Vulnerabilities

Gmail vulnerability exchange Google’s attention

21 year old Armenian hacker has found vulnerability in the Google Apps Script API that enabled Gmail addresses to be used in sending messages without user’s permission or knowledge. It has to be noted, that emails were send from legitimate Gmail addresses. The way of message is still unknown but the flaw is already fixed. An attack wasn’t malicious one. Read more.

The Apache released its new version

The Apache HTTP Server Project announced they have released Apache HTTP Server version 2.2.17 . This new version is presented with the purpose to fix three serious vulnerabilities: expat DoS CVE-2009-3720, expat DoS CVE-2009-3560, apr_bridage_split_line DoS CVE-2010-1623. expat DoS CVE-2009-3720 , expat DoS CVE-2009-3560 Both buffer over-read vulnerabilities were found in a bundled expatriate library. Read more.

Winamp vulnerabilities are still not patched

Recently, few of Winamp flaws were discovered. These vulnerabilities could have been exploited by cybercriminals who always has one and only purpose to steal money from computer users and spread malware inside the systems. For now there are 4 vulnerabilities that have been found. The first issue is caused by integer redundancy error in the Matroska Demuxer (in_mkv.dll) when altering malformed MKV files. Read more.

„Interim security update“: Security patch for BlackBerry Enterprise Server

Recently, vulnerability was found in BlackBerry Enterprise Server (BES) which could have been well explored by hackers if not a quick patch from Research In Motion (RIM) that released an „Interim security update“. BlackBerry maker comments that this vulnerability may have been used in launching Denial of Service (DoS) attacks. The flaw is quite serious one because it is ranked 7.6 on the scale of 0 to 10 in Common Vulnerability Scoring System. Read more.

Symantec, Eset and Panda Security had XSS flaw

White-hat hacker discovered XSS vulnerabilities on three security firms’ websites that could be a reason for further phishing attacks. Cross-site scripting (XSS) vulnerable spot on Symantec , Eset and Panda Security websites was found by Team Elite, one of its members. White-hat hacker told about their discoveries to these companies and they patched the flaw. Team Elite says that these vulnerabilities may cause serious and dangerous phishing attacks. Read more.

News categories

• Malware
• Spam and email
• Phishing
• Vulnerabilities
• Computer Security
• Security basics
• Rogue Antispyware

Popular news

• XSS flaw of Facebook is unpatched and explored for Wall posting
• VBMania Worm gets its finish
• Top 10 TLDs Used by Botnets For CnC
• Symantec, Eset and Panda Security had XSS flaw
• Fraudulent Firefox Update Spreads Via Zango Toolbar
• Apple Released Safari Update
• „Interim security update“: Security patch for BlackBerry Enterprise Server
• Google Announced a New Bug Bounty Program
• Gmail vulnerability exchange Google’s attention
• All your base are belong to us: how to protect your router from DNS rebinding

Antispyware Software

• Spyware Doctor
  • Rating
    
    Download Read review
    Spyware Doctor is one of the most reputable security programs and it’s one of the most often recommended anti-spyware tools. It's known for quick and effective scanning methods.
    
    
• VIPRE Antivirus + Antispyware
  • Rating
    
    Download Read review
    VIPRE combines antivirus, antispyware, anti-rootkit and other technologies into a seamless, tightly-integrated product.
    
    
• Trend Micro AntiVirus plus AntiSpyware
  • Rating
    
    Download Read review
    Trend Micro AntiVirus + AntiSpyware is the essential security you need so you can email and share files with confidence.
    
    
• Malwarebytes Anti-Malware
  • Rating
    
    Download Read review
    Malwarebytes Anti-Malware can detect and remove malware that other anti-virus and spyware programs generally miss, including rogue security software, although it is not effective against rootkits or viruses.
    
    
• Kaspersky Anti-Virus 2011
  • Rating
    
    Download Read review
    Kaspersky Anti-Virus 2011 is one of the optimal choices for protecting a computer from viruses and other threats. It offers multiple functions for cleaning a system and keeping it safe. Although it costs more than average anti-virus kit, Kaspersky Anti-Virus is often rated better than similar tools by users even when free virus removers are also in the assortment.
    
    
• Webroot Antivirus with Spy Sweeper
  • Rating
    
    Download Read review
    Powerful antivirus and antispyware software combined to provide the best protection against viruses, spyware and more.
    
    

Subscribe

Latest threats

• Windows 7 Antispyware 2012
• WinMaximizer
• Slow-PCFighter
• AV Security Essentials
• Smart Anti-Malware Protection
• Malware Protection Center
• Antivirus Smart Protection
• Internet Security 2012
• Smart Internet Protection 2012
• Smart Protection 2012
• Internet Security Guard
• Home Security Essentials
• Windows XP Internet Security 2012
• Windows 7 Internet Security 2012
• Windows Vista Internet Security 2012
• System Check
• Intelinet Smart Security 3.1.0
• Super AV
• Home Security Solutions
• Best Antivirus