Spyware, Viruses, & Security forum

General discussion

News - August 20, 2004

Do-It-Yourself Phishing Kits Lead To More Scams

Do-it-yourself phishing kits are freely available on the Internet, a security firm said Thursday, and they will lead to more scams sent to online consumers.
?Until now, phishing attacks have been largely the work of organized crime gangs,? said Graham Cluley, a senior technology consultant at the U.K.-based security vendor Sophos.

?But the emergence of these 'build-your-own phish' kits mean that any old Tom, ****, or Harry can now mimic bona fide banking Web sites and convince customers to disclose sensitive information such as passwords, PIN numbers, and account details.?

http://www.techweb.com/wire/story/TWB20040819S0006

Discussion is locked
You are posting a reply to: News - August 20, 2004
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: News - August 20, 2004
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Hackers enable iTunes swapping

In reply to: News - August 20, 2004

OurTunes allows music to be shared via Apples iTunes jukebox but swappers must be on the same local network. A group of anonymous programmers has released new software that allows music to be swapped via Apple's popular iTunes jukebox.

Like an older piece of software called MyTunes, the newly released OurTunes allows a person to browse complete iTunes libraries on other computers and download songs, either in MP3 or the AAC format preferred by Apple. Songs purchased from the iTunes music store and wrapped in Apple's copy-protection technology cannot be traded.

OurTunes works only among computers that share a network, however. That means that students or employees can swap songs on a local network, but cannot use it to browse computers on the Internet, as happens with file-trading programs such as Kazaa. Still, the software is likely to ring an alarm at Apple and among record company executives, who have waged war against file swapping since Napster's heyday.

http://news.zdnet.co.uk/internet/0,39020369,39164137,00.htm

Collapse -
Attack Pierces Fully Patched XP Machines

In reply to: News - August 20, 2004

Security researchers have identified a new version of the Download.Ject attack that is now being used on the Internet and can compromise fully patched Windows XP machines.

The new version of the attack just appeared Thursday afternoon, and while details are still sketchy, experts say its main purpose is to install a back door on compromised PCs. Users victimized by the attack receive an e-mail or an instant message containing a link directing them to a malicious Web page.

The page is being hosted by a number of different sites, all of which share common "whois" information and appear to be deliberately serving the page, according to Thor Larholm, senior security researcher at PivX Solutions LLC, based in Newport Beach, Calif. The Trojan also will change the start page of the infected PC.

But machines running SP2 (Service Pack 2) for XP are not vulnerable to the new attack. Larholm added that the vulnerabilities exploited in this attack have been known for some time.

http://www.eweek.com/article2/0,1759,1638037,00.asp?kc=EWRSS03119TX1K0000594

Collapse -
Yahoo fixes two flaws in mail system

In reply to: News - August 20, 2004

Yahoo fixed two flaws in its free mail system that could have allowed a malicious user to read a victim's browser cookies and change the appearance of some pages, Yahoo said Thursday.

A representative of the company said the flaws were fixed last month by making changes on the company's Yahoo Mail servers.

"We were alerted of it at the end of May, early June," spokeswoman Mary Osako said. "There ended up being two variations of the issue: One which we could reproduce in a few days and the other which took a lot of effort to reproduce."

http://news.com.com/Yahoo+fixes+two+flaws+in+mail+system/2100-1002_3-5317174.html

Collapse -
Windows XP SP2 May Display the Wrong Icon in Zip Archives

In reply to: News - August 20, 2004

A vulnerability was reported in Windows XP SP2 in the display of files within zip archives. Windows Explorer and Microsoft Internet Explorer may display a file with the wrong icon.

http-equiv reported that a remote user can create a zip archive containing a malicious file so that when the archive is viewed using Windows XP SP2's native Explorer or Internet Explorer archive viewing functionality, the file will show an arbitrary icon.

Michael Young of Miles Technologies subsequently reported that the regedit.exe, winhelp.exe, and explorer.exe filenames will also display their corresponding icon.

http://www.securitytracker.com/alerts/2004/Aug/1010995.html

Collapse -
Appeals Court Upholds Grokster & Morpheus Decision

In reply to: News - August 20, 2004

By DRM Watch Staff


A three-judge panel for the 9th Circuit Court of Appeals on Thursday upheld a lower court ruling that found the providers of Grokster and Morpheus P2P software not guilty of copyright infringement. The judges concurred with the District Court Judge, Stephen Wilson, that the decentralized design of Morpheus and Grokster implies that the software providers have no control over the use of copyrighted material on their networks.

More: http://www.drmwatch.com/legal/article.php/3397561

Popular Forums

icon
Computer Newbies 10,686 discussions
icon
Computer Help 54,365 discussions
icon
Laptops 21,181 discussions
icon
Networking & Wireless 16,313 discussions
icon
Phones 17,137 discussions
icon
Security 31,287 discussions
icon
TVs & Home Theaters 22,101 discussions
icon
Windows 7 8,164 discussions
icon
Windows 10 2,657 discussions

REVIEW

Sublime suburban chariot

High on style and technology, the 2019 Volvo XC90 is an incredibly satisfying everyday crossover.