Subscribe to Malware Help RSS Feed RSS Feed - Subscribe to Malware Help. Org on Twitter Follow on Twitter - Malware Help YouTube Channel YouTube Channel - Subscribe to Malware Help by Email Subscribe by Email

microsoft

Microsoft: Don’t press F1 key in Windows XP

by Shanmuga

"Microsoft told Windows XP users today not to press the F1 key when prompted by a Web site, as part of its reaction to an unpatched vulnerability that hackers could exploit to hijack PCs running Internet Explorer (IE). In a security advisory issued late Monday, Microsoft confirmed the unpatched bug in VBScript that Polish researcher

Read the full article →

Microsoft investigates unpatched flaw that affects users running IE7 and IE8

by Shanmuga

"Microsoft on Sunday confirmed it’s investigating an unpatched bug in VBScript that hackers could exploit to plant malware on Windows XP machines running Internet Explorer (IE). The flaw could be used by attackers to inject malicious code onto victims’ PCs, said Maurycy Prodeus, the Polish security analyst with iSEC Security Research who revealed the vulnerability

Read the full article →

Fake antivirus malware gets hoax Microsoft endorsement

by Shanmuga

"A new scareware package tries to sell bogus antivirus software to its victims using an apparent endorsement of the software by Microsoft. A variant of the infection that urges users to buy DefenceLab antivirus software now also directs them to a Microsoft support page where a display describes a new threat and recommends using DefenceLab

Read the full article →

Microsofts Do and donts for Passwords

by Shanmuga

"The three basic things to remember when creating a strong password are the following: 1. Use a combination of letters, numbers and special characters. Also, remember that some dictionaries used in attacks have a "l33t" mode, which allows common letter/number-to-special character substitutions (like changing a-@, i-1 ,o-0 and s=$, for example, password = p@$w0rd). Therefore,

Read the full article →

A Security Wish List for Microsoft Internet Explorer 9

by Shanmuga

"Just what is in store for Internet Explorer 9 from a security perspective remains unknown. But in light of Microsoft’s announcement, some security pros shared their thoughts with eWEEK about what they would like to see in the upcoming version of the Web browser.

Read the full article →

Microsoft denies backdoor in Windows 7

by Shanmuga

"Microsoft today denied that it has built a backdoor into Windows 7, a concern that surfaced yesterday after a senior National Security Agency (NSA) official testified before Congress that the agency had worked on the operating system. "Microsoft has not and will not put ‘backdoors’ into Windows," a company spokeswoman said, reacting to a Computerworld

Read the full article →

10 Reasons Why Windows Security Is Better than Ever

by Shanmuga

"Windows isn’t very well known for providing the kind of security users really want. Windows has long been the favorite target of malicious hackers that have run amok in the operating system. Over the past few years, things have only gotten worse for Microsoft. Until Service Pack 2 was released for Windows XP, users were

Read the full article →

Windows 7 may be secure, but are Windows users safe?

by Shanmuga

"Windows 7 users got a nice surprise on Tuesday when Microsoft released its first set of security patches since unveiling the new operating system last month. Of the 15 bugs patched, none affected Windows 7. When Microsoft launched Windows 7, it was billed as the company’s most secure release ever — the culmination of a

Read the full article →

How to block Microsoft SpyNet

by Shanmuga

Microsoft Security Essentials Microsoft Security Essentials is the latest avatar of Microsoft antispyware. It is a signature based free antimalware software that can be used to protect your system against potential threats, such as viruses, spyware, and other potentially unwanted software.

