Computer Security Articles

This post has been shared by Scott Guthrie Thanks Scott for posting this workaround. Important: ASP.NET Security Vulnerability A few hours ago we released a Microsoft Security Advisory about a security vulnerability in ASP.NET.  This vulnerability exists in all versions of ASP.NET. This vulnerability was publically disclosed late Friday at a security conference.  We recommend [...]

Read the full story

  Sign up for other newsletters | Unsubscribe | Update your profile Spyware and viruses: What’s the difference? Spyware and viruses are both malicious software, but they’re different. Learn how, and how Microsoft Security Essentials can help protect you from both. Then find answers to these common questions about Microsoft Security Essentials: Do I still [...]

Read the full story

Hello. This is a request to confirm the inclusion of the address rajdeep.chakraborty.malwareinfo@blogger.com in the "Analytical Digest" mailing list. To subscribe, click the following link mailto:analysis_digest_html_en_subscribe@list.kaspersky.com?subject=OK-KL-c9cba2c2744c6ac4-SGN and send the generated message. If the link does not open, you can reply to this message by manually removing “Re:” and inserting OK in its place in the [...]

Read the full story

Today, Kaspersky detect one of Adobe file, there is ImageReady.exe, this is main executable for Adobe ImageReady. Kaspersky detect this file as Trojan.Win32.Agent.eqzb. This should be false positive! Kaspersky has clarify this on their forum. If your Kaspersky detect this file, please update your database to the latest.

Read the full story

There have been many discussions in various Forums, Blogs and Message Boards that the Web has now become the primary vehicle for the Malwares to enter our networks. For more details about such a presentation, please refer to the WebCast “Web Attacks: How Hackers Create and Spread Malware”, presented by Chris McCormack (Web Security Expert [...]

Read the full story

One of my articles have been published in the January 2010 edition of the Hakin9 International IT Security Magazine. The articles title is The Fear Factor – Study of a new genre of malwares called “Scarewares” Edition Link: http://hakin9.org/magazine/995-hardware-keylogger-a-serious-threat View full post on .:: Malware Info ::.

Read the full story

What is the purpose of this alert? Microsoft has been made aware of an issue with a McAfee DAT file update – released Wednesday, April 21, 2010 – that has been causing stability issues on Windows XP client systems. The symptom is caused by a false-positive detection on a core Windows file (svchost.exe). Once the [...]

Read the full story

Security  Articles Microsoft Malware Protection Center  Website | RSS Feed MSRT May Threat Reports and Alureon  - 22-May-2010 MSRT May Threat Reports and Alureon   - 22-May-2010 Microsoft Security Response Center MSRC  Website | RSS Feed Security Advisory 2028859 Released  - 18-May-2010 MSRC Ecosystem Strategy  Website | RSS Feed Strengthening the Security Cooperation Program  - 17-May-2010 Project Omega Launch at AusCERT  - 17-May-2010 Security [...]

Read the full story

Sign up for other newsletters | Unsubscribe | Update your profile Get no-cost antivirus, antispyware, and other security tools Concerned about your computer becoming infected with a virus, spyware, or other malicious software? Who isn’t? One quick, easy way that you can help protect your PC is by downloading Microsoft Security Essentials. It provides real-time [...]

Read the full story

This link provides a central site for comprehensive reference to MS offerings on Security Perspective and Guidance   http://www.microsoft.com/security/manager/   Guidance   The Effective Security Practices Whitepaper Series Risk Management Frameworks Justifying Security Spend Mobility and Security – Policies and Practices Effective Practices for Cloud Security Social Networks and Enterprise Security The Microsoft Security Intelligence [...]

Read the full story

This is in reference to the below blog post (Tuesday, April 28, 2009 9:37 AM) in MSRC: http://blogs.technet.com/msrc/archive/2009/04/28/changes-in-windows-to-meet-changes-in-threat-landscape.aspx This is a MUCH REQUIRED modification in Windows OS. This is definitely a very positive move and would help the entire Microsoft User Base. Protection from a third party Antivirus software is required only when we have [...]

Read the full story

W32.Neeris.C is yet another Worm that exploits the Microsoft Server Service RPC buffer overflow vulnerability described in the Security Advisory MS08-067 (KB958644). It also targets the USB Removable drives to propagate. W32.Neeris.C drops a driver %System%\drivers\sysdrv32.sys that works as a rootkit. It starts a Service called “Play Port I/O Driver” by creating the below registry [...]

