# Tags

Identity theft through spam mail

I received this mail yesterday. Few points to note about the mail are: The From field (which is blackened out) tries to portray a genuine name. The To field suggests that the mail may not be directed to me alone which is contradictory to the mail body which proposes the deal to me. The Subject […]

Microsoft Security Bulletin MS10-025 has been re-released

Microsoft Security Bulletin MS10-025 has been re-released on 27 April 2010. This security update, released on 13 April 2010, was withdrawn on 21 April 2010 due to quality issues. This bulletin released on 13 April 2010 was supposed to address “Remote Code Execution” vulnerability in Microsoft Windows 2000 Server running Windows Media Services. It was […]

Quick Heal Admin Console 4.2 Released

I am proud to announce that we have released Quick Heal Admin Console 4.2. Quick Heal Admin Console is our flagship product for Small & Medium Business, and Enterprise segment. It is a complete and cost-effective, centralized network security solution for networks. The release of Quick Heal Admin Console 4.2, just three and half months, […]

Scammers target iPad users

Of late, one of the most talked about gadgets is iPad. It is estimated that over a million iPads are already sold till date. With such a huge customer base in short span coupled with ever increasing craze for the gadget, malware writers couldn’t have asked for better targets. Malware writers are sending emails claiming […]

Hackers exploit McAfee false positive problem

Hackers are up at it again and blackhat Search Engine Optimization (SEO) is again being employed to exploit the breaking news. This time hackers are exploiting an issue with McAfee’s anti-virus product that has caused thousands of computers around the world to reboot repeatedly. If you search McAfee issue, cybercriminals have managed to get poisoned […]

Major Revision of Microsoft Security Bulletin (MS10-025)

Microsoft Security Bulletin MS10-025 has been updated as it has undergone a major revision increment. This bulletin was a part of Microsoft’s security bulletin summary for April 2010. The original security update is no longer available due to quality issues. Microsoft will issue an update for this software once the testing is complete to ensure […]

Microsoft working on a fix for Internet Explorer 8 flaw

Microsoft is working on a fix to get rid of Internet Explorer 8 vulnerability that can enable serious security attacks against websites that are otherwise safe. Ironically, the flaw resides in XSS (Cross-site scripting) filter, a protection feature in Internet Explorer 8 that’s designed to prevent XSS attacks against sites. XSS exploits allow attackers to […]

Zeus malware uses the “/launch” command feature of Adobe Reader

Last week I had written a blog (see “Disguised PDF attack possible”) about possible attack using simple technique in Adobe Reader. It is being observed now that malware writers of Zeus malware are using the “/launch” command line parameter in Adobe Reader to launch a malicious code without exploiting an vulnerability in the software. The […]

SMS scams

Today I received a SMS message with following text: CONGRATS-YOU-WON-700,000-GBP- IN 2010-UK-TOYOTA WORLDWIDE- INT’L-MMOBILE-DRAWS-WINNING -#1,TO-CLAIM-YOUR PRIZE CONTACT MR.BEN VIA EMAIL:xxxxxxxx2010@hotmail.com Its not something new, malware writers/ cyber criminals are attempting to fool mobile phone users with such bogus text messages. Mobile user are increasing day by day so is the SMS (Short Message Service). The […]

Disguised PDF attack possible

A design flaw in Adobe’s popular PDF format which was published by Didier Stevens in first week of April can be used by hackers to install malwares on users’s computers. Its a policy flaw and not a security vulnerablity in Adobe Reader that could cause this. Researcher demonstrated this attack using the PDF specification’s “/Launch” […]