Free Republic

Microsoft on Wednesday launched the first major update to Internet Explorer in five years, and posted the new browser for Windows XP to a download site. IE 7, which has was announced in February 2005 by chairman Bill Gates, has been touted by the company as a significant update in the areas of security and usability. The interface has been streamlined and tabs have been added to compete with rivals such as Mozilla's Firefox and Opera's flagship browser. On the security front, IE 7 adds anti-phishing defenses as well as additional features to control ActiveX controls, which historically have been...

Although Microsoft has acknowledged that in-the-wild exploits are taking advantage of an unpatched flaw in Internet Explorer, the developer has not committed to cranking out a fix before next month's regularly-scheduled update on Oct. 10. Users who want to protect themselves now, however, do have options. Disable the vulnerable .dll: In the security advisory posted yesterday, Microsoft suggested that users can disable the vulnerable "Vgx.dll" from the command line. -- Click Start, choose Run, and then type -- regsvr32 -u "%ProgramFiles%\Common Files\Microsoft Shared\VGX\vgx.dll -- Click OK, then click OK again in the confirmation dialog that appears. To undo the command,...

Excerpt - LAKE BUENA VISTA, Fla. — In a rare discussion on the severity of the Windows malware scourge, a Microsoft security official said businesses should consider investing in an automated process to wipe hard drives and reinstall operating systems as a practical way to recover from malware infestation. "When you are dealing with rootkits and some advanced spyware programs, the only solution is to rebuild from scratch. In some cases, there really is no way to recover without nuking the systems from orbit," Mike Danseglio, program manager in the Security Solutions group at Microsoft, said in a presentation at...

A dangerous new exploit in Internet Explorer could put PCs and data at risk, Microsoft has admitted. The flaw, for which code has already been published on the internet, could be exploited to set an email-borne virus free on the unsuspecting public. Potential viruses could come as an attachment that conceals the code, or could possibly redirect users to a site that will unleash the code on the user's machine, leaving the computer open to remote attack. Once the PC is being controlled by a malicious user, it can then be used to launch attacks on other PCs. Even supposedly...

BARCELONA, Spain — Microsoft Corp. has won backing from major cellular networks for a new generation of phones designed to transform mobile e-mail from executive accessory to standard issue for the corporate rank-and-file. The partnerships, with operators including Vodafone and Cingular, to be announced today at a mobile industry gathering in Spain, could spell more trouble for the embattled BlackBerry and other niche e-mail technologies........ Unlike the BlackBerry and its peers, phones running Microsoft's latest Windows Mobile operating system can receive e-mail "pushed" directly from servers that handle a company's messaging — without the need for a separate mobile server...

This is a transcript from a show Steve Gibson did with Leo LaPorte. The link to the audio is at the above link. Also, I will excerpt a little of the relevant information here.Steve: And so, you know, because I'm a developer when I'm not being a hacker, I wanted to understand - oh, and the other thing is, I want to write a robust testing application, you know, that always works all the time. So I wanted to know, like, okay, what bytes have to be set which way, what matters, what doesn't. Because, you know, that's the way...

Looking forward to the week ahead, I find myself in the very peculiar position of having to say something that I don't believe has ever been said here in the Handler's diary before: "Please, trust us." I've written more than a few diaries, and I've often been silly or said funny things, but now, I'm being as straightforward and honest as I can possibly be: the Microsoft WMF vulnerability is bad. It is very, very bad.

Excerpt - NEW YORK -(Dow Jones)- Microsoft Corp. (MSFT) plans to release a patch for a new security flaw at its next scheduled update release on Jan. 10, leaving users largely unprotected until then from a rapidly spreading computer virus strain. "Microsoft's delay is inexcusable," said Alan Paller, director of research at computer security group SANS Institute. "There's no excuse other than incompetence and negligence." "It's a problem that there's no known solution from Microsoft," said Alfred Huger, senior director of engineering at Symantec Corp.'s (SYMC) security response team. SANS Institute, via its Internet Storm Center, has taken the unusual...

