Spyware, Viruses, & Security forum

General discussion

NEWS - May 7, 2004

by Marianna Schmudlach / May 7, 2004 2:41 AM PDT

Mystery of MS's missing AV software

By John Leyden
Published Friday 7th May 2004 16:38 GMT
Microsoft's plans to improve the security of Windows through the purchase of an anti-virus company almost a year ago appear to be stuck in limbo. The software giant entered the AV market with the surprise acquisition of little known Romanian AV firm GeCAD Software for an undisclosed sum in June last year.

At the time Microsoft said it would use GeCAD's expertise and technology to "enhance the Windows platform" and extend support for third-party antivirus vendors. "The knowledge and experience acquired from GeCAD will contribute to Microsoft's understanding of how systems are attacked, enabling Microsoft to more effectively focus on platform improvements," it said.

Speaking at the recent Infosecurity Europe show Jonathan Perera, Senior Director at Microsoft's Security Business and Technology Unit, said the company is not ready to announce a product strategy for GeCAD almost a year after the acquisition. GeCAD's technology is been used in programming interfaces to make it easier to plug anti-virus software into Windows, he said.

More: http://www.theregister.co.uk/2004/05/07/ms_av/

Discussion is locked
You are posting a reply to: NEWS - May 7, 2004
The posting of advertisements, profanity, or personal attacks is prohibited. Please refer to our CNET Forums policies for details. All submitted content is subject to our Terms of Use.
Track this discussion and email me when there are updates

If you're asking for technical help, please be sure to include all your system info, including operating system, model number, and any other specifics related to the problem. Also please exercise your best judgment when posting in the forums--revealing personal information such as your e-mail address, telephone number, and address is not recommended.

You are reporting the following post: NEWS - May 7, 2004
This post has been flagged and will be reviewed by our staff. Thank you for helping us maintain CNET's great community.
Sorry, there was a problem flagging this post. Please try again now or at a later time.
If you believe this post is offensive or violates the CNET Forums' Usage policies, you can report it below (this will not automatically remove the post). Once reported, our moderators will be notified and the post will be reviewed.
Collapse -
Handlers Diary May 6th 2004 - Updated May 7th 2004 03:45 UTC
by Marianna Schmudlach / May 7, 2004 2:46 AM PDT
In reply to: NEWS - May 7, 2004

/ Reading Logs / More Phishing / TCP 135, Welchia and Lovgate / Sasser slowing / Egress Filtering and You /
Reading Your Logs Pays Off

Chas Tomlin, a sysadmin and programmer for the University of Southampton noticed some odd entries in his web logs and forwarded it to the ISC for analysis. Examination showed that an attack based on the do_brk exploit (http://secunia.com/advisories/10328/ ) was attempted and failed. Systems shown to be vulnerable to this attack have the following kernels:

2.4.20-18.9 as shipped with RedHat 9.0
2.4.22 (vanilla)
2.4.22 with grsecurity patch

Please make sure your systems are patched and/or upgraded as needed.

Another eBay Phishing Scam

Anthony Congiano a helpdesk administrator alerted the ISC earlier today to another attempt at Phishing information from eBay users. The e-mail in question tells the recipient that their account has been used "to make fake bids" and "you are required to verify your eBay account by following the link below." The scam is designed to collect E-Bay member names, user names, passwords and credit card information. eBay, and the web host have been notified.

Port 135 Spikes, Lovgate and Welchia


Collapse -
Symantec: Sasser, Netsky Work Of Same Hacker
by Donna Buenaventura / May 7, 2004 1:19 PM PDT
In reply to: NEWS - May 7, 2004

After analyzing Netsky.ac and Sasser, Symantec researchers Friday concluded that it was almost certain the worms were written by the same hacker(s).

"The probability that they were written by the same person is very high," said Alfred Huger, senior director of engineering with Symantec's response team. "And if the same person or group didn't actually write both, they certainly shared [source] code."


Collapse -
Hotmail suffers morning outage
by Donna Buenaventura / May 7, 2004 1:23 PM PDT
In reply to: NEWS - May 7, 2004

A "networking issue" on Friday locked out millions of Microsoft's Hotmail e-mail users for more than three hours, but the service has since been restored.

A Microsoft spokeswoman said the company first discovered the problem at 6:30 a.m. Pacific time and "fully restored" service by 9:50 a.m. The spokeswoman said no customer data was lost during the outage. She declined to offer further details about the nature of the problem.

During the outage, attempts to log in were met with a message, saying: "This server is too busy." Since the Hotmail home page did appear, the company had advised customers to try logging in again


Collapse -
MS mounts covert anti-piracy op
by Donna Buenaventura / May 7, 2004 1:37 PM PDT
In reply to: NEWS - May 7, 2004

In line with its efforts to fight software piracy, Microsoft Corp. has hired Bare Associates to send secret investigators to 400 computer retailers in Belgium. The investigation showed that, although none of the retailers installed unauthorized versions of software on computers themselves, 25% encouraged users to buy pirated software - a small number, about 8%, even provided buyers with instructions on where to get such software. The investigation will continue and offenders could face legal action.


Collapse -
Hotmail chain letter still tops hoax list
by Donna Buenaventura / May 7, 2004 1:40 PM PDT
In reply to: NEWS - May 7, 2004

The Hotmail chain letter is the top e-mail hoax on the Internet for the nine month running, according to anti-virus vendor Sophos. The Hotmail chain letter, which was first discovered in December 1999, warns na

Collapse -
Bagle worms continue mutating
by Donna Buenaventura / May 7, 2004 1:41 PM PDT
In reply to: NEWS - May 7, 2004

Anti-virus vendor Sophos is warning Internet users about a new variant of the prolific Bagle worm. Sophos has received "many reports" of Bagle-AB in the wild. The new Bagle variant arrives via e-mail with a variety of subject lines, scans systems for e-mail addresses to mail itself to, and attempts to turn off security and anti-virus programs on an infected machine. When the malicious Bagle attachment is executed, users are shown a fake error message, 'Can't find a viewer associated with the file'.


Collapse -
Check Point urges VPN software upgrade to close hole
by Donna Buenaventura / May 7, 2004 1:43 PM PDT
In reply to: NEWS - May 7, 2004

Check Point Software Technologies Ltd. is warning customers about a vulnerability in the ISAKMP (Internet Security Association & Key Management Protocol) that could allow the execution of malicious code on a vulnerable machine. Customers that have upgraded to the latest versions of Check Point's VPN (virtual private network) software (VPN-1/FireWall-1 R55 HFA-03, R54 HFA-410 and NG FP3 HFA-325, or VPN-1 SecuRemote/SecureClient R56) or that do not use remote access or gateway VPNs are not affected by the flaw. Everyone else is urged to upgrade immediately. Check Point is not aware of any organization that has been affected by the vulnerability so far.


Popular Forums

Computer Newbies 10,686 discussions
Computer Help 54,365 discussions
Laptops 21,181 discussions
Networking & Wireless 16,313 discussions
Phones 17,137 discussions
Security 31,287 discussions
TVs & Home Theaters 22,101 discussions
Windows 7 8,164 discussions
Windows 10 2,657 discussions


Your favorite shows are back!

Don’t miss your dramas, sitcoms and reality shows. Find out when and where they’re airing!