Computer Safety & News

Symantec warns to be careful of potentially malicious email and websites Chinese New Year of the Rabbit – Avoid Spam and Malware http://www.symantec.com/connect/blogs/coming-next-chinese-new-year QUOTE: Giving gifts for Chinese New Year is a traditional custom, not only for families but also for businesses to show their gratitude to customers. While everyone is ready to welcome the […]

While the MHTML protocol is not often seen, it could be used in new attacks until this vulnerability is patched.  Please be careful if you encounter this and ensure there is a legitimate and safe use of this special protocol. Microsoft Warns of Windows Script Injection Vulnerability http://blogs.pcmag.com/securitywatch/2011/01/microsoft_warns_of_windows_scr.php http://www.microsoft.com/technet/security/advisory/2501696.mspx QUOTE: Microsoft tonight released a security […]

Malware toolkits have grown more expensive (some costing up to $8,000 or more) as cybercrime continues to grow and become more sophisticated.  Trend shares an interesting perspective on what these kits contain and how they are used by malicious criminals. Trend Labs – Do it yourself Crimeware Kits http://blog.trendmicro.com/diy-cybercrime-exploits-loaders-and-affiliates-part-1/ QUOTE: This post is the first […]

Trend is warning that messages are being spammed to users, requesting that they log into a site that resembles the Facebook security home page.  Please always be careful with any email messages claiming that they originate from Facebook.  In this case avoid email messages stating your account has been blocked – instead log into Facebook […]

Facebook’s new SSL based capabilities are a welcome improvement. As this popular site attracts malicious attackers best practices also complement this new protective approach (e.g., avoid potentially malicious links or applications, locking down privacy, careful approval of friend requests, limited Windows account, using latest version of browser, up-to-date AV protection, etc.) Facebook Now Officially Supports […]

During 2010, authors continue to innovate so that many malicious attacks sent a unique sample each time to evade detection. Command-and-control botnets, targeted attacks, and highly polymorphic malware families resulted in millions of unique samples captured by AV-Test during the past year. AV-TEST reports MILLIONS of unique Malware samples during 2010 http://sunbeltblog.blogspot.com/2011/01/updated-virus-stats-from-av-test.html AV-Test HOME PAGE […]

Below are links for this excellent corporate PENTEST tool.  Architecturally, the new version uses a subroutine approach for specialized analysis to ensure the main engine stays efficient.  PENTEST Tool — Nmap 5.50 Released http://isc.sans.edu/diary.html?storyid=10330 Nmap 5.50 Documentation http://nmap.org/nsedoc/ Nmap 5.50 Change Log http://nmap.org/changelog.html Nmap 5.50 Download (about 19MB) http://nmap.org/download.html QUOTE: A new update of one […]

This fake attack prompts users renew their 2-factor token devices and in sharing sensitive information. Massive Phishing Attacks Strike Bank of China Users http://blogs.mcafee.com/mcafee-labs/massive-online-bank-phishing-attacks-in-china QUOTE: We have noticed a lot of SMS-based web-phishing attacks in China targeting the Bank of China’s online users. They received a phishing SMS that is designed to look like it […]

Data Privacy Day is January 28, 2011 http://dataprivacyday2011.org/ QUOTE: Despite all of the benefits of these technologies, doubts and worries persist about just how much personal information is collected, stored, used, and shared to provide these convenient and pervasive tools and services. Data Privacy Day is an international celebration of the dignity of the individual […]

Some excellent Windows Update tips and techniques recently published Servicing related questions I have seen this week – Ramblings of a Support Engineer http://blogs.technet.com/b/joscon/archive/2011/01/26/servicing-related-questions-i-have-seen-this-week.aspx This is a very useful table of Windows Update result codes noted in the above link: Appendix G: Windows Update Agent Result Codes http://technet.microsoft.com/en-us/library/cc720442%28WS.10%29.aspx