Shabas pcsecurity

Malwarebytes' Anti-Malware 1.41 released

2009-09-13T05:02:00.000-07:00

Malwarebytes' Anti-Malware 1.41 has been released.

See below changelog from Malwarebytes website:

Changes in Version 1.41 (September 10th, 2009):
* (FIXED) Drastically improved product load speed on slower machines.
* (FIXED) Issue with IP Protection blocking certain IPs it should not.
* (FIXED) Improved memory usage in scanner and protection module.
* (FIXED) Improved malware removal capabilities.
* (FIXED) Scan detecting items that did not exist (junction issue).
* (ADDED) Support for Hebrew language.

Download latest version uswing internal updater or from here

COMODO Internet Security 3.11.108364.552 released

2009-08-27T07:20:00.000-07:00

COMODO Internet Security 3.11.108364.552 has been released.

See below changelog from comodo forums:

IMPROVED! Memory scanner now includes more advanced techniques to detect viruses in memory
FIXED! AV consumes huge memory while scanning some compressed files
FIXED! AV reports incorrent archive names under some circumstances
FIXED! AV causes freezes in 64 bit operating systems under certain conditions
FIXED! AV crashes while scanning certain packed files
FIXED! Some windows updates can not be installed while CIS is installed

You can download latest version using internal updater or from here. Remember not to install antivirus if you already have one.

Norton Safe Web listed 100 "worst" websites

2009-08-23T02:27:00.000-07:00

Symantec released few days ago list of dirtiest websites.

It is scary that those websites contain over 18000 threats in average when "normal" malware site has "only" around 20 threats.

One of the worst sites is aladeldotnet (don't visit!) which has over 50000 threats. In those websites you can get infected by just visiting.

Entire list isn't published but here are some samples.

Again Java update - SE Update 16 is out

2009-08-12T07:05:00.000-07:00

Sun released Java SE 6 Update 16 shortly after Update 15.

Here is information about bugfixes. Latest version is available here

New Java update out - SE 6 Update 15

2009-08-08T02:33:00.000-07:00

Sun has recently released new update for Java which includes several bugfixes

You can download latest version from Sun's website or use internal updater.

Updating Java is highly recommended due to fixes against security vulnerabilities.

Malwarebytes' Anti-Malware 1.40 released

2009-08-04T08:00:00.000-07:00

Malwarebytes' Anti-Malware 1.40 has been released.

See below changelog from malwarebytes website:

* (FIXED) Runtime error on program start.
* (FIXED) Improved memory usage during scan.
* (FIXED) Minor updating issue.
* (ADDED) Support for Bosnian and Korean languages.
* (ADDED) IP blocking protection - never connect to a malicious website again!
* (ADDED) Scan log now includes whether computer is in safe mode or not.
* (ADDED) New command line parameter: /debugsave (see help file).

Download latest version from link above or use internal updater.

Panda will co-operate with WOT

2009-08-01T02:07:00.001-07:00

WOT is a wonderful free addon for Firefox and IE that warns you about online scams and risky websites that try to deliver malware or send spam. I have personally tried also McAfee SiteAdvisor but after testing it look like that WOT ratings are more reliable and change faster if there are some errors.

Now there are good chances that this freebie will come even better as Panda and WOT have announced partnership. This means that WOT will add bad sites found by Panda.

I suggest that you try WOT if you already haven't. It makes your surfing experience safer.

Comodo Internet Security 3.10.101801.529 released

2009-07-06T11:53:00.000-07:00

Comodo Internet Security 3.10.101801.529 has been released.

Below is changelog from Comodo website

* NEW! COMODO Secure DNS is introduced as a new free service
* NEW! COMODO HopSurf Toolbar - COMODO SafeSurf Toolbar has been discontinued and superseded by COMODO HopSurf Toolbar
* NEW! CIS now allows the users to change the URL for the program and virus updates
* IMPROVED! CIS now has a better support for Windows Security Center integration in Windows Vista SP1 and later
* IMPROVED! AV engine now supports more archives and has better detection capabilities
* IMPROVED! Direct disk access false alerts have been reduced
* FIXED! Some applications do not run when CIS is installed in Vista 64 bit
* FIXED! Antivirus scans excluded folders
* FIXED! Firewall does not show some connections under high load
* FIXED! Firewall sometimes causes the PC to freeze in windows XP 32
* FIXED! cfp.exe crashes when HIPS alerts timeout

You can use internal updater or download from comodo website. Remember that CIS also has antivirus so if you already have antivirus please uncheck "Install Comodo Antivirus"

Outlook phish mail in the wild

2009-06-27T05:10:00.000-07:00

Trend Micro recently blogged about rather genuine-looking phish mail which tries to make user download a trojan. After activating, trojan checks login credentials for biggest online banks and for social networking websites like YouTube, MySpace, Flickr and Facebook. It also activates when user visits those websites.

Microsoft has said years ago that they don't mail about such updates but unfortunately there are always some people who will believe in those mails. That's why all Microsoft related updates should be downloaded from Microsoft Update.

Malwarebytes' Anti-Malware 1.38 released

2009-06-18T06:39:00.000-07:00

Malwarebytes' Anti-Malware 1.38 has been released.

See below changelog from Malwarebytes website:

# FIXED) Minor issue with updating.
# (FIXED) Certain types of freezing during full and quick scans.
# (FIXED) Problem with Estonian language and installer.
# (FIXED) Certain folders showing up as files in results list.
# (FIXED) Scan time improperly displayed if Abort Scan clicked after Pause Scan.
# (FIXED) Error during loading log files after database update.
# (FIXED) Issues with freezing in protection mode. Certain conflicts with anti-virus software.
# (ADDED) Some proxy support, please see /proxy command line parameter.
# (ADDED) New command line parameters: /logtofolder, /logtofile (see help file).

You can use internal updater or download latest version from malwarebytes website.

Mozilla Firefox 3.0.11 released

2009-06-12T07:15:00.000-07:00

Mozilla Firefox 3.0.11 has been released. There are several security fixes, 9 in total.
Four of them has been classified as critical, one as high, two as moderate and rest as low. Read more about them here

For other changes, see here

You can use internal updater or download latest version from here

AV-Comparatives May Retrospective/Proactive Test released

2009-05-28T08:11:00.000-07:00

AV-comparatives.org has released new Retrospective/Proactive Test.

In total 16 antivirus products were tested.

Top three performers were Microsoft, ESET NOD32 and Kaspersky.

Avira found most but it was penalized due to some false positives and didn't make to to top three.

