Third worm hits Mac OS X

Secunia and FrSIRT (French Security Incident Response Team) have both given their highest security rating to a new flaw in Mac OS X’s Safari web browser that could allow automatic execution of a malicious script.  Safari automatically opens file types it considers ‘safe’ immediately after download; if a user downloads a malicious script disguised as a ZIP archive, Safari will automatically run it.  Safari improperly handles metadata included in a ZIP archive to allow arbitrary code execution. Users can work around the flaw by disabling the “Open safe files after downloading” option in Safari.  Coupled with two low risk worms … Continue reading Third worm hits Mac OS X

Mac Attack a Load of Crap

Commentary by Leander Kahney.  Conventional wisdom holds that while Apple’s Mac OS X is stronger built than Microsoft Windows, it is still vulnerable and has largely avoided major attack due to its small market share; as Mac OS X becomes more popular, Mac users will start facing bigger security issues.  However, Kahney dismisses the threat posed by two worms targeting Mac OS X. Leap-A does not exploit a flaw in the operating system, but instead used a social engineering attack, which can work on any platform.  Kahney also dismisses the threat posed by a new flaw in the Safari browser, … Continue reading Mac Attack a Load of Crap

Kaspersky update zaps Microsoft antivirus

Kaspersky Lab antivirus has fixed a flawed signature that jammed Microsoft’s Antigen e-mail security software.  Antigen allows users to scan e-mail with multiple antivirus scanners, including Kaspersky’s. A routine Kaspersky update flummoxed Antigen, stalling e-mail for as long as ten hours.  The problem was resolved when Microsoft issued an older update until Kaspersky could fix its signature.

Phishing on the increase

More than one in five e-mail users receive over five pieces of phishing e-mail a day, according to a survey of 600 business users by Sophos. 58% receive at least one phish-mail, while 22% receive more than five. Statistics from the Anti-Phishing Working Group (APWG) support Sophos’ numbers, with 15,244 unique phishing reports in December 2005, up from 8,829 the previous December; 7,200 spoof sites hijacked 121 brands. Spoof sites last an average of 5.3 days, though the longest lived made it to 31 days.

Smaller businesses can’t keep up with patches

According to a Vanson Bourne survey of 449 IT managers from UK-based small and medium-sized businesses (SMB), 59% do not keep patches up to date due to the time necessary to do so.  61% are paying for software licenses they do not use due to strict agreements that do not allow SMBs to cancel licenses after an employee leaves or machines break down.  Application service providers could offer some relief.  Inty, the internet management firm behind the survey, recommend application service providers (ASP), but many SMBs (46%) say the ASP model does not offer reliable access to critical applications.

Ten Reasons to Buy Windows Vista

“The next version of the Microsoft Windows operating system, Windows Vista, enables a new level of confidence in the PCs so you can lower IT costs and help your users get more of their PCs. Windows Vista introduces clear ways to organize and use information to help people focus on what’s most important. It seamlessly connects your users and applications to the information, people, and devices they need to maximize results. This article discusses some of the key reasons why your company should consider upgrading to Windows Vista.” New Security Features Deployment Visualize, Search, and Organize Information Easy Sharing  Improved Performance Reliability User Interface More at … Continue reading Ten Reasons to Buy Windows Vista

Linux worm turns on Mambo and PHP

Security experts today warned of a Linux network worm that exploits holes in the Mambo content management system and the PHP XML-RPC library. Dubbed Mare.D, the worm leaves multiple backdoors on infected systems. Two of these are connectback shell backdoors that link to a remote host, while a third allows the malware’s writer to access and control infected systems via IRC.

Mac OS X Threats Emerge, write-up by Symantec

“Within the last two days, two MAC OS worms have been discovered by Symantec Security Response. The first threat, OSX.Leap.A, was discovered yesterday and is spreading in the wild. This morning, our researchers discovered another MAC threat – OSX.Inqtana.A – however, the latest threat is a proof-of-concept threat and is not spreading in the wild. Symantec does not believe the two worms are connected by author. Both of these threats are very low risk and only rated at Level 1 (on a scale of 1 to 5, with 5 being most severe). But given the relative small number of threats … Continue reading Mac OS X Threats Emerge, write-up by Symantec

SC Magazine released SC Award 2006 winners

READER TRUST AWARDSBest anti-malware solution, overall winner    Winner: Webroot Software for Spy Sweeper Enterprise 2.5 Best Anti-spyware   Winner: Webroot Software for Spy Sweeper Enterprise 2.5 Best Anti-trojan  Winner: Aladdin Knowledge Systems for Aladdin eSafe Best Anti-virus   Winner: ALWIL Software for avast! Antivirus Best Anti-worm  Winner: Mirage Networks for Mirage Networks NAC Read other winners of SC Award 2006 at

Microsoft reveals piracy battle plan for the UK – ‘Keep IT Real’

Microsoft has launched a campaign targeting software piracy in the UK. Called ‘Keep IT Real’, the campaign aims to reduce the UK piracy level for Windows by five per cent to 11.7 per cent within three years. The company says its goal would help the UK economy. “Keep IT Real will help us to address the problem in a number of ways,” Microsoft UK head of anti-piracy Michala Alexander said. “By educating customers on how to purchase legitimate software, we can protect them from the risks associated with piracy. And by closing down channels for the sale of pirate software, … Continue reading Microsoft reveals piracy battle plan for the UK – ‘Keep IT Real’