icon.exe

March 29, 2007 2:00:00 AM CEST

Microsoft Windows Cursor And Icon ANI Format Handling Remote Buffer Overflow Vulnerability – Type: Vulnerability. Microsoft Windows is prone to a buffer-overflow vulnerability; fixes are available.

November 6, 2009 4:54:07 AM CET

Updates for Adobe's Shockwave, Sun's Java – Sun Microsystems has issued an update to its Java software that fixes at least one security vulnerability. Separately, Adobe is pushing out a patch to plug four security holes in its Shockwave Player. The Sun patch brings Java 6 to version 17. If you're not sure whether you have Java or what version you may be running, visit this page and click the "Do I have Java?" link. If you don't have Java, you probably don't need it. If you do have it, make sure you've got this latest version. To update from within Java, open the Windows control panel, click the Java icon, then at the tab marked Update hit the Update Now button (in Windows 7, to get to Java click start, type "Java" in the search box and pick the first result). To see whether your system has Adobe's Shockwave Player, follow this link: If you see

October 29, 2009 6:45:03 PM CET

DHS: PhoneSnoop app bugs BlackBerrys – The Department of Homeland Security's U.S. Computer Emergency Readiness Team (US-CERT) is warning BlackBerry users about a spyware program that allows attackers to turn a target's handset into a microphone that can be accessed remotely. PhoneSnoop is a free, remote spying application designed for BlackBerry phones. The app works by intercepting phone calls from a predetermined 'trigger' number. When PhoneSnoop detects an incoming call from that number, it accepts the call and turns on the BlackBerry's speaker phone, effectively allowing the caller to listen in on the target's surroundings. There are some very real limitations of this spying app: For starters, an attacker would need to have physical access to the victim's phone in order to install the app. PhoneSnoop also can't listen in on the victim's phone calls, and it leaves a conspicuous new program icon in the victim's app list. Still, the alert serves as a useful reminder

October 27, 2009 5:34:09 PM CET

Let’s Play ‘Find the Errors’ – I’m writing this blog to demonstrate how the bad guys are getting better each day–or not, depending of your point of view. Once again our topic is Brazilian malware authors. Yes, the dumb ones I keep running up against. One of the recent versions of the PWS-Banker Trojan being distributed via spam has an interesting feature. First, [...]

November 4, 2009 1:05:23 AM CET

Facebook Phishing Campaign Pushes ‘Cocktail’ Attack – We have already discussed the Facebook phishing campaign. Now the scammers are using the phishing campaign not just for spamming but also for a “cocktail” attack. The scammers have targeted Facebook, telling them that the Facebook account passwords have been changed. The malware downloads a keylogger to collect credit card numbers, social security number, and other passwords [...]

» The Latest Computer Security News