The DHS Daily Open Source Infrastructure Report (DHS) covers
the publicly reported material for the preceding day(s) not previously
covered. This weekly summary provides a selection of those items of
greatest significance to the InfoSec professional.
Should you not be aware of even one of the items discussed
below it would be wise to familiarize yourself with it. The headline above each entry will take you
directly to the DHS report which presented the item for ten business days from
the date of inclusion. The Source link
will take you to the original source cited by DHS.
A relatively quiet week, nearly all of the
significant items in some way relate to antivirus protection. A password compromise Trojan which bypasses
most AV tools was reported Monday, attack code focusing on a Microsoft vulnerability
was reported Tuesday, Twitter scammers spreading scareware was reported
Wednesday, an AV scam impacting Google users reported Thursday and Cisco released
a dozen patches reported Friday.
Week Ending:
Friday, September 25, 2009
Infrastructure
Report for Monday, 21 September 2009
Nasty password Trojan evading AV software. Could it be within your environment?
31. September 18, The Register – (International) World’s nastiest trojan fools AV software. One of the world’s nastiest password-stealing trojans evades detection by the majority PCs running anti-virus (AV) programs, according to a study that examined 10,000 machines. Source: http://www.theregister.co.uk/2009/09/18/zeus_evades_detection/
Infrastructure
Report for Tuesday, 22 September 2009
Attack
code looms to attack a Windows flaw! Should you disable the vulnerable
component?
41. September 20, Computerworld – (International) Microsoft unveils shield for critical Windows flaw as attack code looms. With attack code that exploits a critical unpatched bug in Windows likely to go public soon, Microsoft wants users to run an automated tool that disables the vulnerable component. Source: http://www.computerworld.com/s/article/9138278/Microsoft_unveils_shield_for_critical_Windows_flaw_as_attack_code_looms?taxonomyId=85
Infrastructure
Report for Wednesday, 23 September 2009
Twitter scammers spreading scareware! Will it affect your employees or clients?
29. September 22, Network World – (International) Scammers auto-generate Twitter accounts to spread scareware. Scammers are increasingly using machine-generated Twitter accounts to post messages about trendy topics, and tempt users into clicking on a link that leads to servers hosting fake Windows antivirus software, security researchers said Monday. Source: http://www.networkworld.com/news/2009/092209-scammers-auto-generate-twitter-accounts-to.html?hpg1=bn
Infrastructure
Report for Thursday, 24 September 2009
Google users beware!
There is risk as a result of an AV scam.
38. September 22, SCMagazine – (International) Rogue AV scam targets Google users. An ongoing attack on Google users is sending victims to rogue anti-virus software sites, researchers said this week. Source: http://www.scmagazineus.com/Rogue-AV-scam-targets-Google-users/article/149460/
Infrastructure
Report for Friday, 25 September 2009
Cisco’s
latest patches have been released! Are
you on top of this?
33. September 23, IDG News Service
– (International) Cisco patches a dozen router bugs. Cisco
Systems has released its twice-yearly set of security patches for its router
firmware, fixing 12 security flaws in the products. Source: http://www.computerworld.com/s/article/9138434/Cisco_patches_a_dozen_router_bugs?taxonomyId=17
Note:
The DHS only maintains the last ten days of their reports online. To
obtain copies of earlier reports or complete summaries, go to:
http://dhs-daily-report.blogspot.com/