by certifiedbug on November 20, 2006
in Security
By Ben Edelman and Eric Howes
November 20, 2006
Earlier this month, the FTC announced the proposed settlement of its investigation into Zango, makers of advertising software widely installed onto users’ computers without their consent or without their informed consent (among other bad practices).
We commend the proposed settlement’s core terms. But despite these strong provisions, bad practices continue at Zango — practices that, in our judgment, put Zango in violation of the key terms and requirements of the FTC settlement.
Full article
by certifiedbug on November 15, 2006
in Security
PC al Sicuro
As everyone could think, Gromozon team started a new attack using new strategy showing great programming skills. We’re monitoring the situation and I’ll write updates as soon as possible. I’m updating Prevx for detect these new files.
After the Gromozonites have infected computers, stolen the owner’s identity and caused misery; no doubt the Grinches sleep well counting cash instead of sheep.
by certifiedbug on November 11, 2006
in Security
November 10, 2006 Corrine at the Security Garden wrote asking people to help bring the latest Gromozon shenanigans to light.
PC al Sicuro
Marco:
Finally some good news. We succesfully obtained shutdown of one of the servers which are spreading Gromozon. Server, hosted in the U.S., was taken offline today and it’ll be taken under investigation.
We at Prevx will continue monitoring situation for new Gromozon variants, providing technical stuff. Now, finally, there’s who’ll manage legal stuff too.
Our thanks go to who helped us taking down the website.
From acorns big trees grow. 
Update from PC al Sicuro
During these hours, it looks like that almost all domains used to spread Gromozon - except two - are down.
Microsoft TechNet
On 14 November 2006 Microsoft is planning to release:
Security Updates
- One Microsoft Security Bulletin affecting Microsoft XML Core Services. The highest Maximum Severity rating for this is Critical. These updates will be detectable using the Microsoft Baseline Security Analyzer. These updates will require a restart.
-
Five Microsoft Security Bulletins affecting Microsoft Windows. The highest Maximum Severity rating for these is Critical. These updates will be detectable using the Microsoft Baseline Security Analyzer and the Enterprise Scan Tool. Some of these updates will require a restart.
Microsoft Windows Malicious Software Removal Tool
- Microsoft will release an updated version of the Microsoft Windows Malicious Software Removal Tool on Windows Update, Microsoft Update, Windows Server Update Services and the Download Center.
Note that this tool will NOT be distributed using Software Update Services (SUS).
Non-security High Priority updates on MU, WU, WSUS and SUS
- Microsoft will release No NON-SECURITY High-Priority Updates for Windows on Windows Update (WU) and Software Update Services (SUS).
- Microsoft will release two NON-SECURITY High-Priority Updates on Microsoft Update (MU) and Windows Server Update Services (WSUS).
Although we do not anticipate any changes, the number of bulletins, products affected, restart information and severities are subject to change until released.
© 2006 Microsoft Corporation. All rights reserved.
by certifiedbug on November 10, 2006
in Security
The sleeze behind the Gromozon infection have inserted code into the program making their nasty creation appear to be authored by a legitimate security researcher, Marco Giuliani.
In fact, Marco Giuliani created a Gromozon removal tool for PrevX which I previously blogged as “Gromozon Rootkit.”
SunbeltBLOG
Marco’s site: PC Al Sicuro
DiggIt Direct link
Posted by Jim Allchin on Wednesday, November 08, 2006 11:53 AM
It’s time!
Windows Vista Team Blog
Great news! Today we’re announcing the release to manufacturing (RTM) of Windows Vista.
Yes, you read it right — development of Windows Vista is complete.
by certifiedbug on November 7, 2006
in Security
November 6, 2006
Websense Security Labs reports:
Malicious Website / Malicious Code: Fradulent You Tube video on MySpace installing Zango Cash
Websense® Security LabsTM has discovered a number of user pages on the MySpace domain which have videos that look like they are from You Tube. The videos have an installer embedded within them for the Zango Cash Toolbar.
Screenshots
First Wave of Localized IE7 Releases Now Available
We have released Internet Explorer 7 for Windows XP in five new languages: German, Japanese, French, Spanish, and Finnish. You can download these today from the IE website.
As with the English version, we’re making the localized downloads available a few weeks ahead of distribution via Automatic Updates. German, French, Spanish and Finnish users should be prepared for AU distribution by mid-November. Japanese AU distribution will begin this spring.
We will release additional languages as they are ready over the next few months…..
IEBlog
by certifiedbug on November 6, 2006
in Security
November 14 2006 (USA) will see the release of Zune MP3 Player and MSN will cease to offer music downloads through the MSN Music store.
At the Zune Marketplace, customers will be able to buy songs individually or subscribe to a monthly music download service called Zune™ Pass.
The songs you download on your Zune Pass are yours for as long as you hold your Zune Pass subscription. You can still purchase songs or albums individually, too.
Will Santa bring an iPOD or a Zune.