Three last ones were F-secure, Norman and Kingston.

Read entire test here (Retrospective/Proactive Test May 2009, Report (PDF - english))

Malwarebytes' Anti-Malware 1.37 released

2009-05-27T08:00:00.000-07:00

Malwarebytes' Anti-Malware 1.37 has been released.

See below changelog from Malwarebytes forum:

1. (FIXED) Dramatically improved product updating.
2. (FIXED) /runupdate now completely silent, including errors.
3. (ADDED) Protection module now 64-bit compatible (XP SP2 and higher only).
4. (ADDED) New 32-bit protection module for XP SP2 and higher.
5. (ADDED) New heuristics for Trojan.JSRedir and other infections.
6. (ADDED) Type of scan displayed on scanning page.
7. (ADDED) Support for Arabic and Estonian language

Download latest version here or use internal updater.

Comodo Internet Security 3.9.76924.507 released

2009-05-16T02:33:00.000-07:00

Comodo Internet Security 3.9.76924.507 has bee released.

See below changelog from comodo website

* NEW! Multilingual Support: CIS now supports other languages
* NEW! Stateful File Inspection for Realtime Virus Scanner
* NEW! Integrated In Memory Virus Scanner(i.e. Integrated BOClean)
* NEW! LivePCSupport is provided as a 30 Day Trial
* IMPROVED! Default popup layout changed to the basic layout in order to encourage the use of it
* IMPROVED! Stronger Defense+ protection: New types of defenses are added e.g. Clipboard logging, Keyboard input blocking etc.
* IMPROVED! Keyboard and Screen access alerts are improved and number of false positives are reduced
* IMPROVED! Stronger Defense+ protection while the Windows is Booting/Shutting down
* IMPROVED! Stronger Default Firewall policy in order to better hide from attackers(Thanks to feedback from our forum moderator Ronny)
* IMPROVED! Configuration Management window is changed
* IMPROVED! Submission functionality for the Quarantined items added
* FIXED! Avntivirus heuristics does not detect some files properly
* FIXED! Defense+ BO protection incompatible with Spy Swepper virus scanner.
* FIXED! CIS does not validate digital certificates properly
* FIXED! CIS blocks some application from being executed
* FIXED! BSOD while CIS is being uninstalled
* FIXED! CIS does not detect some types of shellcodes upon a BO attack
* FIXED! CIS erroneously reports buffer overflow attacks for some applications under certain circumstances
* FIXED! CIS does not scan spcially created RAR files properly (http://www.securityfocus.com/bid/34737, first reported by Thierry Zoller)
* FIXED! CIS creates duplicate file name entries for some protected file access alerts
* FIXED! Right click scanner reports "Antivirus Engine is not initialized"
* FIXED! Threatcast registration does not work properly(This bug caused some users unable to see TC statistics)
* FIXED! CIS occasionally crashes while submitting the files
* FIXED! CIS firewall drivers sometimes cannot be restored by the diagnostics utility
* FIXED! CIS did not scan NTFS streams during manual scanning
* FIXED! Windows Logon Screen is shown when CIS is installed under certain circumstances(Windows created a password bug)
* FIXED! CIS causes system performance to degrade after prolonged time of network data transfer

Remember that Internet Security contains both antivirus and firewall so if you have already antivirus installed, don't install Comodo AntiVirus as only one antivirus should be running.

Download it here or use internal updater

Powerpoint vulnerability to be fixed on Tuesday

2009-05-09T02:30:00.000-07:00

Microsoft will release a fix for Powerpoint vulnerability on Tuesday. Classification of that vulnerability depends on Powerpoint version, for PowerPoint 2000 it is critical and for later versions it is important.

Microsoft Windows Malicious Software Removal Tool will also get updated.

Read more about May updates here

Amount of spam is back to "normal"

2009-05-02T02:49:00.000-07:00

Symantec recently reported that amount of spam is almost back to same level when dubious McColo was shut down in November 2008 being now 91% of it.

Currently 94 percent of all emails are spam. Current spam trend seems to be loans and real estate business. Spam emails offer help for people who need to sell their apartment or advice for loans.

Mozilla Firefox 3.0.10 released

2009-04-28T07:37:00.000-07:00

Mozilla Firefox 3.0.10 has been released.

One critical vulnerability has been fixed and some stability corrections as well.

See release notes here and download latest version here or use internal updater.

Mozilla Firefox 3.0.9 released

2009-04-22T06:30:00.000-07:00

Mozilla Firefox 3.0.9 has been released.

There are several security fixes, one for critical vulnerability, two for high and two for moderate.

See more information here

You can use internal updater or download newest version from here

Spywareblaster 4.2 released

2009-04-10T02:12:00.001-07:00

Spywareblaster 4.2 has been released.

Below is changelog from Wilderssecurity:

[4.2]
-Windows 7 support
-Internet Explorer 8 support
-K-Meleon support
-Faster, secure updating worldwide
-Automatic program version upgrade support (for AutoUpdate users)
-Interface improvements
-Displays dates and other information in local format
-Enhanced support for Flock 2.x
-Better support for upgrading in the installer - now does more to help ensure that previous versions are removed when installing "over the top"
-Significantly faster "Disable All Protection" operation
-Fixed "window doesn't display" on some PCs
-Fixed recurring "run from Admin account" error
-Fixed problems detecting some Firefox (and other Gecko-based browser) profiles
-Fixed crash enabling AutoUpdate on Windows Vista if the Task Scheduler service is disabled
-Implemented requested "Find Unprotected" right-click feature for the Block Lists
-Many additional small bug fixes, tweaks, and optimizations
Requirements:

Windows 98, ME, NT4, 2000, XP, Vista, 7.

Provides Protection for the Following Browsers:

* Internet Explorer
and any browsers that use the Internet Explorer engine, including:
o AOL web browser
o Avant Browser
o Slim Browser
o Maxthon (formerly MyIE2)
o and more
* Mozilla Firefox
* Netscape
* Seamonkey
* Flock
* K-Meleon

Download latest version here

It is recommended to uninstall older version before uninstalling new version.

Malwarebytes' Anti-Malware 1.36 released

2009-04-09T02:38:00.000-07:00

Malwarebytes' Anti-Malware 1.36 has been released.

Below is changelog from Malwarebytes' website

*(FIXED) Minor cosmetic issue during removal process.
* (FIXED) Minor problem with false positives.
* (FIXED) Silent update no longer displays message on program update.
* (ADDED) New heuristics for Vundo infections.

