Security researchers discover a serious vulnerability in older version of ICQ IM software.
Robert McMillan, IDG News Service
SAN FRANCISCO -- AOL is advising users of its ICQ instant messaging service to update to the latest version of the ICQ software following the discovery of a bug in an older version of the product.
Security researchers at Core Security Technologies today reported that they had discovered the flaw in ICQ Pro 2003b, a version of the ICQ client that AOL still offers for download and bills as a "veteran version" for users who prefer the earlier look and feel.
Although the bug doesn't affect more recent ICQ software like ICQ 5.1, it could mean serious problems for ICQ Pro 2003b users, according to Max Caceres, director of product management at Core, a vendor of penetration testing software.
Websense: Samsung site hosts Trojan
By Munir Kotadia
Special to CNET News.com
Published: September 8, 2006, 7:05 AM PDT
Samsung Electronics' U.S. Web site is hosting a Trojan horse that logs keystrokes, disables antivirus applications and steals online banking access codes, according to Internet security firm Websense.
Visitors to the Web site are not affected by the malicious software. Websense said it believes Samsung's Web server has most likely been compromised in order to serve malicious software to users that receive spam messages or malicious IM messages.
Joel Camissar, Australian country manager for Websense, told ZDNet Australia that Samsung has been informed about the issue but has not yet removed the offending files.