The creativity and resourcefulness of the criminal underground never ceases to amaze me. Granted, these guys have nothing else to do but sit around and come up with new scams, but still, some of these things are truly inspired. Have a look at this Google AdWords phishing scam that has been showing up in recent [...]  read more »

Company is poised to weather tough economy with diverse portfolio and strong customer base, analysts say.

Tools are available to automate VoIP attacks, but the threat remains low until VoIP communications is more pervasive in the workplace.

Here's a quick update on SysProt AntiRootkit. Various improvements were made in SSDT hook detection and hidden files scanning feature. And as a result, here's the latest release - SysProt AntiRootkit v1.0.0.7.

Download SysProt AntiRootkit v1.0.0.7 from MajorGeeks. Your feedback is welcome :)

Supported operating systems: Windows 2000/XP/2003 32 bit.

Here comes the latest version of SysProt AntiRootkit, with various improvements over the previous version. Following list summarizes the improvements in SysProt AntiRootkit v1.0.0.6:

• Improved hidden drivers and services detection
• Improved driver/service disabling feature
• Improved process killing mechanisms
• Added DLLs view for processes (double-click on a process to see loaded DLLs)
• Brand new hidden and locked files/folder scanning
• Color coded display (hidden items are displayed in red color)
   read more »

Spam using malicious attachments and social engineering techniques are targeting computer users in rising numbers, according to security vendor Sophos.

Smaller banks place a priority on protecting customer data and plan to spend more on security technology, according to a new survey.

If you’re planning to bring a new smartphone to market anytime soon, you might want to check with the guys at Independent Security Evaluators first. For the second time in about 15 months, ISE researchers have discovered a security flaw in the operating system of a high-profile smartphone, this time it’s a vulnerability in the [...]  read more »

Here's a new Zlob fake codec variant, which touts itself as DivX codec. The dropper is named as DivXCodecPKG.7.exe and is hosted at http://softawe-download-forpc.com (66.232.126.78). Whois information for this domain can be found here.  read more »

A new Trojan exploiting the Microsoft RPC flaw propagates automatically through networks and finds cached passwords.

Microsoft issued an out of cycle update, plugging a dangerous hole that could be used to craft a worm attack.

Microsoft said it plans to release a critical security update out of its normal patching cycle to plug a hole that affects Windows 2000, XP, and Windows Server 2003.

IBM released updates for its DB2 database management system, fixing a variety of flaws that could be exploited by hackers to bypass security controls.

Cisco Systems warned customers Wednesday that its Adaptive Security and PIX Security appliances contained flaws affecting the security of VoIP and VPN connections.

The new Laptop Guardian tracks the location of lost or stolen laptops and gives IT pros the ability to wipe the hard drive remotely.

Penetration tester Chris Nickerson talks about the fun of penetration tests, the risks of outsourcing and unveils how ethical hacking helps companies with risk assessments.

Layoffs, mergers and acquisitions are forcing some IT security pros to look closely at the internal threats posed by disgruntled employees and mishandled data.

An RPC worm is currently active and running based upon NamedPipes abuse as seen in the advisory from Microsoft. It's extremely important to patch any Windows machine you have under your control, because when RPC and NamedPipes are enabled you are in for one hell of a ride. A moment ago I discovered the list of affected host that are compromised by the RPC Worm. I'll post it here, so anyone can see which hosts are vulnerable.  read more »

There are reports emerging Friday morning of a new Trojan exploiting the MS08-067 RPC vulnerability in Windows that Microsoft patched with an emergency fix yesterday. Known as Gimmiv.A, the Trojan propagates automatically through networks, and also installs a number of small programs on compromised machines. But its most worrisome capability is a feature that enables [...]  read more »

The vulnerability that Microsoft patched today with an out-of-band patch is about as serious as they come, allowing remote code execution on every supported version of Windows. The rare emergency patch–which is the first Microsoft has issued since early 2007–was prompted by the fact that the company has been seeing targeted attacks against the vulnerability [...]  read more »