- BlackBerry Storm vs. the iPhone
- Digg's Kevin Rose: "We have to do better"
- Blogger warns: "Nortel doesn't make it out alive"
- Financial quagmire bringing out the scammers
- Verizon plays with the wrong e-mail addresses
Newsletters | Podcasts | Chats | Opinions | RSS Feeds | This Week In Print | IT Careers | Community | Reports | Downloads | Slideshows | New Data Center
Partner Sites:Application Performance Solutions | App Performance | Networking Solution | SafeGuard Enterprise Solution Center | SOA | Test your Web Filter | Value of WDS
Jason Meserve provides up-to-the-minute news on vendor security alerts and fixes.
Four Microsoft security patches due next week
Microsoft plans to fix critical bugs in its Word, Publisher and Jet database software next week. The software vendor also
plans to release a less-critical update for its antivirus products, fixing a flaw that attackers could use to launch a denial
of service (DoS) attack against products such as Windows Live OneCare and Microsoft Forefront Security. IDG News Service,
05/08/2008.
Microsoft's advance advisory
**********
Three new related patches from Ubuntu:
GStreamer Good Plugins (denial of service, code execution)
vorbis-tools (denial of service, code execution)
Speex (denial of service, code execution)
**********
Four new updates from Gentoo:
InspIRCd (buffer overflow, denial of service)
Linux Terminal Server Project (multiple flaws)
Firebird (information disclosure)
eGroupWare (multiple flaws)
**********
Today's malware news:
SQL injection continues
A few weeks ago we blogged about mass SQL injections. After that it went quiet but the attacks have now started again, this
time pointing to several different domains. F-Secure blog, 05/10/2008.
BLACK HAT - Hackers find a new place to hide rootkits
Security researchers have developed a new type of malicious rootkit software that hides itself in an obscure part of a computer's
microprocessor, hidden from current antivirus products. IDG News Service, 05/09/2008.
**********
From the interesting reading department:
HSBC lost server with customer data
HSBC has admitted losing a server containing data on 159,000 customers. The server went missing on 26 April from its Kwun
Tong district branch in Hong Kong during renovation work on 26 April. The server held customer names, account numbers, transaction
amounts and transaction types, the banking giant confirmed. Computerworld UK, 05/09/2008.
Spy bots that share information being built for military
A group of U.S. Marines hunker down beside a building, enemy fire coming at them from somewhere up ahead. One soldier reaches
into his pack and pulls out a few robots that look like large bugs. The bots fly down the street, sending back images that
show where the enemy troops are hiding, how many there are and what weapons they're using. Computerworld, 05/10/2008.
Stolen laptop recovered with Back To My Mac
Cool story of how a stolen Mac was recovered using remote access technology. Score one for the geeks! Engadget, 05/11/2008.
Jason Meserve is multimedia editor at Network World.
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment