============================================================ -------- PCMAG.COM'S SECURITY WATCH -------- -------- for October 27, 2004 -------- ============================================================
============================================================ ********** Sponsored by Cloudmark ********** Join Cloudmark SpamNet for spam-free email Cloudmark SpamNet is the world's first and largest SpamFighting community. In just minutes, it can cut the amount of spam you receive by more than 98%. * Easy to install * Starts working immediately with no configuration or hassle * Protects you, your friends and family, and the entire world from spam Click here for your FREE 30-day trial! http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115685-1 ************************************************************ ============================================================ Welcome to the PCMag.com Security Watch Newsletter. Every week we bring you an overview of the current viruses, worms, and other threats and the information you need to combat them. While Mac users have long made snickering comparisons between their virus-free existence and the vulnerability-laden Wintel world, the tables may have turned--just a tiny bit -- this week. Sophos, Symantec and the MacInTouch web site are reporting a new Mac OS X based worm. MessageLabs sent an alert Monday about a new Klez like worm that is targeting eBay users. In a phish-like message, an e-mail message claims the user has won several auctions, but infects the user if the attachment is clicked. The "Phishers" have been out in "phorce" in the past week. We've seen almost a dozen new Citibank, PayPal and Ebay Spoofs. While some employ links to sites that sound like the legitimate sites, others didn't even bother with subterfuge and only contained an IP address A new Internet Explorer vulnerability has been discovered. By itself, it doesn't do much, but when coupled with existing flaws, can allow attackers to bypass security zone protection and install malicious code. No large scale virus outbreaks have appeared this week, though we are still getting a trickle of new threats every day, including MyDoom.AG, Netsky.AE, and Bagz.E. One virus appears to be making a comeback. Trend Micro has listed PE.Kriz.4029, first discovered in 1999, on their top threat list. We have received a number of copies in our own mailbox as well. For more on these threats, worms, and vulnerabilities, visit the Watch. http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115688-1 IN THIS ISSUE: * Top Threat: W32/MyFip * Top 10 E-mail viruses as reported by MessageLabs for October 26, 2004 * Top 5 Vulnerabilities as reported by Threat Focus for October 26, 2004 * Security Tip: Safe Kiosk Computer Usage * Windows Security Alerts and Updates * Jargon Watch * Security Watch News Feed ============================================================ Top Threat: W32/MyFip While a full analysis is still underway, we now know this much about W32/MyFip: It attempts to log on as an administrator using brute force passwords, drops several files identical to Windows System files, and opens a back door to a Chinese site. For more on W32/MyFip, see our Top Threat section. http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115691-1 ============================================================ Top 10 E-mail viruses as reported by MessageLabs for October 26, 2004 W32/Netsky.P-mm W32/Netsky.Z-mm W32/Bagle.Z-mm For all ten e-mail borne threats, see our Top 10 list from MessageLabs http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115694-1 ============================================================ Top 5 Vulnerabilities as reported by Threat Focus for October 26, 2004 Date: 10/20/2004 Title: Microsoft [UPDATE - New 0day exploit for XPSP2] Severity: High For more vulnerabilities, see our Top 5 from Threat Focus. http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115697-1 ============================================================ Security Tip: Safe Kiosk Computer Usage When out of town, or on the road, we often find we can check our e-mail at public computers, such as Internet Cafes, Libraries, or hotel computers. Using these links to the cyber world is easy and convenient, but if you're not careful, you can be giving away your personal information. See our Security Tips to learn how to keep your identity safe. http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115700-1 ============================================================ Windows Security Alerts and Updates The beleaguered Microsoft Internet Explorer has had yet another vulnerability exposed. Reports of a flaw in the Help component under Windows XP Service Pack 2, could allow a malicious site to bypass the enhanced SP2 security zone settings. When it comes to security issues, Mac devotees have had a fairly event-free existence. However, a discussion on the MacInTouch web site reported the possibility of a new virus called "Opener" that threatens OS X operating system. See our Security Alerts and Updates section for more information http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115703-1 ============================================================ Jargon Watch Each week, we define a few pertinent terms to break down the jargon barrier and help you better understand potential PC issues. This week we cover: Kill Bit and Network Share. Go to our Jargon Watch for definitions to these terms. http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115706-1 ============================================================ Security Watch News Feed Malicious Mac OS X Script Poses Threat http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115709-1 Another Phishing Hole Found in Google http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115712-1 IE Exploit Lets Attackers Plant Programs on SP2 http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115715-1 Get more links in the Feed http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115718-1 ============================================================ Contest: Win the Ultimate Workbench Our daddies always told us, "the right tool for the right job." Of course if you don't have any tools or a place to work with them, you're out of luck. Our sister site Syncmag.com is ready to come to the rescue. It's offering tool-starved site visitors a