Spyware Warrior Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
 
FAQ :: Search :: Memberlist :: Usergroups :: Register
Profile :: Log in to check your private messages :: Log in

Security news for week of 10/11/04

 
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Security Notices & News
View previous topic :: View next topic  
Author Message
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Sun Oct 10, 2004 2:36 pm    Post subject: Security news for week of 10/11/04 Reply with quote

GAPS REMAIN IN WI-FI SECURITY
Sadly the new WPA2 security spec won't make your wireless LAN
invulnerable.
http://www.net-security.org/news.php?id=6258

BILL IMPOSES PRISON TIME OVER 'SPYWARE'
The House on Thursday passed the second bill in three days that would
outlaw "spyware," irritating software that quietly monitors the
activities of Internet users.
http://www.net-security.org/news.php?id=6259

DESKTOP FIREWALLS BRING SECURITY CLOSER TO HOME
Not just for the perimeter anymore, a firewall for your desktop can
help block and control hostile code and intruders from entering
machines on the LAN, in remote offices or on the road. Find out why
you need one.
http://www.net-security.org/news.php?id=6256

IMPROVE SECURITY WITH WIRELESS
Anyone who says wireless networks are insecure just isn't paying
attention.
http://www.net-security.org/news.php?id=6251

WHAT YOU SHOULD KNOW ABOUT FIREWALLS
It's 2 a.m. Do you know what your PC is doing? If not, you're
probably not running a firewall to protect your system from hackers
and malcontents.
http://www.net-security.org/news.php?id=6252

SHIFTING CYBER THREATS MENACE FACTORY FLOORS
A new report says that external attackers have overtaken insiders as
the most likely cyber threat to remote-controlled factory equipment.
http://www.net-security.org/news.php?id=6253

CA DELIVERS VIRUS PROTECTION FOR WINDOWS XP EMBEDDED
Computer Associates announced the general availability of eTrust
Antivirus for Microsoft Windows XP Embedded - the industry's first
virus protection solution designed specifically for Microsoft's
componentised version of the Windows XP operating system.
http://www.net-security.org/news.php?id=6249

ISPS NOT FORCED TO SECRETLY COOPERATE WITH THE FBI ANYMORE
A New York judge did the right thing last week when he threw out a
USA-PATRIOT Act provision that forced ISPs to secretly cooperate with
the FBI, and gave them no obvious avenue for appeal.
http://www.net-security.org/news.php?id=6250

DRIVE-BY HACKERS GET RESIDENTS' HACKLES UP
The specter of drive-by computer hackers cruising upscale Scottsdale
neighborhoods to cherry-pick wireless Web systems has residents
worried about a new method of privacy intrusionv
http://www.net-security.org/news.php?id=6243

HOUSE PASSES BILL IMPOSING HEFTY FINES OVER 'SPYWARE'
Companies and others that secretly install "spyware" programs on
people's computers to quietly monitor their Internet activities would
face hefty federal fines under a bill the House passed Tuesday.
http://www.net-security.org/news.php?id=6233

A HISTORY OF GLOBAL HACKING
Hacking is not a new problem nor is it isolated to one country.
http://www.net-security.org/news.php?id=6234

WHO'S EAVESDROPPING ON YOUR CELL?
If you thought that your little chit chats on your mobile phones are
safe from eavesdropping, think again, as security experts have
revealed that the new generation of mobile phones are highly
vulnerable to hackers.
http://www.net-security.org/news.php?id=6230

SCHNEIER: SECURITY OUTSOURCING WIDESPREAD BY 2010
Bruce Schneier talks about the safety of open source vs. closed
source, the future of security management and spread of blogs.
http://www.net-security.org/news.php?id=6231

NORTH KOREA'S COMPUTER HACKERS TARGET SOUTH AND US?
North Korea has trained as many as 600 computer hackers to be capable
of launching a cyber-war on South Korea, the US or Japan, South
Korea’s defence ministry said on Monday.
http://www.net-security.org/news.php?id=6226

