New Panda Software Report On Viruses And Spyware

Antivirus : New Panda Software Report On Viruses And Spyware – Security Status : Alert

Posted by Max on 2006/11/18 12:00:21 (1307 reads)

This week's report presents a series of Microsoft vulnerabilities, MS06-066, MS06-067, MS06-068, MS06-069, MS06-070, and MS06-071, the TelnetOn.A worm and the Briz.S Trojan.

Bulletins MS06-067 to MS06-071 refer to a number of critical vulnerabilities, including a cumulative update for Internet Explorer (MS06-067), a flaw in Flash Player (MS06-069) and another in XML Core Services (MS06-071). The MS06-066 bulletin is classified as "important" and is about problems in the client service for NetWare.

Microsoft has prepared security updates for these problems for users. It is wise to install them as soon as possible, as a lot of of these flaws could compromise system security by permitting malicious code to be run.

The TelnetOn.A worm creates an Administrator account on the infected computer, which allows it to take full command of the target system through the Telnet service. One of the main actions that this worm performs is ending processes which belong to several security tools, such as antivirus or firewall programs. It also kills processes belonging to other malicious code.

Once installed on the affected computer, TelnetOn.A prevents access to certain websites, including websites of antivirus applications. This worm spreads through the P2P programs eMule, KaZaA and Morpheus, the mIRC program and email.

As a final point, Briz.S is a password-stealer Trojan made up of several components downloaded via the Internet. Its aim is to take private information from the affected computer, such as the IP address, and capture data entered by users in Web forms through Internet Explorer (usernames and passwords for accessing email, banking services and other online services).

It also prevents the attacked computer from accessing certain websites belonging to antivirus vendors. It uses the affected computer as a gateway to anonymously connect to third-party Telnet, SMTP, FTP and HTTP services. Briz.S needs an attacker's intervention to spread, and can reach computers in many ways: CD-ROMs, email messages with attachments, Internet downloads, or IRC channels.

Users wondering whether their computers have been attacked by these or other malicious code can use ActiveScan, the free solution available at: www.activescan.com. Users can carry out a complete inspection of all the areas of their computers that they suspect might be infected, free of charge.

Previous article - Next article

Other articles
2009/11/3 14:55:39 - BitDefender Top Ten Malware Threats for October 09
2009/11/3 14:29:38 - Nov. 09 Microsoft Security Intelligence Report
2009/10/7 15:19:17 - StopSign AntiVirus and Anti-Malware is Windows 7 Compatible
2009/10/7 15:11:26 - New Outlook Backup and Migration Software By Disk Doctors
2009/9/30 4:20:57 - Microsoft Security Essentials, FREE Security Tool Just Released
2009/9/28 14:31:52 - New Rogue Antispyware Cloaked To Infects Computers
2009/9/9 4:31:49 - Trend Micro Proves Leadership in URL Filtering and Web Security
2009/9/9 4:16:20 - New Free Tool to Clean Conficker Once and For All
2009/9/1 8:37:11 - Kaspersky Internet Security 2010 and Kaspersky Anti-Virus 2010 Out Now
2009/9/1 7:54:50 - NEW P2P Advertising Network Protects Users Against Lawsuits And Identity Theft

The comments are owned by the poster. We aren't responsible for their content.