Amnesty Internationalâ€™s UK website was hacked recently, to incorporate an iframe that served a Trojan.
The iframe loads a CVE-2011-3544 based java exploit code, fetched from a Brazilian automobile site which itself was hacked. Security Analyst, Brian Krebs reports that the retrieved executable file is a trjoan classified as Trojan Spy-XR. This Trojan, which relies on a patched Java vulnerability, tracks and steals the affected userâ€™s keystrokes.
Microsoft today, released 13 security updates as a part of the monthly patch Tuesday cycle to close 19 vulnerabilities found in their Windows, Office, Internet Explorer and Media Player/Media Center software.
Although they had planned to release 14 patches, the release of one of the updates had to be delayed. The patch in question was intended to close a vulnerability found in the SSL 3.0 and TLS 1.0 and the reason given for delaying the update was that they found an incompatibility during third party tests. The update will be released later, once the incompatibility issues are addressed properly.Read More
Microsoft has added another weapon to its arsenal in its fight against malware: an offline version of the Windows Defender software. The software, which is in beta at the moment, scans and removes various forms of malware like its desktop counterpart. But the advantage of the Offline version is that, it can be run from an external media such as a CD or USB drive, even when the OS is not running. This makes it easier to remove certain rootkits and advanced malware which otherwise is difficult to remove when the OS is running.
Hereâ€™s a step by step guide on how to run Windows Defender Offline beta.Read More
FBI has released details of its Operation Ghost Click which led to the arrest of six operators of an internet fraud ring that had created and distributed a malware called DNSChanger. All of the arrested men were of Estonian descent and worked primarily from Estonia and Russia. They had infected about 4 million computers in 100 different countries. United States alone had almost 500,000 DNSChanger infected PCs ranging from those owned by individuals to enterprise to even NASA. The hackers are believed to have gotten at least 14 million dollars from the fraud.Read More
Brazil is currently under a massive DNS cache poisoning attack, reports Kaspersky Labs. When a user tries to visit popular local and global sites such as Google, Yahoo and Facebook, a popup is displayed. It asks the user to download a security suite called Google Defender in order to access the site.Read More
This month will see the release of four security updates, of which one is rated critical, two are important and one is moderate. As noted in the below table, Bulletin 1 and 2 patches vulnerabilities that enable Remote Code Execution while Bulletin 3 is for an Elevation of Privileges bug and Bulletin 4 is for a Denial of Service bug.Read More
Do you, at times, wonder whether your accounts have been compromised? If the answer is yes, you can now verify your doubt by using a service appropriately called PwnedList (Pwn is a jargon used by hackers to imply that an account has been compromised).Read More
25 billion actions a day or 65,000 actions a second! That is the volume of actions generated by Facebook’s 800 million users. And all of these actions are monitored by Facebookâ€™s massive Security infrastructure called the Facebook Immune System or FIS for any kind of suspicious activities.Read More
It has been discovered that the cockpits of two US drone fleets â€“ Predator and Reaper have been infected with a virus. The virus infection was discovered two weeks ago in the Creech Air Force base in Nevada. Since then, the officials have been trying to remove the infection, but the virus keeps on coming back, reports WIRED.Read More
With a world full of malware, identity thieves and hackers, securing your computer properly is of at most importance. But unfortunately, most of us do not think further than installing security software. Mostly it is only after you get infected or hacked, that you realize you have done too little, but it would be too late by then. The truth is, by following some very easy practices, you can easily minimize chances of being infected. Hereâ€™s a rundown of some of the tips to secure your computer.Read More
Fake anti-virus scams have been doing rounds for quite some time now. Hackers had previously used mediums such as emails, websites etc. to carry out these scams. Now they have found another medium â€“ Skype.Read More
So you want to try Windows 8 but youâ€™re afraid that it might mess up your PC? Then worry not, because the free VirtualBox software from Oracle will allow you to easily install Windows 8 virtually with out affecting your PC.Read More
Security has always been a challenge to Microsoft. Being the most used Operating System; Windows also holds the position of being the most targeted Operating System. With Vista and Windows 7, Microsoft had done an excellent job in improving the system security by adding features such as the UAC, Windows Defender, Bit locker drive encryption etc. Now they have gone one step further to improve upon the existing features and have added new ones. Here are some of the major security improvements in Windows 8.Read More
Tomorrow, Adobe will be releasing an Adobe Reader and Acrobat security update which will remove DigiNotar certificates from its trusted list. The update will be available for both Windows and Mac. Once installed,it will remove DigiNotar certificates from the â€˜Adobe Approved Trust List programâ€™ or AATL.Read More