This really could be used to encyrpt web traffic over any “hostile” network. Here’s what I’m talking about. Laptop using wireless. Within our internal network we would LIKE all our web traffic to be encrypted at least from the laptop to a wired host. (From there to the outside world it will be open.) At […]
F-secure has some details on a dangerous payload for the Nyxem.E virus. (The Nyxem.E virus is very similar to the Email-Worm.Win32.VB.bi that was talked about earlier in the week.) In fact, this virus seems to be spreading fairly well (not the blockbuster spread of older email viruses, but it is spreading.) Anyway, according to f-secure […]
I’ve seen several reports on F-Secure’s security bulletin about a code execution vulnerability. The announcement on the f-secure blog mentions that it affects several versions of their products on Windows and Linux. Send article as PDF
Sunbelt blog has the details on a spysherriff clone called pesttrap (distributed through pesttrap.com). I guess clone is not the best word as they’re calling it a “variant” which suggests to me that perhaps more has changed than just the name. SpySherriff, of course, is one of the “rogue antispyware” programs or “wolves in sheeps […]
I normally don’t follow updates for Oracle, as I don’t have an installation running Oracle to support. Right now, I’m quite glad of that… The Security Fix is talking about the 82 patches they released Tuesday in their quarterly patch release. The fact that they released 82 patches is not what’s disturbing though. According to […]
F-secure has information on a fairly aggressive new email virus. Their name for it is VB.bi although it’s aliases are…. W32.Blackmal.E@mm, WORM_GREW.A, W32/Nyxem-D, Email-Worm.Win32.VB.bi depending on which AV vendor you check with. It’s a worm as well, in that it tries to spread through remote shares. It attempts to disable antivirus software as well. Here […]
Bugtraq has an interesting post which picks up on a note in Stephen Toulouse’s latest entry on the WMF vulnerability. When I first read the post I was more interested in the way he was responding to allegations of the flaw being an intentional backdoor, but the above bugtraq post points out and makes points […]
The last time I used openvpn, it was version 1.x and only supported a single connection per running process. So, if you had a server that you wanted to support multiple clients connecting, you had to… have multiple ports open to the outside world (unless you did something VERY fancy), and had to have as […]
This sounds like a serious vulnerability. The SecurityFix is reporting on a very serious vulnerability in AOL. The problem affects AOL version 8.0, AOL version 8.0+, and AOL version 9.0 Classic. The vulnerability could allow a remote attacker to take control of a users PC. Basically, all that would be needed is for the AOL […]
It seems the WMF patch that was recently released for Windows 2000 and XP (and 2003) has been ported to Microsoft Windows Vista Beta…. This makes it the first security patch for Vista. eweek has an article on the issue. So, if you’re beta testing Vista, get it updated ASAP. Hopefully though, if you’re beta-testing […]
Bookmark this site now by pressing Ctrl+D
You are currently browsing the archives for the Security category.
