Blog

April 2010

Microsoft Security Bulletin MS10-025 has been re-released

0

Estimated reading time: 1 minute

Microsoft Security Bulletin MS10-025 has been re-released on 27 April 2010. This security update, released on 13 April 2010, was withdrawn on 21 April 2010 due to quality issues. This bulletin released on 13 April 2010 was supposed to address “Remote Code Execution” vulnerability in Microsoft Windows 2000 Server running...

Quick Heal Admin Console 4.2 Released

0

Estimated reading time: 1 minute

I am proud to announce that we have released Quick Heal Admin Console 4.2. Quick Heal Admin Console is our flagship product for Small & Medium Business, and Enterprise segment. It is a complete and cost-effective, centralized network security solution for networks. The release of Quick Heal Admin Console 4.2,...

Scammers target iPad users

0

Estimated reading time: 1 minute

Of late, one of the most talked about gadgets is iPad. It is estimated that over a million iPads are already sold till date. With such a huge customer base in short span coupled with ever increasing craze for the gadget, malware writers couldn’t have asked for better targets. Malware...

Hackers exploit McAfee false positive problem

0

Estimated reading time: 1 minute

Hackers are up at it again and blackhat Search Engine Optimization (SEO) is again being employed to exploit the breaking news. This time hackers are exploiting an issue with McAfee’s anti-virus product that has caused thousands of computers around the world to reboot repeatedly. If you search McAfee issue, cybercriminals...

Major Revision of Microsoft Security Bulletin (MS10-025)

0

Estimated reading time: 1 minute

Microsoft Security Bulletin MS10-025 has been updated as it has undergone a major revision increment. This bulletin was a part of Microsoft’s security bulletin summary for April 2010. The original security update is no longer available due to quality issues. Microsoft will issue an update for this software once the...

Microsoft working on a fix for Internet Explorer 8 flaw

0

Estimated reading time: 1 minute

Microsoft is working on a fix to get rid of Internet Explorer 8 vulnerability that can enable serious security attacks against websites that are otherwise safe. Ironically, the flaw resides in XSS (Cross-site scripting) filter, a protection feature in Internet Explorer 8 that’s designed to prevent XSS attacks against sites....

Zeus malware uses the “/launch” command feature of Adobe Reader

0

Estimated reading time: 1 minute

Last week I had written a blog (see “Disguised PDF attack possible”) about possible attack using simple technique in Adobe Reader. It is being observed now that malware writers of Zeus malware are using the “/launch” command line parameter in Adobe Reader to launch a malicious code without exploiting an...

SMS scams

0

Estimated reading time: 1 minute

Today I received a SMS message with following text: CONGRATS-YOU-WON-700,000-GBP- IN 2010-UK-TOYOTA WORLDWIDE- INT’L-MMOBILE-DRAWS-WINNING -#1,TO-CLAIM-YOUR PRIZE CONTACT MR.BEN VIA EMAIL:xxxxxxxx2010@hotmail.com Its not something new, malware writers/ cyber criminals are attempting to fool mobile phone users with such bogus text messages. Mobile user are increasing day by day so is the...

Disguised PDF attack possible

0

Estimated reading time: 1 minute

A design flaw in Adobe’s popular PDF format which was published by Didier Stevens in first week of April can be used by hackers to install malwares on users’s computers. Its a policy flaw and not a security vulnerablity in Adobe Reader that could cause this. Researcher demonstrated this attack...

Microsoft Security Bulletin released for the month of April

0

Estimated reading time: 2 minutes

Microsoft has released its security bulletin summary for April 2010. This month Microsoft has released 11 bulletins which comprises of 18 vulnerabilities that have been addressed. Out of the 11 bulletins five bulletins have been rated “Critical”, five bulletins have been rated “Important” and one bulletin has been rated “Moderate”....