You can download latest version from link above or use internal updater.

Unpatched vulnerability in older PowerPoint versions

2009-04-05T03:41:00.000-07:00

Microsoft released recently a security advisory about remote code execution vulnerability in older Microsoft Office PowerPoint programs.

Vulnerability is in these versions of Powerpoint:

Microsoft Office PowerPoint 2000 Service Pack 3
Microsoft Office PowerPoint 2002 Service Pack 3
Microsoft Office PowerPoint 2003 Service Pack 3
Microsoft Office 2004 for Mac

Attack is able to perform using bad PowerPoint file but needs action from users side. One example where to get it could be email attachment.

If PowerPoint version is 2003, Microsoft recommends to use Microsoft Office Isolated Conversion Environment (MOICE) for opening PowerPoint documents as stated in earlier advisory

Microsoft is not sure if fix would be in April updates.

Winpatrol 2009 released

2009-03-21T11:11:00.000-07:00

Winpatrol 2009 (16.0.2009) has been released.

Here is information about changes from Winpatrol blog:

#New "Recent" tab lets you see new programs and settings recently added to your computer. Especially helpful in finding malware that comes with multiple randomly named files.

# Compatibility enhancements to work with Windows Vista and Windows 7

# Monitors and alerts to any changes to User Account Control Settings(UAC)
No matter if its malware or over jealous security programs.

# Continues to have the best performance and smallest foot print of any system monitor

# Hide individual alert messages and lock settings to prevent potential errors by other computer users.

Read more and download WinPatrol from here

Old versions of programs help criminals

2009-03-20T11:32:00.000-07:00

F-secure has counted that up to 90 per cent of users have 5 security vulnerabilities in their computer. They might have latest version but they don't remove older versions with vulnerabilities.

Sean Sullivan from F-Secure laboratory says that many users have old programs which they don't use and that those should be uninstalled. Easiest way to avoid vulnerabilities is to always install latest updates.

F-secure has also two free tools which would help to find outdated programs and also even unknown vulnerabilties. They are Exploit Shield and Health Check

Microsoft March updates to be released on Tuesday

2009-03-07T02:35:00.000-08:00

Microsoft will release monthly updates on Tuesday.

This time there will be three updates. Two of them are classified as Important and one as Critical. Updates are for Microsoft Windows 2000, XP, Vista, Server 2003 and Server 2008 and are against Remote Code Execution and spoofing.

Microsoft Windows Malicious Software Removal Tool will also be updated.

Read more about updates here

Mozilla Firefox 3.0.7 released

2009-03-07T01:44:00.000-08:00

Mozilla Firefox 3.0.7 has been released.

Three critical and one high vulnerability has been fixed, see here

Read more here
and download Mozilla Firefox 3.0.7 here.

You can also use internal updater to get latest version of Firefox.

Comodo Internet Security 3.8.64739.471 released

2009-02-21T03:25:00.000-08:00

Comodo Internet Security 3.8.64739.471 has been released.

See below for changelog from comodo website

* FIXED! AV engine crashes while scanning some files
* FIXED! Firewall blocks all the traffic in some vista PCs when checksum verification is enabled
* FIXED! Some applications consume 100% CPU while CIS is installed

Please note that installer includes both antivirus and firewall but you can choose which of them you want to install. If you have Comodo Firewall installed you can use built-in installer.

Download
Comodo Internet Security

Cyber criminals use cloud computing

2009-01-21T03:07:00.000-08:00

McAfee released yearly threat report recently. There are some interesting facts about new tactics in cyber crimes.

Newest method is so called "cloud computing". That means that services will be delivered over internet and usage of scattered computing. McAfee excepts that this will become more popular this year.

Global financial crisis help to bring also other options to fraud. Fake bills, law services and investments offer tools to cheat money from people.

Malwarebytes' Anti-Malware 1.33 released

2009-01-15T01:25:00.000-08:00

Malwarebytes' Anti-Malware 1.33 has been released.

See below changelog from Malwarebytes' website:

(FIXED) Issue with Latvian language file.
(FIXED) Improved activation license key checking.
(ADDED) Safeguard to prevent users from losing scan results.
(ADDED) Created framework for Malwarebytes' scripting language.
(ADDED) Updater now has 900+ access points (mirrors).

You can download latest version from link above or use internal updater.

Microsoft January updates released yesterday

2009-01-14T10:26:00.000-08:00

Microsoft January updates were released yesterday. This time there was one update which
is fix against Critical or Moderate vulnerability in remote code execution (depends on operating system).

Read more here

Malwarebytes' Anti-Malware 1.32 released

2009-01-05T08:00:00.000-08:00

Malwarebytes' Anti-Malware 1.32 has been released.

See below changelog from Malwarebytes website:

(FIXED) Issues detecting certain types of malware.
(FIXED) Miscellaneous problems with heuristics.
(ADDED) Better detection for the Vundo infection.
(ADDED) Support for Latvian and Croatian languages.

Download it from here or use built-in updater.

Merry Christmas and happy holidays

2008-12-24T02:07:00.000-08:00

It is again that time of year.

I wish everyone who reads my blog Merry Christmas.

Shall we everyone try to relax and enjoy Christmas time :)

Mozilla Firefox 3.0.5 released

2008-12-17T02:20:00.000-08:00

Mozilla Firefox 3.0.5 has been released.

There are several stability and security issues that have been fixed.

Read more here and download latest version here or use Firefox built-in updater.

Microsoft December updates to be released tomorrow

2008-12-08T03:19:00.000-08:00

Microsoft will released tomorrow in total 8 security updates in monthly update package. Six of them are classified as critical and two as important. Fixes are for Remote Code Execution Elevation of Privilege. Affected operating systems are Microsoft Windows 2000, Windows XP, Windows Vista and also server editions 2003 and 2008.

Microsoft Windows Malicious Software Removal Tool will also get updated.

Read more about those updates here

Malwarebytes' Anti-Malware 1.31 released

2008-12-04T01:54:00.000-08:00

Malwarebytes' Anti-Malware 1.31 has been released.

See below changelog from Malwarebytes forum:

1. (FIXED) Minor issues with heuristics and false detections.
2. (FIXED) Improved activation license key checking.
3. (FIXED) Removal on reboot now uses RunOnce registry key.
4. (ADDED) Support for Ukrainian language.
5. (ADDED) Heuristics for newer infections.

Download latest version of Malwarebytes' Anti-Malware here or use internal updater.

