Botnet with integrated copy protection

The current version of the ZeuS botnet uses classical copy protection mechanisms to prevent the use of unlicensed pirate copies. ZeuS is a malware toolkit used, for instance, to steal online banking data. The basic version currently costs about $3,000 to $4,000. Security firm SecureWorks has discovered that the ZeuS server only works with a system specific key. Similar to the Windows OS, the malware creates a kind of fingerprint of the respective hardware configuration when first started. The vendor then provides the user with a personalised licence key for this configuration. http://www.h-online.com/security/news/item/Botnet-with-integrated-copy-protection-956502.html

Schools Across America Cut Cost and Increase Protection with Vexira AntiVirus

With pricing as low as $1.29 per license schools can save thousands of dollars by switching to the Vexira Antivirus Safe@School Educational Discount Program Central Command, Inc., a provider of antivirus, antispyware and antithreat solutions for schools, businesses and enterprises, announced today that schools across America are quickly switching to Vexira Antivirus and saving thousands of dollars and increasing Internet protection for students, faculty and staff. Educational institutions can purchase Vexira(R) Antivirus for as low as $1.29 per license. This unique program allows all educational institutions to affordably defend themselves from computer virus, spyware and malware attacks. With school districts … Continue reading Schools Across America Cut Cost and Increase Protection with Vexira AntiVirus

China Defense Ministry Web Site Target of Hackers, Xinhua Says

The Web site of China’s Ministry of National Defense is the target of “thousands” of attacks by overseas hackers each day, the official Xinhua News Agency reported, citing Ji Guilin, chief editor of the site. The number of attacks on the Web site, first opened in August, has declined since its first month of operation, the Beijing-based news service reported late yesterday. During the site’s first month of operation, it was the target of 2.3 million cyber attacks, Xinhua cited Ji as saying. http://www.bloomberg.com/apps/news?pid=20601102&sid=a13TFNPIHh9o

Researchers find zero day flaw in Windows Virtual PC

Researchers at Core Security Technologies (CST) say they have uncovered a critical flaw in Windows Virtual PC which would allow hackers to bypass security systems and run code on a guest machine. Researchers at Core Security Technologies (CST) say they have uncovered a critical flaw in Windows Virtual PC that would allow hackers to bypass security systems and run code on a guest machine. Virtual PC 2007, Virtual PC 2007 SP1, Windows Virtual PC, Virtual Server 2005 and Virtual Server 2005 R2 SP1 are affected. The flaw is in the memory management of the virtual machine monitor and allows the … Continue reading Researchers find zero day flaw in Windows Virtual PC

The Dangers Of Freebies

The internet is rife with free tools from anything to everything (almost) – from free HTML web editors to free applications to free games and so on. We’ve been in this situation before. Sometimes out of curiosity or “affluenza” (also known as “I-GOTTA-HAVE-IT-NOW-NO-MATTER-WHAT”), we are tempted to install some of these free tools and applications from the web. The unfortunate problem with freebies is that unless you know the source of where you download the tools from and whether the software author who created the application is credible, you are literally at the whims and mercy of the author should … Continue reading The Dangers Of Freebies

Graham Cluley: “Serial killer Fred West has created a Facebook Fan Page for me – should I be worried?”

From Graham Cluley’s Blog: Two years ago I wrote about how someone had taken my photograph and posted offensive material on Facebook about a number of things including the British Army. As a consequence some people believed I was to blame, and as well as my workplace receiving emails about me, it was implied that I was a paedophile, people threatened to burn down my house, and someone even issued a death threat against my wife. You can read the gory details elsewhere on my blog, but what’s new is that now someone has created a Fan Page on Facebook … Continue reading Graham Cluley: “Serial killer Fred West has created a Facebook Fan Page for me – should I be worried?”

Flashlight let banks remotely probe customers’ computers;Bank forensic app searches customer PCs for malware

Malware forensic tool enables banks security experts to quickly identify what types of malicious software programs customers are encountering in order to build better defenses. Security vendor Trusteer’s latest product will allow banks to remotely investigate their customers’ computers if it is suspected the PC has been hacked. The service, called Flashlight, is designed to enable banks security experts to quickly identify what types of malicious software programs customers are encountering in order to build better defenses, said Mickey Boodaei, Trusteer’s CEO. Now if a bank wants to see if a customer’s computer is infected, the computer usually has to … Continue reading Flashlight let banks remotely probe customers’ computers;Bank forensic app searches customer PCs for malware

Security experts warns firms that lower risk flaws are higher risk

Medium risk and lower risk flaws are being used more by hackers to penetrate enterprise networks, due to firms taking longer to patch them. Security experts have warned businesses that hackers are moving their focus on flaws designated as high risk by software vendors to flaws normally seen as lower risks. Lloyds of London chief information security officer Marcus Alldrick said, " they’re not going for the normal high risk flaws, they’re going for the medium risk ones. In the patch management cycle, the medium risk flaws [considered lower risk] are been patched later." That delay in patching is also … Continue reading Security experts warns firms that lower risk flaws are higher risk

Hackers attempt to dupe NetRegistry customers

Attackers try to open new accounts. Scammers using a Brazilian domain name have targeted customers of large Australian domain name and hosting company NetRegistry, seeking usernames and passwords in order to launch new malware attacks. NetRegistry, which lays claim to being Australia’s largest domain name registrar and second largest web host, today warned its customers to ignore emails being sent from the domain coras.com.br with the subject line Please Update. The offending message asks that NetRegistry subscribers provide their username and password in order to "verify a subscriber’s profile" – and warns that failure to do so would "render your … Continue reading Hackers attempt to dupe NetRegistry customers