Here's a quick recap of last week's IT Security highlights:
MicroSoft Critical Vulnerability
MS15-034 is a serious one. It can allow remote code execution through HTTP requests. The security update addresses the vulnerability by modifying how the Windows HTTP stack handles requests.
Affected OS versions
Win 7, Win 8, Win Server 2008 (including r2) and Windows Server 2012 (including r2)
There is a workaround that might help mitigate this risk, it hass been published on the TechNet website. You should patch your systems ASAP.
Facebook Trojan
And there is a new malware that attacks unsuspecting netizens (does anyone still say that?!) posing as a 'hot' video that you are likely to want to have a peek at. It's quite simple in the way it breaks in. It asks you to install Flash as soon as you hit play and then conveniently installs malicious code as you start wondering what happened to the video. The actual file name is youtube.scr.
Action Required
Try not to fall for the 'hot' video. If it is something that you do not recognise or something that looks a bit dodgy, do not try to play it. If it starts downloading a file, stop it. Flash is not required to watch videos on FB. It's not 2004!
McAfee takes down 'beebone'
McAfee has teamed up with law eforcement agencies in taking down a botnet that went by the name of 'beebone'. It is a great achievement and the team needs to be conogratulated for this!
Kaspersky Decrypts CoinVault-encrypted files
Kaspersky has released a tool that can be used to decrypt files that have been encrypted by ransomware that goes by the name of CoinVault. It is of great help to victims that have been targeted succesfuly by this malware.
It is avialable here:
https://noransom.kaspersky.com
Have nice week and secure week! Take care.
No comments:
Post a Comment