AV-comparatives Retrospective/ProActive test released

2008-11-30T02:49:00.000-08:00

AV-comparatives has tested again how different antiviruses detect new malware.

Below are detection rates:

ProActive detection of new samples (1st week only):
1. Avira & Kaspersky 71%
2. GData 66%
3. NOD32 54%
4. Sophos & BitDefender 51%
5. Trustport 50%

ProActive detection of new samples (all 4-weeks):
1. Avira 67%
2. Kaspersky 60%
3. GData 59%
4. NOD32 51%
5. Sophos 50%

In overall NOD32 was ranked as first, followed by Avira and Kaspersky.

Read entire test here (Comparatives - Retrospective/ProActive Test November 2008).

AV-comparatives released performance test

2008-11-21T02:06:00.000-08:00

Ever wondered that is your antivirus solution slow or fast compared to others?

AV-comparatives tested this time how anti-virus softwares impact on system performance.

Top three performers were:

1. ESET
2. Symantec
3. VBA32

And these three were heaviest solutions:

1. F-secure
2. TrustPort
3. Sophos

Read entire test here (Comparatives - Performance Test).

“Morro” replaces Windows Live OneCare

2008-11-19T07:34:00.000-08:00

Microsoft announced that new anti-malware solution, which goes now under code named “Morro", will replace Windows Live OneCare in the second half of 2009.

Microsoft says that some non-security related things will get removed but core anti-malware features will stay and get better and program will be more lightweight. Windows Live OneCare subscription service will be discontinued due to "Morro" on June 30, 2009. "Morro" will work in Windows XP, Vista and in forecoming Windows 7.

Mozilla Firefox 3.0.4 released

2008-11-13T03:42:00.000-08:00

Mozilla Firefox 3.0.4 has been released.

There are several stability and security issues that have been fixed.

Read more here and download latest version here or use Firefox built-in updater.

Denial of service attacks more powerful

2008-11-12T07:37:00.000-08:00

Arbor Networks just released their Fourth Annual Security report.

There are some interesting facts. Attacks are more powerful and more targeted but they get reported less often. Size of attacks has hugely increased within 7 years, from 0,5 MBit/s up to 40 GBit/s. Those are so great that ISPs might have troubles mitigating them quickly.

November Microsoft updates out Tuesday

2008-11-06T10:46:00.000-08:00

November Microsoft updates will be released on next tuesday.

This time there will be two updates, one classified as critical and another as important. They are against Remote Code Execution. Affected softwares are Windows and Office.

Microsoft Windows Malicious Software Removal Tool will also get updated.

Read more info here

Scareware brings a lot of money

2008-11-03T02:03:00.000-08:00

Antivirus XP rogue is one of those scareware software of which I blogged earlier. It claims that computer is infected and that user needs to pay $49.95 program for disinfecting the machine.

New York Times wrote recently that people who spread that program might get even $60,000 to $160,000 per month. Russian hacker NeoN had posted that information to Russian electronic bulletin board.

Problem with scareware/rogue programs is that they are always changing. When people learn learn to avoid certain rogue, a new one is already there.

Comodo Internet Security released

2008-10-24T09:36:00.000-07:00

Comodo Internet Security combines Comodo Firewall with Comodo Antivirus.

See below changelog from Comodo website

* NEW! COMODO Internet Security: Seamlessly integrated Firewall, Antivirus and HIPS products
* IMPROVED! System Resource Usage is improved
* IMPROVED! Default security policies are optimized to protect new COM interfaces/registry keys/files
* IMPROVED! Summary section now has links to appropriate sections
* FIXED! Wrong application name is detected by firewall
* FIXED! Firewall blocks fragmented packets even if it is disabled
* FIXED! There are many small fixes/improvements addressed in this release

Download Comodo Internet Security here

Malwarebytes' Anti-Malware 1.30 released

2008-10-23T01:44:00.000-07:00

Malwarebytes' Anti-Malware 1.30 has been released.

There are no major changes this time:

1. (FIXED) Minor issues with protection module.
2. (FIXED) Miscellaneous problems with heuristics.

Download Malwarebytes' Anti-Malware here or use built-in updater

Malwarebytes' Anti-Malware 1.29 released

2008-10-17T01:12:00.000-07:00

Malwarebytes' Anti-Malware 1.29 has been released.

See below changelog from Malwarebytes forum

1. (FIXED) Drastically improved heuristics detections.
2. (ADDED) Brand new protection module.
3. (ADDED) Brand new scheduler, protection no longer has to run.
4. (ADDED) Support for Greek and Macedonian languages.

Please note also this:

Recommended: Uninstall version 1.28 or earlier, restart your computer, and install the latest version.

Download Malwarebytes' Anti-Malware here

Fake Microsoft update comes via email

2008-10-15T04:32:00.000-07:00

Trend Micro blogged a couple of days ago about mail which has a fake Microsoft update included as an attachment.

Message itself looks pretty authentic with even included PGP signature and tells that Microsoft sends this update privately to prevent making more malware because of update.

If users runs attachments it adds itself to start automatically while Windows starts and attempts to download more malware.

After that it opens several ports which allows attackers to execute files, steal information from computer, or upload and download files.

October Microsoft updates to be released

2008-10-10T10:18:00.000-07:00

Microsoft will release 11 updates on next Tuesday.

Six of them are classified as critical, 4 as important and 1 as moderate.

Microsoft Windows Malicious Software Removal Tool will also get updated.

Updates are for Excel and Windows itself and are against Remote Code Execution, Elevation of Privilege and Information Disclosure.

Read here for more information.

Obama and Palin are spam debate rulers

2008-10-06T06:56:00.000-07:00

PcMag wrote about
current spam trends.

Currently amount of Obama spam is six times greater than McCain one.

When it comes to vice president candidates, Palin beats Biden by a ratio of 5 to 4.

Most of those spam are not about politics but content can thing called "gibberish spam", that is spam messages which contents makes no sense.

Microsoft is after scareware makers

2008-09-30T06:17:00.000-07:00

I think that everyone of us has seen popup "warnings" while surfing that can for example say "you have 350 errors in your registry. click here to fix them".

Most of those programs advertised in those popups are either useless or rogues.

Washington Post writes that Microsoft will sue Branch Software because of their Registry Cleaner XP.

Other scareware programs that Microsoft is interested about are Antivirus 2009, Malwarecore, WinDefender, WinSpywareProtect and XPDefender.

Mozilla Firefox 3.0.2 released

2008-09-24T07:02:00.000-07:00

Mozilla Firefox 3.0.2 has been released.

