Microsoft Security Advisory (947563): Vulnerability in Microsoft Excel Could Allow Remote Code Execution – 3/12/2008
Revision Note: Advisory updated to reflect the correct Excel file formats in the MOICE Workarounds section. Advisory Summary:Microsoft has completed the investigation into a public report of this vulnerability. We have issued MS08-014 to address this issue. For more information about this issue, including download links for an available security update, please review MS08-014. The vulnerability addressed is the Microsoft Excel Vulnerability – CVE-2008-0081.
You are nominated…to distribute malware!!!
Since some days ago, we have been detecting some news related to BBB8 (Big Brother Brasil 
that is being used as a social engineering technique in order to distribute malware.
Several weeks ago, the image of Giselle, one of the paticipants of this reality show, was used to distribute malware through the Orkut social network by enticing users to watch a YouTube video of her. When the user followed the link to the video, a message was displayed, notifying that a codec must be installed to view the video. Of course, this codec is in fact the Trojan detected as Orkut.AT.
The last example we have seen regarding BBB8 is an email inviting users to view a video of some erotic scenes of Taty and Marcos, who are contestants of this program as well. However, if any of the links included in the email is followed, the malicious code detected as Trj/Dadobra.AOC will be installed in the computer. It is designed to download malware oriented to steal access data to certain banking entities.
These are the BBB8 participants:
Who will be the following nominated to be the bait to distribute malware??? You decide. J
Microsoft Updates for March
As usual, every second Tuesday Microsoft published security updates for its products. On 11th March, Microsoft published four updates (from MS08-014 to MS08-017), all of them rated as critical and affecting Microsoft Office suite.
We recommend you to update your systems as soon as possible, as all this flaws could allow remote code execution to be run.
You can find more information about the security bulletins by clicking the following links:
MS08-014: Vulnerabilities in Microsoft Excel Could Allow Remote Code Execution.
MS08-015: Vulnerability in Microsoft Outlook Could Allow Remote Code Execution.
MS08-016: Vulnerabilities in Microsoft Office Could Allow Remote Code Execution.
MS08-017: Vulnerabilities in Microsoft Office Web Components Could Allow Remote Code Execution.
Greetings from London
The 6th e-Crime Congress has just finished. With more than 600 delegates, this meeting is becoming one of the most important ones related to the fight against cybercrime. As a strategic sponsor, we had an exhibitor stand:
Speakers from around the world have come to share their knowledge and expertise, you can take a look at the program here. On Wednesday, at session 6 – Going Underground – I presented “The Business of Cybercrime”. You can take a look at the slides here.
Microsoft Security Advisory (947563): Vulnerability in Microsoft Excel Could Allow Remote Code Execution – 1/16/2008
Revision Note: Advisory updated to reflect the correct Excel file formats in the MOICE Workarounds section. Advisory Summary:Microsoft is investigating new public reports of a vulnerability in Microsoft Office Excel 2003 Service Pack 2, Microsoft Office Excel Viewer 2003, Microsoft Office Excel 2002, Microsoft Office Excel 2000, and Microsoft Excel 2004 for Mac. At this time, our initial investigation indicates that customers who are using Microsoft Office Excel 2007 or Microsoft Excel 2008 for Mac, or who have installed Microsoft Office Excel 2003 Service Pack 3 are not affected by this vulnerability.