Threat Center Security News
Security News
Microsoft Warns About Browser Components Vulnerability Print E-mail
Written by Rebecca Mints   
Tuesday, 08 July 2008 06:42

The vulnerability refers to a flaw in an ActiveX control for Snapshot Viewer. It affects Microsoft Office Access 2000, 2002 and 2003 but not Office Access 2007. Once the vulnerability is found, it can used by attackers to gain access to the targeted system and all of the owner’s rights.

Read more...
 
Trojan crawls recruitment sites such as monster.com Print E-mail
Written by Rebecca Mints   
Monday, 07 July 2008 07:05

A Russian gang called Phreak has created an online tool that extracts personal details from CVs posted onto sites including Monster.com, AOL Jobs, Ajcjobs.com, Careerbuilder.com, Careermag.com, Computerjobs.com, Hotjobs.com, Jobcontrolcenter.com, Jobvertise.com and Militaryhire.com. As a result the personal information (names, email addresses, home addresses and current employers) on hundreds of thousands of jobseakers has been placed at risk, according to net security firm PrevX.
Read more...
 
VLC Media Player Vulnerability Print E-mail
Written by Rebecca Mints   
Friday, 04 July 2008 05:19

A new vulnerability has been found in the popular VLC media player that could allow an attacker to gain control of someone's PC. The problem, which Secunia ranks as "highly critical," affects version 0.8.6h on Windows.

Read more...
 
It's Not Just Your Users Computers - Citibank's ATMs Hacked Print E-mail
Written by Rebecca Mints   
Wednesday, 02 July 2008 06:17

If it's online it can be attacked. Hackers broke into Citibank's network of ATMs inside 7-Eleven stores and stole customers' PIN codes, according to recent court filings that revealed a disturbing security hole in the most sensitive part of a banking record.
Read more...
 
Apple Safari for Mac OS X Remote Code Execution Vulnerability Print E-mail
Written by Rebecca Mints   
Tuesday, 01 July 2008 05:53

A vulnerability has been identified in Apple Safari for Mac OS X, which could be exploited by remote attackers to cause a denial of service or compromise a vulnerable system. This issue is caused by a memory corruption error in WebKit when handling malformed JavaScript arrays, which could be exploited to crash an affected browser or execute arbitrary code by tricking a user into visiting a specially crafted web page.
Read more...
 
More Articles...


Page 17 of 33

WTW Threat Level