There has been corrected two critical, two moderate and one low vulnerabilities.

For more details, see here

See release notes here and download Firefox 3.0.2 here

AV-comparatives September test out

2008-09-17T02:46:00.000-07:00

AV-comparatives September test has been published.

This time top 3 antiviruses are:

1. AVIRA AntiVir Premium 99,2 %
2. G DATA AntiVirus Kit 99,1 %
3. Symantec AntiVirus 97,9%

In total there was tested 16 antivirus programs.

Read entire test here (Comparatives, On-demand comparative August 2008).

Malwarebytes' Anti-Malware 1.27 released

2008-09-08T07:21:00.000-07:00

Malwarebytes' Anti-Malware 1.27 has been released.

See below changelog from Malwarebytes forum:

1. (FIXED) Main window now brought to front when the scan finishes.
2. (ADDED) Function to restore broken SecurityProviders.
3. (ADDED) Associations are now checked for malicious entries.
4. (ADDED) Heuristics for common infections.
5. (ADDED) New mirror to updates.

See more about program and download it here.

September Microsoft updates to be released on Tuesday

2008-09-06T04:24:00.000-07:00

Monthly Microsoft updates will be released on next Tuesday.

There will be four updates in total, all classified as critical.

All updates will be for Remote Code Execution and affected software are Windows (2000, XP, Vista and Server 2008), Internet Explorer, .NET Framework, Microsoft Office, SQL Server and Visual Studio.

Microsoft Malicious Software removal tool will also get updated.

Read more here

Malwarebytes' Anti-Malware 1.26 released

2008-09-02T06:40:00.000-07:00

Malwarebytes' Anti-Malware 1.26 has been released.

See below changelog from Malwarebytes forum:

1. (FIXED) Problem repairing certain registry keys.
2. (FIXED) Converted log file names to ISO standard.
3. (FIXED) False positives on limited user accounts.
4. (ADDED) Safeguard to prevent users from losing scan results.
5. (ADDED) Brand new header logo.

See more about program and download it here.

IE8 brings more privacy

2008-08-28T03:26:00.000-07:00

Program Manager Andy Zeigler writes in blog about new privacy features in IE8.

Major improvements are:

* InPrivate™ Browsing lets you control whether or not IE saves your browsing history, cookies, and other data
* Delete Browsing History helps you control your browsing history after you’ve visited websites.
* InPrivate™ Blocking informs you about content that is in a position to observe your browsing history, and allows you to block it

* InPrivate Subscriptions allow you to augment the capability of InPrivate Blocking by subscribing to lists of websites to block or allow.

Interview with Dakeyras

2008-08-24T23:46:00.000-07:00

Dakeyras, a future malware fighter from Malware Removal University, asked me for interview regarding malware/security issues for his blog and I was happy to agree.

Read entire interview here

IRC - not just for fun stuff

2008-08-23T10:04:00.000-07:00

IRC can be not only for second living room but also a place to communicate with all kind of people and learn new things.

Irc.wyldryde.org is one of my favorite servers.

WyldRyde is a safe, friendly, easy to use, spamfree, and professionally managed Internet Relay Chat Network with servers worldwide.

Easiest way to connect to WyldRyde is to use webchat

If you feel that you want something more advanced, you can try IRC clients ) (remember to check compatibility first)

You can see here list of channels to which you can join.

There is also help channel (#help) in which volunteers answer to any questions you might have (remember to read FAQ first as there might be already an answer).

WyldRyde has many channels so I'm sure you will find channels you like.

Surprisingly many has purchased from spam

2008-08-21T02:36:00.000-07:00

Security company Marshall has made a research regarding to spam.

According to that research, 29 percent of Internet users have purchased goods from spam emails which is almost unbelievable.

Most popular items have been eg. sexual enhancement pills (fake Viagra etc.), software, adult material and luxury items.

Marshall Vice President says below more about this issue. Especially interesting is that people purchase illegitimate products:

“Spam has become a mainstream means of advertising for restricted or counterfeit goods due to strong demand from Internet users. Many of us don’t consider spam to be a legitimate marketing practice, but the products that people are buying aren’t legitimate. There is a huge market for cheap goods that are otherwise expensive or hard difficult to come by via legitimate means”

Symantec acquires PC Tools

2008-08-19T02:22:00.000-07:00

Symantec has announced to acquire PC Tools (manufacturer of eg. Spyware Doctor).

From press release

– Symantec Corp. (Nasdaq: SYMC), today announced it has signed a definitive agreement to acquire PC Tools, a global provider of innovative software products designed to protect the privacy and security of Windows® computer users. The financial terms of the acquisition are not being disclosed. The transaction is expected to close by the end of the calendar year and is subject to customary closing conditions and regulatory approvals.

With the addition of PC Tools, Symantec will expand its consumer product portfolio to include award-winning PC utilities software and point security technologies. PC Tools will help Symantec expand its reach with consumers in new emerging regional markets and will bring an array of go-to-market capabilities, that have been effective with consumers in many markets around the world.

Malwarebytes' Anti-Malware 1.25 released

2008-08-18T05:21:00.000-07:00

Malwarebytes' Anti-Malware 1.25 has been released.

See below changelog from Malwarebytes forum:

1. (FIXED) Problem with ignore list.
2. (FIXED) Problem repairing certain registry keys.
3. (FIXED) Overflow error during removal.
4. (FIXED) Improved detection of multiple components.
5. (FIXED) Drastically improved scan speed.
6. (ADDED) Advanced technology to delete files on reboot.
7. (ADDED) Ability to run a truly silent install.
8. (ADDED) Support for Chinese Simplified, Chinese Traditional and Polish languages.

See more about program and download it here

Over ten million zombie computers worldwide

2008-08-14T05:49:00.000-07:00

Zombie computer means a computer which is eg. part of botnet. Cybercriminals use botnets for DoS (Denial of Service) attacks and spreading malware and spam.

Panda and CommTouch have released a report about email threats.

In that report says that there are over ten million zombie computers worldwide.
Eleven per cent of them are from Turkey, Brazil and Russia are next ones. These are responsible for majority of spam. According to latest researches, 74 per cent of all mails are spam.

Luis Corrons from Panda says that this effects to resources according to Nucleus Research

Like header says spam costs 712 dollars a year per employee.

Serious vulnerabilities in Vista

2008-08-11T05:25:00.000-07:00

IBM Information Security Systems member Mark Dowdin and VMware team member Alexander Sotirov found a way to attack against Vista. This is not based on any vulnerability but to the way memory protection works.

