Aware of public reports concerning a new variant of the Conficker/Downadup worm, named Conficker B++. This variant propagates itself via multiple methods, including exploitation of the previously patched vulnerability addressed in MS08-067, password guessing, and the infection of removable media. Most significantly, Conficker B++ implements a new backdoor with "auto-update" functionality, allowing machines compromised by the new variant to have additional malicious code installed on them. According to Microsoft, there is no indication that systems infected with previous variants of Conficker can automatically be re-infected with the B++ variant.
Labels: 419 scam, 419 Scam fraud, ATM Scam, email scam, email spam, Nigerian Scam, Nigerian Spam, scam, spam
Posted on Wednesday, February 25, 2009
Research In Motion has released a Security Advisory to address a vulnerability in the BlackBerry Application Web Loader ActiveX control. By convincing a user to view a specially crafted HTML document, an attacker may be able to execute arbitrary code with the privileges of the user. The attacker could also cause Internet Explorer to crash.
The users are encouraged to review BlackBerry Security Advisory KB16248 and apply the resolution or implement the workaround listed in the document to help mitigate the risk.
Labels: 419 scam, ATM Scam, BlackBerry, email spam, Nigerian Scam, Nigerian Spam, scam, spam
Posted on Tuesday, February 17, 2009
Microsoft has released updates to address vulnerabilities in Microsoft Windows, Office, Internet Explorer, Exchange Server, and SQL Server as part of the Microsoft Security Bulletin Summary for February 2009. These vulnerabilities may allow an attacker to execute arbitrary code.
Labels: 419 scam, 419 Scam fraud, ATM Scam, email scam, email spam, Nigerian Scam, Nigerian Spam, scam, spam, spam news
Posted on Sunday, February 15, 2009
Hewlett-Packard has released Security Bulletin HPSBPI02398 SSRT080166 to address a vulnerability in multiple HP printers. This vulnerability may allow an unauthorized remote attacker to gain access to files.
Labels: 419 scam, 419 Scam fraud, ATM Scam, email scam, Nigerian Scam, Nigerian Spam, scam, spam, spam news
Posted on Thursday, February 12, 2009
Novell has released updates for GroupWise 7 and 8 to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code, compromise a GroupWise account, conduct cross-site scripting attacks, or obtain sensitive information.
Labels: 419 scam, 419 Scam fraud, ATM Scam, Email fraud, email scam, email spam, lottery scam, Nigerian Scam, Nigerian Spam, scam, spam, spam news
Posted on Sunday, February 8, 2009
Nigerianspam.com is aware of public reports of malicious code circulating via spam email messages related to Valentine's Day. These messages contain a link to a website that contains several images of hearts and instructs users to choose one image. If users click on one of the images, they will be prompted to download an executable file. Reports indicate that the executable files could be named: youandme.exe, onlyyou.exe, you.exe, and meandyou.exe (please note that these file names may change at any time). If users accept the download, malicious code may be installed onto their systems.
Labels: 419 Scam fraud, Email fraud, Nigerian Scam, Nigerian Spam, scam, spam
Posted on Thursday, February 5, 2009
Cisco has released a Security Advisory to address multiple vulnerabilities in the IronPort Encryption Appliance and the IronPort PXE Encryption product. These vulnerabilities may allow an unauthorized attacker to view the contents of secure email messages or gain access to the IronPort Encryption Appliance administration interface.
Labels: 419 scam, ATM Scam, email scam, email spam, lottery scam, Nigerian Scam, scam, spam, spam news
Posted on Tuesday, February 3, 2009
Adobe Releases Security Bulletin for Critical Vulnerability
Labels: 419 scam, 419 Scam fraud, ATM Scam, email scam, email spam, lottery scam, Nigerian Scam, Nigerian Spam, spam, spam news
Posted on Friday, February 20, 2009