|
|
Windows | Lynksys | Firefox | Cybercrime
1. Free Support for Windows Update Issues
Microsoft is offering free technical support for troubleshooting problems with Windows Update. Call Microsoft Product Support Services at 1-866-727-2338 or visit http://support.microsoft.com/oas/default.aspx?&gprid=6527&
Microcomputer Services Help Desk consultants can also help you with many Microsoft Windows issues. The Help Desk is located in 151 McKenzie Hall and is open from 9 a.m. to 5 p.m. on weekdays.
2. Flaw in Veritas Backup Exec for Windows Servers
This vulnerability can allow a remote attacker to download arbitrary files. The flaw affects Backup Exec 10.0, 9.1, 9.0, and 8.x, as well as media servers running the NetWare Media Server Option. Symantec has provided product updates and links to fixes. For details, see http://securityresponse.symantec.com/avcenter/security/Content/2005.08.12b.html
3. Zotob Worm Exploits Windows Vulnerability
If you have installed the Microsoft update released with Security Bulletin MS05-039, you're already protected from the Zotob worm and its variants. Zotob, which installs malicious software and then searches for other vulnerable computers to infect, exploits a vulnerability in Windows operating systems; unpatched Windows 2000 systems are particularly at risk. For details, see "What You Should Know About Zotob," Microsoft's information page at http://www.microsoft.com/security/incident/zotob.mspx and the Reuters article at http://news.zdnet.com/2100-1009_22-5842359.html
Two men accused of being the authors of Zotob and Mytob worms were arrested in August; Turkish authorities later traced the pair's connections to an international crime ring. See http://blogs.washingtonpost.com/securityfix/2005/08/zeroing_in_on_m.html
According to an August 15 posting by Steve Sherf in BugTraq, Firmware version 4.50.6 for the Linksys WRT54GS (hardware version 1) wireless router allows wireless clients to connect and use the network without actually authenticating. The problem appears to be fixed in version 4.70.6. For details, see http://www.securityfocus.com/archive/1/408161
The latest Firefox update is a security and stability release. It fixes several flaws found in earlier versions, including an international domain name (IDN) link buffer overflow vulnerability and a Linux shell command defect. For details, see
Pharmaceutical Internet Schemes
Government agencies are continuing their vigorous prosecution of Internet drug traffickers. In recent months, major cybercriminals have been put out of business in Florida, the DEA cracked down on a national ring of Internet drug peddlers, and the FTC successfully stopped spammers involved in a fraudulent human growth hormone enterprise. For details, see
1. Operation Targets Copyright Piracy
U.S. law enforcement has joined forces with police in ten other countries to halt illegal trafficking in copyrighted software, movies, music, and games. For details, see http://www.fbi.gov/pressrel/pressrel05/sitedown063005.htm
2. FBI Charges Eight with Copyright Piracy
In July, the FBI charged eight men with being leaders of an illegal Internet operation that distributed pirated digital material around the globe. Their indictment was the result of an international law enforcement effort involving 15 countries.
DDoS-for-Hire Schemes Increase
In three recent incidents, hackers who were hired to launch Denial of Service attacks against online businesses face prison time for their crimes. One of these, a New Jersey teenager, was only 17. The cyber attacks cost victims hundreds of thousands of dollars. For more details, see
The CIO of Spamhaus, a major anti-spam security firm, recently cited Yahoo for unwittingly playing host to thousands of phishing sites. Yahoo promised to look into the problem and take corrective action.
Looking for practical tips on protecting yourself from online fraud? Visit
the government site at http://onguardonline.gov/
This
site also gives you the opportunity to sign up to get free email alerts from
Homeland Security's U.S. Computer Emergency Readiness Team.