Skip to content

Home  |   FAQ  |   Contact  |   Privacy & Use

customize
Current Activity Calendar
Left Arrow
March 2009
 Right Arrow
Su M Tu W Th F Sa
1 2 3 4 5 6 7
8 9 10 11 12 13 14
15 16 17 18 19 20 21
22 23 24 25 26 27 28
29 30 31
Please click on a date above to see current activity for that day.

  • Latest Current Activity
    •

    March 06, 2009 - Current Activity

    This is an archived copy of current activity, if you would like to see the most recent version, please click here.

    March 5Economic Stimulus Email and Website Scams
    March 5Microsoft Releases Advanced Notification for March Security Bulletin
    March 5Mozilla Foundation Releases Firefox 3.0.7
    March 4Malicious Code Targeting Social Networking Site Users
    March 3Opera Software Releases Opera Browser 9.64
    February 27Cisco Releases Security Advisory for ACE 4710 Appliance and ACE Module
    February 25Adobe Releases Security Bulletin for Flash Player
    February 24Microsoft Releases Security Advisory (968272)
    February 23New Variant of Conficker/Downadup Worm Circulating
    February 20Adobe Releases Security Bulletin for Critical Vulnerability


    Economic Stimulus Email and Website Scams

    added March 5, 2009 at 04:08 pm

    US-CERT is aware of reports of economic stimulus scams circulating. These scams are being conducted through both email and malicious websites.

    Some of the email scam messages request personal information, which can then be used for identity theft. Other email scam messages offer to deposit the stimulus funds directly into users' bank accounts. If users provide their banking information, the attackers may be able to withdraw funds from the users' accounts.

    The website scams entice users by claiming that they can help them get money from the stimulus fund. These websites typically request payment for their services. If users provide their credit card information, the attackers running the malicious sites may make unauthorized charges to the card, or charge users more than the agreed upon terms.

    US-CERT encourages users to do the following to help mitigate the risks:


    Microsoft Releases Advanced Notification for March Security Bulletin

    added March 5, 2009 at 03:12 pm

    Microsoft has issued a Security Bulletin Advanced Notification indicating that the March release cycle will contain three bulletins, one of which will have a severity rating of Critical. The notification states that these Critical bulletins are for Microsoft Windows. There will also be two Important bulletins for Microsoft Windows. Release of these bulletins is scheduled for Tuesday, March 10.

    US-CERT will provide additional information as it becomes available.


    Mozilla Foundation Releases Firefox 3.0.7

    added March 5, 2009 at 08:44 am

    Mozilla Foundation has released Firefox 3.0.7 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial-of-service condition, obtain sensitive information, or spoof the location bar. The Mozilla Foundation Security Advisories also indicate that these vulnerabilities affect Thunderbird and SeaMonkey.

    US-CERT encourages users to review the following Mozilla Foundation Security Advisories and update to Firefox 3.0.7 to help mitigate the risks.

    • Mozilla Foundation Security Advisory 2009-07
    • Mozilla Foundation Security Advisory 2009-08
    • Mozilla Foundation Security Advisory 2009-09
    • Mozilla Foundation Security Advisory 2009-10
    • Mozilla Foundation Security Advisory 2009-11


    Malicious Code Targeting Social Networking Site Users

    added March 4, 2009 at 11:53 am

    US-CERT is aware of public reports of malicious code spreading via popular social networking sites including myspace.com, facebook.com, hi5.com, friendster.com, myyearbook.com, bebo.com, and livejournal.com. The reports indicate that the malware, named Koobface, is spreading through invitations from a user's contact that include a link to view a video. If the users click on the link in this invitation, they are prompted to update Adobe Flash Player. This update is not a legitimate Adobe Flash Player update, it is malicious code.

    Additionally, some of the reports indicate that there are multiple bogus Facebook applications being used to obtain users' private information.

    US-CERT encourages users and administrators to do the following to help mitigate the risks:

    • Install antivirus software and keep the virus signature files up to date.
    • Do not follow unsolicited links.
    • Use caution when downloading and installing applications.
    • Obtain software applications and updates directly from the vendor's website.
    • Refer to the Staying Safe on Social Networking Sites document for more information on safe use of social networking sites.
    • Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks.


