Spyware, Viruses, & Security forum


NEWS - May 22, 2014

by Carol~ Moderator / May 22, 2014 7:00 AM PDT
Another Internet Explorer Zero Day Surfaces

Researchers have disclosed a new zero day vulnerability in Internet Explorer 8 that could enable an attacker to run arbitrary code on vulnerable machines via drive-by downloads or malicious attachments in email messages.

The vulnerability was discovered and disclosed to Microsoft in October, but the company has yet to produce a patch, so HP's Zero Day Initiative, which is handling the bug, published its advisory Wednesday. The ZDI has a policy of disclosing vulnerability details after 180 days if the vendor hasn't produced a patch.

The use-after-free flaw lies in the way that IE handles CMarkup objects, and ZDI's advisory says that an attacker can take advantage of it to run arbitrary code.

"The allocation initially happens within CMarkup::CreateInitialMarkup. The free happens after the execution of certain JavaScript code followed by a CollectGarbage call. By manipulating a document's elements an attacker can force a dangling pointer to be reused after it has been freed. An attacker can leverage this vulnerability to execute code under the context of the current process," the ZDI advisory says.

Continued : http://threatpost.com/another-internet-explorer-zero-day-surfaces/106223

Related: Zero-day flaw haunts IE 8 for 7 months and counting
Discussion is locked
You are posting a reply to: NEWS - May 22, 2014
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: NEWS - May 22, 2014
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Android Outlook App Could Expose Emails, Attachments
by Carol~ Moderator / May 22, 2014 8:08 AM PDT
In reply to: NEWS - May 22, 2014

There are two issues with the way Microsoft's Outlook application encrypts content on older versions of Android that could expose users' emails and email attachments.

Paolo Soto, a researcher with the security firm Include Security, said his team initially dug up the vulnerabilities in November 2013 and reported them to Microsoft in December. A blog entry the company posted on Wednesday, after double checking with Microsoft's Security Response Center to see if it was planning a fix, marks the first time the findings have been made public.

The main problem with the app is the way it stores email on Android devices fails to ensure that the messages and attachments are kept confidential.

In particular the way the email attachments are stored - on the SDcard partition, a world-readable folder - makes it so any application or third party that has physical access to the phone could access them.

Continued : http://threatpost.com/android-outlook-app-could-expose-emails-attachments/106250

Collapse -
Sophisticated Google Drive Phishing Scam Returns
by Carol~ Moderator / May 22, 2014 8:08 AM PDT
In reply to: NEWS - May 22, 2014

Symantec's Security Response Blog:

Google Docs and Google Drive were the focus of a sophisticated phishing scam that we looked at two months ago and this technique is being used again. This scam is more effective than the millions of phishing messages we see every day because the Google Drive phishing page is actually served over SSL from the legitimate Google Drive service itself.

Most phishing mitigation focuses on visually inspecting the URL to make sure the connection is secure. And this is good advice, but this does not help prevent against this specific attack.

As in the past, the attacker's phishing message uses the simple subject of "Documents" and contains a URL pointing to a phishing page hosted on the Google Drive file storage and synchronization service: [Screenshot]

Continued : http://www.symantec.com/connect/blogs/sophisticated-google-drive-phishing-scam-returns

Collapse -
iBanking: Exploiting the Full Potential of Android Malware
by Carol~ Moderator / May 22, 2014 8:08 AM PDT
In reply to: NEWS - May 22, 2014

Symantec's Security Response Blog:

Powerful Russian cybercrime gangs have begun to use premium Android malware to broaden their attacks on financial institutions. The tool, known as iBanking, is one of the most expensive pieces of malware Symantec has seen on the underground market and its creator has a polished, Software-as-a-Service business model.

Operating under the handle GFF, its owner sells subscriptions to the software, complete with updates and technical support for up to US$5,000. For attackers unable to raise the subscription fee, GFF is also prepared to strike a deal, offering leases in exchange for a share of the profits.

iBanking often masquerades as legitimate social networking, banking or security applications and is mainly being used to defeat out-of-band security measures employed by banks, intercepting one-time passwords sent through SMS. It can also be used to construct mobile botnets and conduct covert surveillance on victims. iBanking has a number of advanced features, such as allowing attackers to toggle between HTTP and SMS control, depending on the availability of an Internet connection.

Continued : http://www.symantec.com/connect/fr/blogs/ibanking-exploiting-full-potential-android-malware

Collapse -
Facebook offers free browser-based malware scanner
by Carol~ Moderator / May 22, 2014 8:09 AM PDT
In reply to: NEWS - May 22, 2014

People share via social media more than any other channel. But with social media exploits of personal and corporate accounts frequently making headlines, it's time for new ways to protect consumers' digital identities.

With F-Secure's technology, Facebook will offer a browser-based malware scanner as a free service. The service will be available to Facebook users whose account has been temporarily frozen due to suspicious activity caused by a potential malware infection.

Malware or unwanted software on a computer or device can disrupt normal device performance, steal personal information, or gain access to a system. It can abuse Facebook users and their friends by posting malicious links or spam which appear to come from a legitimate user's account.

Continued : http://www.net-security.org/secworld.php?id=16894

Collapse -
Have Hackers Defeated the iPhone Kill Switch?
by Carol~ Moderator / May 22, 2014 8:09 AM PDT
In reply to: NEWS - May 22, 2014

Graham Cluley @ The Mac Security Blog:

Last month, I explained how iPhone and iPad users could enable a "Kill Switch," effectively making it much harder for thieves to sell stolen devices.

And, what's the reason why your iPhone or iPad just became a whole lot less attractive to pickpockets?

Well, when you realise your phone is lost or stolen, you can now remotely tell it to display a phone number and message on its screen. And, rather wonderfully, the message continues to be displayed even if the device is wiped. [Screenshot]

The idea is that the message will stop a criminal from being able to sell your phone to someone else, and the device's screen will remain locked until your Apple ID and password are entered.

Continued : http://www.intego.com/mac-security-blog/have-hackers-defeated-the-iphone-kill-switch/

Popular Forums
Computer Newbies 10,686 discussions
Computer Help 54,365 discussions
Laptops 21,181 discussions
Networking & Wireless 16,313 discussions
Phones 17,137 discussions
Security 31,287 discussions
TVs & Home Theaters 22,101 discussions
Windows 7 8,164 discussions
Windows 10 2,657 discussions


Help, my PC with Windows 10 won't shut down properly

Since upgrading to Windows 10 my computer won't shut down properly. I use the menu button shutdown and the screen goes blank, but the system does not fully shut down. The only way to get it to shut down is to hold the physical power button down till it shuts down. Any suggestions?