Subscribe to Malware Help RSS Feed RSS Feed - Subscribe to Malware Help. Org on Twitter Follow on Twitter - Malware Help YouTube Channel YouTube Channel - Subscribe to Malware Help by Email Subscribe by Email

Security

Microsoft explains seven-year-old patch delay

by Shanmuga

"Microsoft Corp. late yesterday explained why it had been unable to patch a seven-year-old bug until recently, saying that it was only in the last year that it figured out how to fix the flaw without breaking most network-based applications.

Read the full article →

Microsoft Patches Four Windows Security Holes

by Shanmuga

"Microsoft today released a pair of security updates to plug at least four security holes in its Windows operating systems and other software. The software patches are available through Windows Update or via Automatic Updates.

Read the full article →

Self-Encrypting Hard Drives

by Shanmuga

"Seagate on Monday announced what it called "sweeping advances" in its efforts to secure laptop information. Its solution is self-encrypting laptop hard drives with up to 320GB of capacity. The company said 500GB models are coming soon.

Read the full article →

US-CERT: Using Caution with USB Drives

by Shanmuga

"Because USB drives, sometimes known as thumb drives, are small, readily available, inexpensive, and extremely portable, they are popular for storing and transporting files from one computer to another. However, these same characteristics make them appealing to attackers.

Read the full article →

Microsoft Security Intelligence Report Volume 5 released

by Shanmuga

The half-yearly Microsoft Security Intelligence Report provides an analysis of data collected by Windows Malicious Software Removal Tool and other Microsoft security products. It provides trends in software vulnerability disclosures, E-Mail Threats, Spam and Phishing and malicious and potentially unwanted software. Some of the interesting trends noticed in Malicious and Potentially Unwanted Software are: In

Read the full article →

Adobe patches 8 bugs in popular PDF apps

by Shanmuga

"Adobe Systems Inc. patched its Reader application for the fifth time this year, plugging eight security holes, including one that was reported to the company more than five months ago.

Read the full article →

Firefox hits record market share

by Shanmuga

"Firefox has been playing with the 20% market share mark for some time now. Back in July we reported that the browser has begun jumping over 20% on several days and this trend has solidified since then. In October, Firefox’ average market share as measured by Net Applications was 19.97%, up 0.51 points from 19.46%

Read the full article →

Microsoft Plugs Critical Security Holes

by Shanmuga

"Microsoft released four "critical" security bulletins for September’s Patch Tuesday, including a massive update for Microsoft Windows GDI+ that affects multiple products.

Read the full article →

Google issues first patches for Chrome

by Shanmuga

"Just days after it rolled out Chrome, Google Inc. issued an update after Vietnamese security researchers reported a critical vulnerability in the beta browser.

Read the full article →

Google Chrome: Security and Privacy Implications

by Shanmuga

Google’s new browser named Chrome and released as a beta version is drawing flak for its (non)implementation of browser security and privacy.

Read the full article →

Seven online security blunders to avoid

by Shanmuga

“By now most personal-computer users know not to post their Social Security numbers on the Internet or respond to Nigerian e-mails seeking help with suspicious bank-account transfers. "But many people still make mistakes that compromise their computer’s security or invite identity thieves.

Read the full article →

Opera fixes critical flaws

by Shanmuga

"Browser maker Opera released an update to its software on Thursday, closing serious security vulnerabilities in the versions of its software for Windows, Mac, Linux and other operating systems.

Read the full article →

Vulnerabilities: Do not open untrusted files using VLC Media

by Shanmuga

"g_ has discovered a moderately critical vulnerability in VLC Media Player, which potentially can be exploited by malicious people to compromise a user’s system.

Read the full article →

Alert: Enable "Always use https" setting in GMail

by Shanmuga

Google last week introduced a security setting designed to protect GMail users sessions from getting hijacked. The setting is provided as an option in the "settings" page of your GMail account. If you haven’t enabled the "Always use HTTPS" option, it’s time to do so now due to the emergence of an automated cookie stealing

Read the full article →

Another list of tips to protect your Home computer

by Shanmuga

Couple of days back, I came across A Few Tips to Help You Protect Your Home Computer compiled by Deborah Hale in the Handler’s Diary over at SANS Internet Storm Center.

Read the full article →

Vulnerabilities: An Illustrated Guide to the Kaminsky DNS Vulnerability

by Shanmuga

"The big security news of Summer 2008 has been Dan Kaminsky’s discovery of a serious vulnerability in DNS. This vulnerability could allow an attacker to redirect network clients to alternate servers of his own choosing, presumably for ill ends. This all led to a mad dash to patch DNS servers worldwide, and though there have

Read the full article →

Vulnerabilities: DNS security flaw also affects email

by Shanmuga

"A newly discovered flaw in the Internet’s core infrastructure not only permits hackers to force people to visit Web sites they didn’t want to, it also allows them to intercept e-mail messages, the researcher who discovered the bug said last week.

Read the full article →

Security: Facing the pain of passwords

by Shanmuga

"Passwords are like the common cold: they induce headaches, no one is immune, and there is no cure in sight. But they are necessary in this era of digital data, where everything from paying bills to passing notes to sharing photos is done online through user accounts that require some proof that you really are

Read the full article →

Security: Windows Vista SP1 available for download…do you need it?

by Shanmuga

"PC World’s in-house tests with the RTM version of Vista SP1 have shown mixed results. In file copying tests, the service pack proved noticeably faster than the original Vista OS. Other tests, on the other hand, showed little improvement (or actually performed worse than Vista without the service pack). For instance, our preliminary file compression

Read the full article →

Security: Apple releases massive security update

by Shanmuga

"Known as APPLE-SA-2008-03-18 Security Update 2008-002, it contains more than 40 specific fixes for versions of Mac OS X. The most significant updates include Apache, ClamAV, Emacs, OpenSSH, PHP, and X11. To get the update, go to the Software Update pane in System Preferences, or Apple’s Software Downloads Web site. The update "is recommended for

Read the full article →

Vulnerabilities: Malicious subtitle file could harm VLC media player

by Shanmuga

"A flaw in the widely-used open-source VLC media player could allow an attacker to execute harmful code on a PC. The problem stems from a buffer overflow that can occur when the player processes subtitle files used for movies, according to a security advisory.

Read the full article →

Encryption: TrueCrypt developers consider complaint against Microsoft

by Shanmuga

"The developers of the TrueCrypt open source encryption tool are considering submitting a complaint against Microsoft to the EU Commission if Microsoft is not prepared to lay open the Windows hibernation API. From version 5.1 TrueCrypt supports hibernation for encrypted system partitions.

Read the full article →

Security: The top five internal security threats

by Shanmuga

"Criminal attacks are particularly likely to happen from the inside: one recent study estimated that 90 percent of criminal computer crimes were committed by employees of the company attacked.

Read the full article →