Computer security experts were grappling with the threat of a newweakness in Microsoft’s Windows operating system that could put hundreds of millions of PCs at risk of infection by spyware or viruses. The news marks the latest security setback for Microsoft, the world’s biggest software company, whose Windows operating system is a favourite target for hackers. “The potential [security threat] is huge,” said Mikko Hyppönen, chief research officer at F-Secure, an antivirus company. “It’s probably bigger than for any other vulnerability we’ve seen. Any version of Windows is vulnerable right now.” The flaw, which allows hackers to infect computers using...

This alert is a follow-up to a post made yesterday on our blog: http://www.websensesecuritylabs.com/blog/ Websense® Security Labs™ has discovered numerous websites exploiting an unpatched Windows vulnerability in the handling of .WMF image files. The websites which have been uncovered at this point are using the exploit to distribute Spyware applications and other Potentially Unwanted Soware. The user's desktop background is replaced with a message warning of a spyware infection and a "spyware cleaning" application is launched. This application prompts the user to enter credit card information in order to remove the detected spyware. The background image used and the "spyware...

Security researchers have released instructions for exploiting a previously unknown security hole in Windows XP and Windows 2003 Web Server with all of the latest patches applied.

The BlackBerry service, based on the handheld e-mail device that has become a must-have tool for the business elite, could be shutdown in the United States after a bitter legal battle over a key patent. This week, NTP, a small firm that holds a crucial patent that allows e-mails to be sent to mobile devices, announced a licence agreement with Visto Corp - an arch-rival of Research In Motion. (RIM), the company that created the BlackBerry. The announcement could put further pressure on RIM to settle a patent claim from NTP which could be worth up to $1 billion (£565...

Before all you anti-MS fanboys attack my setup let me first say I am an ASP/VB web developer for an online company and require IE and MS so save the firefox/mac posts for another day. On to the problem at hand... I got the automatic update last night on my XP pro system and now my IE acts very odd. It seems to open fine but it always opens a new window no matter how I try (ie. type in an addres, using favorites). The original window stays open but it doesnt allow any interaction with it. If I try...

Microsoft promises world domination at PDC IntroductionLos Angeles (CA) - The way we build and use personal computers will change dramatically over the next 24 months, and if Microsoft has anything to do it, they will be a principal catalyst for these changes. Linux developers will regret admitting this, but the changes being made to Windows, announced at last week's Professional Developers' Conference, will dramatically impact the architecture and feature set of all personal computers, handhelds, and to some degree, even other consumer appliances.This change at the software level is important, because it impacts not only how we work, but...

Bank customers know to shield their ATM passwords from prying eyes. But with the rise of online banking, computer users may not realize electronic snoops might be peeking over their shoulder every time they type. In a twist on online fraud, hackers and identity thieves are infecting computers with increasingly sophisticated programs that record bank passwords and other key financial data and send them to crooks over the Internet. That's what happened to Tim Brown, who had account information swiped out of the PC at his Simi Valley store. "It's scary they could see my keystrokes," said Brown, owner of...

Troj/Yusufali-A is a Trojan for the Windows platform. Troj/Yusufali-A analyzes the title of the window in focus looking for various words. Some of the words Troj/Yusufali-A searches for are: sex teen xx Phallus jegger Priapus Phallic Penis Exhibitionism If Troj/Yusufali-A finds one of these words in the title bar it will minimise the current window and display the following message in English along with other messages in other languages: YUSUFALI: Know, therefore, that there is no god but Allah, and ask forgiveness for thy fault, and for the men and women who believe: for Allah knows how ye move about...

Computer users are being urged to be on guard for a bogus e-mail that pretends to offer news updates about Hurricane Katrina as a means to infect their PCs. The malicious e-mail gives a brief news bulletin on the disaster before urging people to click "read more" and be taken to the full story on a website. Yet once directed to the website, a virus is sent to the user's computer. People are also being told to watch out for fraudulent e-mail scams pretending to raise cash for Katrina victims. It's sickening to think that hackers are prepared to exploit...

The advent of Firefox and other Web browser alternatives to Internet Explorer means cybercops have to learn new tricks for their investigations. Internet Explorer hides nothing from cops and other investigators who examine PCs to discover which sites the user has visited. They know the location of the IE browser cache, cookie files and history and know how to read those files. Also, popular forensics tools can help out. But that story changes when it comes to alternative browsers such as Firefox and Opera. These programs use different structures, files and naming conventions for the data investigators are after and...

