Monthly Archives: July 2010

On Monday Microsoft has announced that it will make public an out-of-band patch to fix the high-profile .lnk file vulnerability (CVE-2010-2568). Holly Stewart, MMPC, wrote today: “As mentioned earlier this month, the Microsoft Malware Protection Center (MMPC), along with other …

Patrick Jordan, our researcher who seems to live in places on the Internet where NOBODY should go, has begun to notice a trend. Billing through cell phone accounts is a growing vector for social engineers. Beware of any online contest, …

Ok. Just because they put out a news release, doesn’t make them legitimate.Our good friends over at PhishLabs drew our attention to this one: a rogue security product called Shield EC that is using mainstream public relations techniques to make …

Jack.tv is a cable TV network in the Philippines. It seems someone has been doing their best to change the channel: Click to Enlarge They haven’t tampered with the frontpage of the site – they’ve placed the above splash elsewhere, …

Sunbelt Software is raising its Worldwide Threat Level to “high” in light of unpatched vulnerabilities in three widely-used applications or systems and the Defcon and Black Hat conferences in Las Vegas this week. Internet users should:– be sure anti-virus applications …

Monitoring is a vast subject and it is often difficult to think about everything you can monitor; even worse is deciding what is worth the cost of being monitored and what can safely be ignored.  To top it all off …

“Facebooik.com” – not good A domain registered in a tiny town in Georgia is presenting fumble-fingered Facebook fans with few fun-filled hours of diversion: It’s one of those interminable contest sites we’ve all come to know and love. If you …

The Register is reporting that police in Slovenia have arrested a 23-year-old man, who went by the handle Iserdo, and charged him with writing and selling the code that has been used to create the Mariposa botnet. Iserdo and two …

Top 15 Most Vulnerable Applications Which were the most vulnerable applications in the first half of 2010? Below are the results after processing vulnerability data feeds as of July 7, 2010 from National Vulnerability Database (NVD), which is the U.S. …

There are large amounts of videos on Youtube right now advertising a site called Bestpadmedia(dot)com. Although some are being whacked by Youtube due to “terms of use violation” there’s still a lot of them online. The videos claim the site allows …