InfoSec Philippines

Information Security, Technology News and Opinions

Posts Tagged ‘trojan’

Now its Firefox’s and Opera’s turn (Updated)

Posted by Jaime Raphael Licauco, CISSP, GSEC on December 19, 2008

Firefox and Opera both patched their software this week after new critical vulnerabilities were found in both.

Firefox
Mozilla Foundation Security Advisory 2008-60
Security Focus BID

Opera Security Advisories
http://www.opera.com/support/kb/view/921/
http://www.opera.com/support/kb/view/924/
http://www.opera.com/support/kb/view/920/
http://www.opera.com/support/kb/view/923/

IE Bug Update
(Computerworld) Hackers exploit IE bug with ‘insidious’ Word docs – ActiveX control in Word file downloads malware to unpatched PCs, says McAfee

MS08-078 and the SDL – The MSDN blog has released an analysis of the recent zero day bug of IE. In the end, the author states, “I think this bug is a great example of ‘you will never get the code 100% right, so multiple defenses are critical.'”


⌘+⇧+L and other useful OS X hidden features – Not Security related but I thought that some Mac heads might find this useful.


(Security Park) 44 per cent of EU SMBs have been attacked by cyber criminals
Adobe Flash Player for Linux Security Bulletin and Update
(Heise Security) Keyloggers under the microscope – A team assembled by honeynet specialist Thorsten Holz from the University of Mannheim has published a case study of banking trojans, keyloggers and their dropzones. “Learning More About the Underground Economy: A Case-Study of Keyloggers and Dropzones” is available for download here.
(Security Park) Mobile Phone Security Tips

Advertisements

Posted in ISMS, vulnerability, Whitepapers | Tagged: , , , , | Leave a Comment »

In the News Today, Nov 4, 2008

Posted by Jaime Raphael Licauco, CISSP, GSEC on November 4, 2008

  • TrueCrypt encryption software releases version 6.1..
  • Trojan steals access data for 300,000 bank accounts
  • IT Security.com publishes articles on Zero Day Attacks, Spam Control, and Biometrics Security.
  • Security Focus reports that a Secure Hash competition just started.
  • SC Magazine US reports that Microsoft flaws are down but malware on the rise, Six are arrested for hacking President Sarkozy’s bank account, and Cybercrooks use Google name to spread Facebook worm.
  • ISAF: ISAF issues warning to retailers to tighten up on security procedures
  • NHS Security Awareness Month Initiative At Colchester Hospitals, England
  • SANS Institute And ISACA Announce Online Security Awareness Course And Scholarship
  • Last but not least are a couple of articles on Security Metrics. There’s this great article on Security Metrics by Joel Rosenblatt from last quarter’s (July-Sept 2008) issue of Educause Quarterly. Rosenblatt also has a book review of Andrew Jaquith’s Security Metrics: Replacing Fear, Uncertainty, and Doubt
    Another related book, Complete Guide to Security and Privacy Metrics was reviewed last year by Cheryl Washington.

    Posted in News | Tagged: , , , | Leave a Comment »