Eye on Security: Microsoft Windows Emergency Patch, Botnets Grab Data, Malware Scam Analysis
- Dr. Roy Schestowitz
- 2010-08-06 12:12:28 UTC
- Modified: 2010-08-06 12:12:28 UTC
Summary: An update on problems Windows users may be experiencing
●
Microsoft rushes out emergency fix for critical Windows bug (
more about this emergency)
Microsoft on Monday rushed out an emergency patch for a critical vulnerability that criminals are exploiting to install malware on all supported versions of the Windows operating system.
●
Botnet with 60GB of stolen data cracked wide open
Most botnet command-and-control channels run on compromised webservers or web-hosting services designed for criminals, making it possible to dismantle the network by taking down the central server. Mumba, by contrast, makes use of fast-flux technology, in which the operations are carried out on thousands of compromised PCs. That allows the IP address and host machine to change every few minutes, a measure that frequently foils takedown attempts by researchers and law enforcement.
●
Anatomy Of An Attempted Malware Scam
The display media segment is the newest target of malvertising, the latest trend in online criminal methodology. The problem has escalated in recent months and despite many suppliers' best efforts, it continues to grow. The culprits behind many of these attacks are based in foreign states leaving little course to take action. While the best defense against malvertising is to prevent it from happening in the first place, this has proven to be a challenge for even the most astute publishers, networks and the like.
We were recently the targets of one such attempt, and while it certainly wasn't the first "fake agency" we've been besieged by (and that we've successfully stopped), it is one of the most organized efforts we've encountered so far. Below we've outlined the approach that was used and the findings of our investigation as an FYI to others who may be on the target list.
Recent Techrights' Posts
- The Latest Wave of Microsoft Crime, Bribes, and Fraud
- Microsoft is still an evil, highly corrupt company
- Links 19/04/2024: Running a V Rising Dedicated Server on GNU/Linux and More Post-"AI" Hype Eulogies
- Links for the day
- [Video] Novell and Microsoft 45 Years Later
- what happened in 2006 when Novell's Ron Hovsepian (who had come from IBM) sealed the company's sad fate by taking the advice of Microsoft moles
- EPO “Technical” Meetings Are Not Technical Anymore, It's Just Corrupt Officials Destroying the Patent Office, Piecewise (While Breaking the Law to Increase Profits)
- Another pillar of the EPO is being knocked down
- Sven Luther, Lucy Wayland & Debian's toxic culture
- Reprinted with permission from disguised.work
-
- Matthew Garrett, Cambridge & Debian: female colleague was afraid
- Reprinted with permission from disguised.work
- David Graeber, village wives & Debian Outreachy internships
- Reprinted with permission from disguised.work
- Neil McGovern & Ruby Central part ways
- Reprinted with permission from disguised.work
- Links 20/04/2024: Chinese Diplomacy and 'Dangerous New Course on BGP Security'
- Links for the day
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Friday, April 19, 2024
- IRC logs for Friday, April 19, 2024
- Gemini Links 19/04/2024: Kolibri OS and OpenBSD
- Links for the day
- [Meme] EPO “Technical” Meetings
- an institution full of despots who commit or enable illegalities
- Red Hat Communicates the World Via Microsoft Proprietary Spyware
- Red Hat believes in choice: Microsoft... or Microsoft.
- Chris Rutter, ARM Ltd IPO, Winchester College & Debian
- Reprinted with permission from disguised.work
- [Video] Microsoft Got Its Systems Cracked (Breached) Again, This Time by Russia, and It Uses Its Moles in the Press and So-called 'Linux' Foundation to Change the Subject
- If they control the narrative (or buy the narrative), they can do anything
- Links 19/04/2024: Israel Fires Back at Iran and Many Layoffs in the US
- Links for the day
- Russell Coker & Debian: September 11 Islamist sympathy
- Reprinted with permission from disguised.work
- Sven Luther, Thomas Bushnell & Debian's September 11 discussion
- Reprinted with permission from disguised.work
- G.A.I./Hey Hi (AI) Bubble Bursting With More Mass Layoffs
- it's happening already
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Thursday, April 18, 2024
- IRC logs for Thursday, April 18, 2024
- Coroner's Report: Lucy Wayland & Debian Abuse Culture
- Reprinted with permission from disguised.work
- Links 18/04/2024: Misuse of COVID Stimulus Money, Governments Buying Your Data
- Links for the day
- Gemini Links 18/04/2024: GemText Pain and Web 1.0
- Links for the day
- Gemini Links 18/04/2024: Google Layoffs Again, ByteDance Scandals Return
- Links for the day
- Gemini Links 18/04/2024: Trying OpenBSD and War on Links Continues
- Links for the day
- IRC Proceedings: Wednesday, April 17, 2024
- IRC logs for Wednesday, April 17, 2024
- Over at Tux Machines...
- GNU/Linux news for the past day