Virus News
Welcome to our RSS – Virus and Spyware Related News Feed section. This page might take some time loading up as it has to extract and load data from other sources.
Microsoft – Security at Home
PCAdvisor – Security News
Computerworld – Viruses News
Cross-browser worm spreads via Facebook, security experts warn - Malware writers have used Crossrider, a cross-browser extension development framework, to build a click-fraud worm that spreads on Facebook, security researchers from antivirus firm Kaspersky Lab said on Monday. Security Manager's Journal: Red alert for child pornography - A .mov file with a highly suggestive name is enough to kick off an investigation into what's on an employee's PC. Is cloud-based security really less expensive? - Businesses in new study were five times more likely to have decreased spending on managing security over three years as a percentage of their overall IT budget. Android hackers hone skills in Russia - The malware business growing around Google Android -- now the leading smartphone operating system -- is still in its infancy. Today, many of the apps built to steal money from Android users originate from Russia and China, so criminal gangs there have become cyber-trailblazers. Microsoft anti-bloatware service to apply to Windows 8 PCs, too - A Microsoft in-store program that scrubs "bloatware" from Windows PCs will also be offered when Windows 8 machines reach the market later this year, a company representative said. Google releases Chrome 19, adds tab sync and patches 20 bugs - Google released Chrome 19, patched 20 vulnerabilities in the browser and doled out $16,500 in bug bounties and rewards to independent researchers. More Malware and Vulnerabilities News - View more Malware and Vulnerabilities news and analysis from Computerworld.com
Kaspersky – Virus News
Norton Security Articles
Critical vulnerabilities in Adobe Flash player - updates available - Several critical vulnerabilitiies have been identified in Adobe Flash player 11.0.1.152 and earlier versions.
Critical is Adobe's highest vulnerability rating and could when exploited allow malicious native-code to execute, potentially without a user being aware.
More information is available in Adobe's security bulletin 11-28, which also has links to update downloads.
Norman recommends that affected users update their Adobe Flash player as soon as possible.
One critical update for Microsoft systems in November 2011 - In its security bulletin summary for November 2011 Microsoft has published one update for critical, two updates for important, and one update for moderate vulnerabilities in its operating systems / applications.
Critical is Microsoft's highest vulnerability rating.
A summary describing briefly the vulnerabilities is available from Microsoft's Security Bulletin Summary for November 2011.
From this page you will also find links to more detailed information in Microsoft's Security Bulletins MS11-083 - MS11-086.The critical update addresses the following issue:
- One privately reported vulnerability in TCP/IP.
As expected Microsoft did not include any update for the recently discovered zero-day vulnerability in TrueType Font Parsing, which is used by Duqu. An out-of-band update for this is likely. Until a security update is available, Microsoft has published a workaround in the form of a fixit solution.
Updates that fixes the vulnerabilities addressed in the November bulletins are available from Windows automatic update mechanism.
To manually check for updates Click the Start button, click All Programs and then click Windows Update.
Norman advices all affected users to download the relevant security updates as soon as possible, to be protected from potential exploits.An approach to an organization's risk factors (part 3) - Introduction
This is part three of our multi-part series "An approach to an organization's risk factors".
We strongly recommend that you read these articles sequentially, starting with part 1 here.
The first article discussed different procedures and systems that could be invoked in order to mitigate risk. The second article discussed Electronic factors as an area of risk. In this third and final part we will examine Human attack factors and Physical factors.
3. Human attack factors
By human attack…
Microsoft Security Bulletins advance notification An approach to an organization's risk factors (part 2) - Introduction
This is the second part of of our multi-part series "An approach to an organization's risk factors".
We strongly recommend that you read these articles sequentially, starting with part 1 here.
The previous article discussed different procedures and systems that could be invoked in order to mitigate risk. In subsequent parts we will examine areas at risk, starting with Electronic factors.
2. Electronic factors
By electronic factors, we will include all types of issues with the organization…
An approach to an organization's risk factors (part 1) - Introduction
Any organization is exposed to some kind of risks. How an organization deals with this fact, however differs widely.
The larger organizations are probably better equipped to allocate sufficient resources to implement the systems that are available in security standards. Smaller organizations may feel that these are not so well suited for their needs.
However, the organization may find it useful to perform a systematic analysis of its vulnerabilities, the probability for their exploitation,…
Denial of Service attacks against secure web sites - Introduction
Secure communication has been the target of several types of attack this year. In our security article in June, Secure tokens turn insecure, we wrote about the attack against RSA, an event that turned out to have serious consequences for several high-profile vendors of military systems. In September we wrote about breaches in the security authorization model in Secure browsing turns insecure (again). And earlier this month we wrote about BEAST (Browser Exploit Against SSL/TLS).
Yet another…
Two critical updates for Microsoft systems in October 2011 - In its security bulletin summary for October 2011 Microsoft has published two updates for critical and six updates for important vulnerabilities in its operating systems / applications.
Critical is Microsoft's highest vulnerability rating.
