infySEC | Demystifying Innovations

Malware Gets Smart with Vodafone Smartphone

dave — Fri, 12 Mar 2010 10:31:33 +0000

Security researchers recently unveiled findings about malware that came preinstalled on a Vodafone mobile phone handset.

See the original post:
Malware Gets Smart with Vodafone Smartphone

More Adobe Exploits in the Wild

dave — Fri, 12 Mar 2010 10:02:37 +0000

Researchers from Microsoft recently unearthed exploits targeting the CVE-2010-0188 vulnerability. On February 16, Adobe released a security advisory describing a vulnerability in Adobe Reader and Acrobat 8.X and 9.X. Once the vulnerability is exploited, attackers gain the capability to perform denial-of-service (DoS) attacks on affected systems.

See the original post here:
More Adobe Exploits in the Wild

Spam and Phishing Landscape: March 2010

admin — Thu, 11 Mar 2010 17:39:32 +0000

In February, spammers continued to use the news of the earthquake in Haiti and the recent earthquake in Chile as another vector to utilize.

More here:
Spam and Phishing Landscape: March 2010

Backdoor.Sykipot At Work

dave — Thu, 11 Mar 2010 14:31:13 +0000

Following our blog, 0-Day attack on IE6: JS.Sykipot doesn’t spare retired software , covering the recent IE 0-day , we thought it might be interesting to look at an attack in the wild using this vulnerabili

Continued here:
Backdoor.Sykipot At Work

Allaple Virus Author Sentenced

Thu, 11 Mar 2010 09:30:12 +0000

An Estonian virus writer has been sentenced to jail in Harju, Estonia. The author of the Allaple virus family, 44-year old Mr

The rest is here:
Allaple Virus Author Sentenced

New IE Zero-Day Exploit (CVE-2010-0806)

admin — Thu, 11 Mar 2010 08:07:43 +0000

Hot on the heels of this month’s security bulletin , a new vulnerability exploit surfaces with a malware in tow. The new zero-day vulnerability, as described in a previous post, prompted Microsoft to release Security Advisory (981374) while investigations are still underway

See the original post:
New IE Zero-Day Exploit (CVE-2010-0806)

利用USB充电软件传播的木马Trojan.Arugizer

dave — Thu, 11 Mar 2010 06:53:10 +0000

Zero-Day attack on IE6 – JS.Sykipot Doesn’t Spare Retired Software

admin — Wed, 10 Mar 2010 22:11:15 +0000

Internet Explorer 6 may have taken its path to retirement but it still remains a good target for exploits, as we can see from JS.Sykipot .

See more here:
Zero-Day attack on IE6 – JS.Sykipot Doesn’t Spare Retired Software

Select Your Web Browser(s)

Wed, 10 Mar 2010 15:42:12 +0000

I wasn’t sure I’d see this Browser Choice update : I set my computer’s Regional Options for the United States even though it’s physically located in Finland (I’m an American after all). Regional settings might trump my IP address, I thought… but it seems not. I manually ran Microsoft Update and was provided access to KB976002

See the article here:
Select Your Web Browser(s)

Be Savvy, Get Six Months of Internet Security

Wed, 10 Mar 2010 15:42:12 +0000

F-Secure has an additional blog that launched today. It’s called Safe and Savvy .

Read the original:
Be Savvy, Get Six Months of Internet Security