Product Guides- Microsoft research projects to improve our lives
- Outlook '09
- IBM employees buzzing about layoff rumors
- AT&T builds $23M IPv6 network for U.S. military
- Is VoIP dead?
Jason Meserve provides up-to-the-minute news on vendor security alerts and fixes.
Adobe fixes 'clickjacking' flaw
Adobe Systems has released a new version of its Flash Player software, fixing a critical security bug that could make the
Internet a dangerous place for Web surfers. IDG News Service, 10/15/2008.
**********
Attack unleashed for new Microsoft mainframe bug
Hackers have released code that could be used to take control of a server running Microsoft's Host Integration Server 2006,
used to connect mainframe applications to Windows PCs. The software was released Wednesday as part of the Metasploit hacking
toolkit. IDG News Service, 10/16/2008.
Related Microsoft patch
**********
Three new patches from rPath:
postfix (privilege escalation)
mono (cross site scripting)
**********
Today's malware news:
Fake "Parcel Delivery" Text Message: Don't Fall For It!
New text attack convinces the victim they have a parcel "awaiting delivery," then encourages them to ring an Austrian number.
Once connected, an automated system asks the victim to enter their number, but then repeats it back to the victim with numbers
intentionally incorrect. At that point, the victim wastes time and effort going round in circles with a system designed to
beat them every time. The SpywareGuide Greynets Blog, 10/17/2008.
Twitter and MSN: Driving Malcode Distribution
We recently came across a bot that merged MSN Messenger link spam with Twitter to get users to download malcode. Twitter malcode
is nothing new, but this one adds a twist to those that monitor IM link spam bots. You have to do an extra level or two of
link analysis to figure it out. Security to the Core, 10/17/2008.
**********
From the interesting reading department:
How to exploit a down economy to get special security needs satisfied
When there's not quite the right fit in network security gear to meet your needs and goals, you might wind up settling for
some distant second choice, if one exists. But enterprise technology managers are proving you can get what you want by pushing
vendors to innovate -- a trend that may be growing because of the economic downturn. Network World, 10/16/2008.
Up next: Cellular botnets, cyber militias
The ability of malware writers to consistently stay ahead of those seeking to stop them has been a constant factor in the
security industry over the past several years. Looking to 2009, don't expect that situation to change, security analysts and
vendors concede glumly. In fact, with cybercrime getting more organized and as more money is poured into malware development,
it will be a challenge to stop cybercrooks from pulling even further ahead, according to the authors of a report on emerging
cyberthreats for 2009 and beyond. Computerworld, 10/18/2008.
Jason Meserve is multimedia editor at Network World.
Rss FeedRss Feed
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2009 Network World, Inc. All rights reserved. |
Comment