============================================================ -------- PCMAG.COM'S SECURITY WATCH -------- -------- for August 18, 2004 -------- ============================================================
============================================================ ********** Sponsored by Proofpoint ********** Free Report: Outbound Email Security and Content Compliance Everyone is familiar with inbound e-mail threats such as spam and viruses, but little attention has been paid to the risks posed by outbound email. Learn how IT execs are meeting these challenges in this free report from Proofpoint. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93791-1 ************************************************************ ============================================================ Welcome to the PCMag.com Security Watch Newsletter. Every week we bring you an overview of the current viruses, worms, and other threats and the information you need to combat them. On Wednesday, August 25, Microsoft will rollout Windows XP Service Pack 2 on the new Windows Update site, and for home users, applying the update is a case of Just Do It. However, since the SP2 update has the potential to break applications, many companies are opting not to update until they have had time to test. Microsoft, in response, offered a way to disable automatic updating. A few weeks ago we told you about a Windows CE concept virus, which had been sent to antivirus vendors to prove this type of infector could be written. Now the first Windows CE Trojan, Backdoor.Brador.A, has been seen in the wild. MyDoom is back with W32/MyDoom.S-mm. This variation, also known as [EMAIL PROTECTED], was discovered on August 15 and jumped to a medium-level threat very quickly. Although MyDoom isn't that threatening, it downloads a particularly nasty Trojan. This week's top phish attempted to spoof the address bar in Internet Explorer with a second browser. Unfortunately, popping up the Explorer bar threw off its bearings, and revealed the scam. To learn more about these threats, trends, and vulnerabilities, see the Security Watch Newsletter online. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93794-1 IN THIS ISSUE: * Top Threat: W32/MyDoom.S-mm * Top 10 E-Mail Viruses as Reported by MessageLabs * Top 5 Vulnerabilities as reported by Threat Focus as of Tuesday August 10, 2004 * Top Phish of the Week as reported by MailFrontier August 10, 2004 * Security Tip: Opening ports in the Windows Firewall for broken applications. * Windows updates and vulnerabilities * Jargon Watch * Security Watch News feed ============================================================ Top Threat: W32/MyDoom.S-mm MyDoom.S gathers e-mail addresses and sends out copies of itself. It also downloads and installs a backdoor called BKDR_RATOS.A that may disable antivirus and security software and other services. Additionally, it damages the Windows HOSTS file, making antivirus updating difficult. See our top threat for details on how to recognize and combat this new threat. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93797-1 ============================================================ Top 10 E-Mail Viruses as Reported by MessageLabs These are the latest threats as of Tuesday, August 17, 2004 as listed by MessageLabs 1 W32/Netsky.P-mm 2 W32/Zafi.B-mm 3 W32/Mydoom.M-mm For the full Top Ten list, visit our Top 10 report. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93800-1 ============================================================ Top 5 Vulnerabilities as reported by Threat Focus as of Tuesday August 10, 2004 Date: 8/9/04 Title: AOL Instant Messanger [AOL Instant Messenger aim:goaway URI Handler Buffer Overflow Vulnerability] Severity: Medium For more Microsoft, Sun, and Apple vulnerabilities, visit our Top 5 report. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93803-1 ============================================================ Top Phish of the Week as reported by MailFrontier August 10, 2004 Name: Wells Fargo--Floating URL Trick Type: Phishing--Account Information Subject Line: sECURITY uPDATE: wellsfargo.com Urent - Issue pr To learn more about recognizing this fraudulent e-mail, see our Top Phish section. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93806-1 ============================================================ Security Tip: Opening ports in the Windows Firewall for broken pplications. Although Windows XP Service Pack 2 goes a long way toward helping with security, it can break applications. Most problems center on the new Windows Firewall, which blocks malicious entries but can also block connections between a server and an Instant messaging client, FTP program, and auto-update mechanism. To learn how to make Windows Firewall work for you, visit our Security Tip section. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93809-1 ============================================================ Windows updates and vulnerabilities Opening an Acrobat PDF file in your browser may be hazardous to your PC's health. This week, Secunia was reporting a highly critical vulnerability in the Acrobat PDF ActiveX control that could allow remote system access. To learn more about this and other flaws, visit our Windows Updates and Vulnerability section. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93812-1 ============================================================ Jargon Watch Each week, we define a few pertinent terms to break down the jargon barrier and help you better understand potential PC issues. This week we cover Attack Vector. Go to our Jargon Watch for definitions. