PDF Zero Day Vulnerability in the Wild
Comments OffFrom sources all over the internet, Adobe made a sent out a Security bulletin yesterday:
APSA09-01 (Buffer overflow issue in versions 9.0 and earlier of Adobe Reader and Acrobat)
A critical vulnerability has been identified in Adobe Reader 9 and Acrobat 9 and earlier versions. This vulnerability would cause the application to crash and could potentially allow an attacker to take control of the affected system. There are reports that this issue is being exploited.
Adobe Plans on patching this March 11, 2009
and According to some other reports are saying:
Symantec Security Response has received several PDF files that actively exploit a vulnerability in Adobe Reader. We are continuing to remain in contact with Adobe on this vulnerability in order to ensure the security of our mutual customers.
[via Symantec]
Signs of a Computer Infection!
Comments OffSo I was thinking this morning what I missed and I totally missed on how you might be able to tell if you have a computer virus. It does me no good to talk about a virus if you don’t know you’re infected. I was thinking of the times I had a client who had trouble but wasn’t what I thought.
So How do you know?
Some people would say it depends on factors but here are what I call clues that make me suspect a virus:
- Slow or Sluggish computers – Here is what I know if the computer is really slowing down and have a dual core or quad core. If you are running a system and sees a lot of hard drive activity even when the computer is idle then it might be a virus or it could be a program doing what it is supposed to be doing. So this is somewhat of an indication but not always.
- Slow internet connection on the computer or on the network — Due to the fact that most people have a router that is connected to all the computers and if you internet connection on all your systems are slower than normal then you could have a virus. I use Speed Test website to help determine this.
Fix Shutdown Problems in Vista!
Comments Off
In the Patch Tuesday update, Microsoft quietly released the patch to fix Windows Vista machine shut problems. This patch should of came sooner.
Update for Windows Server 2008 and Windows Vista
Install this update to resolve a set of known application compatibility issues with Windows Server 2008. After you install this item, you may have to restart your computer.
This was not a critical update and it seems to resolve so many issues with compatibility. One thing it seemed to fix on my system has been the shutdown time. It is now quite fast, it would normally take me 2 to 3 mins to shutdown, now it does it in less than a Minute. So if you’ve not installed this update please install it soon. I would like to know if people are seeing the same thing I am. I’ve found a great resource on fixing it if you are still having problem, it talks about how to check your system performance. Although this is been doing it lately with these programs not loaded or even running, they still seem to cause problems so now I get the feeling it has to do with legacy programs. This should fix most of the problem with older programs.
Vista has a new Vulnebility!
Comments OffAccording to Techworld.com, Vista has a new Vulnerability that could let a hacker infect a Vista machine with a rootkit. The talk from them is quite intriguing. I will quote it to better let you know what the Vulnerability is:
The vulnerability could allow a hacker to install a rootkit, a small piece of malicious software that is very difficult to detect and remove from a computer, Unterleitner said.
Phion notified Microsoft about the problem on 22 October. Microsoft indicated to Phion that it would issue a patch with Vista’s next service pack. Microsoft released a beta version of Vista’s second service pack to testers last month. Vista’s Service Pack 2 is due for release by June 2009.
[via Techworld.com]
The way they could do this is through the Device IO Control which in turn could corrupt the Kernel of Windows Vista. Now we all know that Microsoft will release a patch quicker than 6 months away. According to this article, people are already looking for the exploit and want to know more about it. I would be willing to bet they will have a patch out sooner than later. Probably January or Febuary, which will be a big deal because no one will expect it. I would also imagine hackers will start trying to figure out how they could install software as quick as possible before Microsoft pushes out the patch. So what can you do to protect yourself, Get a firewall, a Antivirus and learn how to protect yourself to prevent yourself from getting a computer virus.
AVG Detected a False Positive
According to Security and The Net:An update for the AVG virus scanner released yesterday contained an incorrect virus signature, which led it to think user32.dll contained the Trojan Horses PSW.Banker4.APSA or Generic9TBN. AVG then recommended deleting this file; this causes the affected systems to either stop booting or go into a continuous reboot cycle. So far, the problem only appears to affect Windows XP, but there is no guarantee that other versions of Windows don’t have the same issue.
