Subscribe to Malware Help RSS Feed RSS Feed - Subscribe to Malware Help. Org on Twitter Follow on Twitter - Malware Help YouTube Channel YouTube Channel - Subscribe to Malware Help by Email Subscribe by Email

Security

Top five cyber threats in 2008

by Shanmuga

"Security threats in the cyber scene have grown at an extraordinary rate in the past year. This year will also see a rise in spyware and rouge ware threats to computer security besides the general virus and worms problem. Below is the list of prominent threats we can see in 2008.

Read the full article →

10 dumb things users do that can mess up their computers

by Shanmuga

"We all do dumb things now and then, and computer users are no exception. Inadvertently pressing the wrong key combination or innocently clicking OK in the wrong dialog box can change important settings that alter a computer’s behavior or even crash the system.

Read the full article →

Bruce Schneier on fighting security FUD

by Shanmuga

"Security expert Bruce Schneier has long been critical of so-called security ‘theatre’ – policies and products tailored to provide the perception of security rather than tackling actual security risks. In his keynote address to Linux.conf.au this week he said information is our only effective security weapon, but that the computer security industry must not ignore […]

Read the full article →

Google Mail vulnerable to sidejacking despite SSL

by Shanmuga

"According to security researcher and CEO of Errata Security Robert Graham, Google’s JavaScript code makes HTTP requests in the background via an XMLHttpRequest. By default, these requests are SSL-encrypted—but if SSL fails, they change to nonencrypted mode. When a user attempts to connect to a WiFi hotspot, Google Mail attempts to connect with SSL both […]

Read the full article →

Critical flaws found in MySpace, Facebook ActiveX controls

by Shanmuga

"Bugs in the ActiveX controls on popular social networking sites Facebook and MySpace can be used by hackers to snatch control of Windows PCs, security experts said today. Initially made public by researcher Elazar Broad on the Full Disclosure security mailing list, the vulnerabilities are in a pair of ActiveX controls that Facebook and MySpace […]

Read the full article →

Security: Men overconfident about online security

by Shanmuga

"Most men believe that they know more about online security than women, but new research suggests that both sexes are equally vulnerable to malware and other threats..

Read the full article →

Security: Macs under attack

by Shanmuga

"Viruses, worms and Trojans have probably done as much for Apple’s ascendancy in recent years as any single advertising campaign. Talk to any recent defector from Windows and invariably the security issue will be among the reasons for making the switch. Compared to the patch-obligatory PC experience, a war zone of zero-day exploits and encrypted […]

Read the full article →

Mozilla confirms Firefox proof of concept information leak vulnerability

by Shanmuga

"Mozilla’s security chief Window Snyder has confirmed a proof of concept information leak flaw in Firefox–even fully patched versions. Snyder confirmed the issue in a blog post. The proof of concept vulnerability was highlighted by researcher Gerry Eisenhaur on Jan. 19. In a nutshell, Firefox leaks information that can allow an attacker to load any […]

Read the full article →

Hacking: Researcher cracks Yahoo CAPTCHA software

by Shanmuga

"A security researcher has claimed that Yahoo’s system for blocking automated access to its systems – the CAPTCHA image-recognition system – has been effectively cracked. CAPTCHA (Completely Automated Public Turing test to tell Computers and Humans Apart) systems are used by Yahoo, as well as Google, Microsoft and others, to stop automated systems from registering […]

Read the full article →

Security: Top 10 Cybersecurity Menaces For 2008

by Shanmuga

"The SANS Institute on last Monday released its take on the top 10 cybersecurity threats for 2008. Leading the list is a rise in the number of attacks on Web browsers, the proliferation of botnets, and sophisticated cyberespionage. Twelve noted cybersecurity experts — Stephen Northcutt, Ed Skoudis, Marc Sachs, Johannes Ullrich, Tom Liston, Eric Cole, […]

Read the full article →

Vulnerabilities: First QuickTime bug of 2008

by Shanmuga

"Luigi Auriemma, a 27-year-old Italian researcher who broke the news of the flaw on Thursday, said that the most recent version of QuickTime is prone to a buffer overflow that, if successfully exploited, gives the attacker free rein over a user’s computer. He posted information and proof-of-concept code on security site, milw0rm, his own website […]

Read the full article →

Vulnerabilities: Microsoft Flaw could lead to worm attack

by Shanmuga

"Microsoft has fixed a critical flaw in the Windows operating system that could be used by criminals to create a self-copying computer worm attack. The software vendor released its first set of patches for 2008 on Tuesday, fixing a pair of networking flaws in the Windows kernel. Microsoft also released a second update for a […]

Read the full article →

Security: What’s In Store for 2008?

by Shanmuga

"Microsoft predicts that in 2008 criminals will continue to use social engineering tactics in fresh and devious ways. Social engineering refers to the tactics criminals use to manipulate people into taking action online that enables criminals to steal their money or personal information.

Read the full article →

Vulnerabilities: RealPlayer flaw raises security flags

by Shanmuga

"Security experts are warning users to be vigilant after the disclosure of a new security vulnerability in RealPlayer. The flaw could allow an attacker to remotely execute code on a victim’s machine.

Read the full article →

Vulberabilities: ID Theft Vulnerability Haunts Firefox

by Shanmuga

"Israeli security researcher Aviv Raff has issued a warning for a fairly serious browser vulnerability that exposes Firefox users to identity theft attacks. Raff, a well-respected hacker who regularly reports security problems in software products, discovered a way to use a browser bug to lure Firefox users into entering login credentials into a maliciously rigged […]

Read the full article →

Security: Microsoft launches Security Vulnerability Research and Defense blog

by Shanmuga

"The Security Vulnerability Research and Defense blog, introduced Thursday, provides in-depth technical information and ways security professionals can protect an organization from vulnerabilities. The blog will be updated the second Tuesday of every month, called "Patch Tuesday," which is when Microsoft releases security updates for Windows and other software.

Read the full article →

Security: Security’s Biggest Train Wrecks of 2007

by Shanmuga

"The old Chinese curse says, “May you live in interesting times.” It seems a lot of IT security departments may have been cursed in 2007, because most of them have had one “interesting” year. In fact, according to one report, a whopping 85 percent of organizations have experienced at least one reportable breach in the […]

Read the full article →

Security: IT security in 2008 not looking too great

by Shanmuga

"…according to Paul Henry, a longtime industry expert who currently wears the title of "vice president of technology evangelism" at security gateway maker Secure Computing, 2008 is shaping up to be even worse than any year in the past. (Consider that according to McAfee, 2007 was by far the worst year ever for malware exploits, […]

Read the full article →

Vulnerabilities: Serious Flash vulns menace at least 10,000 websites

by Shanmuga

"Researchers from Google and a well-known security firm have documented serious vulnerabilities in Adobe Flash content which leave tens of thousands of websites susceptible to attacks that steal the personal details of visitors.

Read the full article →

Vulnerabilities: Antivirus software as a malware gateway

by Shanmuga

"Critical vulnerabilities have been found this year in virtually all antivirus products. But the danger of protective software, of all things, mutating into a gateway for pests is still largely underestimated. Antivirus software is not only the most important protection against pests arriving from the Internet, it could also be one of the most dangerous […]

Read the full article →