- Cool Yule Tools: 2008 Holiday Gift Guide
- 10 kitchen gadgets for the geek gourmet
- Google admits to violating iPhone development terms
- Smartphone smackdown: Storm vs. iPhone
- Google layoffs: 10,000 jobs being cut
Jason Meserve provides up-to-the-minute news on vendor security alerts and fixes.
Mac, Windows clipboards poisoned by URL attacks
In what a security researcher called a cunning attack, infected Web ads are poisoning Mac and Windows users' clipboards with
URLs designed to trick people into visiting sites touting bogus security software. Computerworld, 08/19/2008.
**********
Vendors patch Postfix flaw
According to the Gentoo advisory, "Postfix incorrectly checks the ownership of a mailbox, allowing, in certain circumstances, to append data to arbitrary files on a local system with root privileges." A number of Linux vendors have released updates for the package:
Ubuntu
**********
Three new patches from Mandriva:
Kernel for Mandriva Corporate 4.0 (multiple flaws)
kdegraphics (buffer overflow, code execution)
amarok (symlink, file overwrite)
**********
Today's malware news:
Security firm warns against Olympic spam
Beware of e-mails with sensational Olympic subject titles. They will likely contain a form of malware called Storm that infects
computer systems, according to enterprise security firm, Secure Computing. Computerworld, 08/19/2008.
Large-Scale Spam Campaign Continues
As expected, the arrival of the 2008 Olympics in Beijing was accompanied by an increase in Olympics-related spam. From fake
news to performance enhancing medication, spammers are taking full advantage of the Games to entice us to click their links
and open their attachments. Symantec Security Response, 08/15/2008.
The Summer Storm
Seventy-seven megabytes of network traffic, 356 spam emails sent and 10,082 unique IP addresses contacted. All in just under
60 minutes. This is what a system infected by one recent Storm rootkit pumps out. Symantec Security Response, 08/18/2008.
**********
From the interesting reading department:
Tall Latte, Hold the Malware
There's nothing like coffee one-upmanship to make the blood boil. "You're still drinking lattes? With actual milk from a cow?
Good grief, where have you been?" Nowadays though, it seems that coffee one-upmanship is no longer enough to secure the seemingly
coveted "hippest person in the cafe" crown. Now that portable devices are actually portable, cafes and other public spaces
seem to be prime territory for people keen to show off their technological gadgetry. Symantec Security Reponse, 08/20/2008.
Jason Meserve is multimedia editor at Network World.
| NetworkWorld, Inc. | About Network World, Inc. | Advertise | Careers | Contact us | Terms of Service/Privacy | Reprints and links | Partnerships | Press room | Subscribe to NW |
| IDG, Inc. | CIO | Computerworld | CSO | Demo | GamePro | Games.net | IDGconnect.com | IDG World Expo | Infoworld | JavaWorld.com | LinuxWorld.com | MacUser | Macworld | PC World | Playlistmag.com | The Industry Standard | IDG List Services | IDG TechNetwork |
 The Leader in Network Knowledge© 1994-2008 Network World, Inc. All rights reserved. |
Partner Content
Brilliantly simple security and control solutions for email, web and endpoint
www.sophos.com
Stopping data leakage
Learn how to exploit your current security investment to control the information that flows into, through and out of your network.
Download the white paper.
Why detection rates aren't enough
Evaluating endpoint security products is a time-consuming and daunting task. Learn the six critical questions you need to ask prospective vendors to get the right endpoint solution.
Download the white paper.
Applications: taking back control
Employees installing unauthorized applications is a growing threat to business security and productivity. Cost-effectively reduce this threat by integrating control into your malware protection.
Learn more today.
Comment