Nellie2

Forget avoiding your girlfriend in case she has decided that today is the day for the big proposal.

Today is also the last day that you will be able to sign the Downing Street petition calling for the UK Government to create a central E-Crime Unit.

The National High Tech Crime Unit was closed down almost two years ago.. The Serious Organised Crime Agency (SOCA) have been doing the best they can with the resources they have… but it’s not enough.

So get clicking on that petition.. show Gordon Brown that you are a concerned citizen.  Make sure you submit a valid email address as you will need to click on a link that will be emailed to you to validate your signature.

—–> Click Here For the Downing St E-Petition <——

Bookmark to:

One of the security forums that I cut my malware baby teeth in is CastleCops… although back then it was known as ComputerCops.

Security forums are a valuable resource to our internet..and CastleCops have worked very hard over the last six years to build an effective and invaluable database of information and to provide a meeting place for experts from all different fields to enable us to work together and share information.

I’m proud to be a member of CastleCops… so happy Sixth Birthday guys…  lets hope you have lots more.

Bookmark to:

Here we go folks, yet another rogue program for you all … with another really zippy name.

SpywareRemover is a rogue anti-spyware program that is advertised through the use of malware. When this malware, labeled Hoax.Win32.SpyWare.d by Kaspersky antivirus, is installed on your computer you will start to see popups for a variety of services. One of these is advertisements is a misleading popup stating you are infected and that you should install SpywareRemover to remove it. The title of this popup is Spyware detected! and the content of the popup is:

Windows has detected a spyware infection!
Please install Spywareremover to remove the infection.

Once SpywareRemover is installed, it will automatically scan your computer for infections and then display a variety of false positives as well as an interesting find; the malware that installed it in the first place. In order to remove these infections, though, you must first purchase a license for the software. (Surprise surprise) Screen shots of the SpywareRemover program can be seen below.

Above blurb and screenshot have been shamelessly pinched from Bleeping Computer. Needless to say… you won’t be doing yourself any favours if you do purchase this program because all you will be doing is putting money into the malware vendors pockets and your PC will still be infected.

For comprehensive self help removal instructions please visit Bleeping Computer.  If you are still having problems after following those instructions then please ask for help at one of the anti malware forums.

Bookmark to:

There has been quite a bit of information on various security sites about the botnet bust in Canada last week… so I know I’m raking over old news.

But who cares… the point is, something is being done. The bad guys are getting tracked down and are being taken to task. Yes it’s a slow process and no.. they aren’t locking them up and throwing away the key yet… but every botnet that is taken down is one less that we need to worry about.

Over the course of the two years that this network was under investigation, the network took control of up to a million computers. When you figure the number of computers hijacked, the amount of the damages, and the number of people they were able to connect with this crime, this is a very impressive win for the Quebec police.

See the full story here at McAfee

Bookmark to:

Vulnerability Summary for the Week of February 18, 2008

The US-CERT Cyber Security Bulletin provides a summary of new vulnerabilities that have been recorded by the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cyber Security Division (NCSD) / United States Computer Emergency Readiness Team (US-CERT). For modified or updated entries, please visit the NVD, which contains historical vulnerability information.

The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:

• High - Vulnerabilities will be labeled High severity if they have a CVSS base score of 7.0 - 10.0
• Medium - Vulnerabilities will be labeled Medium severity if they have a CVSS base score of 4.0 - 6.9
• Low - Vulnerabilities will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9

Entries may include additional information provided by organizations and efforts sponsored by US-CERT. This information may include identifying information, values, definitions, and related links. Patch information is provided when available. Please note that some of the information in the bulletins is compiled from external, open source reports and is not a direct result of US-CERT analysis.

Access the full list here:  Cyber Security Bulletin SB08-056

Bookmark to:

I found this Browser Security Test site. I ran my browser through it and came up with these results…. phew!

There is some comprehensive and easy to understand information about each vulnerability that is tested.. depending on your browser.

Remember though.. each browser has different vulnerabilities.. and more are discovered or exploited every day.  Just because you may pass this test today… doesn’t mean that you can let your guard down tomorrow!  And regardless of what anyone may tell you.. all browsers are vulnerable to something, there is no such thing as a totally impervious browser.

Bookmark to:

I hope you are keeping an eye on the Windows Vista Team Blog, there were a few problems with the SP1 pre-requisite and Microsoft have released further KB article in case you are one of the unlucky ones.

Another thing to be aware of is that Microsoft have released KB935796, a list of programs that are known to have a few problems when they are run on a Windows Vista SP1 PC.  This list isn’t exhaustive.

If you run one of these programs then please make sure you check for updates, as far as I know the developers of these programs have managed to develop work arounds for the Vista SP1 problem.  You should be updating your security software regularly anyway… so you have no excuse.

Bookmark to: