Eye on Security: Internet Still Threatened by Microsoft Windows
- Dr. Roy Schestowitz
- 2010-07-20 10:49:10 UTC
- Modified: 2010-07-20 10:49:10 UTC
Summary: New Windows Trojans, malware, and the likes of that
●
Can Windows kill the Internet?
I've long thought that someday Windows' security problems could foul up the Internet for everyone. That day may be arriving.
It's not just me being paranoid about Windows. It's the ISC (Internet Storm Center), the group that tracks the overall health of the Internet. They're wondering whether the newly discovered "LNK" exploit might be used to slam the brakes on the Internet's high-speed traffic.
According to Lenny Zeltser, an ISC security consultant, the ISC has
decided to raise the Infocon level to Yellow to increase awareness of the recent LNK vulnerability and to help preempt a major issue resulting from its exploitation. Although we have not observed the vulnerability exploited beyond the original targeted attacks, we believe wide-scale exploitation is only a matter of time. The proof-of-concept exploit is publicly available, and the issue is not easy to fix until Microsoft issues a patch. Furthermore, anti-virus tools' ability to detect generic versions of the exploit have not been very effective so far.
●
New Menace in the War Against Online Crime
Avoiding Web-borne infections is increasingly difficult, because many malicious sites are legitimate sites that have been hacked. But here are four steps to take to protect your computer:
1) Use the latest version of your favorite Web browser, because most have important anti-malware technologies not available in the older models. Consider using Google Chrome, which uses so-called sandboxing technology to stop drive-by downloads.
●
Microsoft initiates zero-day vulnerability probe
Microsoft is investigating reports of ongoing "targeted attacks" that reportedly exploit a serious Windows Shell vulnerability.
●
Zeus baddies unleash nasty new bank Trojan
Hackers have created a new version of the Zeus crimeware toolkit that's designed to swipe bank login details of Spanish, German, UK and US banks.
The malware payload, described by CA as Zeus version 3, is far more selective in the banks it targets. Previous versions targeted financial institutions around the world while the latest variant comes in two flavours: one that only target banks in Spain and Germany, and a second that only targets financial institutions in the UK and US.
●
MS Patch Tuesday: Googler zero-day fixed in 33 days
●
You Have to Wait a Month for Reinforcements
Folks who have migrated to GNU/Linux may have to work hard to make the transition but they can relax a lot afterwards. That other OS and its apps will be around for years drawing attention from malware and GNU/Linux will just keep growing staying small and modular with lots of immunity built in. The cost of fighting malware is almost entirely born by users of that other OS and GNU/Linux gets a free ride. I like that. The cost of monopoly is compounding itself and the price of Freedom declines.
Recent Techrights' Posts
- On Character Assassination Tactics
- The people who leverage these dirty politics typically champion projection tactics
- United States Entering the $100 Trillion Debt Trap, We Compare GAFAM Debt
- Google's debt is about 6 times less than Amazon's
- Software Freedom Conservancy (SFC), Inc. vs. Vizio, Inc. Is Costing the Free Software Foundation Money
- FSF subpoena and deposition
- They Try to Replace the Creators of GNU/Linux and Hijack Their Word, Work, and Reputation
- gnu.org is down at the moment; now I'm told it's back but very slow. DDoS?
- Links 05/05/2024: Political Cyberattacks From Russia and Google Getting a Lot Worse
- Links for the day
-
- Links 06/05/2024: Al Jazeera Raided, Wildfire Season Coming
- Links for the day
- Links 06/05/2024: Scams and Politics
- Links for the day
- Gemini Links 06/05/2024: Reading and Computers
- Links for the day
- GitLab's Losses Grew From $172,311,000 to $424,174,000 Per Annum
- Letting this company have control over your (or your company's) development/code forge may cost you a lot in the future
- statCounter's Latest: Android Bouncing to New All-Time Highs, Windows Down to Unprecedented Lows
- Android rising
- Can't Bear the Thought We're Happy and Productive
- If someone is now harassing online friends, attacking the wife, attacking my family (not just attacking and defaming people I know online) there are legal ramifications
- IRC Proceedings: Sunday, May 05, 2024
- IRC logs for Sunday, May 05, 2024
- Over at Tux Machines...