Attack can be performed using eg. Java in browsers.Electronista was the first to report this.

SearchSecurity has interviewed security researcher Dino Dai Zovi about this issue. He says that it's completely reusable and this which is more scary:

"They have attacks that let them load chosen content to a chosen location with chosen permissions. That's completely game over."

Dai Zovi also said that Vista protection techiniques ASLR and DEP won't help and it allows that any vulnerability in browser can be exploited. As this is not based on any specific vulnerability, he presume that there will be more similar things in the future.

Microsoft knows about issue but hasn't commented anything yet.

August monthly Microsoft updates to be released on Tuesday

2008-08-08T01:35:00.000-07:00

Microsoft will release on next Tuesday in total 12 fixes for Windows.

Seven of them are classified as critical and five as important. Most of them will be fixes against remote code execution.

Microsoft Windows Malicious Software Removal Tool will be also updated.

For more information, read here

Malwarebytes' Anti-Malware 1.24 released.

2008-07-31T07:38:00.000-07:00

Malwarebytes' Anti-Malware 1.24 has been released.

See below changelog from Malwarebytes forum:

1. (FIXED) Problem with GUI closing after program update.
2. (FIXED) False positives with Zlob and Vundo heuristics.
3. (FIXED) Improved detection of random named BHOs.
4. (ADDED) Support for Turkish language.

See more about program and download it here

More and more different malware

2008-07-28T07:30:00.000-07:00

Mikko Hyppönen from F–secure told that when before bad guys tried to infect million
computers with one virus, now same attempt happens with thousand viruses. That is clear sign from tactic change.

Amount of virus definitions has increased vastly after 2005, says Hyppönen.

At that time there was 145 000 definitions in F-secure database, in 2006 over 209 000 and last year 2007 almost half million.

Nowadays amount is one million which was published last Thursday in F-secure's weblog

Rate of increase is really scary.

Malwarebytes' Anti-Malware 1.22 released

2008-07-21T06:02:00.000-07:00

Malwarebytes' Anti-Malware 1.22 has been released.

Below is changelog from Malwarebytes forum:

1. (FIXED) Error 721 (0, 93).
2. (FIXED) Random freezing during scan.
3. (FIXED) Minor problems repairing LSA registry values.
4. (ADDED) New command line parameters: /fullscan and /fullscanterminate.

Malwarebytes' Anti-Malware is free if you don't want real-time protection, which costs
$24.95.

Download Malwarebytes' Anti-Malware here

Malwarebytes' Anti-Malware 1.21 released

2008-07-19T02:58:00.000-07:00

Malwarebytes' Anti-Malware 1.21 has been released.

See below changelog from Malwarebytes forum

1. (FIXED) Problem with update hanging up application on first run.
2. (FIXED) Problem quarantining large files.
3. (FIXED) Greatly improved memory scan speed.
4. (FIXED) Updated zib.dll to latest version.
5. (ADDED) Scheduled scanning now creates log files.
6. (ADDED) Advanced heuristic detections for multiple trojans.
7. (ADDED) Direct Disk Access for enumerating folder contents.
8. (ADDED) Direct Disk Access for breaking file headers.

See more about program and download it here

Mozilla Firefox 3.0.1 released

2008-07-17T05:56:00.000-07:00

Mozilla Firefox 3.0.1 has been released.

There has been corrected three critical vulnerabilities.

For more details, see here

See release notes here and download Firefox 3.0.1 here

Java Runtime Environment (JRE) 6 Update 7 released

2008-07-09T06:29:00.000-07:00

Java Runtime Environment (JRE) 6 Update 7 has been released.

Download it here
and see changelog here

Remember to uninstall all old Java versions due to vulnerabilities after installation.

Spybot 1.6 released

2008-07-08T10:27:00.000-07:00

Spybot 1.6 has been released.

Major changes are listed below from Spybot forums:

Improved Scan Speed

Reported a few weeks ago as one of the big issues users face, Spybot-S&D 1.6 integrates parts of the future 2.0 file scanning engine to speed up the on-demand scan.

Up-to-date browser support

Both immunization and the on-demand scan are able to access a dozen different browsers, which now include the latest revisions of the most popular ones, Firefox and Opera.

Easier On-Access Use

Until now, our on-access part was able to block bad entries, but at the same time, confused many novice users by asking for confirmation on changes of other monitored system entries as well. While this is a great feature for all experienced users who want full control over their systems, we decided that we need to make this easier for the average user, and integrated automated decisions based on the system entry database built through our RunAlyzer, containing more than quarter of a million decisions.

OpenSBI

Safer Networking also announces OpenSBI, our attempt at opening up the fight against malware to anyone who wants to participate. OpenSBI means we've published documentation and tools that anyone can use to create their own malware detection patterns for use with Spybot-S&D, and share those with other Spybot-S&D users.

* Diversity - everyone can create detection templates for any software, without depending on a central authority to acknowledge its threat.
* Neutrality - we cannot be bought to remove detections from our database, but if you do not believe us, you can simply publish your own rules against some malware.
* Continuity - OpenSBI ensures that you'll get updates as long as someone is interested in updating the database (which does not mean we intend to do less work in adding new detections).
* Flexibility - as a system administrator using the network edition, you can make sure that working time is not wasted by employees playing the latest Moorhuhn clone if you add your own detection for it. Keep in mind that some relaxation is said to even improve work results.

See more about changes here
and download it from here

Microsoft monthly updates to be released on next Tuesday

2008-07-04T08:48:00.000-07:00

Microsoft will release four updates next Tuesday, classified as important.

They are mainly fixes for elevation of privilege and remote code execution. Operating systems are Microsoft SQL Server 2000, Vista, XP and both Server 2003 and 2008.

Malicious Software Removal Tool will also be updated.

Read more here

Blade81 got MVP award!

2008-07-02T07:07:00.000-07:00

A friend of mine and another Finn, Blade81, got MVP award yesterday due to helping victims getting clean in forums. He also teaches future malware fighters in Malware Removal forum.

Read more here

Unpatched vulnerability in Firefox 3

2008-06-24T07:02:00.000-07:00

This was originally published by TippingPoint. Chances are that this
vulnerability can be used by attacker in a way that he can execute own commands in that system. But risk is not that great as user needs to visit first hostile web site.

Mozilla has confirmed vulnerability but thinks that risk is quite minimal. Same vulnerability is also in version 2 of Firefox.

Mozilla Firefox 3 released

2008-06-19T05:10:00.000-07:00

Mozilla Firefox 3 has been released.