OUTSOURCING FIRMS WARNED OF 'SIGNIFICANT COST OF SECURITY'
International enterprises cannot afford to ignore the potentially
serious IT security implications that arise when they decide to
outsource core business functions to third party providers, industry
analysts have warned.
http://www.net-security.org/news.php?id=6220

CONSUMERS UNCONCERNED ABOUT CYBERTHREATS
A study conducted by the National Cyber Security Alliance as part of
its Cyber Security Awareness Month found that many users grossly
underestimate the danger of cyber attacks. Three out of ten think
they are more likely to be struck by lightning than hit by hackers.
http://www.net-security.org/news.php?id=6218

AND THE SCAMS GO ON...
People continue to fall prey to phishing scams regularly.
http://www.net-security.org/news.php?id=6213

CALIFORNIA GOES AFTER SPYWARE
The Golden State passes a law aimed at cracking down on what some
feel is the internet's next scourge -- spyware. But critics say it's
only a partial step toward protecting consumers.
http://www.net-security.org/news.php?id=6210

POLL SHOWS MOST AMERICANS CLUELESS ABOUT VIRUS RISKS
About one in three Americans think it's more likely they'll be
audited by the IRS or win the lottery than fall victim to a virus or
worm.
http://www.net-security.org/news.php?id=6208

US CYBERSECURITY CZAR QUITS
US cybersecurity czar Amit Yoran announced his resignation on Friday
after a year in the job.
http://www.net-security.org/news.php?id=6206

Symantec Norton AntiVirus Reserved Device Name Handling Vulnerability
http://www.net-security.org/vuln.php?id=3747

RealPlayer pnen3260.dll Heap Overflow Vulnerability
http://www.net-security.org/vuln.php?id=3745
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Mon Oct 11, 2004 12:39 pm    Post subject: Reply with quote

. Old Data Never Dies...
eSecurityPlanet columnist Bob Hillery walks us through a digital forensics case. How do
you protect and find the data you're looking for? And how do you keep your computers from
being used to steal the company's information in the first place?
http://nl.internet.com/ct.html?rtr=on&s=1,1631,1,ajaf,h7nf,9s3s,a9gz
------------------------------------------------------------
2. Web Servers, BIND Top 2004 Vulnerabilities List
The SANS institute breaks down the top 10 vulnerabilities in Windows and Unix systems.
http://nl.internet.com/ct.html?rtr=on&s=1,1631,1,ltjt,gbiu,9s3s,a9gz
------------------------------------------------------------
3. FTC Pursues Former Spam King in Court
The agency files for restraining order against Wallace to halt his spyware activities.
http://nl.internet.com/ct.html?rtr=on&s=1,1631,1,6rk0,7ofq,9s3s,a9gz
------------------------------------------------------------
4. Epok Targets Web Services Security
The firm launches an enhanced platform aimed at wireless carriers and the government
sector.
http://nl.internet.com/ct.html?rtr=on&s=1,1631,1,ebg5,2f6w,9s3s,a9gz
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Mon Oct 11, 2004 6:46 pm    Post subject: Reply with quote

School of Secure Hard Knocks
[October 8, 2004] FEATURE: Colleges and universities are cramming for security
tests, as they face the tech challenges that come with vulnerable systems and
enterprising students.
Read the article:
http://nl.internet.com/ct.html?rtr=on&s=1,163n,1,82eh,bsuj,9s3s,a9gz
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Mon Oct 11, 2004 6:49 pm    Post subject: Reply with quote

Entertainment Industry Looks For Supreme Relief
[October 8, 2004] The movie and music industry is taking its P2P case to the
highest court in the land.
Read the article:
http://nl.internet.com/ct.html?rtr=on&s=1,163n,1,m3ub,a66k,9s3s,a9gz

FTC Pursues Former Spam King in Court
[October 8, 2004] The agency files for restraining order against Wallace to
halt his spyware activities.
Read the article:
http://nl.internet.com/ct.html?rtr=on&s=1,163n,1,93kp,ydm,9s3s,a9gz
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Tue Oct 12, 2004 5:12 pm    Post subject: Reply with quote

