The famed micro-blogging site was again targeted by an attack that re-directed users to sites that took the usual form of malware laden sites, telling users to install software that in fact did nothing but loaded their system with exploits that is reserved for later by hackers. The detected problems had computer systems made ready for drive-by attacks that would get hold of their user data and log in’s for the many other social sites or those they find saved on the computer’s memory for their use in identity attacks. Much more dangerous that the previous attack which was more the result of a bored teen who wanted to become famous, responsible for the Mikey attack that victimized and spread much like malware, using the saved names in the database sending out copies of itself as it goes out to propagate. That time, there was a mere nuisance message that kept popping up everywhere but this time round, security analysts have found links to organized criminal groups that have been poised to take advantage of the security flaws should it have not been detected. (more…)
Symantec has long been recognized as one of the security software industry’s biggest players yet even these blokes are prone to make errors. Some while back as their developers were out to test some features of their virus scanners and other security software, they unknowingly released a test file without attaching a valid and proper security certificate, and what do you know, they tried to make it disappear. As it turns out, the file was supposed to be a valid test program and in fact it was, yet the lack of the security signature had it recognized as such and as an attempt to infiltrate the computer systems of their clients. On the client side, their firewalls set out and performed what they were designed to do, and that was to block the attempt to allow entry to their protected systems. System administrators and personal users alike got so worried that they flooded the support site for information due to fear of a large-scale hacking attack that may be trying to get into their system. (more…)
Continued from the previous post…………
There is also a facility that allows people to report attack sites that have either been pre-loaded with malware or exploits that can later be used for hacking attacks for whatsoever reason. The way Google searches also tends to expose the power of their bots that also gather data on the overall site statistics and other facts about a particular page where it finds the said information thus becoming a sort of data store for hackers to use. These hackers somehow managed to circumvent security measures in place, intercepting the data the bots gather and stores them in some remote area or hidden site on the web where hackers check regularly for the easiest sites to get into. (more…)
In security that is and the stuff of fiction has become reality when hackers developed a bit that uses it’s immense search capabilities to do their dirty work for them. Everybody knows that when it comes to searching for information on the internet, nobody can come close to Google’s never ending banks of data center servers and storage racks. (more…)
You’d better beware of a new worm that’s literally worming its way into infamy: the Conficker (AKA Downadup) worm.
A prolific new worm has spread to infect more than 3.5m Windows PCs, according to net security firm F-secure. The success of the Conficker (AKA Downadup) worm is explained by its use of multiple attack vectors and new social engineering ruses, designed to hoodwink the unwary into getting infected. The worm uses a complex algorithm to develop a changing daily list of domains which infected machines attempt to establish contact with. Hackers need only register one of these possible names to establish contact with the botnet established by Conficker. The tactic is designed to frustrate attempts by security watchers to dismantle the command and control network associated with compromised machines.
Read the full article here.
That’s 3.5 MILLION PCs folks. Which is why it really pays to be careful about the site you go to and the files you download, or even the emails that you open. Virus, trojan and worm developers are becoming more clever in disguising their creations nowadays, so you should always be wary of unsolicited emails and messages and downloads that are offered to you. Also, have a good anti-virus that you update regularly, as well as a anti-spyware and malware software. Run these programs regularly to remove any suspicious files that are just waiting for you to open them. These scans may seem tedious, but it’ll be doubly hard if a destructive worm such as Conflicker gets into your system and ruins it.
The anti-virus companies are doing their darnest, but there’s something they won’t be able to factor in when doing their software, the human error.
From Jan. 1 to Nov. 25, the top 100 attack programs infected 53% of their victims by duping them into downloading something from the Internet. An additional 12% of the infections tracked globally were caused by users opening e-mail attachments.
Just 5% of the infections were related to an exploit of a software vulnerability, said Trend’s analysis.
“That’s something we can’t engineer against,†said Ferguson. It’s also is why Trend Micro and other security vendors have stepped away from a pure anti-virus detection and deletion model, and instead have been bringing in other protective features, such as domain reputation ranking and URL filtering, to their products.
Educate and be vigilant regarding malicious websites and downloads, if you do, you’ll be a whole lot safer.
Source
Image source: www.mysafepc.net
Avast Home Edition 4.8.1229.80923 is a free antivirus, and it was released this year September 23, 2008. Even if it was just released less than a month (since the date today is Oct 8), 30,937,233 people have already downloaded this program at Download.com. Even the Editor of Download.com has given Avast Home Edition a perfect score 5/5. It just proves that Avast Home Edition is a program worthy for our attention. This program has the following workings, according to the publisher’s description: On demand scanner with skinnable simple interface, choose what you want to scan and just press the play button; On access scanner, special providers to protect the most of available e-mail clients; Instant messaging–ICQ, Miranda; Network traffic–intrusion detection, lightweight firewall; P2P protection for Kazaa, BitTorrent; Web shield–monitors and filters all HTTP traffic; NNTP scanner–scans all Usenet Newsgroup traffic and all operations with files on PC; Boot time scanner–scans disks in the same way and in the same time as Windows CHKDSK does.
Now even portable music players may get viruses as well. According to the Kaspersky Lab website, they have discovered a virus, named Podloso which behaves in this manner:
If the virus is installed on the iPod by the user, the virus then installs itself to the folder which contains program demo versions. Podloso cannot be launched automatically without user involvement.
Once launched, the virus scans the device’s hard disk and infects all executable .elf format files. Any attempt to launch these files will cause the virus to display a message on the screen which says “You are infected with Oslo the first iPodLinux Virus”.
Fortunately, this is only a “proof of concept” virus, which is created for the sole purpose of proving that it is possible to infect a specific platform, and it does not spread on its own; the user has to install Linux on the iPod and save the virus to the iPod for the device to become infected.
The Service Pack 1 update of Windows Vista will be released on March 2008 and it is expected that in this operating system update, there will be numerous system enhancements and improvements in functionalities. The main dilemma of this anticipated system update deals with its effects on third-party applications, specifically the anti-virus programs. John Hawes, Virus Bulletin’s Technical Consultant said that software which encounter problems in connection to the SP1 update can be replaced by using more updated and compatible versions of these software.
Some of the security applications that are affected by the SP1 update are Zone Alarm Security Suite 7.1, Trend Micro Internet Security 2008 and BitDefender Internet Security 10.