    Opera Software Releases Opera Browser 9.64

    added March 3, 2009 at 08:48 am

    Opera Software has released Opera 9.64 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code or conduct cross-domain scripting attacks.

    US-CERT encourages users to review the Opera browser Changelog specific to their operating system and upgrade to Opera browser 9.64 to help mitigate the risks.


    Cisco Releases Security Advisory for ACE 4710 Appliance and ACE Module

    added February 27, 2009 at 09:26 am

    Cisco has released a Security Advisory to address multiple vulnerabilities in the ACE Application Control Engine Module, ACE 4710 Application Control Engine. These vulnerabilities may allow an attacker to obtain administrative level access, operate with escalated privileges, or cause a denial-of-service condition.

    US-CERT encourages users and administrators to review Cisco Security Advisory cisco-sa-20090225-ace and apply any necessary workarounds or updates to help mitigate the risks.


    Adobe Releases Security Bulletin for Flash Player

    added February 25, 2009 at 09:54 am

    Adobe has released Security Bulletin APSB09-01 to address multiple vulnerabilities in Flash Player. These vulnerabilities may allow an attacker to execute arbitrary code, cause a denial of service condition, conduct Clickjacking attacks, or operate with escalated privileges.

    US-CERT encourages users to review Adobe Security Bulletin APSB09-01 and upgrade to Flash Player 10.0.22.87 to help mitigate the risks.


    Microsoft Releases Security Advisory (968272)

    added February 24, 2009 at 02:10 pm

    Microsoft has released Security Advisory 968272 to address reports of a vulnerability in Microsoft Office Excel. By convincing a user to open a specially crafted Excel document, an attacker may be able to execute arbitrary code.

    US-CERT strongly encourages users and administrators to review Microsoft Security Advisory 968272 and apply the Suggested Actions to help mitigate the risks.

    US-CERT will provide additional information as it becomes available.


    New Variant of Conficker/Downadup Worm Circulating

    added February 23, 2009 at 05:02 pm

    US-CERT is aware of public reports concerning a new variant of the Conficker/Downadup worm, named Conficker B++. This variant propagates itself via multiple methods, including exploitation of the previously patched vulnerability addressed in MS08-067, password guessing, and the infection of removable media. Most significantly, Conficker B++ implements a new backdoor with "auto-update" functionality, allowing machines compromised by the new variant to have additional malicious code installed on them. According to Microsoft, there is no indication that systems infected with previous variants of Conficker can automatically be re-infected with the B++ variant.

    US-CERT strongly encourages users to review Microsoft Security Bulletin MS08-067 and update unpatched systems as soon as possible.

    Additionally, US-CERT recommends that users take the following preventative measures to help mitigate the security risks:

    • Install antivirus software, and keep the virus signatures up to date.
    • Review the Microsoft Malware Protection Center blog entry for details regarding the worm.
    • Review the Using Caution with USB Drives Cyber Security Tip for more information on protecting removable media.


    Adobe Releases Security Bulletin for Critical Vulnerability

    added February 20, 2009 at 11:20 am | updated February 20, 2009 at 03:55 pm

    Adobe has released a Security Bulletin to alert users of a vulnerability in Adobe Reader and Acrobat. This vulnerability may allow an attacker to execute arbitrary code or cause a denial-of-service condition. Adobe indicates that it has received reports of active exploitation.

    US-CERT encourages users to take the following actions to help mitigate the risks:

    • Review Adobe Security Bulletin APSA09-01.
    • Review US-CERT Vulnerability Note VU#905281.
    • Review US-CERT Technical Cyber Security Alert TA09-051A.
    • Disable JavaScript in Adobe Reader and Acrobat. Acrobat JavaScript can be disabled in the General preferences dialog (Edit, Preferences, JavaScript, and un-check "Enable Acrobat JavaScript").
    • Prevent Internet Explorer from automatically opening PDF documents.
    • Disable the displaying of PDF documents in the web browser. This can be disabled in the the General preferences dialog (Edit, Preferences, Internet, and un-check "Display PDF in browser").
    • Use caution when opening untrusted PDF files.
    • Install antivirus software, and keep virus signatures up to date.
    US-CERT will provide additional information as it becomes available.