Microsoft Corp. warned users of its Windows operating system on Tuesday of three newly found "critical" security flaws in its software, including one that could allow attackers to take complete control of a computer. Computer security experts urged users to download and install the patches, which are available at www.microsoft.com/security. "Users (should) apply the updates as quickly as possible," said Oliver Friedrichs, senior manager of Symantec Security Response, part of security software company Symantec Corp. SYMC.O. Microsoft said that vulnerabilities exist in its Internet Explorer Web browser, the most severe of which could allow an attacker to take complete control...

Microsoft on Tuesday issued alerts on several security flaws in Windows, the most serious of which could allow an attacker to gain control over a victim's computer. Microsoft released six security bulletins as part of its monthly patching cycle, three of which it deems "critical." The Redmond, Wash., software gives that rating to any security issue that could allow a malicious Internet worm to spread without any action required on the part of the user. One bulletin addresses three flaws in Internet Explorer. Of all the issues Microsoft offered fixes for Tuesday, these put users at most risk of attack,...

The next time you visit the Web site of Microsoft Corp. to download some software, be prepared to let the world’s biggest software company have a look inside your computer. In a determined strike to quell the proliferation of counterfeit software, Microsoft is now requiring that all customers coming to its Web site for upgrades and other downloads submit their computers to an electronic frisking. If you use one of the estimated 100 million PCs running pirated software, don’t expect your upgrade. For Microsoft, the new policy is a stepped-up effort to combat the loss of billions of dollars’ worth...

Single line of JavaScript allows systems to simply ignore authentication check Hackers have found a way to circumvent a check in Windows that aimed to prevent users of pirated copies from accessing software updates. By pasting a special JavaScript command in the address bar of the browser, users can disable the Windows Genuine Advantage 1.0 check that Microsoft took live last week. The Microsoft technology uses an ActiveX tool to force the user to go through an authentication check before he is allowed to access certain download sections on the Microsoft.com website. The JavaScript command simply instructs the computer to...

   http://www.news.com/ Why Bill Gates wants 3,000 new patents By Randall Stross http://news.com.com/Why+Bill+Gates+wants+3%2C000+new+patents/2100-1008_3-5812318.html Story last modified Sun Jul 31 08:15:00 PDT 2005 <div><img><br><a><img></a></div> "EXCITING," "uninteresting" and "not exciting" don't seem like technical terms, but they show up a lot in United States patent application No. 20,050,160,457, titled "Annotating Programs for Automatic Summary Generation." It seems to be about baseball. The inventors have apparently come up with software that can detect the portions of a baseball broadcast that contain what they call "excited speech," as well as hits (what I call "excited ball") and automatically compile those portions into a...

As software rivals, Microsoft wants to wipe Apple Computer off the map. With Microsoft's new Web service for satellite photographs, did the world's largest software company find a way to do exactly that? Internet sleuths discovered that anyone using Microsoft's new "Virtual Earth" Web site for a bird's-eye view of Apple's corporate headquarters saw only a grainy overhead photograph of what appears to be a single, nondescript warehouse and a deserted parking lot - not Apple's sprawling campus, with 11 modern buildings surrounding a plush courtyard. Microsoft blames an outdated photograph. But Apple's headquarters in Silicon Valley shows up more...

The founder of a Redmond, Wash.-based custom application and services provider is considering taking action to challenge Microsoft Corp. over the naming of the next version of the Windows operating system (OS). John Wall, chief executive officer of Vista Inc., said his company is “considering all of its options” for a potential case against Microsoft because of the company’s choice of the name “Windows Vista” for the previously code-named Longhorn version of the OS. Wall said the naming of Windows may violate a trademark his company has and potentially create confusion over the software and services Vista provides. Vista is...

Nova Scotia July 19, 2005 -- SpyCop today announced that the use of commercial monitoring spy software is on the rise in Internet phishing schemes, the latest scam used to steal personal information and even entire identities. The Anti-Phishing Working Group, web site at www.antiphishing.org, explains: "Phishing attacks use both social engineering and technical subterfuge to steal consumers' personal identity data and financial account credentials... Technical subterfuge schemes plant crimeware onto PCs to steal credentials directly, often using Trojan keylogger spyware." The commercial spy software market has made available over 525 payware spy programs which include URL recorders, keyloggers, chat...