A summary describing briefly the vulnerabilities is available from Microsoft's Security Bulletin Summary for October 2011.
From this page you will also find links to more detailed information in Microsoft's Security Bulletins MS11-075 - MS11-082.The critical…
Malicious images (codes) - Introduction
One popular way to trick users into infecting themselves is to use links in emails. However, the criminals are constantly looking at new ways to trick us. In this article, we shall examine a new one.
Background
In recent years, the most popular way to spread malicious software has been through web sites. Many different techniques are used, and several of our previous articles have discussed these. Among the more common types are
- the real link in an email is a different than the…
Microsoft Security Bulletins advance notification
Trend Micro malware Blog
Beta Version of Spytool App for Android Steals SMS Messages - During my investigation of mobile threats in the wild, I discovered a spytool, which is currently available on Google Play, that is actively being discussed on certain hacker forums. This tool’s beta version is available on the site since March 11. An estimated 500 – 1000 users have already downloaded the said spytool, which Trend [...] Post from: TrendLabs | Malware Blog - by Trend Micro
Beta Version of Spytool App for Android Steals SMS MessagesBogus Pinterest Pins Lead to Survey Scams - The continuing increase in visitors to the Pinterest site may be a primary cause why it’s becoming a hit for cybercriminals’ scams and schemes. In March, we spotted scammers using popular brands to lure users into “pinning” fake posts that led to surveys scams. This new wave of survey scams I found came from my [...] Post from: TrendLabs | Malware Blog - by Trend Micro
Bogus Pinterest Pins Lead to Survey ScamsCloud-based Services Vulnerabilities Also Used in Targeted Attacks - Recently, Trend Micro researchers encountered a potential vulnerability that affected users of Yahoo! Mail. We discovered several emails used in targeted attacks that contained JavaScript in the “From” field that attempted to launch a Document Object Model (DOM)-based cross-site scripting attack against the recipients of the email. However, we were not able to replicate the [...] Post from: TrendLabs | Malware Blog - by Trend Micro
Cloud-based Services Vulnerabilities Also Used in Targeted AttacksWorm Spreads via Facebook Private Messages, Instant Messengers - We recently received reports about private messages found on Facebook and distributing a link, which is a shortened URL pointing to an archive file “May09-Picture18.JPG_www.facebook.com.zip”. This archive contains a malicious file named “May09-Picture18.JPG_www.facebook.com” and uses the extension “.COM”. Once executed, this malware (detected as WORM_STECKCT.EVL) terminates services and processes related to antivirus (AV) software, effectively [...] Post from: TrendLabs | Malware Blog - by Trend Micro
Worm Spreads via Facebook Private Messages, Instant MessengersRogue Farm Frenzy 3 for Android Unearthed - Not long after we found sites offering rogue versions of Instagram and Angry Birds Space, another malicious site hosted in Russia was found to peddle fake Farm Frenzy 3 versions. The perpetrators behind this fake app are hoping that users who are not discriminate enough may download their malicious version, which is detected by Trend [...] Post from: TrendLabs | Malware Blog - by Trend Micro
Rogue Farm Frenzy 3 for Android UnearthedInfo Stealer Poses as Google Chrome Installer - We recently found some suspicious looking URLs which suggest that a malicious file named ChromeSetup.exe is hosted in domains like Facebook and Google. The finding, which we were able to flag during our analysis of data processed by the Trend Micro™ Smart Protection Network™ definitely caught our attention. Looking at data from the Smart Protection [...] Post from: TrendLabs | Malware Blog - by Trend Micro
Info Stealer Poses as Google Chrome Installer[INFOGRAPHIC] Mapping Out Your Digital Life - As we do more and more things online and with our digital devices, one thing is sure: we accumulate more and more digital junk. Movies we don’t watch, songs we don’t listen to, apps we don’t use. How much digital clutter do users have? Quite a lot, as it turns out. On average, people have [...] Post from: TrendLabs | Malware Blog - by Trend Micro
[INFOGRAPHIC] Mapping Out Your Digital LifeNews of Beastie Boy Adam Yauch’s Death Leads to Malware - The demise of Beastie Boys’ Adam Yauch (also known by his moniker MCA) have resonated among hip hop fans these past days. Sadly, we have seen a particular attack that targets specific recipients and used this news item as a social engineering lure. We have found an email sample that leverages Yauch’s death to entice [...] Post from: TrendLabs | Malware Blog - by Trend Micro
News of Beastie Boy Adam Yauch’s Death Leads to MalwareDiablo 3 Scams Preempt Game Release - While gamers from North America and Europe are still waiting for the release of Diablo III this coming Tuesday (May 15), cybercriminals have already gone ahead and started taking advantage. We found a search result for the string “diablo 3 free download” leading to a survey scam — a scheme frequently seen deployed through Facebook. [...] Post from: TrendLabs | Malware Blog - by Trend Micro
Diablo 3 Scams Preempt Game ReleaseMalware Masquerades as Flash Player for Android - Last month, we have seen cybercriminals use the popularity of apps like Instagram and Angry Birds Space to deliver malware on Android phones. This time, we spotted the same social engineering tactic using Adobe‘s name. This webpage is also found to be hosted on Russian domains, similar to the fake Instagram and Angry Birds Space [...] Post from: TrendLabs | Malware Blog - by Trend Micro
Malware Masquerades as Flash Player for Android
Washington Post Security Fix
Poll: Obama, Romney in dead heat - After months of aggressive campaigning on jobs and the economy, President Obama and Mitt Romney, his likely Republican challenger, are locked in a dead heat over who could fix the problem foremost on voters’ minds, according to a new Washington Post-ABC News poll.
