Blogs

New Flashback Trojan Horse Variant Uses Novel Delivery Method to Infect Macs

http://blog.intego.com/new-flashback-trojan-horse-variant-uses-novel-del...

By using vulnerable version of Java on MacOS, the flashback Trojan installs itself without user intervention. "There is no more installer, no request for a password."

There is a patch for the Macintosh version of Java available.

We continue to suggest using anti-virus on MacOS X. Also, make sure to keep 3rd party applications up to date.

Proof of concept and Leaked exploit in the wild for Remote RDP exploit

https://technet.microsoft.com/en-us/security/bulletin/ms12-020
http://www.techworld.com.au/article/418814/leaked_exploit_prompts_resear...

For anyone who hasn't already patched their vulnerable version of Remote Desktop (RDP), here are some very good reasons to do so.

Thanks,
ep

A test matrix of Android anti-virus applications by AV-TEST


http://www.av-test.org/en/tests/android/


AV-TEST, "The Independent IT-Security Institute" from Magdeburg, Germany, released a report this week reviewing Anti-Virus applications for Android devices.  Their test results can be downloaded here:


http://www.av-test.org/fileadmin/pdf/avtest_2012-02_android_anti-malware...

Horde Groupware contains backdoor in Horde 3.3.12 and Groupware 1.2.10

http://m.h-online.com/security/news/item/Horde-Groupware-contains-backdo...

"Unknown perpetrators infiltrated a backdoor into several installation packages during an attack on groupware provider Horde's FTP server. Horde 3.3.12, Groupware 1.2.10 and the webmail edition of the groupware product are all affected. Horde 4 was not modified. The CVS and Git servers are also unaffected.

Apache HTTP Server 2.2.22 Released

http://www.apache.org/dist/httpd/Announcement2.2.html

Six security issues were fixed in Apache 2.2.22, including information disclosure, privilege escalation and DoS vulnerabilities.

"SECURITY: CVE-2011-3368 (cve.mitre.org) Reject requests where the request-URI does not match the HTTP specification, preventing unexpected expansion of target URLs in some reverse proxy configurations.

Pages