It has a bunch of new features.

Read more about those here and download it here

Please note that not all extensions might work with version 3.

Spywareblaster 4.1 released

2008-06-12T06:02:00.000-07:00

Spywareblaster 4.1 has been released

See changelog from below (from Wilders Security Forums):

-Mozilla Firefox 3 support
-Fixed problems updating in some instances
-Fixed errors on load
-Fixed errors when attempting to enable/disable Firefox protection
-Fixed hang on some Vista machines when trying to update
-Fixed improper detection of AutoUpdate enabled status on some Vista machines
-Fixed occasional error with AutoUpdate on limited user accounts on Windows XP
-Many additional small bug fixes and tweaks

You can read more about Spywareblaster and download it here

New Rogue AntiSpyCheck

2008-06-11T07:22:00.000-07:00

AntiSpySpider is a rogue anti-spyware program which is been advertised and installed by malware.

BleepingComputer has made a nice self-help guide for removing that rogue.

June Microsoft Updates to be released tomorrow

2008-06-09T10:00:00.001-07:00

June Microsoft Updates will be released tomorrow. There will be 5 fixes in total, 3 of them are classified as critical, one as important and one as moderate.

There are fixes for eg. Bluetooth, Internet Explorer and DirectX.

Concerned operating systems are Windows XP, Windows Vista, Windows 2000 and Windows Server 2003 and 2008.

Read more here

SP3 has vulnerable Flash

2008-06-05T08:02:00.000-07:00

Computerworld reports that Microsoft Windows XP Service Pack 3 includes vulnerable Flash, version 9.0.115.0.

Version 9.0.124.0 was released before SP3 but for some reason Microsoft didn't include it to SP3.

Read more about Flash vulnerability here
and update Flash here

Comodo Firewall Pro 3.0.25.378 released.

2008-06-01T03:08:00.000-07:00

Comodo Firewall Pro 3.0.25.378 has been released.

See changelog below from Comodo website:

* Fixed! Windows Vista 64 UI Problems.
* Fixed! SafeSurf crashes applications on x64 based operating systems.

See more here
and download latest version here

Messenger virus plagues Finland

2008-05-29T10:01:00.000-07:00

There is a messenger virus in the wild now in Finland. It will try to get user to open a picture in strange-looking web site. But that picture is actually malware installer. After installation it will try to make other Messenger users to open pictures by using following sentences (translated from Finnish):
"Hi :) Are u here? :D", "Is this your pic?" ja "U were pretty drunk :D"

File names vary a lot. One of the names is photo95.JPG-www.msnimages.com.
Some of these files are hosted under .fi domains.

This is a newer variant of old Sdbot family, Backdoor.Win32.SdBot.ebp. That will make
computer controllable by attacker.

Mikko Hyppönen from F-secure thinks that trojan might have been made in Finland and that latest F-secure virus database will recognize that threat.

Comodo Firewall Pro 3.0.24.368 released.

2008-05-26T05:50:00.000-07:00

Comodo Firewall Pro 3.0.24.368 has been released.

This time only one minor update.

FIXED! COMODO Firewall activation fails under some circumstances.

See more here
and download latest version here

Comodo Firewall Pro 3.0.23.364 released

2008-05-24T02:20:00.000-07:00

Comodo Firewall Pro 3.0.23.364 has been released.

See changelog below from Comodo website:

* NEW! COMODO SafeSurf Toolbar built on COMODO Memory Firewall technology
* FIXED! COMODO Firewall does not add files from network shares to pending list
* FIXED! COMODO Firewall does not log incoming ICMP packets properly
* FIXED! COMODO Firewall blocks everything when password protection is OFF and suppress options are ON
* FIXED! COMODO Firewall does not terminate active connections properly
* FIXED! COMODO Firewall firewall driver can not be installed properly in Vista operating systems
* FIXED! COMODO Firewall can be terminated when Windows XP is being shutdown
* FIXED! COMODO Firewall GUI does not appear properly on Windows Vista operating systems
* FIXED! COMODO Firewall GUI can truncate texts in 120 DPI
* FIXED! COMODO Firewall does not handle long filename properly
* FIXED! COMODO Firewall does not update the version correctly after being updated
* FIXED! COMODO Firewall crashes on exit
* FIXED! COMODO Firewall can cause BSODs when gameprotect rootkit triggers its self defense
* FIXED! COMODO Firewall can not verify digital signatures
* FIXED! Small problems in GUI
* IMPROVED! Clean PC Mode and Safe Mode: Improvements that lead to small number of alerts and pending files
* IMPROVED! Default Security policy so that Windows Updates do not lead to significant alerts

See more here
and download latest version here

Microsoft patented Proactive Virus Protection

2008-05-22T07:24:00.000-07:00

Microsoft left that patent on year 2004 but it got accepted on Tuesday. Similar technique has been used in virus protection for a long time.

This is based on comparison about similarities between a possible malware and information already in database.

For example McAfee and Norton have used similar technique for years before Microsoft's patent.

We'll see if Microsoft contacts McAfee, Norton, Kaspersky etc. soon for some fees.

Source

Parody site WhiteHouse.org spreads malware

2008-05-21T03:52:00.000-07:00

Trend Micro blogged recently about that issue. Problem is here that not only common visitors will get infected but also those who think that WhiteHouse.org is official website for White House. Real website is www.whitehouse.gov.

Malware there is malicious JavaScript code. It is unclear whether or not site has been yet cleaned.

Security problems in Vista are PEBKAC?

2008-05-17T03:05:00.000-07:00

PC Tools published earlier this month a research which claims that Vista is somewhat as secure as Windows 2000.

Microsoft blogger Michael Kleef doesn't agree with that. He wrote in his blog
that way PC Tools used for calculations is wrong because amount of malware isn't only due to operating system fault. He believes in education; users need to understand risks.

New rogue AntiSpySpider in the wild

2008-05-14T02:11:00.000-07:00

AntiSpySpider is a rogue anti-spyware program which is been advertised and installed by malware.

This one isn't very easy to remove as it disables both Task Manager and regedit.exe

BleepingComputer has a nice self-help guide for removing that nasty.

May Windows Updates to be released on next Tuesday

2008-05-10T02:30:00.000-07:00

Monthly Windows Updates will be released on next Tuesday.

There will be four updates, three of them classified as critical and one as moderate.

All critical updates are fixes for code execution vulnerabilities. Two of them are for Microsoft Office (Word and Publisher) and one for Jet Bulletin.