SAN FRANCISCO, July 15 - Add personal computers to the list of throwaways in the disposable society. On a recent Sunday morning when Lew Tucker's Dell desktop computer was overrun by spyware and adware - stealth software that delivers intrusive advertising messages and even gathers data from the user's machine - he did not simply get rid of the offending programs. He discarded the whole computer. Mr. Tucker, an Internet industry executive who holds a Ph.D. in computer science, decided that rather than take the time to remove the offending software, he would spend $400 on a new machine. He...

As part of its monthly patching cycle, Microsoft on Tuesday plans to release three security alerts for flaws in Windows and Office. Two of the security bulletins apply to Windows, and at least one of them is deemed "critical," Microsoft's highest risk rating, the company said in a notice posted on its Web site Thursday. Its Office productivity suite will get one bulletin, also rated critical. The notice did not specify whether one of the patches will be for Internet Explorer. Microsoft earlier this week offered a workaround for a known flaw in the Web browser that opens the door...

Microsoft warns of unpatched IE flaw By Dawn Kawamoto, CNET News.com Published on ZDNet News: July 1, 2005, 8:55 AM PT Microsoft has issued a security advisory for Internet Explorer, after a research firm published a working exploit to demonstrate how attackers could take advantage of the flaw. The vulnerability, discovered by SEC Consult, mean that attackers could cause the browser to unexpectedly exit and execute arbitrary code. Versions of IE affected by the flaw include IE 6.0 on Windows 2000 with Service Pack 1, 3 and 4, and on Windows XP with Service Pack 1 and 2. "Microsoft is investigating...

IBM Corp. will receive $775 million in cash and $75 million in credit for software from Microsoft Corp. to settle claims that resulted from the federal government's antitrust case against Microsoft in the 1990s, the companies announced Friday. The payout is one of the largest that Microsoft has made since U.S. District Judge Thomas Penfield Jackson ruled in 2000 that Microsoft engaged in anticompetitive practices. Jackson's ruling cited IBM as a company that Microsoft had forced to "desist from certain technological innovations and business initiatives." For example, Microsoft didn't charge all computer makers the same amount for its Windows operating...

One in 10 UK websites fail to work properly on the open source Firefox web browser, a study shows. Some 100 leading consumer sites were assessed by web-testing firm SciVisum. Websites that proved difficult for Firefox users to navigate included the government website Jobcentreplus.gov.uk and the cinema site Odeon.co.uk. Firefox is an open source alternative to Microsoft's Internet Explorer and has proved popular since its launch in November last year. While most people still use Microsoft's browser, Firefox is slowly making inroads. Its share of the browser market grew to 8% in May, up from 5.59% at the beginning of...

A security breach of customer information at a credit card-processing company could expose to fraud up to 40 million cardholders of multiple brands, MasterCard International Inc. said Friday. The credit card giant said its security division detected multiple instances of fraud that tracked back to CardSystems Solutions Inc. of Tucson, Ariz., which processes transactions for banks and merchants. MasterCard said in a news release late Friday afternoon that it was notifying its card-issuing banks of the problem. CardSystems was hit by a computer virus that captured customer data for the purpose of fraud, said company spokeswoman Sharon Gamsin. The FBI...

NEW YORK - A security breach of customer information at a credit card-processing company could expose to fraud up to 40 million cardholders of multiple brands, MasterCard International Inc. said Friday. The credit card giant said its security division detected multiple instances of fraud that tracked back to CardSystems Solutions Inc. of Tucson, Ariz., which processes transactions for banks and merchants. MasterCard said in a news release late Friday afternoon that it was notifying its card-issuing banks of the problem. CardSystems was hit by a computer virus that captured customer data for the purpose of fraud, said company spokeswoman Sharon...

Tired of playing second fiddle in Web hosting, Microsoft is revamping its server software in an attempt to snatch market share away from the popular Apache-Linux combination. When the software giant releases Longhorn Server in 2007, it will introduce a re-architected edition of its Internet Information Services Web server, said Bob Muglia, senior vice president in charge of Windows Server development. The changes will make IIS more modular, which will speed up performance for Web applications, he said. "We're componentizing IIS so you can load just the pieces of the Web server that you really need," Muglia said. "In the...

