First email virus turns 10

It appears we have been living with viruses all the time, but if we are looking back in history we find that certain types of viruses are actually not that old. For example, the email-aware virus is turning just 10 today. Melissa, the first virus of this kind, was estimated to have infected more than one million PCs and caused damage in excess of $80 million.

Conficker Worm #3: Prepare for April 1

The third variant of the Conficker is expected to be spreading beginning on April 1. According to security software companies, the worm will send hundreds or thousands of update requests to its 50,000 domains. The result will be forced downloads of malicious code and potentially an increased rise in spam mail. It may be a good idea getting your security software up to date now.

Firefox attack code posted by security researcher

A security researcher has posted malicious code that exploits a vulnerability in Firefox 3.0.x. Mozilla reacted quickly and changed its browser release schedule: Version 3.0.8, which will include a patch, is scheduled for a release early next week.

Australian government agency blacklists a dentist office website?

It was reported last Friday that over the past several weeks, Wikileaks.org has been publishing what it claims to be a blacklist of banned websites ready to be targeted by the Australian Communications and Media Authority (ACMA). While the Australian government denies the list is actually theirs, a dentist office which appears on the list confirmed it was contacted by ACMA. Wikileaks claims to be a whistleblower organization.

Facebook privacy now a user-controlled option

Following a controversial site redesign which changed the user home page and brought users a more frequent Twitter-like update ability, content sharing, and better capabilities for group pages, the site has now begun allowing users to open up all or part of their profiles for all the world to see.

Social networks a security threat to businesses

In a time when connecting directly with both your customer base and employee base is becoming more and more necessary and important, business are finding themselves struggling with the issue of protecting sensitive data and information due to employee practices.

YouTube having issues with user's video view counts

On Friday, YouTube's Michelle Schlachta wrote in a blog that YouTube is working on some issues relating to user video view counts. They cite spamming and some internal inconsistencies as the cause of some recent unusual view count numbers.

Third Conficker worm set to launch April 1

Computer Associates (CA) said that it has been monitoring a new variant of the Conficker (Downadup) worm that is apparently set to spread beginning April 1. Win32/Conficker.C is prepared for a massive launch, according to the security firm, targeting up to 50,000 URLs every day. 

UPDATE #3: Religious hack attack against Christianity seen on Facebook

The Facebook group, Christians On Facebook, has become the latest target of attack for hackers who are posting pro-Islam messages. At 11:15pm CDT today, the group's name was changed to "La ilaha illallahu Muhammadur Rasulullah", which means "There is no god but Allah; Muhammad is the messenger of Allah." Since then the name has changed no fewer than ten times.

Microsoft patches critical image file flaw

Microsoft has released its March security update, including one “critical” and two “important” patches. There is also a new version of the company’s Malicious Software Removal Tool (MSRT).

Director of Federal Cybersecurity resigns over NSA dominance

The Director of Federal Cyber Security has resigned after being on the job for a period of less than a year. His position was created in an effort to protect military, civilian, and intelligence networks. His resignation letter cites a lack of both funding and support in addition to an over-reliance on the National Security Agency (NSA) and its attempts to dominate the agencies cyber security efforts.

Microsoft to issue three security updates next week

It’s the time of the month again – Microsoft software users will get three important security updates next week and receive an updated Malicious Software Removal Tool (MSRT). Mark your calendars for Tuesday morning.

Mozilla issues eight Firefox bugs patches, six are critical

A new version of Firefox has been released by Mozilla due to the discovery of several security flaws in the browser software. Firefox version 3.0.7, which is the second security update this year, will plug eight different security vulnerabilities, and six of them have been deemed critical, one “high” and one “low” in the four step ranking system established by Mozilla. The six critical bugs were in the Firefox garbage collection routine in the PNG libraries utilized by the browser, and additionally in the layout and JavaScript engines.

Phishing attack scams users following a Gmail outage

Yesterday morning, Google's e-mail service, Gmail, was smacked with an outage lasting several hours, and then later in the evening the company was hit with a phishing scam making its way around Google Talk, the chat protocol provided within the Gmail Web client.

New version of Conficker, malicious program, begins infiltrating machines

Earlier this year, a worm known as Conficker, Kido and Downadup targeted PCs running Microsoft Windows. 15 million computers have been estimated to be affected to date. The virus embeds itself within the operating system and provides spammers, cyber criminal and hackers with back door which allows them to access an individual’s machine. Now we are seeing a follow-up with Conficker B++, which aims at users with an improved code base.

Does cloud computing cause security risks?

Chicago (IL) - The World Privacy Forum recently published a report which highlights and explains the risks to privacy and confidentiality which arise when in a cloud computing environment. Is cloud computing safe? Does it impose real security risks, such as known knowns, known unknowns and the dangerous unknown unknowns?

New security warning issued by both Visa and MasterCard

Chicago (IL) - Another United States based payment acquirer/processor has had its network hacked, thus exposing the credit card accounts and information of many consumers to thieves, bandits and thugs in this latest breach. And as is common in these types of security breaches, the consumers are only finding out about it many months later. Full details as to what firm's data was breached has yet to be released. Several credit unions, however, are reporting that Visa alerted them of a payment processor who had discovered the data breach.

Air Force shuts off Internet on Alabama base

Last November the United States Military made the decision to ban all USB drives and removable media in attempt to put an end to worm infiltration. But now, the Air Force is taking bigger steps, shutting off Air Force bases Internet connections for not complying with strict security rules and regulations on its networks. The first base to have their plug pulled? Maxwell AFB in Alabama.

Hackers still exploiting latest IE7 Bug

A week ago Microsoft issued a patch for a critical hole in Internet Explorer 7, and now cyber-criminals are exploiting that weakness. The patch Microsoft released addressed a vulnerability whereby the browser improper handled errors when attempting to access deleted objects.

Facebook reverts its Terms of Use under pressure

Yesterday, Facebook notified its users of a significant change in the site's Terms of Use. This change granted Facebook rights to all uploaded user content basically forever. This outraged many users and, following significant pressure across the Internet and active Facebook users, the company has now reversed its Terms of Use policy and is, once again, granting rights to uploaded user content only so long as the account remains active.