[Via Security and The Net]
If you’ve not been affected by this yet, you probably won’t be. It is yet unknown how many people have been affected. I’m blogging about this to tell people about this and to warn people that not all of warnings from AVG are true and that is why you should always ask before you delete or do anything to your system. I always USE google when it comes to these types of questions
WOW:Chamber of Secrets might have a Copyright issue on there Hands!!
Comments OffAt any rate, the quest is called Chamber of Secrets and asks you to investigate the Servant’s Quarters of Karazhan for a new NPC (possibly boss). [via Curse.com]
So I sit here thinking how interesting this could be!!! WOW is having a quest called “Chamber of Secrets”. Now I don’t know much but this might infringe on Harry Potter’s Book Chamber of Secrets? Would someone like clarify me this point. I’m going to keep my eye on this one!!!
- The Reward can be found at Monster Slayer’s Kit
- Quest is probably going to be on nod Castlevania series
Microsoft Windows Server Service Vulnerability (MS08-067)
Comments Off
A vulnerability has been identified in Microsoft Windows, which could be exploited by attackers to take complete control of an affected system. This issue is caused by an error in the Server service that does not properly handle specially crafted RPC requests, which could be exploited by attackers to crash an affected system or execute arbitrary code via a specially crafted request.On Windows Vista and Windows Server 2008, the vulnerability is only exploitable by authenticated users.
Note: This vulnerability is being exploited in targeted attacks.
[via FrSirt]
This was just discovered and needs to let people know. I will do more research on it and maybe come up with a way to fix the problem. According to my sources there is a patch that will fix the problem!!
*UPDATE*
According to Microsoft:
This security update resolves a privately reported vulnerability in the Server service. The vulnerability could allow remote code execution if an affected system received a specially crafted RPC request. On Microsoft Windows 2000, Windows XP, and Windows Server 2003 systems, an attacker could exploit this vulnerability without authentication to run arbitrary code. It is possible that this vulnerability could be used in the crafting of a wormable exploit. Firewall best practices and standard default firewall configurations can help protect network resources from attacks that originate outside the enterprise perimeter.
[Via Microsoft Security Bulletin]
AVG detected trojan ; Generic11.BEOG
Comments Off
I had a Friend tell me his system detected this Trojan GENERIC11.BEOG. I did my research and right now. It looking like Adobe added something to there recent updates *see updates below*. I’ll Have to check with some other sources but it looking like AVG over did it again and found something that might just be an AVG issue. (correction)
I usually wait before updating something like adobe. It is sure to be some minor change to adobe but if your are worried here’s the link to watch and see what people are asking or talking about this false positive:
It seems that AVG is calling this possible virus but yet it looks like it is a false positive. So don’t you worry. If it was a true virus you’d probably would never know!! 
*UPDATE*
I installed Adobe 9.0 and updated the virus scan database for AVG. It hasn’t found any thing yet but I am still scanning my system. I’ll let you know if it finds this false positive on my Vista machine!! I’m doing this to test it out!!! Come back later to find out the results of the test. (if you like this website by all means google this website so it too can be on google trends. I want to see it be up on google trends for a day or two.)
Hot, sexy bot sweet-talks personal data out of chatters
Comments OffSecurity software company PC Tools warns that the bot can easily be used for malicious purposes. The company said that the program’s ability to mimic human behavior to dupe chatters is worrisome, and could readily be used to collect all manner of information. “As a tool that can be used by hackers to conduct identity fraud, CyberLover demonstrates an unprecedented level of social engineering,” said PC Tools senior malware analyst Sergei Shevchenko in a statement. “CyberLover has been designed as a bot [robot] that lures victims automatically, without human intervention. If it’s spawned in multiple instances on multiple servers, the number of potential victims could be very substantial.”
[Via Arstechnica]
This is really a security issue here. Never give out your personal information online. I just want to post this to remind people not everything online is safe.
