Information Security Bulletin

ALERTS: .ANI Exploits

02 Apr 05:55

Most security companies report "zero-day" exploits of Windows Animated Cursor Handling.

ALERT: Tesco Phishing

28 Mar 11:33

A new phishing scam directed at users of services from UK supermarket giant Tesco has hit our virtual desktops this morning.

Beware of Fake Heart Attacks

19 Feb 05:30

As dedicated recipients of spam (i.e. email users) may have noticed, a number of messages have been circulating lately, carrying sensational subject lines announcing alarming news about some celebrity, or access to illegitimate information best hidden by garments. The latest is news that Australia's number one he-man, John Howard, has suffered a heart attack. Unfortunately for the political opposition in that remote colony the rumour is false.

ALERT: Visual Studio ActiveX Zero-Day - PoC Published

02 Nov 12:34

In a Security Advisory from october 31st Microsoft reports that it is investigating a vulnerability in an ActiveX control in Visual Studio 2005. A Proof of Concept code exploiting the vulnerability has been published.

Apple Video iPods shipped With Windows Virus

18 Oct 12:22

On their web site Apple Computers warn that a small number of iPods available for purchase after September 12 have been shipped with a virus on board. The virus only affect users connecting their iPod to a Windows computer.

Myspace Music Fan Phishing Fraud

13 Oct 01:36

Many readers have probably experienced, and now Sophos has warned of, an aggressively distributed spam campaign that uses the name of the popular MySpace social networking site in an attempt to phish information from music lovers. The emails have been spammed out to hundreds of thousands of computer users around the globe in the last week, luring them into clicking on links to a website posing as an online music store.

New Day Zero Exploits PowerPoint Vulnerability

29 Sep 11:49

As Microsoft issued an out-of-cycle patch for the much discussed VML vulnerability a new vulnerability in PowerPoint is being exploited in what looks like targeted attacks.

Microsoft Issues Critical VML Patch Out of Synch

27 Sep 11:49

A patch fixing a recently exploited vulnerability in the company's implementation of the Vector Markup Language, which could lead to complete system compromise, has been issued between normal updates. It should be applied immediately.

Beware of Yahoo! Greeting Cards

26 Sep 11:20

A new phishing scam using a fake greeting card notification message lures users to spoofed site that contains a Trojan. This is one of several scams implementing VML IE exploits.

New Stration Worm Version Spreads Quickly

25 Sep 01:01

The Stratio-AN worm has been aggressively distributed by its author since the early hours of Monday morning (September 25th).

Next 10 articles

Search ISB News:

Not yet sure you want to subscribe?

Download a free sample copy!

Download the much quoted October 2005 Editorial

Portal Frontpage
Web Editorial
About This Portal
Contact Info

IS Alerts •
General News
Product News
Vendor News
People News
Literature
Events
CHI News

About ISB
Publishing in ISB
Advertising in ISB
PR Information

In the current issue:

Legal Issues
Of Trojans, Cheerleaders and Cuckoos…
Jon Colombo

Web Security
Web 2.0 vs. Web 1.0 – Security Standpoints and Challenges
Shreeraj Shah

Computer Forensics
Trends In Disk Drives and Data Transfer Speed
Steven Branigan