System administrators are in for a light Patch Tuesday this month as Microsoft released only four bulletins in its monthly security update.
The Microsoft Security Bulletin Summary for November 2011 tackles and addresses multiple vulnerabilities in Microsoft Windows. According to the notice, one of the bulletins is rated "critical", while two are rated "important" and remaining one is rated "moderate."
Majority of the bulletins apply to newer versions of Windows and require a reboot. The critical bulletin only affects Windows Vista, ...
We have been closely monitoring developments on the DUQU malware since our initial blog post when the threat broke the news. And just recently, the Hungary-based security laboratory that initially reported about DUQU released more information that sheds more light into the nature of the said threat.
Their report indicates that a Microsoft Word document that triggers a zero-day kernel exploit was identified as the dropper for DUQU. Upon successful exploitation, the Microsoft Word file drops the installer files that load ...
The usage of exploits in current threats underlines the critical need for users to keep programs updated at all times. Considering the great amount of time people spend on their computers connected to the Internet, web browsers are prime targets for cybercriminals.
This is a technical analysis of a recently discovered vulnerability in one of the most-used web browser: Mozilla Firefox.
This Mozilla Firefox vulnerability was discussed by Charis Rohlf and Yan Lvnitskiy during their presentation, Attacking Clientside JIT Compilers at the ...
Lately, we have been seeing a renewed increase in the volume of spam attacks that utilize an exploit kit, specifically the BlackHole Exploit Kit to trigger a malicious payload. We have seen this in the latest slew of Automated Clearing House (ACH) spam attacks and the more recent spam run related to Steve Jobs's death.
In this post, we will reorient readers on the infection chain of such an attack to help them understand why basic mitigation practices are still ...
After tricking users into viewing ads through a Facebook scam, cybercriminals are again capitalizing on Steve Jobs's death through malicious spam.
We were able to find spam that contain the text, "Steve Jobs Alive" or "Steve Jobs Not Dead."
Another Steve Jobs-related spam we saw was written in Portuguese, which includes a short text about his death:
The text in the message above roughly translates to the following:
Subject: Creator of Steve Jobs of Apple's Mac, iPod and iPad dies
Steve Jobs, died of cancer ...
