23.1.09

starting our new website

Our new Website : http://worldsecure.co.uk/
If you have any knowledge of security or professinal in Networking such as Microsoft , Cisco , Linux or any other send your CV to worldsecure@hotmail.co.uk via mail or instant messaging .
Worldsecure

22.1.09

Privacy Flaw Found In Apple Safari RSS Reader


Apple’s Safari web browser for both the Mac and Windows suffers from a serious vulnerability that can expose emails, passwords and other sensitive contents of a user’s hard drive, an open source software developer Brian Mastenbrook has warned. Users of Tiger, aka Mac OS X 10.4, and earlier versions of Mac OS X are not vulnerable.

The vulnerability can be used to gain access to sensitive information stored on the user’s computer, such as emails, passwords, or cookies that could be used to gain access to the user’s accounts on some web sites. The vulnerability has been acknowledged by Apple.

Those using Mac OS X 10.5, aka Leopard, are susceptible to the data-snooping bug even if they use Firefox or another alternate browser, according to the researcher. Windows users are also vulnerable, but only if they are using Safari.

Leopard users can protect themselves by opening Safari and selecting Preferences from the Safari menu, choosing the RSS tab from the top of the Preferences window, clicking on the Default RSS Reader pop-up window and selecting an application other than Safari.

For the time being, Windows users with Safari installed should leave it closed and use a different browser.

21.1.09

GoDaddy.com Hosting Hit By A Major Denial-of-Service Attack


A distributed denial-of-service (DDoS) attack took offline several thousand Web sites hosted by GoDaddy.com Wednesday morning. The outage was intermittent over several hours, according to Nick Fuller, GoDaddy.com communications manager. Neither e-mail nor DNS services were interrupted.

While users on GoDaddy`s forums complained about mail services outages and at least several thousand Web sites unreachable, Fuller said that only a very small percentage of sites were unreachable but would not provide exact numbers “because of security reasons.”

GoDaddy.com’s voice mail system pointed to its support page for more information about the outage and when it would be corrected but there was no information about it there. GoDaddy.com was hit in November 2005 with a similar denial-of-service attack that affected 600,000 of its customers’ hosted Web sites for about an hour.

19.1.09

Classmates Users Hit By Network Sniffing Passwords Stealing Worm


Websense Security Labs reported yesterday a campaign against Classmates Online, Inc had broken out. Thousands of URLs were registered in one day to spread the worm. The newly-registered URLs were unusually long, had several subdomains, and always contained some specific words such as “process” and “multipart”.

The new campaign was spread by email. The malicious email contained a link to a video invitation to reunite high school classmates and celebrate Classmates Day 2009.

When the email recipient viewed the invitation, they downloaded a worm named Adobe_Player10.exe. This could fool a user into thinking they needed the latest version of the Adobe Player, prompting them to run the executable.

Simple analysis showed that the main purpose of this worm was to steal user information and send it to a server located in the Ukraine. The address of the server was hardcoded in the worm. The worm did a lot of work, including dropping a driver file to hide itself, injecting itself into every process, downloads and so on. It collected several kinds of information, including details about POP3, IMAP, ICQ, FTP, and certification from the user’s MY certificate store, which is used to store trusted sites and personal certificates.

A network sniffer was also found in the worm that could monitor the network traffic. The worm searched for special keywords in the network flow such as “RCPT TO:”, “MAIL FROM:”, the two keywords used for SMTP protocol. When the malware found one of these keywords in the network traffic, it would parse some useful information such as the email address, username, and password, then send the details to the hardcoded server: in this case, http://91.********.57/cgi-bin/forms.cgi

The worm injected itself in every process. The injected code would enum a module of the process, and then hook some APIs into the module in order to monitor the network traffic to steal usernames and passwords for FTP and HTTP sessions.

15.1.09

PDF Processing Vulnerabilities Patched In BlackBerry

According to warnings issued by Research in Motion (RIM), hackers can use booby-trapped PDF attachments sent to BlackBerry devices to launch malicious code execution attacks. The company shipped patches this week to address a pair of critical vulnerabilities affecting their product.
The vulnerabilities are due to the improper processing of PDF files within the Distiller component of the BlackBerry Attachment Service.
Multiple security vulnerabilities exist in the PDF distiller of some released versions of the BlackBerry Attachment Service. These vulnerabilities could enable a malicious individual to send an email message containing a specially crafted PDF file, which when opened for viewing on a BlackBerry smartphone, could cause memory corruption and possibly lead to arbitrary code execution on the computer that hosts the BlackBerry Attachment Service.
RIM recommends that users upgrade to the latest version of the BlackBerry Unite! software. RIM customers are strongly urged to apply the updates or implement the workarounds listed in KB17118 and KB17119 documents to help mitigate the risk.

10.1.09

starting best vpn with us !

Do you need a vpn connection to your company or internet !?
Do you need to download via fast internet connection !?
Do you need a vps server !?
Do you need a secure connection to buy your products with credit or debit card !?

All you need is to contact with us and recieve our lowest price and best quality with highest bandwidth range .

worldsecure@hotmail.com.uk