Search This Blog

Wednesday, June 29, 2005

UConn Finds Hacking Program in Server



*********************************************************************

___________________________ Sponsors ________________________________

Wi-Fi Planet Conferences & Expos 2005
_____________________________________________________________________

*********************************************************************
http://esecurityplanet.com/
Wednesday, June 29, 2005

eSecurityPlanet is part of the Earthweb network

All newsletters are sent from the domain "internet.com." Please use this domain name (not
the entire "from" address, which varies) when configuring e-mail or spam filter rules, if
you use them.

*********************************************************************

*********************************************************************
TRENDS
*********************************************************************

1. UConn Finds Hacking Program in Server
University discovers breach two years later.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,7plt,l744,co7e,jjlo
------------------------------------------------------------
2. Cyota Helps EarthLink Bag Phishing Scams
The ISP uses Cyota's technology to tighten its scam-blocking toolbar.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,jv7c,ecsc,co7e,jjlo
------------------------------------------------------------
3. Virus Poses as Breaking News on Pope, Bin Laden
A new virus is being masked as breaking news about the capture of Osama Bin Laden and
conspiracy theories about the death of Pope John Paul II.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,1vxx,6uye,co7e,jjlo
------------------------------------------------------------
4. Security Execs: Under Pressure and Under Prepared
A survey of corporate security executives say they're not prepared to prevent inadvertent
loss of data or social engineering attacks. And most say their job is more difficult than
it was last year.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,awlk,gxo5,co7e,jjlo
------------------------------------------------------------
5. Beware E-Card that Delivers Trojan Horse
A new spam campaign poses as an announcement of an e-card, but actually is just a ruse,
tricking users into visiting a malicious Web site where their computer is infected with a
Trojan horse.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,alot,axmt,co7e,jjlo
------------------------------------------------------------
6. 6/29: PWSteal.Bancos-Y Trojan Spreads
PWSteal.Bancos.Y is a password-stealing Trojan horse that logs keystrokes and steals
information entered into certain financial Web sites.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,c1xe,l85w,co7e,jjlo
------------------------------------------------------------
7. 6/29: Psyme-CA an HTML-Based Script
Troj/Psyme-CA is an HTML-based script that exploits the XMLHTTP and ADODB Stream
vulnerabilities associated with Microsoft Internet Explorer to download and run an
executable file.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,4nsc,gnu3,co7e,jjlo
------------------------------------------------------------
8. 6/29: Mytob-BC Worm Uses Own Engine
Like other WORM_MYTOB variants, Worm_Mytob.BC propagates by sending a copy of itself as
an attachment to an email message, which it sends to target recipients using its own
Simple Mail Transfer Protocol (SMTP) engine.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,bp8w,l25s,co7e,jjlo
------------------------------------------------------------
9. 6/29: Mytob-EV Worm Attaches to Emails
Like other WORM_MYTOB variants, Worm_Mytob.EV propagates by sending a copy of itself as
an attachment to an email message, which it sends to target recipients using its own
Simple Mail Transfer Protocol (SMTP) engine.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,ad0x,hgkx,co7e,jjlo
------------------------------------------------------------
10. 6/29: Mytob-GJ a Mass-Mailing Worm
W32.Mytob.GJ@mm is a mass-mailing worm that opens a back door and lowers security
settings on the compromised computer.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,6acs,6re,co7e,jjlo
------------------------------------------------------------
11. 6/29: Mytob-GK a Mass-Mailing Worm
W32.Mytob.GK@mm is a mass-mailing worm that opens a back door and lowers security
settings on the compromised computer.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,2kqh,6qu4,co7e,jjlo
------------------------------------------------------------
12. 6/29: Kelvir-DT Worm Spreads VIa IM
W32.Kelvir.DT is a worm that spreads through MSN Messenger and drops a W32.Randex
variant.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,hta4,fjcg,co7e,jjlo
------------------------------------------------------------
13. 6/29: Mydoom-CF a Mass-Mailing Worm
W32.Mydoom.CF@mm is a mass-mailing worm that uses its own SMTP engine to send an email to
addresses that it gathers from the compromised computer.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,cp85,lk0r,co7e,jjlo
------------------------------------------------------------
14. 6/29: Oscarbot-AY Worm Links to Server
Oscarbot.AY is a worm with backdoor characteristics that connects to the IRC server
b0dy3r.q8hell.org, joins a certain channel and waits for remote control commands to be
carried out on the affected computer.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,dd5d,ja8k,co7e,jjlo
------------------------------------------------------------
15. 6/29: PGPCoder-B Trojan Encrypts Files
Some security vendors have issued alerts for PGPCoder.B, a Trojan that encrypts all the
files with any of the following extensions: ARJ (files compressed with ARJ), CDR, CGI,
CSS, CSV, DBF, DBT, DBX, DOC (Word documents), FLB, FRM, FRT, FRX, GTD, GZ, HTM, HTML,
KWM, MDB (Access databases), MMF, PAK, PDF, PL, PST, PWA, PWL, PWM, RAR (files compressed
with WinRAR), RMR, RTF (Rich Text File), SAFE, SAR, TAR, TBB, TXT (text files), XLS
(Excel spreadsheets), XML and ZIP (files compressed with WinZip).
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,kagk,gycc,co7e,jjlo
------------------------------------------------------------
16. 6/29: Mytob-BY a Mass-Mailing Worm
W32/Mytob-BY is a mass-mailing worm and IRC backdoor Trojan.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,ig7i,4i42,co7e,jjlo
------------------------------------------------------------
17. 6/29: Kelvir-CB an IM Worm
W32/Kelvir-CB is an instant messaging worm for the Windows platform.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,14e7,78zw,co7e,jjlo
------------------------------------------------------------
18. 6/29: Multidr-DQ Trojan Drops Files
Troj/Multidr-DQ is a Trojan for the Windows platform.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,5kw1,8zbh,co7e,jjlo
------------------------------------------------------------
19. 6/29: Codbot-AG Worm Spreads to Shares
W32/Codbot-AG is a network worm with backdoor functionality for the Windows platform.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,o5m,6euw,co7e,jjlo
------------------------------------------------------------

