Spyware Confidential has an article and there are more details at the spyware warrior. Of a particularly bad spyware infestation triggered by the visit to ONE web site.
Category: Computers
-
New Orleans Datacenter STILL up and running
Of course the thoughts and prayers of the nation and indeed the world are with those in the Gulf Coast area of the U.S. and particularly the situation in New Orleans. I ran across an amazing story of a webhost that is based in New Orleans and their datacenter is still running. They are keeping a blog of the goings on there.
-
A virus writer talks….
Along the lines of “Wishlist of Spyware Slime” that I referred to last week, it appears there’s a chat transcript out from before the arrest of the suspected writer of the mytob and zotob worms. The security fix has the details.
-
OpenSuse 10 beta 3 review and screenshots
Yesterday (or day before) Mandriva had a beta 3 come out, today I see OpenSuse has released the third beta in the release cycle for version 10. It sounds like most of the changes have not been user-visible, but more “under the hood”. There is a bit of a review at tuxmachines.org with some nice screenshots.
-
Serious PHP flaw
PHP which is a widely used scripting language for webpages has been found to have a serious vulnerability. The Inquirer is reporting on the announcement at hardened-php.net that the vulnerabilities are in the XML-RPC for PHP and PEAR XML-RPC libraries. This is apparently an eval() vulnerability similar to one earlier in the year.
-
Update on Long registry entries bug
Incidents.org has an update on yesterdays story of very long registry entries not being visible in most registry tools (regedit among others.) They have an updated list of what does and does not read these long keys. They’ve alluded to nasties in the wild that are already taking advantage of this and have confirmed that the length is greater than 254 characters. On handler has written a program to scan the registry for these stealth entries
-
The end of antivirus definition updates?
Well, frankly, there has been talk of the end of definition based antivirus scanning for years. You see the achilles heel of any AV scanner is that it has to have signatures of what known viruses look like, so there will always be a reflex window, where there’s a new unknown virus that people are getting infected with before there’s a reaction from the antivirus vendors. The supposed cure for this dillema was hueristic scanning which was supposed to detect things that “looked” like they might be viruses. A noble goal, but along the path it’s proven innefective mostly, either too aggressive and tagging EVERYTHING as potentially viral, or really unnoticable.
-
Zotob may affect XP Service pack 1 systems
There’s an eweek article indicating the zotob family of worms could affect Windows XP SP1 systems as well as the Windows 2000 systems that are currently affected. Since the original outbreak it’s been reported that there were certain circumstances that an XP system could be compromised, this seems to back that up.
-
Virtual Server 2005 R2 to support Linux
Microsoft’s Virtual Server 2005 R2 will be supporting both Linux and Solaris as guest operating systems in the coming release. The coming release of Virtual Server 2005 R2 will also include 64-bit support.