1. 10/12: Bagle-AC Worm Sends Fake Message
W32/Bagle-AC is a member of the W32/Bagle family of email worms.
http://nl.internet.com/ct.html?rtr=on&s=1,165q,1,c9me,5j5b,9s3s,a9gz

10/12: Bagz-B Worm Hidden in Attachment
Worm_Bagz.B is a memory-resident worm that arrives via email as an attachment.
http://nl.internet.com/ct.html?rtr=on&s=1,165q,1,aqca,6a2z,9s3s,a9gz
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Wed Oct 13, 2004 10:03 am    Post subject: Reply with quote

MICROSOFT ISSUES 10 SECURITY BULLETINS, SEVEN CRITICAL |
SearchSecurity.com

IT managers have 10 Microsoft security updates to sift through for
October, seven of them critical.
http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1015235,00.html?track=NL-102&ad=492654
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Wed Oct 13, 2004 12:20 pm    Post subject: Reply with quote

Microsoft's 'Critical' Patches Include IE Fix
October's batch of patches includes a monster fix for the Internet Explorer browser and
critical updates for SMTP, NNTP, Excel and Windows Shell.
http://nl.internet.com/ct.html?rtr=on&s=1,16ac,1,hz0z,g2h8,9s3s,a9gz
------------------------------------------------------------
2. PayPal Scrambling To Fix Site Glitch
Payment site back online after a back-end Web site improvement update brought the house
down the past few days, but access has been intermittent.
http://nl.internet.com/ct.html?rtr=on&s=1,16ac,1,5wfa,4jpt,9s3s,a9gz
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Wed Oct 13, 2004 12:43 pm    Post subject: Reply with quote

Want to cure the spyware problem? The answers lie in technology
rather than in laws that are as sensible as banning toad
licking.
http://www.nwfusion.com/columnists/2004/101104backspin.html?nl

Chinese police pay informers for Internet porn leads, 10/11/04

China's Ministry of Public Security Sunday handed cash rewards
to informers who have provided Chinese police with tips about
pornographic Web sites, the ministry said in a statement.
http://www.nwfusion.com/news/2004/1011chinepolic.html?nl

SANS unveils Top 20 security vulnerabilities, 10/08/04

IT security and research organization The SANS Institute Friday
is set to release its annual Top 20 list of Internet security
vulnerabilities, with the intention of offering organizations at
least a starting point for addressing critical issues.
http://www.nwfusion.com/news/2004/1008sansunvei.html?nl

New trojan program squashes adware, 10/06/04

A new Trojan horse program that attacks and removes troublesome
advertising software, known as "adware," is circulating on the
Internet, according to anti-virus company Symantec.
http://www.nwfusion.com/news/2004/1006newtroja.html?nl

Newsletter: Numerical Web ID codes allow data leakage, 10/05/04

A reader wrote to me with a concern that I want to bring to the
attention of all the Webmasters among my readers.
http://www.nwfusion.com/newsletters/sec/2004/1004sec1.html?nl
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Wed Oct 13, 2004 11:30 pm    Post subject: Reply with quote

Cumulative security update for Internet Explorer. As well as all the
previously released patches, it also corrects eight new vulnerabilities,
some of which are critical. More information is available in bulletin
MS04-38, at:
http://www.microsoft.com/technet/security/bulletin/ms04-038.mspx

- Critical security flaw in Windows Shell, which affects Windows NT Server
4.0, Windows 2000, Windows XP, Windows Server 2003, Windows 98 and Windows
Millennium Edition (ME). This could allow arbitrary code to be run on the
affected system. More information is available in bulletin MS04-37, at:
http://www.microsoft.com/technet/security/bulletin/ms04-037.mspx

