Panda Software Study Evaluates Criminal Activity on the Internet

Panda Software study is  investigating the extent that criminal malware is infecting PCs world-wide, even those PC’s with an anti-virus program installed. The study’s results, to be published shortly, will offer information such as the actual number
of infected computers and the types of threats that are most frequently installed on PCs without the users’ knowledge.


Since this is a worldwide study, Panda Software is asking all users for their help in gathering as much data as possible. To take part in the study, users should go to http://www.infectedornot.com and scan their computers with NanoScan and TotalScan.


http://www.prnewswire.com/cgi-bin/stories.pl?ACCT=109&STORY=/www/story/05-31-2007/0004599087&EDATE=

Kaspersky Lab releases its latest report on WiFi security, ‘Wardriving in London 2007′

Kaspersky Lab, a leading developer of secure content management solutions, has released its latest report on wireless network security in Great Britain. Between 24th and 26th April this year, Alexander Gostev, a senior virus analyst at Kaspersky Lab, investigated more than 800 WiFi hotspots in the business districts of London.


This article is the latest in a series of reports covering wireless security in cities around the world from Paris to Beijing. Kaspersky Lab has been conducting research into WiFi networks and devices which use Bluetooth for more than 18 months. ‘Wardriving in London: 2007′ includes data which can be compared to data gathered in the same location a year ago. The statistics show that the number of WiFi hotspots has almost doubled, and the number of high speed networks has increases significantly.


As for security, the number of secure networks has increased from 50% of all networks detected a year ago, to 69% in 2007. The article also provides an overview of preferred equipment manufacturers used in London networks and hotspot configuration which can either help or hinder hackers in their attempts to access wireless networks.


The complete report is available on Viruslist.com at the following link: http://www.viruslist.com/en/analysis?pubid=204791945


http://www.kaspersky.com/news?id=207575530

Microsoft Windows Active Directory Logon Hours User Enumeration Weakness

Affected OS:
Microsoft Windows Server 2003 Enterprise Edition
Microsoft Windows Server 2003 Standard Edition


Description:
Sumit Siddharth has reported a weakness in Microsoft Windows, which can be exploited by malicious people to identify valid user accounts.


Active Directory allows “Logon Hours” to be set for a user, which results in a different error message being returned when attempting to log on during a period that is set as “Logon Denied”.


The weakness is reported in Microsoft Windows Server 2003 Standard Edition. Other versions may also be affected.


Solution:  A security fix will reportedly not be issued, but will be considered in the next version or service pack.


http://secunia.com/advisories/25457/

Hackers smash Xbox lockout

Micoroft’s blocked chipped Xbox 360s from its Live service, but hackers aren’t taking it lying down, they’ve hacked their way in again!


Multi-play hungry hackers won’t be slowed by Microsoft’s attempts to lock their chipped consoles out of the Live service – they’ve cooked up a tasty hack to circumvent the big M’s checks.


Dubbed iXtreme firmware, the hack-tastic update “defeats all current and some future Xbox Live detection attempts” its creators say.


http://www.t3.co.uk/news/247/games/xbox/hackers_smash_xbox_lockout

Prepare for more mobile security threats now

Mobile security threats are a relatively minor annoyance to a handful of users in Europe and Asia. However, conditions are rapidly ripening for these threats to start overwhelming both companies and individual users in North America.


That’s the word from Kris Lamb, director of the Xforce team at Internet Security Systems. His organization, which was acquired by IBM last year, researches new security threats, including mobile ones. He said that part of his job is to monitor activity in what he calls the technology criminal underground.


http://www.computerworld.com.au/index.php/id;318606617;fp;16;fpid;1

Ameritrade security hands emails to spammers, claim

Spammers appear to be getting email details from the US online outfit Ameritrade.


According to Bennett Haselton, writing on Slashdot, he signed up for an Ameritrade account using an e-mail address consisting of 16 random alphanumeric characters, which he said he never gave to anyone else. He started to receive spam sent to that e-mail address.


He alleged that the only way that email could have been signed up to spam sites is if it had been leaked from Ameritrade.


http://www.theinquirer.net/default.aspx?article=39958

Man described as a top spammer arrested

A 27-year-old man described as one of the world’s most prolific spammers was arrested Wednesday, and federal authorities said computer users across the Web could notice a decrease in the amount of junk e-mail.


Robert Alan Soloway is accused of using networks of compromised “zombie” computers to send out millions upon millions of spam e-mails.


http://news.yahoo.com/s/ap/20070531/ap_on_hi_te/spam_arrest