Category: Security
Zotob Botzor.exe Worm Removal Tool Offered by Microsoft
Microsoft has announced that they have just updated their Malicious Software Removal Tool (KB890830) to detect and remove the Zotob worm which brought down computer systems across the country this week. The Zotob worm has also been referred to in news reports as also Zobot, Botzor, Botzor.exe, worm-rbot.cbq, rbot.cbq, and…
New Critical Internet Explorer (IE) Flaw Involves Msdds.dll
The French Security Incident Response Team (FrSIRT) is reporting a newly discovered flaw in Internet Explorer (IE), and related to the Microsoft Msdds.dll library file. In fact, it’s so new, that there isn’t even a patch for it at the time of this writing. Because the Msdds.dll library file must…
AOL Mailing List Thief Jason Smathers Sentenced to 15 Months in Prison
Jason Smathers, who pleaded guilty to stealing a list of 92 million email addresses from America Online (AOL), has been sentenced to one year and three months in prison. According to reports, Judge Alvin Hellerstein gave Smathers a sentence on the lenient side both because the judge believed that Smathers…
Microsoft Statement Regarding Zotob Worm that Crashed CNN, ABC, NYT and Congress: “Low Threat for Customers”
Microsoft has today released a statement regarding the Zotob worm (also reported as Botzor, Botzor.exe, and, incorrectly, as Zobot and rbot.ebq or rbot.cbq), which crashed computer systems across the nation yesterday. The Zotob worm, which takes advantage of a flaw in the Windows Plug and Play system, has been blamed…
Critical Update! Free Tool to Remove the CoolWebSearch Trojan Keylogger!
Sunbelt Software, who last weekend discovered the CoolWebSearch trojan keylogging software which is right now stealing bank account, username, and password information from thousands of Windows users, has just released a free tool to detect and remove the keylogger, it has announced. “This is a very dangerous piece of spyware…
Free Tool from Microsoft Removes Malicious Software, Recommended for All Windows Machines (KB890830)
Microsoft has this week released an updated version of its Malicious Software Removal Tool for Windows (KB890830). This free tool is not a replacement for anti-virus, anti-spyware, or anti-spamware. Rather it is a separate, additional tool (and did I mention that it’s free?), offered by Microsoft, which seeks out and…
Microsoft’s Windows Security Updates for August
Ever dutiful, Microsoft today released its monthly security updates for Windows for August. There are six of them today, ranging from “moderate” to “important” to “critical”, and affecting IE, Microsoft telephony, and RDP, among others, and allowing everything from spoofing to DOSing to the ever present RCE (remote code execution)….
Millions of Windows Users at Risk by Massive ID and Bank Account Theft Piggybacking on CoolWebSearch
The implications are staggering. Internet security software company Sunbelt Software was investigating CoolWebSearch, a spyware package, when they noticed that stowing away in the CoolWebSearch download were two trojans, a spam zombie engine, and a keystroke logging program. It was the keylogger program which took their breath away. The keystroke…
What is Bluejacking?
Aunty has had several people ask her recently what “Bluejacking” is. Bluejacking is really just another name for Bluespam, or for what the Car Whisperer does. Wikipedia defines “Bluejacking” as “the sending of unsolicited messages over Bluetooth to Bluetooth-enabled devices such as mobile phones, PDAs or laptop computers.” This also…
Reverse 911: Portable Devices as the New Anti-Terrorist Front Line?
The below which came across Aunty’s desk today is somewhat dense to read, but the bottom line is that they are suggesting what is being called a “reverse 911” – that mobile communications devices are the next new line of defense for citizens during a crisis such as a terror…
Spyware and Greynets a Huge Problem for Enterprise
Here’s a very interesting study having to do with spyware, grey nets, and the corporate infrastucture. A greynet is made up of unauthorized Internet applications on a network. Wikipedia, which says it far more eloquently than can I, explains that “a grey net is an elusive networked computer application that…
Worm Hole in Win2k, and Windows Protection as a Business Model
Both ZDNet and IIS Resources are reporting a newly discovered “worm hole” in Windows 2000, one for which they say there is no work-around. According to the reports, the Windows security company eEye discovered the flaw this week, indicating that the flaw was in a core component which was on…
Is Your Confidential Data Being Compromised When You Travel?
This is sobering information which came across Aunty’s desk today. It pertains to the business traveler (although it could equally apply to those traveling for pleasure), and how with today’s ubiquitous USB drives, a trail of confidential corporate data is often left behind. The information, put out by security company…
The Car Whisperer: Eavesdrop On and Take Part In Nearby Bluetooth Conversations (a/k/a Bluejacking)
Meet the Car Whisperer. We told you it could happen. Remember the BlueSniper “Rifle” which could sniff out and Bluejack Bluetooth devices up to a half-mile away? And the Bluetooth Bluespam being sent to movie-goer’s phones? [Oh sure, the company called it “ringtones” and “wallpaper”, but we all know better.]…
Doombot.A Delivers CommWarrior.B to Bluetooth Smartphones
While consumers, and indeed the online security industry, have typically not paid much mind to warnings of nasties being sent to or through a Bluetooh device, experts are warning that this needs to change. Case in point: the newly discovered Doombot.A, which carries with it CommWarrior.B, which sends itself out…