Beware of e-mails consist of a hyperlink to a “Christmas card”. If a user visits this site, he will see the following. The user will need to click on either button, get a Security Warning and will need to accept the fact that an executable is being run.
New Delhi, 11th December 2008: Quick Heal Technologies hosted Asia’s Premier Information Security Conference – Association of Anti-Virus Asia Researchers (AVAR 2008 International Conference) for the very first time in New Delhi, India. AVAR 2008 was a unique three day event showcasing the latest technologies in Information Security and Anti – Malware Industry. In fact, […]
Microsoft has announced that they will be releasing an out of cycle security bulletin tomorrow for the IE zero day vulnerability being exploited. Click here for more information. Many site were discovered hosting the exploit code, which were injected using SQL Injection attacks. The site pages were having links to exploit hosting site and some […]
Overview of the December 2008 Microsoft patches and their status. 8 crtical and important updates have been covered. MS08-070 Multiple vulnerabilities in activeX controls from visual basic 6.0’s runtime allow random code execution. Also affects Visual studio, Foxpro, Frontpage, and MS Project. The vulnerable files are distributed with 3rd party applications as well. MS08-071 Multiple […]
As Mumbai is under terrorist attack, like other major events, this one caught a lot of media coverage, which opens a door for people who likes to make money on tragedies like this. Over the last few days Internet community saw a spike on domains related to the Mumbai attack. Be vigilant, as always…
I-Worm.Downadup is using the vulnerability MS08-67 to spread, below is some of the details what we have analyzed so far. – The worm deletes user created System Restore points. – It attempts to contact w3.org, ask.com, msn.com…. – It generates random domain names to download payload, the name are generated using the current date. More […]
A good news! Based on the investigative research of the Washington Post’s Brian Krebs, US-based McColo has been taken offline by their various upstream providers. The McColo network not only was a large source of spam, but also trafficked in malware. More info
Overview of the November 2008 Microsoft patches and their status. MS08-068 The NTLM protocol allows an attacking server to reflect credentials and use them against the client gaining the rights of the logged on user. MS08-069 Multiple vulnerabilities allow memory corruption (code execution with the rights of the logged on user), cross domain scripting and […]
Adobe released a security update for Adobe Reader 8 and Acrobat 8, which cover 8 different vulnerabilities. For more details click here List of CVE’s addressed CVE-2008-2992 CVE-2008-2549 CVE-2008-4812 CVE-2008-4813 CVE-2008-4817 CVE-2008-4816 CVE-2008-4814 CVE-2008-4815 This set of vulnerabilities can lead to Internet Security options being changed, privilege escalation, DOS or in the worse cases remote […]
Microsoft has released an out of cycle patch for newly discovered vulnerability in Server Service. The full description is covered in Microsoft Security Bulletin MS08-067 and has been rated critical. The vulnerability could allow remote code Execution. This vulnerability is exploited currently by a Trojan Gimmiv.A. Quick Heal users are protected as we have released […]