*********************************************************************

/-------------------------------------------------------------------\

Wi-Fi Planet Conference & Expo 2005 - The World's Largest
Wi-Fi Business Event - coming to a city near you! These are the
definitive events of the Wi-Fi industry, where business users
gain the knowledge they need to make strategic buying decisions
and where the industry charts it future direction. Don't miss these
must attend events that are held in San Jose, Tokyo, and Baltimore.
Register today! www.jupiterevents.com

\--------------------------------------------------------------adv.-/

*********************************************************************
PRODUCTS AND SERVICES
*********************************************************************

*********************************************************************
VIEWS
*********************************************************************

1. Updating our Thinking on Software Updates
eSecurityPlanet columnist Ken van Wyk looks at the issue of software updates --
particularly the lack there of for mobile devices.
http://nl.internet.com/ct.html?rtr=on&s=1,1q1l,1,ll7n,mfcu,co7e,jjlo
------------------------------------------------------------

*********************************************************************
Earthweb.com's Family of Online Services for IT Insiders
*********************************************************************

IT MANAGEMENT
http://itmanagement.earthweb.com/
HARDWARE & SYSTEMS
http://hardware.earthweb.com/
NETWORKING & COMMUNICATIONS
http://networking.earthweb.com/
WEB DEVELOPMENT
http://webdeveloper.earthweb.com/
SOFTWARE DEVELOPMENT
http://softwaredev.earthweb.com/

Get the latest technical tips, tools, and resources via Earthweb's
extensive collection of free e-mail newsletters!

*********************************************************************

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Advertising: If you are interested in advertising in our newsletters, call
Claudia at 1-203-662-2863 or send email to mailto:nsladsales@internet.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
For information about advertising opportunities, visit
http://www.jupiterweb.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
For details on becoming a Commerce Partner, contact David Arganbright
on 1-203-662-2858 or go to www.jupitermedia.com/corporate/licensingform.html
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
To learn about other free newsletters offered by internet.com or
to change your subscription visit http://e-newsletters.internet.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
internet.com's network of more than 160 Web sites is organized into 12
channels:
Developer http://internet.com/webdev/
Download http://internet.com/downloads/
International http://internet.com/international/
Internet Lists http://internet.com/lists/
Internet News http://internet.com/news/
Internet Resources http://internet.com/resources/
IT http://internet.com/it/
Small Business http://internet.com/sb/
Linux/Open Source http://internet.com/linux/
Windows Technology http://internet.com/win/
Wireless Internet http://internet.com/wireless/
xSP Resources http://internet.com/xsp/
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
To find an answer - http://search.internet.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Looking for a job? Filling an opening? - http://jobs.internet.com
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
This newsletter is published by Jupitermedia Corporation
Copyright (c) 2005 Jupitermedia Corporation. All rights reserved.
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
For information on reprinting or linking to Jupitermedia content:
http://www.jupitermedia.com/corporate/permissionform.html
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

You are subscribed to the eSecurity Planet newsletter as security.world@gmail.com. To unsubscribe from eSecurity Planet please send an email to: u-13a19-9058ade9fc-1768@nl.internet.com

To manage your newsletter subscription preferences, visit this location: http://nl.internet.com/profilepage.html?uid=9058ade9fc&eid=13028466

To unsubscribe via postal mail, please contact us at:

Jupitermedia Corp.
Attn: Newsletter Subscription Dept.
475 Park Avenue South
New York, NY 10016

Please include the email address which you have been contacted with.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

This email is powered by EmailLabs (http://www.emaillabs.com)
Contact us for a FREE demo account

No comments: