http://www.antisource.com News, reviews, and alerts for malware and antimalware, spam filtering, and other Internet security topics. en-gb http://www.antisource.com/article.php/antispyware-comparisons Years ago, my mom got an email with an attachment that contained a MyDoom email worm. She opened the attachment, ran the MyDoom worm, and infected her computer. Two days later, her antivirus softw... http://www.antisource.com/article.php/forum-upgrade So you may have noticed that the forum turned blue. I have finished upgrading the forums to the latest version, and am in the process of re-integrating them back into the main site. You can visit... http://www.antisource.com/article.php/proxy-cached-credentials-spyware Recently a client of mine and I had a long winded debate about the dangers of not protecting machines from spyware and other malware. The client swore up and down that since they had an authenticat... http://www.antisource.com/article.php/editors-wanted We need authors for the following article categories: - Antivirus (reviews, bugs) - Virus (latest outbreaks, new exploits used, cleanup steps) - Antispam (reviews) - Spam (latest techniques, news)... http://www.antisource.com/article.php/mespam-trojan-rsvp32_2 Its the new tactic in infection warfare. Why bring down computers, when they can make you money?Spam continues to rise, giving network administrators a headache trying to keep up with it. http://www.antisource.com/article.php/ani-cursor-exploit There is a new exploit on an old vector involving Microsoft's ANI files. ANI is used for animated cursors. Blocking the download of ANI files is not enough - they can be renamed to JPEG to bypass... http://www.antisource.com/article.php/cisco-pix-500-sip-flaw Supposedly, the CISCO 500 Series PIX firewalls may have a flaw. The potential flaw is with the SIP protocol. By sending a certain packet to the PIX, hackers would be able to gain free reins to the ... http://www.antisource.com/article.php/backdoor-sdbot-asr What if your computer boots on its own, logs on to websites that it wants, downloads harmful stuff like no one’s business, takes commands from someone in hinterland Russia and send mails to anyone ... http://www.antisource.com/article.php/hdmoore-metasploit-framework HD Moore, a popular hacker, has recently updated his controversal exploit framework called Metasploit Framework. This framework has plug-in modules to allow users to test everything from their brow... http://www.antisource.com/article.php/planted-usb-drive-trojan One of my colleagues, Steven Smith from ASPAlliance, pointed out an article to me involving an "unpreventable" security exploit. In short, a group of consultants were hired to assess security at a ... http://www.antisource.com/article.php/microsoft-rss-security-bulletin You can now subscribe to the Microsoft Security Bulletins that are released on a continual basis by visiting the TechNet website and subscribing to their email service. You can also sign-up for the... http://www.antisource.com/article.php/financial-trans-trojans-ssl People who use online banking, stockbrokers, and other financial sites have gotten used to the need to confirm they are using a secure connection. They make sure the URL begins with "https&quo... http://www.antisource.com/article.php/kama-sutra-nyxem-feb3 In case you haven't picked this up in the news, some experts warn that the worm dubbed Kama Sutra, also known as Nyxem.E, Blackworm, W32/MyWife.d and Blackmail.E will "attack" February 3. The worm... http://www.antisource.com/article.php/wmf-zero-day-exploit An attacker can gain user level control if you open an image in IE or windows explorer. The exploit was revealed before a patch was available to fix it: http://www.securityfocus.com/brief/89 Sin... http://www.antisource.com/article.php/2005-malware-activity This has been an interesting year for viruses. Most viruses have been recycled worm routines, incorporating lists of the newest (and some old) Windows OS and software exploits. The most popular m... http://www.antisource.com/article.php/sober-registration-zip-word Be aware of a new Sober variant making its way around the Internet. It sends an email with the following details:Subject: Registration ConfirmationMessage: Thanks for your registration.Your data a... http://www.antisource.com/article.php/online-banking-2006 By the end of 2006, you won't be able to log on to your bank's site with just a username and password. Banks are required to implement two-level (or two-factor) authentication, meaning that not o... http://www.antisource.com/article.php/sober-new-password A new Sober variant is making its rounds, attempting to convince unsuspecting people that their network administrator has changed their password.The email the worm sends is not particularly convinc... http://www.antisource.com/article.php/virus-customs-airports It appears that a virus took down the computer system that U.S. Customs relies on, as noted in this article. The article does not identify the virus, but does explain that the downtime impacted ai... http://www.antisource.com/article.php/plug-play-zotob On Tuesday, August 9th 2005, Microsoft released a series of patches, one of which is for a serious exploit in the Plug and Play service that allows remote code execution. Within a few days, a new ...