Panda Software Study Evaluates Criminal Activity on the Internet

Panda Software study is  investigating the extent that criminal malware is infecting PCs world-wide, even those PC’s with an anti-virus program installed. The study’s results, to be published shortly, will offer information such as the actual numberof infected computers and the types of threats that are most frequently installed on PCs without the users’ knowledge. Since this is a worldwide study, Panda Software is asking all users for their help in gathering as much data as possible. To take part in the study, users should go to http://www.infectedornot.com and scan their computers with NanoScan and TotalScan. http://www.prnewswire.com/cgi-bin/stories.pl?ACCT=109&STORY=/www/story/05-31-2007/0004599087&EDATE=

Calculator is the new target

A calculator is now the target of infection as per Symantec.  There’s no virus name yet and NO scanner for that application? See their blog entry at http://www.symantec.com/enterprise/security_response/weblog/2007/05/calculating_the_risk_of_infect.html

Kaspersky Lab releases its latest report on WiFi security, ‘Wardriving in London 2007’

Kaspersky Lab, a leading developer of secure content management solutions, has released its latest report on wireless network security in Great Britain. Between 24th and 26th April this year, Alexander Gostev, a senior virus analyst at Kaspersky Lab, investigated more than 800 WiFi hotspots in the business districts of London. This article is the latest in a series of reports covering wireless security in cities around the world from Paris to Beijing. Kaspersky Lab has been conducting research into WiFi networks and devices which use Bluetooth for more than 18 months. ‘Wardriving in London: 2007’ includes data which can be … Continue reading Kaspersky Lab releases its latest report on WiFi security, ‘Wardriving in London 2007’

Microsoft Windows Active Directory Logon Hours User Enumeration Weakness

Affected OS: Microsoft Windows Server 2003 Enterprise EditionMicrosoft Windows Server 2003 Standard Edition Description:Sumit Siddharth has reported a weakness in Microsoft Windows, which can be exploited by malicious people to identify valid user accounts. Active Directory allows “Logon Hours” to be set for a user, which results in a different error message being returned when attempting to log on during a period that is set as “Logon Denied”. The weakness is reported in Microsoft Windows Server 2003 Standard Edition. Other versions may also be affected. Solution:  A security fix will reportedly not be issued, but will be considered in the … Continue reading Microsoft Windows Active Directory Logon Hours User Enumeration Weakness

Hackers smash Xbox lockout

Micoroft’s blocked chipped Xbox 360s from its Live service, but hackers aren’t taking it lying down, they’ve hacked their way in again! Multi-play hungry hackers won’t be slowed by Microsoft’s attempts to lock their chipped consoles out of the Live service – they’ve cooked up a tasty hack to circumvent the big M’s checks. Dubbed iXtreme firmware, the hack-tastic update “defeats all current and some future Xbox Live detection attempts” its creators say. http://www.t3.co.uk/news/247/games/xbox/hackers_smash_xbox_lockout

Prepare for more mobile security threats now

Mobile security threats are a relatively minor annoyance to a handful of users in Europe and Asia. However, conditions are rapidly ripening for these threats to start overwhelming both companies and individual users in North America. That’s the word from Kris Lamb, director of the Xforce team at Internet Security Systems. His organization, which was acquired by IBM last year, researches new security threats, including mobile ones. He said that part of his job is to monitor activity in what he calls the technology criminal underground. http://www.computerworld.com.au/index.php/id;318606617;fp;16;fpid;1

Ameritrade security hands emails to spammers, claim

Spammers appear to be getting email details from the US online outfit Ameritrade. According to Bennett Haselton, writing on Slashdot, he signed up for an Ameritrade account using an e-mail address consisting of 16 random alphanumeric characters, which he said he never gave to anyone else. He started to receive spam sent to that e-mail address. He alleged that the only way that email could have been signed up to spam sites is if it had been leaked from Ameritrade. http://www.theinquirer.net/default.aspx?article=39958

Man described as a top spammer arrested

A 27-year-old man described as one of the world’s most prolific spammers was arrested Wednesday, and federal authorities said computer users across the Web could notice a decrease in the amount of junk e-mail. Robert Alan Soloway is accused of using networks of compromised “zombie” computers to send out millions upon millions of spam e-mails. http://news.yahoo.com/s/ap/20070531/ap_on_hi_te/spam_arrest