Microsoft has been found guilty of patent infringement and ordered to pay a Guatamalan inventor Carlos Armando Amado almost $9m in damages. The US District Court of Central California court ruled that Microsoft had infringed on his intellectual property and ordered it to pay him $8.96m. This figure relates to software sold between March 1997 and July 2003 - Judge David Carter may review this figure to include software sold since 2003, according to Reuters. Damages are far lower than the $500m claimed for because the jury rejected nine out of ten claims made by Amado. Microsoft expressed disappointment at...

The next time you run a scan with your anti-spyware tool, it might miss some programs. Several anti-spyware firms, including Aluria, Lavasoft, and PestPatrol, have quietly stopped detecting adware from companies like Claria and WhenU--a process called delisting. Those adware companies have been petitioning anti-spyware firms to delist their software; other companies have resorted to sending cease-and-desist letters that threaten legal action. In most cases it's difficult for customers to determine whether their anti-spyware tool has delisted anything and, if so, which adware it skips. "When a spyware program gets delisted, users won't be aware of its presence," says Harvard...

Analysis On my computer right now I have three anti-spyware programs, three anti-virus programs, and three anti-spam programs, together with a hardware and software firewall, an IPsec VPN, and data level encryption on certain files (and no, this is not intended to be an invitation for you to try to test my security.) The anti-spyware, anti-virus, and anti-spam software all work in very much the same way - they have definitions of known malicious programs, and they may also have algorithms to raise flags about unknown programs which operate in an unusual way. Depending upon user preferences, the programs either...

Microsoft is readying a new consumer security product that offers virus and spyware protection, a new firewall and several tune-up tools for Windows PCs, a move that pits the software giant squarely against traditional security software vendors. The product, dubbed Windows OneCare, will be tested internally at Microsoft starting this week. A public test, or beta, version is scheduled to be available by year's end, Microsoft said in a statement this week. The final product will be offered as a subscription service, the Redmond, Washington, software maker says. OneCare marks Microsoft's long-anticipated entry into the antivirus space, until now the...

Virus Name Risk Assessment W32/Sober.p@MM Corporate User : Low-Profiled Home User : Medium Virus Information Discovery Date: 05/02/2005 Origin: Unknown Length: 53,727 bytes (zip) 53,554 bytes (executable) Type: Virus SubType: E-mail Minimum DAT: 4443 (03/09/2005) Updated DAT: 4482 (05/02/2005) Minimum Engine: 4.3.20 Description Added: 05/02/2005 Description Modified: 05/02/2005 3:59 PM (PT) Description Menu Virus Characteristics Symptoms Method Of Infection Removal Instructions Variants / Aliases Rate This page Print This Page Email This Page Legend Virus Characteristics: -- Update 2nd May 13:00 PST -- Due to increased prevalence, this threat has had its risk assessment raised to MEDIUM for Home Users....

Windows enthusiast site Neowin.net on Thursday claimed that Microsoft's MSN group is working on a new toolbar that will add tabs to Internet Explorer, an idea one analyst thinks could boost the whole browser-as-money-maker idea. "MSN is currently developing a next-generation version of their popular MSN Toolbar Suite," said the Neowin site in a brief item. The updated version, Neowin claimed, would give current versions of Internet Explorer the ability to display multiple pages in one frame, organized by tabs, much as Mozilla's Firefox browser now offers. Although Microsoft has committed to adding tabs to IE, it's said that the...

New worms spreading through MSN Messenger -- and its bundled-with-Windows Windows Messenger version -- via links to a malicious site are infecting users and leaving their PCs open to hacker hijack, security vendors reported Monday. The new worms, tagged as Kelvir.a and Kelvir.b, appeared over the weekend and on Monday, respectively, anti-virus vendors said. Both use the same mechanism to attract users and infect Windows-based PCs: they include a link in the instant message. That link, in turn, downloads a malicious file -- the actual worm, a variant of the long-running Spybot -- which opens a backdoor to the compromised...

