Program

U.S. District Court denies FTC Request to Ban RemoteSpy

by certifiedbug on December 8, 2008

in Internet Security

Press release.

Orlando, FL (PRWEB) December 4, 2008 — On November 25, 2008, the U.S. District Court denied a proposed ban of the remotely-deployed computer monitoring software product, RemoteSpy, sold by CyberSpy Software, LLC. As of December 3, 2008, RemoteSpy is once again available for sale and users of the popular software can once again access their accounts. The Federal Trade Commission (FTC) asked the U.S. District Court for the Middle District of Florida (case no. 6:08-cv-1872-ORL-31GJK) to issue an injunction to: (1) stop the sale of RemoteSpy, the best remote computer monitoring tool on the market; (2) prevent current RemoteSpy customers from using the product; (3) freeze the assets of the company and its CEO, Tracer Spence; and (4) prevent CyberSpy and Spence from operating any other business without the FTC’s consent. The Court refused to take such punitive actions, instead simply requiring CyberSpy to do what it had already offered to do: change its promotional materials and advertising practices to make it clear that the software is not designed or intended to be used to monitor any computer without the owner’s knowledge and consent.

http://www.prweb.com/releases/spy/software/prweb1706254.htm

Certifiedbug, November 19, 2008.
Keylogger vendor CyberSpy under temporary restraining order

{ 0 comments }

Thunderbird 2.0.0.18 released

by certifiedbug on November 20, 2008

in Software

Release notes
Security Advisory

Five Moderate Two Low.

Fixed in Thunderbird 2.0.0.18
MFSA 2008-59 Script access to .documentURI and .textContent in mail
MFSA 2008-58 Parsing error in E4X default namespace
MFSA 2008-56 nsXMLHttpRequest::NotifyEventListeners() same-origin violation
MFSA 2008-55 Crash and remote code execution in nsFrameManager
MFSA 2008-52 Crashes with evidence of memory corruption (rv:1.9.0.4/1.8.1.18)
MFSA 2008-50 Crash and remote code execution via __proto__ tampering
MFSA 2008-48 Image stealing via canvas and HTTP redirect

Thunderbird 2.0.0.18 Download

{ 4 comments }

Keylogger vendor CyberSpy under temporary restraining order

by certifiedbug on November 19, 2008

in Internet Security

Federal Trade Commission

Court Orders Halt to Sale of Spyware

At the request of the Federal Trade Commission, a U.S. District Court has issued a temporary restraining order halting the sale of keylogger spyware. According to the FTC’s complaint, the Florida-based CyberSpy Software, LLC marketed and sold RemoteSpy keylogger spyware to clients who would then secretly monitor unsuspecting consumers’ computers. The FTC seeks to permanently bar the unfair and deceptive practices and require the defendants to give up their ill-gotten gains.

According to papers filed with the court, the defendants provided RemoteSpy clients with detailed instructions explaining how to disguise the spyware as an innocuous file, such as a photo, attached to an email. When consumer victims clicked on the disguised file, the keylogger spyware silently installed in the background without the victims’ knowledge. This spyware recorded every keystroke typed on the victim’s computer (including passwords); captured images of the computer screen; and recorded Web sites visited.

News Release: http://ftc.gov/opa/2008/11/cyberspy.shtm

Original FTC complaint. (PDF) November 5, 2008.

Update: Email received, 12-08-08.

Dear CertifiedBug.com Editor,

In reference to your article:

http://certifiedbug.com/blog/2008/11/19/keylogger-vendor-cyberspy-under-temporary-restraining-order/

On November 25th, the U.S. District Court has ruled that RemoteSpy may
once again be sold and current customers can continue using the software.

In consideration of fair reporting, please see our press release at:

http://www.prweb.com/releases/spy/software/prweb1706254.htm

Our websites are back online and can be accessed at the following addresses:

http://www.cyberspysoftware.com

http://www.remotespy.com

Thank you for your time.

– Sincerely, Tracer Spence CEO, CyberSpy Software LLC makers of RemoteSpy

Certifiedbug, December 8, 2008.
U.S. District Court denies FTC Request to Ban RemoteSpy

{ 0 comments }

Windows Live OneCare to be replaced by “Morro”

by certifiedbug on November 18, 2008

in Microsoft

According to the press release “Morro” will have a smaller footprint and be lighter on computing resources than OneCare.

A big difference for users is that it will be a free stand-alone download, no charge to consumers.

Windows Live OneCare will continue to be sold for Windows XP and Windows Vista at retail through June 30, 2009. Direct sales of OneCare will be gradually phased out when “Morro” becomes available. Regardless of their method of purchase, Microsoft will ensure that all current customers remain protected through the life of their subscriptions.

PressPass:
Microsoft Announces Plans for No-Cost Consumer Security Offering

{ 0 comments }

AVG Flags Adobe Flash

November 14, 2008

Less than a week after crippling non-english versions of Windows XP with a flawed update, AVG’s latest update of their suite is flagging Adobe Flash as potentially malicious. Some might say that’s not too far from the truth but the detection is a false positive. The Register Certifiedbug, November 11, 2008. AVG update removed critical [...]

Read the full article →

Thunderbird 2.0.0.17 released

November 14, 2008

Security Advisory Two Critical Five Moderate. MFSA 2008-46 Heap overflow when canceling newsgroup message MFSA 2008-44 resource: traversal vulnerabilities MFSA 2008-43 BOM characters stripped from JavaScript before execution MFSA 2008-42 Crashes with evidence of memory corruption (rv:1.9.0.2/1.8.1.17) MFSA 2008-41 Privilege escalation via XPCnativeWrapper pollution MFSA 2008-38 nsXMLDocument::OnChannelRedirect() same-origin violation MFSA 2008-37 UTF-8 URL stack buffer [...]

Read the full article →

AVG update removed critical Windows file

November 11, 2008

An update over the weekend for AVG Technologies virus scanner contained a flawed virus signature, which flagged ‘user32.dll’ as a Trojan Horse. Choosing ‘heal’ or ‘quarantine’ caused systems to either stop booting or go into a continuous reboot cycle. AMSTERDAM, Netherlands, Nov. 11 /PRNewswire/ — AVG is actively working to remedy the problem some users [...]

Read the full article →

Searching for a product, buyer beware

October 23, 2008

Noted by users, ‘official-download.net’ appears to be selling a product that is presented in such a way as to mislead a person searching for the download page for a well known antispyware program. Domain Tools. Related Sites: 2008-official.net Website title: Earth 2009 Secrets That’s how the banner appeared yesterday, today it looked like this. At [...]

Read the full article →

Adobe Flash Player update 10.0.12.36

October 15, 2008

Adobe Product Security Incident Response Team (PSIRT) Flash Player 10 addresses Flash Player-specific aspects of the overall clickjacking issue that has been making news recently, and also includes a mitigation for recent clipboard attacks as well as other security enhancements. Adobe will be providing an update to Flash Player 9 for customers who cannot upgrade [...]

Read the full article →

Adobe issues workaround for “Clickjacking” issue

October 7, 2008

Vulnerability identifier: APSA08-08. Customers: To prevent this potential issue, customers can change their Flash Player settings as follows: 1. Access the Global Privacy Settings panel of the Adobe Flash Player Settings Manager at the following URL: http://www.adobe.com/support/documentation/en/flashplayer/help/settings_manager02.html 2. Select the “Always deny” button. 3. Select ‘Confirm’ in the resulting dialog. 4. Note that you will [...]

Read the full article →

← Previous Entries