Blog

April 2010

Microsoft Security Bulletin MS10-025 has been re-released on 27 April 2010. This security update, released on 13 April 2010, was withdrawn on 21 April 2010 due to quality issues. This bulletin released on 13 April 2010 was supposed to address “Remote Code Execution” vulnerability in Microsoft Windows 2000 Server running...
I am proud to announce that we have released Quick Heal Admin Console 4.2. Quick Heal Admin Console is our flagship product for Small & Medium Business, and Enterprise segment. It is a complete and cost-effective, centralized network security solution for networks. The release of Quick Heal Admin Console 4.2,...
Of late, one of the most talked about gadgets is iPad. It is estimated that over a million iPads are already sold till date. With such a huge customer base in short span coupled with ever increasing craze for the gadget, malware writers couldn’t have asked for better targets. Malware...
Hackers are up at it again and blackhat Search Engine Optimization (SEO) is again being employed to exploit the breaking news. This time hackers are exploiting an issue with McAfee’s anti-virus product that has caused thousands of computers around the world to reboot repeatedly. If you search McAfee issue, cybercriminals...
Microsoft Security Bulletin MS10-025 has been updated as it has undergone a major revision increment. This bulletin was a part of Microsoft’s security bulletin summary for April 2010. The original security update is no longer available due to quality issues. Microsoft will issue an update for this software once the...
Microsoft is working on a fix to get rid of Internet Explorer 8 vulnerability that can enable serious security attacks against websites that are otherwise safe. Ironically, the flaw resides in XSS (Cross-site scripting) filter, a protection feature in Internet Explorer 8 that’s designed to prevent XSS attacks against sites....
Last week I had written a blog (see “Disguised PDF attack possible”) about possible attack using simple technique in Adobe Reader. It is being observed now that malware writers of Zeus malware are using the “/launch” command line parameter in Adobe Reader to launch a malicious code without exploiting an...
Today I received a SMS message with following text: CONGRATS-YOU-WON-700,000-GBP- IN 2010-UK-TOYOTA WORLDWIDE- INT’L-MMOBILE-DRAWS-WINNING -#1,TO-CLAIM-YOUR PRIZE CONTACT MR.BEN VIA EMAIL:xxxxxxxx2010@hotmail.com Its not something new, malware writers/ cyber criminals are attempting to fool mobile phone users with such bogus text messages. Mobile user are increasing day by day so is the...
A design flaw in Adobe’s popular PDF format which was published by Didier Stevens in first week of April can be used by hackers to install malwares on users’s computers. Its a policy flaw and not a security vulnerablity in Adobe Reader that could cause this. Researcher demonstrated this attack...
Microsoft has released its security bulletin summary for April 2010. This month Microsoft has released 11 bulletins which comprises of 18 vulnerabilities that have been addressed. Out of the 11 bulletins five bulletins have been rated “Critical”, five bulletins have been rated “Important” and one bulletin has been rated “Moderate”....