Well, as always, Microsoft has vowed to keep as busy by releasing critical patches. The list this tuesday is as follows:

MS09-018

Read more »

Hula All!

Back to blogging after a long time. Well, as the saying goes “Be late then never”

Back to Security world there are quite an important news around.

1. Gumblar.cn : This trojan is reported to be spreading rapidly using mainly the adobe vulnerability and other techniques. It captures your key logs, web traffic etc for any sensitive login credentials. Reportedly it mainly targets for FTP credentials. Then it infects the hosted site by injecting the malware download link into its html content. Scansafe has suggested a way of checking if your system is infected?? Good Read.

2. HPP: A subcategory of variable manipulation attack vector. Well, this is technique is not a new face to most of the security testers. Two researchers presented the details at OWASP, Poland. As per the presentation, HPP can be used to
Read more »

Blogged here recommentions and security tips for file upload module which is commonly targetted by hackers.

Any feedbacks/suggestions would be of great help

Hi folks!!!

Its patch tuesday again. This time MS has released 1 critical and 2 important patches.

Details:

1. Microsoft Security Bulletin MS09-006 – Critical
Vulnerabilities in Windows Kernel Could Allow Remote Code Execution (958690)

This security update resolves several privately reported vulnerabilities in the Windows kernel. The most serious vulnerability could allow remote code execution if a user viewed a specially crafted EMF or WMF image file from an affected system.

Read more »

Well this is an article written by me for Palaside -magazine. This is just a brief article (good for begineers) about basic stages of malware and virtual keyboard fight.

Ahaa!! Microsoft seems to be really pissed off by the impact of conficker worm that it has announced an award of $250000 for the arrest of its author. Conficker is the real latest worm that has badly hit millions of users using Microsoft Windows. Well good luck for catching the author but here I will mention some tips which can help in conficker arrest.

1. Admin access. Users whose accounts are configured to have fewer user rights on the system could be less impacted than users who operate with administrative user rights. Also a study also found that eliminating Admin rights would have stopped or mitigated: Read more »

Hi all system admins…we again have some work to do : )

Microsoft released 4 patches this Tuesday. Details are as mentioned below.

Read more »

Hi All

Win32/Conficker.B is a worm that infects other computers across a network by exploiting a vulnerability in the Windows Server service (SVCHOST.EXE). If the vulnerability is successfully exploited, it could allow remote code execution when file sharing is enabled. It may also spread via removable drives and weak administrator passwords. It disables several important system services and security products.Remember even one unpatched machine is enough to have this worm spread through the entire network.Ms08-67 worm is spreading infection over millions of computers.

http://www.f-secure.com/weblog/archives/00001579.html

Read more »

Recent outbreak of MS08-67 worm, Downadup/Conflicker has already infected more than 9 million PCs. A special thing about this Microsoft Security Bulletin MS08-67 was that it was released out-of-band, it was given an “Exploitability Index Assessment” of “1 – Consistent exploit code likely” and it allows for Remote Code Execution, in numerous versions of Windows (particularly critical for 2000, XP, and Server 2003).

Read more »

Today, Wikipedia turns 8. Happy Birthday Wiki!!

I assume everyone must be aware what Wikipedia is? For those who are not aware, Wikipedia is a free encyclopedia with millions of articles contributed collaboratively using Wiki software, in dozens of languages. It also contains hundreds of Wikibooks , Wiktionary, Wikisource, Wikiversity, Wikispecies and lot more . Wow!! That’s really a big contribution to the open knowledge base.

Read more »