Microsoft Windows Malicious Software Removal Tool will be also updated.

See more here

Yahoo warns about dangerous websites

2008-05-07T06:24:00.000-07:00

Yahoo attempts to make its search engine more secure with McAfee. SearchScan(made by McAfee SiteAdvisor technology) shows a red warning with search engine hits considered as malicious.

InformationWeek says that Google has added similar thing over a year ago but Yahoo says that their SearchScan is better than anyone currently
existing one.

It's not surprising that Yahoo and McAfee are working together as a year go Yahoo hits had greatest amount of dangerous links.

Websites more and more under attack

2008-04-29T10:43:00.000-07:00

Security company Sophos stated in new report that one web site is under attack every five seconds.

It counted that 15 000 web sites got infected daily from January to March. Last year daily average was 6 000 web sites so threats really are in the rise.

79 per cent of web sites infected this year are legal sites. But there is also good news. Amount of malware included in emails has been decreased. Now one email of 2500 contains malware and that is 40 per cent less than last year.

But not everything is so bright. 92 per cent of all emails were spam during Jan-Mar. Greatest spammer was USA and other great spammers were eg. Russia and China.

Source: Sophos

Crackers target to Beijing Olympics

2008-04-24T03:13:00.000-07:00

Security company MessageLabs has recognized many trojan attacks which were related to Olympics theme.

- These attacks have been targeted to organizations which have very valuable and confidential information like army or goverment, says Alex Shipp from MessageLabs.

Different organizations have been approached by name of International Olympic Committee and email header has been related to eg. torch relay. Attackers have been identified to Asia and Pacific region.

Attacks have been usually targeted to only certain persons in organization, amount is limited and credibility is main thing there. Recently in USA was spread widely an email hoax targeted to big company leaders.

In these Olympic attacks have been used eg. Microsoft Office Database (mdb) files hidden in zip archive. After running of mdb file, it drops an infostealing exe file to computer.

Source: MessageLabs

Unpatched vulnerability in Windows

2008-04-21T06:37:00.000-07:00

There has been found locally abusable vulnerability from Windows for which there is currently no fix. Microsoft is working on it but haven't found yet any attack related to that vulnerability.

This vulnerability gives users with NetworkService or LocalService accounts a possibility to raise their user rights to LocalSystem level. Microsoft Internet Information Services (IIS) and Microsoft SQL Server services might use those accounts. If attacker is able to execute malicious program code in eg, those services, there are chances to abuse that vulnerability. Microsoft may release a fix outside monthly updates or included to some of those.

Vulnerability is in XP/Server 2003/Server 2008/Vista. Here is a solution before update.

Comodo Firewall Pro 3.0.22.349 released

2008-04-19T02:45:00.000-07:00

Comodo Firewall Pro has been 3.0.22.349 released.

See below release notes from Comodo site:

FIXED! BSOD SESSION_INITIALIZATION_FAILED after ChkDsk.
FIXED! BUG causing D+ to allow file modification attempts although it is blocked under some circumstances.
IMPROVED! Reduced false positives for D+ keyboard access alerts.
IMPROVED! Removed false positives for D+ service control manager access for XP computers.
IMPROVED! Increased D+ ability to protect itself from already installed rootkits

Download
Comodo Firewall Pro

Mozilla Firefox 2.0.0.14 released

2008-04-17T06:50:00.000-07:00

Mozilla Firefox 2.0.0.14 has been released.

This update fixes 1 critical vulnerability.

For more info about fixed vulnerability, see here

See release notes and download Firefox 2.0.0.14 here

Java Runtime Environment (JRE) 6 Update 6 released

2008-04-16T07:05:00.000-07:00

Java Runtime Environment (JRE) 6 Update 6 has been released.

See release notes here
and download update from here (select Java Runtime Environment (JRE) 6 Update 6 and Download).

Remember to uninstall after installation all older Java Runtime Environment versions as they have vulnerabilities which have been fixed in newest version.

Number of malware reached one million

2008-04-12T02:44:00.000-07:00

Symantec has released it's semi-annual security report. According to that report, number of malware reached one million. Scary thing is that half of that amount has been created during the last year. Total raise was 136 per cent compared to year 2006.

Majority of malware are for Windows and they are just new versions of already existing malware, usually useful for criminals.

Now most popular malware are trojans which open access to computer and download other malware as well as keylogger which activates on certain web sites only (like banker trojans).

The raise of malware is because of criminals who pay for programmers that they will make new malware for them. New versions are needed that they can steal even bigger amount of money from victims.

Source: Symantec

April Microsoft Updates released

2008-04-09T07:16:00.000-07:00

April Microsoft Updates have been released. There are in total 8 new updates. Five of them are classified as Critical and three as Important.

Microsoft Windows Malicious Software Removal Tool has also been updated.

Updates are for mainly Internet Explorer, Vista SP1 and Server 2008 (two updates are for other OSes as well) and MS Office.

Read more here

ERUNT - handy and free registry backup tool.

2008-04-07T07:26:00.000-07:00

ERUNT comes from words Emergency Recovery Utility NT.
It is a free and easy-to-use tool for backupping registry.
Backupping will just take seconds and you can even schedule backup to happen upon every boot.

Here is a nice tutorial how to do that.

Read more about ERUNT and download it from here

Banker trojan strikes back

2008-04-04T09:52:00.000-07:00

I wrote like a month ago about banker
spreading widely in Finland.

Now another hot Russian lady, Tatjana, seeks for love in Finnish-written email but has a dangerous link included.

Domain originates this time to China.

April Fool version of Storm Worm spreading.

2008-04-01T08:21:00.000-07:00

Harry Waldron blogged lately about April Fool version of Storm Worm.

Scary thing is its low detection rate, only 18 % detection in VirusTotal.

So be careful what emails you open.

Comodo Firewall Pro 3.0.21.329 released

2008-03-28T04:22:00.001-07:00

Comodo Firewall Pro 3.0.21.329 has been released.

See below release notes from Comodo web site:

* FIXED! CFP.exe could be terminated using EndTask API
* FIXED! When the firewall alerts were disabled, all the traffic was blocked.

Download
Comodo Firewall Pro.

Mozilla Firefox 2.0.0.13 released

2008-03-26T07:24:00.000-07:00

Mozilla Firefox 2.0.0.13 has been released.

This update fixes 2 critical, 2 high and 1 moderate vulnerabilities.

For more info about fixed vulnerabilities, see here

See release notes and download Firefox 2.0.0.13 here