The TRACE (Marshal Threat Research and Content Engineering) team reported the spam e-mails appear to come from a legitimate organization and offer recipients temporary login confirmation details for a Web site. The spam uses text such as "for security purposes, please login and change the temporary Login ID and Password" and includes a link to an IP address that is actually a Web site infected with the Storm Trojan.
- Aug 28 Tue 2007 14:20
Spam Spreads Storm Trojan Across Internet
- Aug 28 Tue 2007 14:14
Targets of the day
Last Updated: 2007-08-26 22:13:44 UTC
by Pedro Bueno (Version: 1)
- Aug 28 Tue 2007 14:10
Handler's Diary: How Secure Is That Point-of-sale Device?
Last Updated: 2007-08-27 11:45:21 UTC
by Scott Fendley (Version: 1)
- Aug 28 Tue 2007 13:39
Storm Worm Uses YouTube Ruse
Contained in e-mails with subject lines such as "sheesh man what are you thinking," the malicious link claims to go to YouTube.com, but actually goes to a URL harboring exploit code.
"This is the first [YouTube] lure that the Storm folks are using but not the first that has used YouTube in the past," said Dan Hubbard, vice president of security research at San Diego-based Websense. "There are a variety of e-mail subjects and bodies but basically they request you to view a video."
- Aug 28 Tue 2007 13:30
WGA誤判問題修複 微軟建議用戶再啟動系統
昨天軟件資訊欄目報導過,微軟的WGA伺服器出了狀況致使有用戶不能啟動Vista/XP,更有甚者,有用戶的正版系統被標記為盜版(詳情zㄐm微軟WGA伺服器當機 正版系統被誤認為盜版》一文)。
微軟回應的速度還挺快的,不久後就就解決了問題。微軟建議,那些收到不正確啟動回應的用戶可以通過微軟官方的WGA驗証站點再度啟動以修複錯誤的驗証資訊。
- Aug 28 Tue 2007 13:25
思科路由器驚現嚴重漏洞 可影響我國骨幹網絡安全
目前尚不清楚此漏洞是否造成損失。不過專家指出:「由於我國電信、網通、移動、聯通、鐵通等五大基礎運營商核心路由器均使用思科產品,因此漏洞對我國的骨幹網安全存在潛在威脅。為保障公共互聯網安全,請相關用戶及時修補漏洞。」
- Aug 28 Tue 2007 13:22
[大砲開講]震旦集團簡體中文網站被植入惡意連結
詳文請按 rogerspeaking.blogspot.com/2007/08/blog-post_28.html
- Aug 27 Mon 2007 10:34
[訊息] 被入侵網頁 - "大華技術學院"
- Aug 27 Mon 2007 10:29
[訊息] 被入侵網頁 - "台中日光溫泉會館-SPA生活館"
- Aug 27 Mon 2007 10:25
[訊息] 被入侵網頁 - "上閤屋餐飲集團官方網站"
- Aug 27 Mon 2007 10:21
[訊息] 被入侵網頁 - "JET 日本台"
- Aug 27 Mon 2007 10:16
[訊息] 被入侵網頁 - "神航科技股份有限公司"
- Aug 27 Mon 2007 10:08
[訊息] 被入侵網頁 - "金石堂個人化書店"
- Aug 23 Thu 2007 17:42
Vista PreSP1無線驗証補丁KB932063發布
微軟提供的KB932603號Vista預覽版SP1無線驗証補丁修複了以下五個與無線驗証有關的問題:
1. 802.1X切換到基于虛擬本地局域網驗証時可能會失敗。
2. 在無線配置文件中,關於用戶界面選定的可擴展鑒定協定EAP(Extensible Authentication Protocol)方法資訊可能是不正確的。
- Aug 23 Thu 2007 17:39
世界最大職介網站遭黑客攻擊
英國媒體22日報導說,世界最大職業仲介網站Monster.com遭到黑客大規模攻擊。黑客竊取在網站註冊的數百萬求職者個人資訊,並用惡意程式攻擊其中160多萬求職者的電腦,向他們勒索錢財。
網路安全專家說,這次黑客攻擊事件表明,不法分子正採用新手法,對企業資料庫安全造成威脅。