Skip to content

Home  |   FAQ  |   Contact  |   Privacy & Use

customize
Current Activity Calendar
Left Arrow
November 2007
 Right Arrow
Su M Tu W Th F Sa
        1 2 3
4 5 6 7 8 9 10
11 12 13 14 15 16 17
18 19 20 21 22 23 24
25 26 27 28 29 30
Please click on a date above to see current activity for that day.

  • Latest Current Activity
    •

    November 28, 2007 - Current Activity

    This is an archived copy of current activity, if you would like to see the most recent version, please click here.

    November 28Search Engines Results Linking to Malicious Web Sites
    November 27Vulnerability in Apple QuickTime
    November 21iFrame Attack Affects Monster.com
    November 20Department of Justice Fraudulent Spam Email Variant
    November 19Trojan Spreading via MSN Messenger
    November 15Mac OS X Leopard Firewall Changes
    November 15Apple Releases Security Updates to Address Multiple Vulnerabilities


    Search Engines Results Linking to Malicious Web Sites

    added November 28, 2007 at 12:08 pm

    US-CERT is aware of public reports of popular search engines returning results with links to malicious web sites. The reports suggest that attackers have utilized methods to increase the ranking of their web sites to facilitate these attacks.

    More information regarding this can be found in the SANS Internet Storm Center.

    US-CERT recommends the following to help mitigate the impact of these attacks:

    • Do not follow search results that link to unknown or questionable web sites.
    • Install anti-virus software, and keep its virus signature files up-to-date.
    • Maintain patches and updates for your operating system.


    Vulnerability in Apple QuickTime

    added November 26, 2007 at 11:19 am | updated November 27, 2007 at 11:13 am

    US-CERT is aware of publicly available exploit code for a vulnerability in Apple QuickTime.  This vulnerability may allow an attacker to execute arbitrary code or cause a denial-of-service condition on an affected system.

    US-CERT encourages users and administrators to follow mitigation strategies in the Vulnerability Notes Database and consider following the best security practices found in the Securing Your Web Browser document.   


    iFrame Attack Affects Monster.com

    added November 21, 2007 at 10:42 am

    US-CERT is aware of an iFrame attack that affected Monster.com, causing it to take down a portion of its web site yesterday. Attackers embedded malicious iFrames that redirected users to another web site that when visited, could download and install malware on the user's system.

    Monster.com has sanitized its web site and restored the portions of the site it had taken down. Monster.com believes that only a very small percentage of those visiting during this time were potentially infected. In addition, Monster.com has stated that users running Windows with the most recent updates applied were not affected.

    US-CERT urges users and administrators to take the following preventative measures to help mitigate the security risks:

    • Configure your web browser as described in the Securing Your Web Browser document.
    • Install anti-virus software, and keep its virus signature files up-to-date.
    • Install latest versions of software to ensure that is is up-to-date


    Department of Justice Fraudulent Spam Email Variant

    added November 20, 2007 at 09:26 am

    US-CERT is aware of reports of a variant of spam e-mail messages claiming to be from the Department of Justice (DOJ), previously reported in "Justice Depart Warns Public of Fraudulent Spam Email." These messages contain a malicious attachment that supposedly contains information regarding complaints filed against the recipient's company with the DOJ. The attachment launches malware on the user's system when opened.

    To help protect against this type of attack, US-CERT recommends that users never open attachments from unsolicited email messages. More information on how to safely utilize email attachments can be found in the US-CERT "Using Caution with Email Attachments" Cyber Security Tip.


    Trojan Spreading via MSN Messenger

    added November 19, 2007 at 11:12 am

    US-CERT is aware of reports of a Trojan spreading via MSN Messenger.  The Trojan arrives as a chat message that appears to contain an image file, that when opened, downloads and installs a Internet Relay Chat Bot. These messages may appear to come from a known contact.

    US-CERT urges users and administrators to take the following preventative measures to help mitigate the security risks:


    Mac OS X Leopard Firewall Changes

    added November 5, 2007 at 05:06 pm | updated November 15, 2007 at 02:35 pm

    Apple's Mac OS X Leopard includes an application-based firewall feature. US-CERT is aware of ambiguities in the way the firewall components supplied with Leopard report the status of the firewall configuration. Users may be misinformed of the status of their firewall rule set, thus placing listening network services at an increased risk.

    Apple has published Mac OS X v10.5.1 Update to address this issue.  US-CERT encourages users to apply this update to mitigate this risk.


    Apple Releases Security Updates to Address Multiple Vulnerabilities

    added November 15, 2007 at 08:43 am | updated November 15, 2007 at 01:31 pm

    Apple has released Mac OS X 10.4.11 and Security Update 2007-008 to address multiple vulnerabilities.  These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, or access the system with escalated privileges.

    More information regarding the vulnerabilities and remediation information can be found in:

    US-CERT strongly encourages users to review the bulletins and follow best-practice security policies to determine which updates should be applied.