DfenseSolutions » erwin@dfensesolutions.com

Internet Explorer 0-day

erwin@dfensesolutions.com — Mon, 23 Nov 2009 06:43:24 +0000

Update your antivirus and be careful out there because there is “A new exploit targeting Internet Explorer was published to the BugTraq mailing list yesterday. Symantec has conducted further tests and confirmed that it affects Internet Explorer versions 6 and 7 as well. The exploit currently exhibits signs of poor reliability, but we expect that a fully-functional reliable exploit will be available in the near future. When this happens, attackers will have the ability to insert the exploit into Web sites, infecting potential visitors. For an attacker to launch a successful attack, they must lure victims to their malicious Web page or a Web site they have compromised. In both cases, the attack requires JavaScript to exploit Internet Explorer….” Read more…

Free Malware Delivery

erwin@dfensesolutions.com — Fri, 28 Aug 2009 00:03:15 +0000

Hackers always think of innovative ways to deliver malware to
the masses. From email, drive by downloads, and now even
through the mail. Just be careful when inserting something into your computer. Sharing is sometimes not caring. Always practice safe sharing when ever possible. Read more…..

Top Internet Security Suites

erwin@dfensesolutions.com — Tue, 25 Aug 2009 04:12:25 +0000

PC World compares the most popular security suites, here are the results
Click Here

Update:Phishing attacks on the rise…

erwin@dfensesolutions.com — Sun, 11 Jan 2009 00:53:54 +0000

Here is another example. “Another malware attack is circulating in the wild today, especially through email. It arrives via bogus email which claims to be from CNN news. The email purports to contain news about Israel’s bombardment of Gaza. It also contains a link of the graphic video of Al Jazeera English Report about the news. The subject and the senders name vary in every mail.” Read more…

Phishing attacks on the rise….

erwin@dfensesolutions.com — Sat, 10 Jan 2009 04:12:50 +0000

These days there are so many enticing angles which hackers can utilize to capture your attention and convince you to click on that link. There is a plethora of content; for example, the economic downturn, layoffs, retail stores closing, and numerous international conflicts. ”Hackers have launched a large-scale spam attack masquerading as CNN.com news notifications about the Israeli invasion of Gaza, security researchers said today, in a repeat of a massive campaign last summer that also posed as CNN alerts.” Read more….

Think before clicking on links

erwin@dfensesolutions.com — Wed, 07 Jan 2009 04:50:41 +0000

No one is immune to being utilized as a stepping stone to malware sites. ”The LinkedIn professional networking site connects more than 30 million users from across many different industries. The advantages of maintaining a list of trusted business contacts for career planning purposes is not lost on LinkedIn’s users.” Read more…

Clicking is not always the right thing to do….

erwin@dfensesolutions.com — Sat, 27 Dec 2008 07:30:42 +0000

“There’s nothing like social networking sites to keep people connected and worms propagating — such as the all new and improved Net-Worm:W32/Koobface.CZ. A little infection equals a little comment in someone’s little site somewhere.” Read more…

Malware holiday gifts…

erwin@dfensesolutions.com — Sat, 27 Dec 2008 02:14:16 +0000

Amazon and Samsumg have begun informing their consumers regarding the discovery of malware on the product’s installer disc (Samsung Frame Manager XP version 1.08). The infected installer disc is needed to use their product, the Samsung SPF-85H 8-Inch Digital Photo Frames w/ 1GB Internal Memory, as a USB monitor. Read more…

Holiday SPAM rising fast…

erwin@dfensesolutions.com — Sat, 27 Dec 2008 02:00:29 +0000

“A significant amount of e-card spam has flooded inboxes recently, taking advantage of the upcoming holiday season. Spam mails contain holiday greetings and a short message informing users that they have received an e-card from someone. Also in the email is an embedded URL link where the recipient can view or claim their e-card.” Read more…

Internet Explorer issue gets worse…

erwin@dfensesolutions.com — Sat, 13 Dec 2008 06:02:29 +0000

Microsoft has updated its advisory to include other version of Internet Explorer. So far we have only seen exploits for version 7, but Microsoft has included versions 5 and 6. To get more information please read the Microsoft advisory [click here].

We have created an instructional video presenting the exploit and what it could do. This version of the exploit is safe and will if succesful start the windows calculator program. Other versions of the exploit might include more malicious payloads. Again we do not include the URL that is hosting the exploit code but rather present what could happen if you visit a site that is hosting the malware [which there are thousands]. You can watch the educational video below or in High Definition [click here].

Internet Explorer 7 Exploit from dfensesolutions.com on Vimeo.