Read the full story

WATCH BILL GATES AT THE FIFTH ANNIVERSARY CELEBRATION OF MICROSOFT RESEARCH, INDIA Friday 24th July 2009 Bill Gates will be in India to inaugurate the fifth year anniversary celebrations of the Microsoft Research India and attend a symposium on “Research and Innovation – The Keys to India’s Future” on Friday, 24 July. The chief guest [...]

Read the full story

Yahoo! and Microsoft announced an agreement that will improve the Web search experience for users and advertisers, and deliver sustained innovation to the industry. Microsoft will now power Yahoo! search while Yahoo! will become the exclusive worldwide relationship sales force for both companies’ premium search advertisers.Under this agreement, Yahoo! will focus on its core business [...]

Read the full story

Microsoft Security Bulletin MS09-034 – Critical Cumulative Security Update for Internet Explorer (972260) http://www.microsoft.com/technet/security/bulletin/ms09-034.mspx This security update is being released out of band in conjunction with Microsoft Security Bulletin MS09-035, which describes vulnerabilities in those components and controls that have been developed using vulnerable versions of the Microsoft Active Template Library (ATL). As a defense-in-depth [...]

Read the full story

SQL Server 2008 R2 is the next generation of the Microsoft SQL Server database platform, planned for release in the first half of calendar year 2010. The R2 release brings significant new capabilities and enhancements that can help your business keep pace with today’s growing and changing data management needs. Increase productivity and reduce data [...]

Read the full story

August 2009 Bulletin Release Summary of Microsoft’s Security Bulletin Release for August 2009 http://blogs.technet.com/msrc/archive/2009/08/11/august-2009-bulletin-release.aspx Hi everyone, This month, we released nine security bulletins. Five of those are rated Critical and four have an aggregate severity rating of Important. Of the nine updates, eight affect Windows and the last one affects Office Web Components (OWC). It [...]

Read the full story

New Microsoft Security  Articles (August-09) Microsoft Information Security Tools Team  Website | RSS Feed LDAP Injection and Mitigation  - 11-Aug-2009 Microsoft Malware Protection Center  Website | RSS Feed Win32/FakeRean and MSRT  - 12-Aug-2009 Password Stealers are Top Threats in China and Brazil  - 11-Aug-2009 Microsoft Security Response Center MSRC  Website | RSS Feed August 2009 Security Bulletin Webcast Video and Customer Q [...]

Read the full story

Microsoft Information Security Tools Team  Website | RSS Feed Encoding Cascading Style Sheet Strings  - 21-Aug-2009 Automating Windows Firewall Settings with C#  - 21-Aug-2009 Microsoft Malware Protection Center  Website | RSS Feed Winwebsec on YouTube  - 21-Aug-2009 Security Bulletins Comprehensive  Website | RSS Feed Microsoft Security Bulletin Summary for July 2009  - 19-Aug-2009 MS09-028 – Critical: Vulnerabilities in Microsoft DirectShow Could Allow [...]

Read the full story

Microsoft has at last released patches for Windows XP & Vista which restricts the AutoRun entries in the AutoPlay dialog to only CD and DVD drives …   Ø       Update for Windows XP (KB971029)   Ø       Update for Windows Vista (KB971029)   I had blogged previously about the upcoming AutoRun Patch that was supposed to [...]

Read the full story

Study of a new genre of Malwares called “Scarewares” Depending on their characteristic, Malwares can be broadly classified into various types. Most of us are probably aware of the terms like Virus, Trojan, Spyware, Adware etc. However, on the basis of certain behavioral traits, further classification of these broad types is possible. For example, based [...]

Read the full story

Microsoft Security Advisory (975191) Microsoft is investigating new public reports of a vulnerability in the FTP Service in Microsoft Internet Information Services (IIS) 5.0, Microsoft Internet Information Services (IIS) 5.1, and Microsoft Internet Information Services (IIS) 6.0. The vulnerability could allow remote code execution on affected systems that are running the FTP service and are [...]

Read the full story

Zeus is an extremely effective bot builder kit designed and developed to be sold in underground markets as a cybercrime kit, enabling buyers to easily build identity theft related spyware that evades many security solutions. The writers have been known to do custom work as well, all for a price. The bots produced by the kit [...]

Read the full story

A recently reworded post on Microsoft’s attempt to pursue malware distribution in the courts makes it appear that something permanent and substantial has happened in anti-malware efforts (demonstrated by a legal and collaborative effort called “Operation b49″ to takedown Waledac C&C domains). Because of the complications (legal and otherwise) delaying server and domain takedowns, it’s great to see [...]

Read the full story