January 22, 2010 - After one of my recent blog postings concerning the recent zero day IE vulnerability , I received a few questions and comments thanks to one of the comments I made: Finally, and perhaps most worryingly, this type of advice feeds the (continue reading...) Read more
January 22, 2010 - Now available for all users, the new avast! Free Antivirus 5.0 sports a completely revamped, easier-to-use (continue reading...) Read more
January 22, 2010 - Update: SophosLabs can confirm that the website has now been cleaned up. In August last year, SophosLabs first noticed that a Sophos customer was blocked from visiting a page on the KitchenAid (continue reading...) Read more
January 22, 2010 - Patrick Jordan found this one. Some questionable sites associated with the Winigard family of rogue security products pulls it from this location, which appears to belong to a graphic designer in Canada.It’s funny and here’s waaaay too much (continue reading...) Read more
January 22, 2010 - Microsoft is releasing an out-of-band update for their IE vulnerability.Internet Explorer 6 is affected and is being actively exploited in the wild.The patch will be released on the 21st, today, see Microsoft's Security (continue reading...) Read more
January 22, 2010 - Internet Explorer's latest vulnerability is causing Germany and France to advise against its use.That's a bit overkill, though, we do recommend using another browser by default.We're curious, how many of our readers (continue reading...) Read more
January 22, 2010 - Microsoft recently announced a new vulnerability in certain versions of its Internet Explorer web browser. If exploited, the vulnerability (CVE 2010-0249) can allow remote code execution.Announcement of this vulnerability follows on the heels of last week's (continue reading...) Read more
January 22, 2010 - F-Secure Labs has learned of another interesting targeted attack. In this case, malicious PDF files were e-mailed to US defense contractors. While the "Aurora" attacks against Google and others happened in December 2009, this happened just last week. (continue reading...) Read more
January 22, 2010 - Yesterday in Blackfriars Crown Court in London, Mr. Renu Subramaniam aka JiLsi pleaded guilty to "conspiracy to defraud" and to five counts of "furnishing false information". Judge (continue reading...) Read more
January 21, 2010 - You probably have heard the recent news about a widespread attack that was carried out using a 0-Day exploit for Internet Explorer as one of the vectors. This exploit is also known by the name (continue reading...) Read more
January 21, 2010 - I dislike salesmen. The look on their faces irks me when I can feel the dollars flicking in their eyes. I hate it when my car insurance company ask if i want to get home insurance as well. I do (continue reading...) Read more
January 21, 2010 - MANDIANT is going to be at DOD Cyber Crime this year. Jamie and I have both been heads down for many weeks now working on some pretty cool stuff. We are starting to come up for air and what that (continue reading...) Read more
January 21, 2010 - But don’t. Please don’t!… just…. don’t!… Instead, why don’t you apply the out-of-band patch ( MS10-002 ) that Microsoft has just released…?!!! Patching remote-code-execution vulnerabilities is usually “a good idea” to say the least. But, considering that: Microsoft rushed to (continue reading...) Read more
January 21, 2010 - Wikileaks.org is currently experimenting with the economics of information disclosure. As of January 21, the site was offline, soliciting donations that will assist its operators to continue to provide service. That service, of course, is the coordinated disclosure of secret (continue reading...) Read more
January 21, 2010 - Microsoft has released Security Bulletin MS10-002, regarding Internet Explorer vulnerabilities. In addition to patching the flaw exposed by Operation Aurora, the company released patches for seven other vulnerabilities. We are aware of reports of private CVE-2010-0249 exploits impacting Internet (continue reading...) Read more
January 21, 2010 - Early this afternoon Microsoft released an out-of-band security bulletin patching the vulnerabilities in Internet Explorer. The fix has been at the top of the news since the vulnerabilities it treats are believed to have led to the compromise of Google and (continue reading...) Read more
January 21, 2010 - The European Network and Information Security Agency (ENISA) has released a report that says 95 percent of all email is now spam. The report was based on surveying last year of email traffic by about 100 service providers (continue reading...) Read more
January 21, 2010 - Somehow we’ve managed to get Martin, Rich, and me together on a fairly regular basis. Pretty impressive (superhero-like, even). It seems as though I was full of more beans than usual, taking a few playful jabs at Rich (something about (continue reading...) Read more
January 21, 2010 - On the heels of having learned that Gumblar infected three Japanese websites late last year, MesageLabs Intelligence has tracked Gumblar’s latest activity which has been heavy over the past few days, especially on 17 January when it represented 25 percent (continue reading...) Read more
January 21, 2010 - Privacy advocate and researcher Ben Edelman has found that Upromise savings, a service that collects commissions from participating merchants for its members’ college savings accounts, scrapes personal information, including credit card numbers, from transactions and transmits it to a Boston (continue reading...) Read more