Tag: Internet Safety

This is big folks.  I recommend getting firefox’s “no script” add-on right away.

Firefox Security Flaw Affecting Gmails Users – The Firefox JAR vulnerability still there!
Last week, security companies around the world spotted a new vulnerability in Mozilla Firefox which could allow the attackers to use a malicious JAR file to harm users computers. The security flaw is still there and moreover, it seems it affects most websites on the Internet including the super search giant Google.
GnuCitizien wrote that Michal Zalewski from Google you know, that famous hacker who joined Googleplex required additional information about a potential exploitation over the companys technologies. In addition, beford.org discovered a way to steal the Gmail contact list using a malicious JAR file especially created to take advantage of the Firefox vulnerability.

Im not going to offer you more details about it but Ill give you a tip on how to remain protected against attacks. You can always install the NoScript extension which was already updated to provide protection for this exploit. In case you never tried it, NoScript is an add-on designed to work with Mozilla Firefox which is supposed to disable the webscripts included on the websites you choose.

More at Softpedia

‘Storm worm’ exploits YouTube | Tech News on ZDNet

Spammers are exploiting YouTube’s “invite your friends” function to send spam containing a variant of the “Storm worm.”Bradley Anstis, director of product management at security firm Marshal, said that spammers are taking advantage of the YouTube function that lets people invite friends to view videos that they have viewed or posted. The function allows someone to e-mail any address from an account.

The scam on Google’s video-sharing site is targeting Xbox owners, urging recipients to collect a prize version of the popular game Halo 3. Anstis said clicking on the link to “winhalo3” leads to a file containing a Storm trojan.

To date, Marshal has tracked around 150,000 of the spam e-mail messages thought to have originated from YouTube accounts.

MSN messenger users are seeing this message sent to people on thier contact list:

Hey, I get my MSN Names from http://www.IM-Names.com

Remove the malware with your favorite spyware killer (like Ad-aware)

If you have questions or comments you are welcome to leave them in the comments section.

Ron’s Note: Good fix from Dave below: 

• Dave Says:
  May 22nd, 2006 at 8:08 am eThis worked for me!

  first open WINDOWS TASK MANAGER (ctrl+alt+del) then click on PROCESSES. now look for something called ‘IM-svr.exe‘ click on it then then END PROCESS.

  now goto ur program files folder and delete IM-names folder