Read full article >>
President Obama defends his attacks on Mitt Romney’s career at Bain Capital - President Obama defended his campaign’s attacks on Mitt Romney’s record as a private-equity executive at Bain Capital, telling reporters Monday that Romney’s history is fair game. The president’s remarks came in the face of criticism, some from within his own party, that the attacks were inappropriate.
Read full article >>
Obama visits Joplin one year after tornado, speaks at high school commencement - JOPLIN, Mo. —President Obama took a break from the world stage and the campaign trail late Monday to heap praise on this southwestern Missouri city a year after a giant tornado cut a deadly path through the area, claiming 161 lives.
Read full article >>
NATO leaders agree on framework to wind down Afghan mission - CHICAGO — NATO leaders endorsed a plan Monday to wind down the international combat mission in Afghanistan, giving President Obama a concrete exit strategy from an unpopular war as he seeks reelection partly on his record as an effective commander in chief.
Read full article >>
Featured Advertiser - Mitt Romney joins forces with RNC to boost fundraising - Mitt Romney has been on a fundraising tear recently, drawing more than $10 million during a swing through New York this week and another $10 million in Florida last week.
With the primary challenge behind him, Romney is partnering with the national and state GOP fundraising apparatus to stretch donation limits beyond the $5,000 that any one person can give to his presidential campaign.
Read full article >>
Supreme Court agrees to hear case on electronic surveillance - The Supreme Court will decide next term whether a group of lawyers, human rights activists and journalists may challenge the federal government’s widespread use of electronic surveillance to monitor suspected terrorist activities overseas.
Read full article >>
Justice Department probing donations to Josh Mandel and Jim Renacci - The Department of Justice is looking into campaign donations to two Ohio Republican candidates, Dick Lugar isn’t over it, Bob Corker is optimistic and Romney is ready to raise $10 million.
Make sure to sign up to get “Afternoon Fix ” in your e-mail inbox every day by 5 (ish) p.m!
Read full article >>
Obama on Bain: ‘This is what the campaign is going to be about’ - Updated at 5:51 p.m.
President Obama on Monday declined to back down from his campaign’s attacks on Mitt Romney’s record at Bain Capital despite criticism from some Democrats.
Asked at a press conference in Chicago about criticism from Newark Mayor Cory Booker regarding his campaign’s attacks on Romney’s work in private equity, Obama defended the tactic and said it’s fair game in a race where Romney has played up his business credentials.
Read full article >>
Corporations are (Democratic) people, too - If there’s one lasting lesson of the Cory Booker saga over the weekend, it’s that nothing in politics is as clear cut as it seems.
Democrats have been trying all election cycle to make the coming race about the rich paying their fair share, reining in fat cat bankers and helping the 99 percent, with Mitt Romney serving as the foil.
Read full article >>
Iowa GOP takes shot at Obama<br>with ‘natural-born citizen’ requirement - Last week, it was the Arizona secretary of state suggesting it’s “possible” he may try to block President Obama from the November ballot because of lingering questions about his birth certificate.
This week, it’s the Iowa Republican Party calling into question the president’s citizenship.
Read full article >>
White House visitors’ logs: How many visits did the GOP hopefuls make? - The Washington Post’s newly-launched White House visitors’ database makes it clear that lobbyists remain a regular presence at 1600 Pennsylvania Ave.
But what about the GOP contenders who earlier this year competed in hopes of one day occupying the White House?
Read full article >>
Michelle Obama’s campaign strategy and Cory Booker’s walk-back | Weekend #campaignreads - What election coverage generated buzz over the weekend? There was plenty to talk about, even before Cory Booker’s “honest” mistake.
Here’s our roundup of the stories you shouldn’t miss from the past few days.
Read full article >>
Obama faces pressure on Volcker Rule - Nearly two years after the signing of a major law to boost oversight of Wall Street, two Democratic senators are calling on President Obama to speak out even more strongly in favor of a new federal rule that they say should have banned the trading that led to JPMorgan Chase’s $2 billion or more loss.
Read full article >>
D.C. archdiocese, other Catholic groups file suit against birth-control mandate - More than a dozen Catholic bishops — including Washington’s — sued the Obama administration on Monday, ratcheting up the standoff between church officials and the White House over a government mandate requiring employers to provide contraception coverage.
Read full article >>