Read the full article →

Microsoft unveils shield for critical Windows flaw

by Shanmuga

"With attack code that exploits a critical unpatched bug in Windows likely to go public soon, Microsoft wants users to run an automated tool that disables the vulnerable component. The bug in SMB (Server Message Block) 2, a Microsoft-made network file- and print-sharing protocol that ships with Windows, affects Windows Vista, Windows Server 2008 and

Read the full article →

Microsoft sues scareware scammers

by Shanmuga

"Microsoft filed lawsuits against five companies Thursday, accusing them of using malicious advertisements to trick victims into installing software on their computers. The company is suing DirectAd Solutions, Soft Solutions, qiweroqw.com, ote2008.info and ITmeter, saying that these companies have used ads…

Read the full article →

Microsoft patches the Autorun hole

by Shanmuga

Microsoft has released patches to its Windows operating system which restricts the AutoRun entries in the AutoPlay dialog to only CD and DVD drives. Windows includes a feature known as “AutoRun” which lets automatic arbitrary code execution when removable devices are connected to the computer. Inserting a CD, DVD, USB and Firewire device or even

Read the full article →

Microsoft Warns of Attacks on PowerPoint Vulnerability

by Shanmuga

"Hackers are launching attacks against an unpatched vulnerability in Microsoft Office PowerPoint, the company’s popular presentation program.

Read the full article →

Russian Hacker leaves message for Microsoft in Trojan code

by Shanmuga

"Here’s a new way to get Microsoft to pay attention to you: Slip a brief message into the malicious Trojan horse program you just wrote. That’s what an unnamed Russian hacker did recently with a variation of Win32/Zlob, a Trojan program victims are being tricked into installing on their computers.

Read the full article →

Microsoft’s Stance on Piracy Affects Us All

by Shanmuga

"As it stands today, Microsoft’s policy allows pirated copies to receive patches automatically through AutoUpdate, yet forbids them from downloading them directly from Microsoft’s Web site. Despite some tweaks to its policy, however, the company continues to make it difficult for users of pirated versions of its operating system to patch reliably.

Read the full article →

Microsoft explains seven-year-old patch delay

by Shanmuga

"Microsoft Corp. late yesterday explained why it had been unable to patch a seven-year-old bug until recently, saying that it was only in the last year that it figured out how to fix the flaw without breaking most network-based applications.

Read the full article →

Microsoft Patches Four Windows Security Holes

by Shanmuga

"Microsoft today released a pair of security updates to plug at least four security holes in its Windows operating systems and other software. The software patches are available through Windows Update or via Automatic Updates.

Read the full article →

Bots exploiting Microsoft’s latest RPC flaw

by Shanmuga

"Several antivirus vendors are reporting on Monday a new round of exploitation of Microsoft’s out-of-cycle security bulletin last month. The flaw in MS08-067, which affects how remote procedure calls (RPC) are handled in the Windows Server Service, has the potential to become a fast-spreading worm, according to Microsoft. But experts predict any exploitation will be

Read the full article →

Microsoft Plugs Critical Security Holes

by Shanmuga

"Microsoft released four "critical" security bulletins for September’s Patch Tuesday, including a massive update for Microsoft Windows GDI+ that affects multiple products.

Read the full article →

Privacy: Microsoft slams Google on privacy

by Shanmuga

""Google’s a great company, got some great products, but you know in some respects I think Google is where Microsoft was 7 or 10 years ago," Peter Cullen, Microsoft’s chief privacy strategist told CNET News sister site ZDNet Australia.

Read the full article →

Encryption: TrueCrypt developers consider complaint against Microsoft

by Shanmuga

"The developers of the TrueCrypt open source encryption tool are considering submitting a complaint against Microsoft to the EU Commission if Microsoft is not prepared to lay open the Windows hibernation API. From version 5.1 TrueCrypt supports hibernation for encrypted system partitions.

Read the full article →

Microsoft fixes a dozen critical Office flaws in four patches

by Shanmuga

"Microsoft released its March 2008 security bulletin, which includes four bulletins, all deemed critical by Microsoft. The most serious of these affects Microsoft Excel, which alone has six specific "Common Vulnerablities and Exposures" vulnerabilities noted, one of which has been exploited in the wild.

Read the full article →

Malware: US-CERT Warns of Microsoft Windows CE Trojan

by Shanmuga

"The WinCE/InfoJack Trojan hijacks the infected device’s serial number, operating system and other information and uploads it to an attacker-controlled Web site.

Read the full article →