Hackers have launched distributed denial of service attacks against the Domain Name System (DNS) servers of a brace of domain name registrars over recent days. The motive for the separate attacks against VeriSign and Joker.com remains unclear.
The wave of zero-day attacks against a gaping hole in Microsoft’s Internet Explorer browser appears to have subsided, but in the absence of a patch, security experts warn that the risk remains significant.
Security software maker Symantec introduced the latest versions of its anti-virus and anti-spyware applications, offering more powerful malware detection capabilities and improved network reporting tools for monitoring against potential attacks.
IBM introduced a new intrusion detection technology dubbed Billy Goat that claims to be highly effective in battling worm viruses and other types of malicious IT threats, and in eliminating false security alarms.
It’s a good time now, in the midst of a “zero-day” attack, to consider the meaning of severity ratings for vulnerabilities.
The current Internet Explorer attack is a bad one of course, but just as was the case in the midst of the Windows Meta File vulnerability crisis four months ago, the actual severity is easy to overstate.
Here’s another informative security article from PC Magazine. This week Larry Seltzer looked into the much publicized hole in IE and its 0 day threat.
Another IE flaw which seems minor in comparison is one that crash the browser.
According to one security firm, a new threat has been circulating for over a week that uses a Trojan horse and a rootkit to perform spyware operations. Get more details in the Spyware Rootkits section.
We know you’ve heeded our constant exhortations to run a personal firewall, an antivirus product, and a spyware sniffer/remover. And naturally, you update all of them religiously. Of course you do. So now you’re completely safe, right?
Wrong.
From the article:
Microsoft Corp. has launched a public bug database for Internet Explorer 7, which is currently in beta.
Access to the Internet Explorer Feedback site requires a Passport account and signup is through Microsoft Connect. The new site is similar to Bugzilla, a bug-reporting site set up for Firefox by Mozilla Corp.
From the article
An Israeli couple were jailed on Monday after confessing to the development and sale of spyware that helped private investigators snoop on their clients’ business competitors.
A recently identified security hole in the Internet Explorer browser is being exploited, and Microsoft Corp. hopes to include a fix for it in its April 11 patch or possibly sooner, according to a posting on a Microsoft blog.
