Mozilla patches URL handling issue

1777 Comments Off

The Mozilla Foundation released on Monday a fix for two security issues, patching a problem in the way its Firefox browser processes links that call external programs to handle data. The issue came to light last week, the destination in a circuitous trip of discovery. In early July, three researchers found a way to execute […]

Life isn’t beautiful – spammed out screensaver installs rootkits and Trojan horse

1821 Comments Off

Experts at SophosLabs™, Sophos’s global network of virus, spyware and spam analysis centers, have warned of a widespread email spam campaign that poses as a screensaver, but is really designed to install a Trojan horses and rootkits on infected Windows PCs. The emails, which are being seen in inboxes worldwide, claim that the recipient has […]

Hidden Security Risks: RSS and Atom Feeds

1821 Comments Off

Anti-malware applications and spam filters are now routinely used by nearly all businesses. Yet digital garbage may still be pouring into employees’ machines from an unsuspected source: RSS and Atom feeds. Both feed formats automatically deliver updated news and other types of Web information directly to subscribers’ readers and aggregators. But feeds can also be used […]

Spam goes back to the future

1777 Comments Off

Bulk e-mail using attachments in the Portable Document Format (PDF) has begun to decline just a month after it first appeared, and spammers are moving on to Excel files, security firms said this week. The seemingly short-lived adoption by spammers of PDF attachments began in mid-June, and peaked earlier this month. However, use of the […]

Microsoft Security Bulletin Minor Revision – July 26, 2007

Security Bulletins / Advisories Comments Off

Issued: July 26, 2007SummaryThe following bulletin has undergone a minor revision increment.Please see the appropriate bulletin for more details.  * MS07-040 – CriticalBulletin Information:* MS07-040 – Critical  – http://www.microsoft.com/technet/security/bulletin/ms07-040.mspx  – Reason for Revision: Additional clarification has been added to    the Bulletin explaining that .NET Framework updates are    cumulative and may contain non-security updates. The Bulletin    […]

McAfee sets Rootkit Detective free

1777 Comments Off

On July 26, McAfee will begin offering a new application called Rootkit Detective, designed to detect and remove dangerous rootkit attacks. The software will also help end-users ward off the threats, as well as funnel new intelligence into the company’s ongoing research operations. Following in the footsteps of SiteAdvisor — the free Web site security […]

Poisoned Web sites soar six-fold, Sophos says

1777 Comments Off

The number of infected Web pages has soared nearly six-fold since the first of the year, according to security company Sophos Plc. Detailed in a just-released threat report, the spike shows just how widespread Web attacks have become, Sophos said today. In June, it detected an average of almost 30,000 newly-infected pages each day; earlier […]

Mozilla confirms own URL handling bug

1777 Comments Off

The Mozilla Foundation acknowledged over the weekend that its own Firefox browser allows links that can send malicious code to external programs, a security issue that the group had previously argued should be fixed by the browser maker. In early July, three researchers found a way to execute code in Firefox — and potentially other […]

Secunia Personal Software Inspector (Beta)

1777 Comments Off

Test the Secunia PSI (BETA) Technology Preview, an upcoming addition to the Secunia Software Inspector series, based on the proven Secunia File Signatures Technology. The Secunia PSI detects installed software and categorises your software as either Insecure, End-of-Life, or Up-To-Date. Effectively enabling you to focus your attention on software installations where more secure versions are […]

Browser flaw opens iPhone to attack

1821 Comments Off

A major flaw in the Apple iPhone’s browser opens the device to attack through a malicious wireless access point or Web server, the security firm that discovered the vulnerability announced on Monday. Because of some poor security choices in the phone’s design, an attacker could install code to steal any and all data on the […]


© 2014 DP's Security Bits.
WordPress Theme & Icons by N.Design Studio. Provided by WPMU DEV -The WordPress Experts   Hosted by Microsoft MVPs
Entries RSS Comments RSS Log in