Public Greets Massive Data Breach With Collective Yawn (PC World via Yahoo! News)
On January 20, as most of the nation focused on an historic inauguration, Heartland Payment Systems, a credit card payment processing company, acknowledged that data thieves had installed spyware on its network to steal credit card details throughout 2008. The company says it handles about 100 million payments a month, and doesn’t yet know how much information was stolen; the theft might be the …
source
New Zero-Day exploit for Microsoft PowerPoint: Exploit/PPT
Yesterday Microsoft published a new advisory related to a vulnerability in Microsoft Office PowerPoint, which could allow remote code execution.In the following image, you can see the versions affected by this vulnerability:This vulnerability affects Windows and Mac Microsoft Office PowerPoint versions.There is already a Zero-Day exploit that exploits this vulnerability which is detected as Exploit/PPT by PandaLabs.The Zero-Day exploit is proactively detected by TruPrevent™ Technologies.
source
Microsoft Security Advisory (969136): Vulnerability in Microsoft Office PowerPoint Could Allow Remote Code Execution – 4/2/2009
Revision Note: Advisory published Advisory Summary:Microsoft is investigating new reports of a vulnerability in Microsoft Office PowerPoint that could allow remote code execution if a user opens a specially crafted PowerPoint file. At this time, we are aware only of limited and targeted attacks that attempt to use this vulnerability.
Hackers release fake Microsoft patch update (PC Advisor)
Users urged to install Trojan masquerading as update Hackers are using Microsoft’s upcoming monthly patch release as a way of spreading malware across cyberspace.A number of web users have received an email, which claims to be from Microsoft security assurance director Steve Lipner.
source
SpyZooka Removes 100% of all Malware Including the Fraudulent eXPress Antivirus (PRWeb via Yahoo! News)
Blue Penguin Software is thrilled to announce that its antispyware software SpyZooka effectively removes all malware including the fraudulent eXpress Antivirus. eXPress Anti Virus, the current rogue antispyware program, infects systems without permission via Trojans and other deceptive methods.
source