Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years.

Thanks,

CNET Support

Alert

NEWS - February 19, 2016

Feb 19, 2016 5:10PM PST
Comodo Antivirus Tech Support Feature Lets Anyone Connect to Your PC

Google Project Zero security researcher Tavis Ormandy has discovered that one of Comodo's tech support tools packed with many of the company's security products leaves the door open for attackers to connect with admin privileges on the user's PC.

Ormandy noticed users complaining online about a VNC server that started on their Windows systems where they installed Comodo Antivirus, Comodo Firewall, or Comodo Internet Security.

The researcher investigated the issue further and discovered that to blame for this problem was a remote desktop tool called GeekBuddy, which Comodo was bundling with its security software.

Continued : http://news.softpedia.com/news/comodo-antivirus-tech-support-feature-lets-anyone-connect-to-your-pc-500648.shtml

Related:
More insecure security software: Comodo’s on-by-default VNC app
http://arstechnica.com/security/2016/02/more-insecure-security-software-comodos-on-by-default-vnc-app/

Discussion is locked

- Collapse -
Dell to Customers: Report ‘Service Tag’ Scams
Feb 19, 2016 5:12PM PST

Brian Krebs @ his "Krebs on Security" blog:

Computer maker Dell is asking for help in an ongoing probe into the source of customer information that appears to have somehow landed in the laps of fraudsters posing as Dell computer support technicians.

KrebsOnSecurity readers continue to report being called by scammers posing as Dell support personnel who offer “proof” that they’re with Dell by rattling off the unique Dell “service tag” code printed on each Dell customer’s PC or laptop, as well as information from any previous (legitimate) service issues the customer may have had with Dell.

Continued : http://krebsonsecurity.com/2016/02/dell-to-customers-report-service-tag-scams/

- Collapse -
(NT) sounds like dell got hacked
Feb 19, 2016 5:36PM PST
- Collapse -
IRS warns of 400 percent surge in tax-related phishing email
Feb 19, 2016 5:22PM PST

The number of tax related phishing and malware incidents has exploded this US tax season, the US Internal Revenue Service (IRS) has warned on Thursday. All in all, there has been an increase of nearly 400 percent.

“There were 1,026 incidents reported in January, up from 254 from a year earlier,” they shared. “This year’s 1,389 incidents have already topped the 2014 yearly total of 1,361, and they are halfway to matching the 2015 total of 2,748.”

This year’s tax filing season opened on January 14 and ends on April 18, and according to IRS Commissioner John Koskinen, this dramatic jump in these scams comes at its busiest time.

Continued : https://www.helpnetsecurity.com/2016/02/19/irs-warns-of-400-percent-surge-in-tax-related-phishing-emails/

@ IRS:
Consumers Warned of New Surge in IRS
https://www.irs.gov/uac/Newsroom/Consumers-Warned-of-New-Surge-in-IRS-Email-Schemes-during-2016-Tax-Season-Tax-Industry-Also-Targeted

- Collapse -
Gozi Banking Trojan Targets Windows 10's Edge Browser
Feb 19, 2016 5:35PM PST

A new Gozi Trojan build has been observed in the wild, modified to inject malicious code into Windows 10’s Edge browser, IBM X-Force researchers warn.

Windows 10, Microsoft’s latest operating system, is offered to users as a free upgrade, which has already helped it become the second largest version of Windows in terms of market share. As a result, criminals have been targeting Windows 10 machines, which includes the Edge Browser.

The Gozi Trojan is the latest observed to target Microsoft Edge, after Dyre, Ramnit, and Tinba v3 were spotted doing so before. The operators behind Gozi managed to find a way to use an older code injection mechanism to inject code into the Edge browser’s process, MicrosoftEdgeCP.exe, IBM’s Or Safran notes in a recent post.

Continued: http://www.securityweek.com/gozi-banking-trojan-targets-windows-10s-edge-browser