Groove Founder Ray Ozzie Will Join Microsoft as New CTO BEVERLY, Mass., March 10, 2005 - Microsoft Corp. announced today that it will acquire Groove Networks Inc., a leading provider of collaboration software for the "virtual office." The deal unites two top innovators of technology that help geographically distributed workgroups be as productive as those that work in a single physical location. Financial terms of the acquisition were not disclosed. The addition of Groove products to the lineup of Microsoft® Office System products, servers and services builds on the capabilities of Microsoft's current collaboration products, allowing Microsoft to better meet...

Microsoft Internet Explorer is reported prone to a remote buffer overflow vulnerability. This issue presents itself when the application handles a malformed CSS file. A typical attack would involve the attacker creating a Web site that includes the malicious CSS file. The attacker may then entice a vulnerable user to visit the site. If successful, this attack may result in granting the attacker unauthorized access to the affected computer in the context of the user running Internet Explorer.

Important information about current security risks. Worm.Win32.Sober.L Alert! A new variant of the Sober worm is spreading fast. As it's predecessors, Sober.L spreads as an email attachment in emails which are sent to all email addresses found on the victim's harddisk. Even if the executable file is packed in a .ZIP file, many users open the file and activate the worm this way. For novice users it's hard to see that it is a worm generated email because the email subject is "your password + accountnumber !". The email body text is the following: hi, i've got an admin mail...

A major wave of Bagle-like Trojan horses hit users worldwide Tuesday with numerous variations that aim to overwhelm anti-virus defenses by morphing faster than research labs can release new signatures. The attack, which began about midnight EST, was launched in a large-scale spamming campaign, said virus researchers, and although the new threat doesn't spread on its own -- these are Trojans with Bagle characteristics, not true worms -- many security vendors have bumped up warnings to get out the word. It's unclear how many variations are at loose. Some vendors, such as Symantec, had reported only two as of mid-morning...

Windows worm weaves its way with search engines A new worm that uses Internet search engines to spread rapidly was detected Thursday, according to antivirus software maker Panda Software, a private company based in Bilbao, Spain, which operates in the U.S. as PandaLabs of Glendale, in Southern California. Called "MydoomAO," the worm uses Mountain View-based Google (NASDAQ: GOOG), Altavista, Sunnyvale-based Yahoo (NASDAQ: YHOO) and Lycos to search for e-mail addresses to which to send itself. In order to trick users, the worm pretends to be a mail delivery error message. In this way, a single infected computer can distribute thousands...

Sorry for the vanity, but my head is about to explode trying to figure out how to get rid of hotbar, which mysteriously appeared on my computer. I know I can trust you guys for the real story on what to do. I know Laura advertises some kind of spyware blocker, but I have no clue about any of this. Any help (here or pm me) would be GREATLY appreciated.

The party's over. In the past year, the little browser that could, Firefox, became the people's hero, an underdog warrior that took a huge swipe at its enemy, Internet Explorer. IE dipped below 90 percent market share for the first time in years, while Firefox lured users like the Pied Piper, blowing past its own fundraising goals and reigniting the browser wars. Meanwhile, the bad news continued to mount for Microsoft. An IE exploit put even Windows XP SP2 users at risk from phishing schemes, even as Microsoft touted SP2 as the most secure version of Windows yet. Worse, major...

It didn't take hackers long to start banging hard on the vulnerabilities Microsoft disseminated Tuesday. Just a day after the Redmond, Wash.-based developer rolled out a dozen advisoriescontaining 16 vulnerabilities, 10 of them tagged as "Critical," exploit code has gone public for one, Microsoft said late Wednesday. "Microsoft won't be happy that someone has posted information about how to take advantage of their critical security hole within 48 hours of their patch being released," said Graham Cluley, senior technology consultant for Sophos, in a statement. "Many computer users are bound to have not yet defended themselves," he added. Microsoft posted...

Microsoft's top security honcho insisted Thursday that Microsoft "is making progress on security using any reasonable metric." Mike Nash, the company's chief security executive, made the comment during an online chat session just days after Microsoft rolled out its biggest bunch of Windows patches since April 2004. Nash staunchly defended the Redmond, Wash.-based developer's progress, and compared Windows' flaws with those in open-source Linux operating systems from Red Hat and Novell's SuSE. "Even with the relatively large number of bulletins we released this week, we compare favorably," he said. "Year-to-date for 2005, Microsoft has fixed 15 vulnerabilities affecting Windows Server...