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93815-1 ============================================================ Security Watch News feed Microsoft Lists Apps Affected by XP SP2 http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93818-1 Yahoo Plugs PNG Security Hole http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93821-1 Users Give XP SP2 Mixed Marks http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93824-1 Get more links in the Feed http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93827-1 ============================================================ The PCMag.com Bookstore PC Magazine's Windows XP Solutions Ever wish they'd consulted you before they designed Windows XP? Sure, it's a great system, but there's this one feature that makes you crazy. Or that annoying problem that keeps occurring. Well, you can rely on Neil Randall and your friends at PC Magazine to correct that oversight. Here's the complete compendium of solutions to the things that bug you, threaten your security, slow you down, or other-wise prevent Windows XP from running like it should. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93830-1 PC Magazine Guide to Home Networking Ready to plunge into creating your own home network? Reading this book is like having PC Magazine contributing editor Les Freed drop by and set the whole thing up for you. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93833-1 More Books http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93836-1 ============================================================ Tech Jobs http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93839-1 ============================================================ Ziff Davis Channel Zone http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93842-1 ============================================================ DevSource http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93845-1 ============================================================ Free White Paper Brought to you by St. Bernard ============================================================ Solve the Open File Dilemma This free white paper, Preventing Data Loss During Backups Due to Open Files, includes valuable information to help you protect the data your backup software is missing. This paper covers: Solutions to the Open File Problem Weighing the Alternatives St. Bernard Software and Open File Manager Download this important Free White Paper today! http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93848-1 ============================================================ Upcoming Events ============================================================ 8/18 More Than One Way to the Linux Desktop FREE eSeminar! When most business people think of a Linux desktop, they think of a traditional desktop like that of Windows. But, it doesn't have to be that way. While some companies are pursuing the traditional desktop, aka the fat client, others believe that corporate America is ready to give thin clients another try. The promise of a Linux-based desktop that's not constantly under siege is one that companies believe will find today's businesses very attractive. Register now. http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93851-1 ============================================================ Register Now for the Technology for Business Today Seminar Series Join Intel, PC Magazine and others for our free seminar tour. We'll give you the information and tools you need to take advantage of leading edge technologies and solutions for your business to stay ahead of your competition and drive business growth. During the 13-city tour, we'll have two half-day sessions on Technology for Business Today -- one devoted to the enterprise, the other tailored for the needs of small and medium-sized businesses. Click here for more information and to register http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93854-1 ============================================================ Elsewhere on Ziff Davis Internet ============================================================ Tiny Computer Delivers Scorching Results http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93857-1 System Beats Phishers with 'CallerID' Method http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93860-1 A Music Player for All Formats http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93863-1 Getting Your XP Systems Ready for SP2 http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93866-1 ============================================================ eNewsletter Information ============================================================ You are subscribed to PCMag.com's Security Watch with the e-mail: [EMAIL PROTECTED] To unsubscribe to this newsletter, click below: http://www.pcmag.com/unsubscribe_newsletter/0,4223,,00.asp?n=71&type=u&[EMAIL PROTECTED] To change your e-mail address, change your text/HTML preferences, or to subscribe to other FREE PC Magazine Online e-mail newsletters, visit: http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93869-1 If you'd like to advertise in our eNewsletters, visit: http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93872-1 ============================================================ PC Magazine Print Subscriptions ============================================================ Start or Renew a subscription: http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93875-1 Give a gift subscription: http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93878-1 Help with your subscription: http://eletters.pcmag.com/zd1/cts?d=81-1024-14-15-53809-93881-1 Copyright (c) 2004 Ziff Davis Media Inc. All Rights Reserved. Ziff Davis Media Inc., 28 East 28th Street, New York, NY 10016 [Non-text portions of this message have been removed] ------------------------ Yahoo! Groups Sponsor --------------------~--> Make a clean sweep of pop-up ads. Yahoo! Companion Toolbar. Now with Pop-Up Blocker. Get it for free! http://us.click.yahoo.com/L5YrjA/eSIIAA/yQLSAA/BCfwlB/TM --------------------------------------------------------------------~-> Yahoo! Groups Links <*> To visit your group on the web, go to: http://groups.yahoo.com/group/kumpulan/ <*> To unsubscribe from this group, send an email to: [EMAIL PROTECTED] <*> Your use of Yahoo! Groups is subject to: http://docs.yahoo.com/info/terms/