chance to win a workbench and all the tools to go with it (including an X-Shop workbench, Milwaukee 10 Amp Sawzall, Craftsman 19.2 Volt Cordless Drill-Driver, work light and more). Check out the site and the contest. Remember, you've got to be in it, to win it. http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115721-1 ============================================================ ============================================================ The PCMag.com Bookstore PC Magazine's Windows XP Solutions Ever wish they'd consulted you before they designed Windows XP? Sure, it's a great system, but there's this one feature that makes you crazy. Or that annoying problem that keeps occurring. Well, you can rely on Neil Randall and your friends at PC Magazine to correct that oversight. Here's the complete compendium of solutions to the things that bug you, threaten your security, slow you down, or other-wise prevent Windows XP from running like it should. http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115724-1 PC Magazine Guide to Home Networking Ready to plunge into creating your own home network? Reading this book is like having PC Magazine contributing editor Les Freed drop by and set the whole thing up for you. http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115727-1 More Books http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115730-1 ============================================================ Tech Jobs http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115733-1 ============================================================ Ziff Davis Channel Zone http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115736-1 ============================================================ DevSource http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115739-1 ========================================================= PCMAG.COM SHAREWARE LIBRARY Super-Useful Apps You Can Try Free Now! GhostSurf Platinum 2005 http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115742-1 WinTasks 5 Professional http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115745-1 WinBackup http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115748-1 SpeedUpMyPC 2.0 http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115751-1 Ringtone Converter/Composer 5.2 http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115754-1 Coding Workshop Polyphonic Wizard 3.7 http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115757-1 Pocket DVD Wizard for Pocket PC 2.4 http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115760-1 More Shareware >> http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115763-1 ============================================================ Free Trial - Stop All Spam. Period. Brought to you by Qurb ============================================================ Completely Stop Spam, Phishing and other Email Security Threats for Microsoft Outlook and Outlook Express Qurb received PC Magazine's Editors' Choice Award two-years running! Qurb integrates directly with Outlook and works immediately upon installation without any configuration or training. A one-time license fee of just $29.95 protects your computer forever, with no annual service or subscription fees! 100% satisfaction guaranteed. Download your Free Two-Week Trial today http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115766-1 ============================================================ Upcoming Events ============================================================ Special Invitation for PCMag.com Newsletter Subscribers Attend PC Magazine Events for free! Learn how to improving your business's bottom-line through the use of technology at Business Tech Summit or come to Digital U and receive hands-on instruction and great tips to master Digital Photography, Digital Video, and Designing the Ultimate Wireless Digital Home. Register now. http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115769-1 ============================================================ Ziff Davis Media Unveils An Exclusive Security Virtual Tradeshow! This live, two-day Virtual Tradeshow will highlight the leading security threats facing your company and provide you with the necessary safeguards on how to combat future attacks! Hear from security experts such as Dan Larkin, Unit Chief, Internet Crime Center at the FBI and Steve Wozniak, Co-Founder of Apple Computer and many more! Nov. 30th and Dec. 1st, 2004. Register today and attend for free right from your desktop! http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115772-1 ============================================================ Elsewhere on Ziff Davis Internet ============================================================ Dell Inspiron Notebook Delivers http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115775-1 New iPod Plays Photos http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115778-1 Wireless Battleground: Productivity, Video? http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115781-1 AOL to Support Sender ID E-Mail Standard http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115784-1 ============================================================ eNewsletter Information ============================================================ You are subscribed to PCMag.com's Security Watch with the e-mail: [EMAIL PROTECTED] To unsubscribe to this newsletter, click below: http://www.pcmag.com/unsubscribe_newsletter/0,4223,,00.asp?n=71&type=u&[EMAIL PROTECTED] To change your e-mail address, change your text/HTML preferences, or to subscribe to other FREE PC Magazine Online e-mail newsletters, visit: http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115787-1 If you'd like to advertise in our eNewsletters, visit: http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115790-1 ============================================================ PC Magazine Print Subscriptions ============================================================ Start or Renew a subscription: http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115793-1 Give a gift subscription: http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115796-1 Help with your subscription: http://eletters.pcmag.com/zd1/cts?d=81-1220-14-15-53809-115799-1 Copyright (c) 2004 Ziff Davis Media Inc. All Rights Reserved. Ziff Davis Media Inc., 28 East 28th Street, New York, NY 10016