- Critical vulnerability in NNTP, which could allow arbitrary code to be run
on Windows NT Server 4.0, Windows 2000, Windows Server 2003, Exchange Server
2000 and Exchange Server 2003. More information is available in bulletin
MS04-36, at:
http://www.microsoft.com/technet/security/bulletin/ms04-036.mspx

- Critical security problem in SMTP, which could allow arbitrary code to be
run. It affects Windows XP 64-Bit Edition Version 2003, Windows Server 2003
and Exchange Server 2003. More information is available in bulletin MS04-35,
at:
http://www.microsoft.com/technet/security/bulletin/ms04-035.mspx

- Critical vulnerability in compressed folders that could allow arbitrary
code to be run on Windows XP and Windows Server 2003. More information is
available in bulletin MS04-34, at:
http://www.microsoft.com/technet/security/bulletin/ms04-034.mspx

- Critical security problem in Excel which could allow arbitrary code to be
run. This vulnerability affects Office 2000, Office XP, Office 2001 for Mac
and Office v.X for Mac. More information is available in bulletin MS04-33,
at: http://www.microsoft.com/technet/security/bulletin/ms04-033.mspx

- Update for Windows NT Server 4.0, Windows 2000, Windows XP, Windows Server
2003, Windows 98 and Windows Millennium Edition. This update resolves four
vulnerabilities, some of which are critical. More information is available
in bulletin MS04-32, at:
http://www.microsoft.com/technet/security/bulletin/ms04-032.mspx

- Important vulnerability in NetDDE, which could allow arbitrary code to be
run. This security flaw affects Windows NT Server 4.0, Windows 2000, Windows
XP, Windows Server 2003, Windows 98 and Windows Millennium Edition. More
information is available in bulletin MS04-31, at:
http://www.microsoft.com/technet/security/bulletin/ms04-031.mspx

- Important security flaw in the handling of XML WebDAV messages, which
could cause a Denial of Service. The systems affected by this vulnerability
are: Windows 2000, Windows XP, Windows Server 2003 and Internet Information
Services (5.0 to 6.0). More information is available in bulletin MS04-30,
at: http://www.microsoft.com/technet/security/bulletin/ms04-030.mspx

- Important vulnerability in the Windows NT Server 4.0 RPC library, which
could allow information disclosure and Denial of Service. More information
is available in bulletin MS04-29, at:
http://www.microsoft.com/technet/security/bulletin/MS04-029.mspx

NOTE: The addresses above may not show up on your screen as single lines.
This would prevent you from using the links to access the web pages. If this
happens, just use the 'cut' and 'paste' options to join the pieces of the
URL.
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Thu Oct 14, 2004 3:25 pm    Post subject: Reply with quote

MICROSOFT SETS NEW PATCH TUESDAY RECORD | SearchSecurity.com

Microsoft's flurry of security bulletins this week made October the
busiest patch month on record. That's particularly bad news if you're
running an older version of Windows.
http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1015690,00.html?track=NL-102&ad=494543
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
wawadave
Warrior Obsessed


Joined: 25 Jan 2004
Last Visit: 24 Jul 2009
Posts: 3448
Location: Illegitimus non carborundum

PostPosted: Fri Oct 15, 2004 3:08 pm    Post subject: Reply with quote

RIM Refutes BlackBerry Buffer Overflow Claim
RIM gets security researcher to update their claims about previously identified issue.
http://nl.internet.com/ct.html?rtr=on&s=1,16gg,1,37m5,7nzg,9s3s,a9gz
------------------------------------------------------------
2. Microsoft Releases Scanning Tool
New tool released as Beckham Trojan kicks around.
http://nl.internet.com/ct.html?rtr=on&s=1,16gg,1,8nsi,8edh,9s3s,a9gz
_________________
RFID tags! SPYWARE
Tired of proprietary Cor-pirationware?
http://www.openoffice.org/
Installing Vista http://tinyurl.com/2l9qyd
Back to top
View user's profile Send private message Send e-mail Visit poster's website
Display posts from previous:   
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Security Notices & News All times are GMT - 8 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group