The just-released Patch Tuesday for December includes a fix for the actively exploited Win32k Elevation of Privilege Vulnerability (CVE-2018-8611). The flaw allows an attacker to exploit a bug in the Windows Kernel and run arbitrary code to install programs; view, change, or delete data; or create new accounts with full user rights. It is also pointed out as likely being used with other bugs in targeted attacks.
Read MoreThe extension granted in March for the DNS servers run by the Internet Systems Consortium (ISC) for victims of the DNS Changer malware expires in a month. To recap: after the FBI (working with a cadre of private industry partners, including Trend Micro researchers) disconnected the ESThost/Rove Digital “rogue” DNS infrastructure in New York and…
Read MoreMore than a year ago, Trend Micro threat researchers uncovered a network of over 900 rogue DNS (Domain Name System) servers related to the ZLOB Trojan family. We gave examples showing that these rogue DNS servers are part of click fraud and leakage of personal information. Just recently, however, we discovered that this network is…
Read MoreWhile this is completely unrelated to any particular malware, there is a rather disconcerting DNS cache-poisoning vulnerability that has surfaced which deserves the attention of any and every organization on the planet that operates their own DNS servers. The importance of determining if you are vulnerable, and getting the vulnerability fixed quickly, is becoming more…
Read MorePhotobucket, one of cyberspace’s more popular image-sharing Web sites, was attacked by the Turkish hacker group NetDevilz, as reported in forums, discussion boards, and security blog posts. The Register also reported of the attack. Hackers were said to have used a Domain Name Server (DNS) hack that leads anyone who accesses photobucket.com to be redirected…
Read More