|
Check this page frequently for the latest Information Security and Virus News Important News Spammers Offer Verizon Customers Malware-Laden Account Balance Checker (November 13, 2009) Spammers have targeted Verizon customers by sending messages claiming to offer an account balance checker, but which really tricks users into allowing a Trojan horse program to be installed on their PCs. The email messages tell the recipients that their accounts are over the limit. If users open the malware, their computers are not only infected with the Trojan, but can be infected with additional malware through the Zbot botnet.
Microsoft Security Advisory Acknowledges Zero-Day Windows 7 Vulnerability (November 13, 14 & 16, 2009) Microsoft has issued a security advisory acknowledging a zero-day vulnerability in Windows 7. The denial-of-service flaw was disclosed by a researcher last week. Proof-of-concept exploit code for the Server Message Block (SMB) flaw has been published on a blog. The code could be used to render vulnerable systems unreliable or even cause them to stop functioning. However, Microsoft maintains that the flaw could not be exploited to take control of computers or install malware on computers. Users are advised to block Transmission Control Protocol (TCP) ports 139 and 445 to protect their computers until the fix is ready. The flaw also affects Windows Server 2008 R2. http://www.microsoft.com/technet/security/advisory/977544.mspx ISC: http://isc.sans.org/diary.html?storyid=7597 http://news.cnet.com/8301-27080_3-10397759-245.html?part=rss&subj=news&tag=2547-1009_3-0-20 http://www.washingtonpost.com/wp-dyn/content/article/2009/11/16/AR2009111602221.html
Flash Flaw Could be Exploited to Upload Malicious Code to Websites (November 12, 13 & 16, 2009) A vulnerability in Adobe Flash can be exploited to upload malicious code to websites. The flaw could also affect other active content, such as JavaScript. Adobe says the flaw is "unpatchable" and that the problem lies in widely used web design practices that are not secure. Adobe director for product security and privacy Brad Arkin noted that "Sites should not allow user uploads to a trusted domain." http://www.theregister.co.uk/2009/11/13/adobe_flash_wallop/ http://www.scmagazineus.com/researcher-finds-frighteningly-bad-adobe-flash-flaw/article/157734/ http://www.v3.co.uk/v3/news/2253145/researchers-warn-flash-issue ISC: http://isc.sans.org/diary.html?storyid=7585
Malware Spreading Through Phony FDIC eMails (October 27 & 28, 2009) There are reports of phony FDIC notification emails that attempt to infect users' computers with the ZBot Trojan horse program. The emails tell the recipients that their banks have filed for bankruptcy and that the banks' asserts are now under the control of the FDIC. The links offered in the message lead to a page that offers users a chance to see their "personal FDIC insurance file[s]," but which actually installs the Zeus or ZBot Trojan on their PCs. http://voices.washingtonpost.com/securityfix/2009/10/nastygram_spoofed_fdic_bank_fa.html http://www.cio.com/article/506142/New_Spam_Your_Bank_has_Failed_Download_This_Trojan
Two Attacks Target Facebook Users (October 28 & 29, 2009) Phishers have been targeting Facebook users with an attack designed to steal account usernames, passwords and other sensitive information. Victims receive massages indicating their passwords have been reset as a security precaution; an accompanying attachment purports to contain the new password, but actually contains a Trojan downloader program known as Bredolab. Infected computers could potentially become part of a botnet. A second Facebook attack arrives as an invitation to use a new login procedure; the spoofed login page appears with the username already filled in and asks for the password. Users are then prompted to download the update, which is actually a variant of the Zbot Trojan. http://news.cnet.com/8301-17939_109-10384028-2.html?part=rss&subj=news&tag=2547-1009_3-0-20 http://www.scmagazineuk.com/Second-Facebook-spam-email-campaign-detected-this-week/article/156415/ http://blogs.usatoday.com/technologylive/2009/10/facebook-users-under-cyberattack.html http://news.cnet.com/8301-27080_3-10385498-245.html
US-CERT Warns of Blackberry Spyware (October 27, 28 & 29, 2009) The US-CERT has issued a warning about a free spyware program called PhoneSnoop that can be used to bug BlackBerry phones. If the program is installed, one call from a designated number can turn the phones into listening devices, capable of eavesdropping on everything that happens nearby. The person who created the program said it was done as a proof-of-concept to demonstrate the vulnerabilities inherent in being careless with the phones. Users could be tricked into downloading PhoneSnoop onto their phones, or it could be installed by someone else with access to the device. US-CERT recommends that BlackBerry users use passwords to prevent other people from accessing the phones and to allow downloads only from trusted sources. http://www.h-online.com/security/news/item/BlackBerry-spyware-alert-843992.html http://news.cnet.com/8301-27080_3-10384179-245.html http://www.us-cert.gov/current/index.html#blackberry_phonesnoop_application_used_to Firefox Update Fixes 11 Critical Flaws (October 27, 2009) Mozilla has updated its Firefox 3.5 web browser to address 16 security flaws. Firefox 3.5.4 includes fixes for 11 critical flaws, some of which could possibly be exploited to execute arbitrary code. Mozilla also released Firefox 3.0.15, which contains nine fixes, four designated critical. Mozilla plans to discontinue support for Firefox 3.0 in January 2010.
A new variant of scareware has been detected that not only inundates users with exhortations to purchase phony antivirus software called "Total Security 2009," but that also locks users out of nearly all applications until they purchase the disreputable product. Once their PCs are infected with the malware, the only program users can open is Internet Explorer, so they can navigate to the site and make a purchase. http://blogs.usatoday.com/technologylive/2009/10/new-twist-on-scareware-locks-up-your-pc.html http://www.pcworld.com/article/173765/a_rogue_demands_a_ransom.html
Social Networking Sites Provide Data Thieves With Plenty of Raw Material (October 21 & 23, 2009) The growing use of social networking sites is proving to be ripe pickings for identity thieves. On its own, the data may seem innocuous, but it can be cross-referenced with other data to provide potential data thieves with enough information to open credit card accounts or obtain birth certificates. There are also programs available on the Internet that automate the process of collecting and cross-referencing data. http://www.irishtimes.com/newspaper/finance/2009/1023/1224257281899.html
New Gmail Feature Helps Avoid Some Misdirected Messages (October 21 & 24, 2009) Gmail has introduced a new optional feature designed to help prevent sending email to unintended recipients. Dubbed "Got the Wrong Bob?," the feature warns users if they have included a contact not usually associated with the group of recipients to whom they are sending email. Including unintended recipients often occurs because of the auto-complete function, which can fill in contact names after only the first several letters are typed. The feature works only for emails sent to groups; if the message has one intended recipient, users still need to double check that they have entered the correct address. http://www.nytimes.com/2009/10/22/technology/personaltech/22askk-003.html http://technology.timesonline.co.uk/tol/news/tech_and_web/article6888051.ece Comcast Testing Malware Alert Service (October 8, 2009) Adobe Warns of Limited Targeted Attacks on Reader and Acrobat Vulnerability (October 8, 2009) Stolen Laptop Holds Unencrypted Data of 850,000 Doctors (October 6 & 7, 2009)
Information Security Links
|
|
Print Friendly 
|
USF Home > USF Health Home
> Information Systems > Security > Information Security Alerts
|
USF Home > USF Health Home
> Information Systems > Security > Information Security Alerts