|
|
Archimedes (285-212 a. C.); Greek inventor & mathematician.
- Weekly summary -
Oxygen3 24h-365d, by Panda Software (http://www.pandasoftware.com)
Madrid, July 26, 2003 - This week, Oxygen3 24h-365d has focused on the news
summarised below(*).
- Keyloggers, confidential data and Trojans (07/21/03).
'Keyloggers' can be classified as members of the 'malware' or harmful
software family. These applications store all keystrokes in a file in order
to capture confidential data such as passwords, etc. It is now quite common
for the most sophisticated Trojans and worms to incorporate keylogging
functions, thus adding to their armory the ability to capture data typed by
users and send it to an attacker's e-mail address.
- Bank theft through spyware (07/22/03).
According to an article published by Sunday Times, the South African police
are investigating a theft carried out through spyware from several Absa bank
accounts. The thieves used spyware to gain access to the victims' computers
and obtain the necessary information to access the bank's Internet services.
Then, attackers used the data obtained to carry out money transfers to their accounts.
- New version 1.3.28 of the Apache HTTP server (07/23/03).
The Apache Software Foundation has released the new version 1.3.28 of its
HTTP server which, among other improvements, fixes three new vulnerabilities
detected in previous versions. In addition, the company recommends users of
older versions -especially the 1.1.x and 1.2.x family- to install the update
as soon as possible.
- Important patch for DirectX (07/24/03).
Microsoft has warned of a security problem in DirectX. This problem affects
all installations of the product and could allow arbitrary code to be run.
The company has also announced the release of the patch to correct the
problem. The vulnerability lies in the DirectShow technology of DirectX.
Specifically, there are two buffer overflows in a function of DirectShow
used to check the parameters of Musical Instrument Digital Interface (MIDI).
- (III)Classification of malicious code (07/25/03).
Worms are the most numerous group right now. According to the means of
transmission they use, worms can be classified in several groups. Among
these groups we have to highlight the Social engineering worms that use
techniques to trick the user into running the file that contains the
malicious code. Another group is composed by worms with their own SMTP
engine, and a third one is composed by worms that exploit vulnerabilities
in commonly-used software.
(*) The complete articles corresponding to these summaries are available
from the Oxygen3 24h-365d archives at:
http://www.pandasoftware.com/about/press/oxygen3/oxygen.asp
NOTE: The address above may not show up on your screen as one line. This
would prevent you from using the link to access the web page. If this
happens, just use the 'cut' and 'paste' options to join the pieces of the
URL.
To contact with Panda Software, please visit:
http://www.pandasoftware.com/about/contact/
------------------------------------------------------------
|
|
|
 |
|
No Comments Allowed for Anonymous, please register |
|
| |
|
Login |
|
 |
|
|
|
|
· New User? · Click here to create a registered account.
|
|
|
Article Rating |
|
|
|
|
|
|
Average Score: 0
Votes: 0
|
|
|
