronic threats – malicious programs, hacker attacs and spam.
Read more…
Hacker groups are using a “construction kit” supplied by the author of a Trojan horse program discovered last October to develop and unleash more dangerous variants of the original malware. The new Trojans have been used to steal sensitive information belonging to at least 10,000 individuals and to send the data to rogue servers in China, Russia and the US, Don Jackson, a researcher at security firm SecureWorks, said.
Read more…
The Internet Storm Center is warning that hackers are spamming e-mail messages that purport to be a Microsoft security update. The phony e-mail doesn’t carry any fixes. Actually, it contains malicious code to infect unwary users who open the message and click on any links or attachments. “Microsoft would never e-mail patches, so I don’t know why people still fall for this but they do,” said Johannes Ullrich, chief technology officer for the Internet Storm Center, in an interview. “It seems like everybody got a copy of the e-mail. It was spammed out to a very large list. How many people clicked on it, I really don’t know.”
Read more…