Eye on Microsoft: Security Issues So Far This Week

Dr. Roy Schestowitz

2009-03-11 13:57:28 UTC
Modified: 2009-03-11 13:57:28 UTC

JUST a quick bunch of links for the curious:

Eset false alarm puts system files on remand

Slovakian anti-virus firm Eset has confirmed that a misfiring virus definition update wrongly labelled Windows system files as infected with malware.

As a result of the dodgy definition key files were identified as a virus and shuffled off into quarantine. Eset said it spotted the problem within minutes and released a new update that was free of the glitch, along with advice on how to unbork affected systems.

[...]

On Monday March 9th 2009 at 5:52 CET, ESET released an update of our heuristics v.1091 together with standard virus definition update no. 3918. An error in the heuristics caused a malfunction in the Windows operating system by false identification of several system files including dllhost.exe, and msdtc.exe, which were catalogued as Win32/Kryptik.JX.

Microsoft Fixes Critical Windows Image Flaw

The flaw, MS09-006, involves the way the Windows kernel handles WMF and EMF (Windows Metafile and Enhanced Metafile) images. Simply viewing such an image on an unpatched PC would allow an attacker to execute any command, such as downloading and installing malware, and the risk is rated critical for Windows 2000, XP, Server 2003, Vista and Server 2008.

African executable raises Symantec hackles

TECH BLOGS AND FORUMS are ablaze with panic over an unidentified executable file which is being flagged by Norton's security software.

It's not known whether the file, which some have reported trying to phone home to Africa, is malicious in any way, but the folks at Symantec aren't helping matters by reportedly deleting any posts or queries relating to the problem on their own forums.

Panda: ID Theft Trojans Are on 1 in 100 PCs We Scan

Perhaps as many as ten million PCs are infected with sneaky programs designed to steal sensitive financial information, antivirus vendor Panda Security reports.

More to come later. ⬆

Also this year:

Recent Techrights' Posts

Azure is Turning 17 This Year, Still Losing Money and Staff: Hallmark of pyramid schemes, deriving "value" out of things that do not really exist?
Richard Stallman on RISC-V and Free Hardware: Invidious is under attack by Google
Alex Oliva, the Potential 'Successor' of RMS, Has a New Web Site: More freedom for Alex Oliva
Links 16/02/2025: "Microsoft Is Laying Off Employees" and Internal Dissent Brewing at Facebook Over Regime Complicity: Links for the day
Promoting Microsoft Windows With LLM Slop: What is the policy at BetaNews regarding LLM slop?
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Saturday, February 15, 2025: IRC logs for Saturday, February 15, 2025
Links 15/02/2025: Harms to Health, Public Domain, and More: Links for the day
Gemini Links 15/02/2025: On Autistic People, AuraGem Over HTTPS: Links for the day
The Cyber Show (C|S) Speaks of the "Rise of the Nerd Reich.": This 'Valentine Episode' is quite good
Strong Momentum for the Free Software Foundation (FSF) as Winter Approaches Its End in Boston or in the Northern Hemisphere: FSF's founder, Richard Stallman, gives another talk in Italy in 9 days from now
The 'Drunken Plagiarists' Are Harming Journalism About GNU/Linux: They lessen the incentive to do real journalism abut GNU/Linux
Female Nazis and racist Swiss women: Reprinted with permission from Daniel Pocock
Links 15/02/2025: Erasing of American Science and Tesla SLAPPing Critics: Links for the day
IDG 'Reviews' of GNU/Linux Now Contain LLM Slop: It's typically ads or commercials... or sometimes spin disguised as news
Gemini Links 15/02/2025: Spectacles and "Before Sunset", Moving Domains Out of the US: Links for the day
Microsoft Has Only $17,482 Million Left, "Cash on Hand" Sank 40 Billion Dollars in 2 Years: Microsoft runs low on money in the bank
YouTube Layoffs Mean That YouTube is Still Losing a Lot of Money (Net Income or Profit Almost Definitely Negative): In more recent years Google defunded many vloggers
In Gopher and Gemini Protocol People Abandon Services Based in the United States: There's no resistance whatsoever
Python and Microsoft: Pandas Should Have Known OpenDocument Format (ODF) and Microsoft Excel Are Different and Competing Things: now we're meant to think that in order to open ODF files we need some functions with "Excel" in their name
Not Only Windows, Surface, and "Hey Hi" PCs; Microsoft's Hardware Ventures Are a Dumpster Fire; HoloLens Mixed Reality Hardware Now Axed Altogether and Staff is Miserable: Microsoft is in a terrible state
Certificate Authority (CA) Let's Encrypt Now Down to TEN (0.3% of the Whole) in Geminispace: The number of capsules that use Let's Encrypt is, according to Lupa, about to fall to single-digit figures
Links 15/02/2025: University Price Hikes and Copyright Action Against Slop Companies: Links for the day
Slopwatch: All Those New 'Articles' Are Fake and Crafted by Chatbots (LLM Slop): Google News is promoting these as "Linux" news; they're not even made by humans
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Friday, February 14, 2025: IRC logs for Friday, February 14, 2025
Gemini Links 14/02/2025: Mysterious Friend and "Eight by Eight": Links for the day
They Will Never Leave Linus Torvalds Alone, Rust is Just Another Way to Cause Instability and Infighting in Linux: We already identified the Rust "community" as troublemakers more than 5 years ago and we wrote about the evidence
Apple: Social Justice or Social Nationalism?: Remember to buy Apple, folks
Links 14/02/2025: Mass Layoffs at Sophos, Chatbots Failing Very Badly, "DOGE as a National Cyberattack": Links for the day
Moving Away From Certificate Authorities (CAs) Like Let's Encrypt Means Taking Away From the US Government the Power to 'Censor' Sites by Revoking Certificates: Gemini capsule is cheap to run and easy (easier than a Web site) to maintain. More people disillusioned and frustrated with social control media flock to it.
BetaNews' Managing Editor Wayne William Took Charge of GNU/Linux Articles and His Articles Are Real (He Actually Wrote Them): We are frankly relieved to see that Wayne William recognised the problem and did something about it
Links 14/02/2025: Publicity Rights Violated (ByteDance), Bribes to Trump Passed via Social Control Media 'Settlements' Again: Links for the day
Gemini Links 14/02/2025: Constitution, Cosmic DE, and More: Links for the day
Slopwatch: Anti-Linux Articles Published by Bots, Dominating Google News: So a lot of the Web is Microsoft chatbot-generated anti-Linux FUD
Links 14/02/2025: Measles Outbreak in Texas, Zelensky Warns Russia Will Attack a NATO Country: Links for the day
Over at Tux Machines...: GNU/Linux news for the past day
IRC Proceedings: Thursday, February 13, 2025: IRC logs for Thursday, February 13, 2025