- GNU/Linux news for the past day
- Erinn Clark & Debian: Justice or another Open Source vendetta?
- Reprinted with permission from disguised.work
- Death of Michael Anthony Bordlee, New Orleans, Louisiana
- Reprinted with permission from disguised.work
- The Revolution Continues
- Today we've published over 20 pages and tomorrow we expect more or less the same
- Death of Dr Alex Blewitt, UK
- Reprinted with permission from disguised.work
- Following the Herd (or HURD)
- Society advances owing to people who think differently and promote positive change, not corporate shills
- Thiemo Seufer & Debian deaths: examining accidents and suicides
- Reprinted with permission from disguised.work
- Gemini Links 05/05/2024: Infobesity and Profectus Beta 1.0
- Links for the day
- Running This Site Mostly a Joyful Activity
- The real problem or the thing that we need to cancel is this "Cancel Culture"
- Australia Has Finally Joined the "4% Club" (ChromeOS+GNU/Linux)
- statCounter stats
- Debian as a Hazardous Workplace Where No Accountability Exists (Nor Salaries)
- systematic exploitation of skilled developers by free 'riders' (or freeloaders) like Google, IBM, and Microsoft
- Clownflare Isn't Free and Its CEO Openly Boasted They'd Start Charging Everyone to Offset the Considerable Losses (It's a Trap, It's Just Bait)
- Clownflare has collapsed
- Apple Delivered Very Disappointing Results, Said It Would Buy Its Own Shares (Nobody Will Check This), Company's Debt Now Exceeds Its Monetary Assets
- US debt is now 99.98 trillion dollars
- FSFE Still Boasts About Working Underage People for No Pay
- without even paying them
- IRC Proceedings: Saturday, May 04, 2024
- IRC logs for Saturday, May 04, 2024
- Over at Tux Machines...
- GNU/Linux news for the past day
- The Persecution of Richard Stallman
- WebM version of a new video
- Molly de Blanc has been terminated, Magdalen Berns' knockout punch and the Wizard of Oz
- Reprinted with permission from disguised.work
- [Meme] IBM's Idea of Sharing (to IBM)
- the so-called founder of IBM worshiped and saluted Adolf Hitler himself
- Neil McGovern & Debian: GNOME and Mollygate
- Reprinted with permission from disguised.work
- [Meme] People Who Don't Write Code Demanding the Removal of Those Who Do
- She has blue hair and she sleeps with the Debian Project Leader
- Jaminy Prabaharan & Debian: the GSoC admin who failed GSoC
- Reprinted with permission from disguised.work
- Jonathan Carter, Matthew Miller & Debian, Fedora: Community, Cult, Fraud
- Reprinted with permission from disguised.work
- Techrights This May
- We strive to keep it lean and fast
- Links 04/05/2024: Attacks on Workers and the Press
- Links for the day
- Gemini Links 04/05/2024: Abstractions in Development Considered Harmful
- Links for the day
- Links 04/05/2024: Tesla a "Tech-Bubble", YouTube Ads When Pausing
- Links for the day
- Free Software Community/Volunteers Aren't Circus Animals of GAFAM, IBM, Canonical and So On...
- Playing with people's lives for capital gain or "entertainment" isn't acceptable
- [Meme] The Cancer Culture
- Mission accomplished?
- Germany Transitioning to GNU/Linux
- Why aren't more German federal states following the footsteps of Schleswig-Holstein?
- IRC Proceedings: Friday, May 03, 2024
- IRC logs for Friday, May 03, 2024
- Over at Tux Machines...
- GNU/Linux news for the past day
- Alexander Wirt, Bucha executions & Debian political prisoners
- Reprinted with permission from disguised.work
- Links 03/05/2024: Clownflare Collapses and China Deploys Homegrown Aircraft Carrier
- Links for the day
- IBM's Decision to Acquire HashiCorp is Bad News for Red Hat
- IBM acquired functionality that it had already acquired before
- Apparently Mass Layoffs at Microsoft Again (Late Friday), Meaning Mass Layoffs Every Month This Year Including May
- not familiar with the source site though