WorldWar-E™

As part of the iOS 4 upgrade, Apple patched a record 65 vulnerabilities in the iPhone, more than half of them critical.
Apple released iOS 4 for the iPhone 3G and 3GS, and the second- and third-generation iPod Touch.
However, the first-generation iPhone and iPod Touch, as well as the much newer iPad , may be vulnerable [...] Read more »

Posted on July 5th, 2010 under Consumer Cyber Alert, Security News. Tags: Apple, apple ipad, apple iphone, iphone patch, Security Vulnerability, Vulnerability. Comments: None

Google engineer Tavis Ormandy, a bug hunter known for finding kernel-level operating system coding errors, has released details about a serious zero-day vulnerability in Windows XP that could leave an open hole for a remote attacker.
The flaw is contained in the Windows Help and Support Center, a Web-based feature providing technical support to end users. [...] Read more »

Posted on June 17th, 2010 under Consumer Cyber Alert, Exploits & Hacks, Security News, Windows. Tags: Attacks, Coding Errors, cross-site scripting attack, Google, Implementation Error, Microsoft, Open Hole, Security, Security Flaw, Vulnerability, Windows, windows help flaw, Windows Xp, Zero Day. Comments: None

A just-published attack tactic that bypasses the security protections of most current antivirus software is a “very serious” problem, an executive at one unaffected company said.
Last week, researchers at Matousec.com outlined how attackers could exploit the kernel driver hooks that most security software use to reroute Windows system calls through their software to check for [...] Read more »

Posted on May 23rd, 2010 under Consumer Cyber Alert, Exploits & Hacks, Security News, Windows. Tags: crack, Exploit, Security Threat, Software Vulnerabilities, Vulnerability. Comments: None

Mozilla has introduced a service that checks plugins for the Internet Explorer, Chrome, Opera, and Safari browsers to make sure they don’t contain known bugs or security vulnerabilities.
The page builds off a feature rolled out last year that checked only for out-of-date plugins for Firefox. At the moment, the service offers limited coverage for Internet [...] Read more »

Posted on May 20th, 2010 under Browsers, Consumer Cyber Alert, Cyber Security, Security Alerts. Tags: Adobe Flash, Bugs, Firefox, Insecure Version, Internet Explorer Extensions, Internet Safari, Mozilla, Security Threat, Security Vulnerabilities, Vulnerability. Comments: None

Mozilla has expanded a service that checks if a browser’s plugins are current to now scan Internet Explorer, Safari, Opera, and Chrome in addition to its own Firefox.
Plugins are small bits of code that enable other applications to run within a Web browser, such as Adobe’s Flash multimedia program. But outdated plugins are a danger [...] Read more »

Posted on May 19th, 2010 under Browsers, Security News. Tags: browser, browser plugins, internet browser, Security Threat, Vulnerability. Comments: None

A new attack technique has been described by matousec.com (a project of Different Internet Experience Ltd.) which could allow a program to bypass the host intrusion detection and certain other protections provided by common Windows security software. Their report lists 35 security products on which they tested the technique; it worked on all of them.
The [...] Read more »

Posted on May 18th, 2010 under Consumer Cyber Alert, Exploits & Hacks, Security News. Tags: Anti Malware Programs, Anti Virus, Attempt, Internet Security, Intrusion Detection, Parameters, threat, Vulnerability, Windows Security Software, Windows Software. Comments: None

How do you get a malware exploit to bypass antivirus protection? By making it work the same way the antivirus software does.
A new exploit outlined this week is so effective, say researchers, that it can slip by “virtually all” antivirus protection undetected.
It works the same way an antivirus app does, by hooking directly into Windows [...] Read more »

Posted on May 18th, 2010 under Consumer Cyber Alert, Exploits & Hacks, Security News. Tags: Administrator Rights, Antivirus Software, Malicious Code, New Malware, Security Threat, Vulnerability. Comments: None

Microsoft will release an update intended to rid Internet Explorer 8 of a vulnerability that can enable serious security attacks against websites that are otherwise safe.
The change, which will be introduced in June, will be the third time in six months that Microsoft has tweaked a feature used to filter out XSS, or cross-site scripting [...] Read more »

Posted on May 12th, 2010 under Browsers, Consumer Cyber Alert, Exploits & Hacks, Security News. Tags: browser vulnerability, Google, Internet Explorer 8, Internet Explorer flaw, Malicious Code, Malicious Commands, Malicious Script, Microsoft Security Response Center, Script Tag, Security Attacks, Security Lapse, Serious Security, twitter, Vulnerability. Comments: None

Exploits of Adobe Systems Inc.’s PDF file format jumped dramatically last year and are continuing to climb during 2010, a McAfee Inc. security researcher said Wednesday.
Microsoft Corp., meanwhile, recently said that more than 46% of the browser-based exploits during the second half of 2009 were aimed at vulnerabilities in the free Adobe Reader PDF viewer.
According [...] Read more »

Posted on May 11th, 2010 under Adobe, Consumer Cyber Alert, Exploits & Hacks, Security News. Tags: Adobe Pdf, Adobe Reader Vulnerability, Adobe Systems, Attackers, First Quarter, Free Adobe Reader, Malware, Pdf File Format, PDF vulnerability, Reader Pdf, Security Problems, Security Strategist, Vulnerabilities, Vulnerability. Comments: None