- Microsoft Windows chief decries standards grandstanding
- The 5 best, and 5 worst, features of Google Chrome OS
- Federal government using PS3 to crack pedophile passwords
- 10G Ethernet cheat sheet
- Top 10 free Windows tools for IT pros, at a glance
Jason Meserve provides up-to-the-minute news on vendor security alerts and fixes.
Mozilla Messaging patches Thunderbird bugs
Mozilla Messaging, a subsidiary of the nonprofit Mozilla Foundation, yesterday patched five bugs in its Thunderbird e-mail
client to fix flaws that were disclosed more than a month ago. Computerworld, 05/02/08.
**********
iDefense warns of flaw in Akamai Download Manager
A design error in Akamai's Java-based Download Manager tool could be exploited to run malicious code on an affected system.
Akamai has released a patch for the the flaw.
**********
Three new updates from Debian:
cpio (denial of service, code execution)
wordpress (multiple flaws)
**********
Today's malware news:
Google adwords fuel new URL attack
Google adwords account holders are being targeted by criminals out to trick them into handing over credit card information
using a clever URL spoof that has gained popularity in recent weeks. TechWorld, 05/02/08.
Botnet attacks military systems
Security researchers have discovered a complex spamming scheme that hijacks users' PCs in order to attempt to send junk mail
via university and military systems. TechWorld, 05/02/08.
Beware: New MSN Messenger Password Stealing Program In The Wild
A new hacking program is in circulation that lets hackers create executable files easily and with no fuss. When the victim
is tricked into running the infection file, a connection is made to the attacker's PC and they can steal any MSN login details
stored on the PC. The SpywareGuide Greynets Blog, The SpywareGuide Greynets Blog, 05/02/08.
**********
From the interesting reading department:
Microsoft hack pack spells trouble
Security through obscurity has never worked, and Microsoft's COFEE will encourage hackers to find the holes. Network World,
05/01/08.
How one site dealt with SQL injection attack
The massive wave of SQL injection attacks that started striking Microsoft-based Web sites around the world more than a week
ago claimed as one of its victims Autoweb, a U.K.-based advertising and marketing site. Network World, 05/01/08.
7 dirty secrets of the security industry
Corporate IT executives need to beware the seven dirty secrets of the security industry that can undermine the safety of business
networks, a security expert told attendees at Interop Las Vegas. Network World, 05/01/08.
Jason Meserve is multimedia editor at Network World.
Rss FeedRss Feed
The Leader in Network Knowledge
Comment