Several vulnerabilities have been discovered in various Sophos Anti-Virus products, which could be exploited by attackers or malware to take complete control of an affected computer or cause a denial of service.

A new warning has been issued by online gambling portals concerning Neteller users. Criminal fraudsters are again trying to fraudulently persuade online clients of the e-cash processor Neteller to reveal their account details on a fake Neteller site.

This week several portals were advising their visitors to beware of an email claiming to be from Neteller that says:

If you are logged into MySpace and view a suspicious crafted QuickTime file on someone else's MySpace page, then JavaScript code can without human intervention change your user profile. The nasty QuickTime file can alter your MySpace page by adding links to fake MySpace pages that collect user names and passwords. The Quicktime file can also copy itself to your MySpace page without your intervention.

Adware developers are probable to target the latest version of Internet Explorer with rising frequency in 2007, provoking a threat to user productivity, according to the Trend Micro chief technology officer for anti-spyware, Ed English.

CA has declared that it is providing virus and spyware protection for corporate customers and consumers using the new Microsoft Windows Vista operating system.

CA Threat Manager, CA Anti-Virus and CA Anti-Spyware for Windows Vista have been in beta testing release since June. They are also being used by Microsoft in its own enterprise environment to help safeguard Windows Vista resources.

Washington's attorney general has settled the first case prosecuted under the state's 2005 Computer Spyware Act.

The settlement, declared Monday, is with antispyware vendor Secure Computer LLC. The White Plains, New York, software company was charged of marketing its product via deceptive spam and pop-up ads, which offered free spyware scans that always detected a problem with the computer that was scanned.

A federal grand jury has accused a Romanian hacker on 10 charges of breaking into computers owned by the Jet Propulsion Laboratory, the Goddard Space Flight Center, Sandia National Laboratory and the US Naval Observatory.

Victor Faur, 26, of Arad in Romania, is the suspected leader of a hacking faction called the 'WhiteHat Team' accused of hacking the servers "because they were so secure".

The attack starts with a Quicktime file being set in a Profile page. If the user "runs" the file (simply visiting the infected page is enough to trigger the attack in most cases), it uses the HREF function to activate some Javascript.

An HREF track is a particular type of text track that adds interactivity to a QuickTime movie. HREF tracks enclose URLs that can specify movies that replace the current movie, load another frame, or that loads QuickTime Player. They can also include JavaScript functions or Web pages that load a specific browser frame or window.

EveryDNS, a company that offers free domain name administration services, has been hit by a massive DDoS (distributed denial-of-service attack) that caused damage to thousands of sites, including OpenDNS (another startup that runs the PhishTank anti-phishing initiative).

The 400mbps botnet attack did not affect the core recursive DNS resolution service offered by OpenDNS but the company's home page and business blog were crippled for about 90 minutes on Dec. 1.

Paradial pronounced the general availability of Paradial's RealTunnel 2.0. In addition to making it simple for clients to deliver fail-safe and secure connections across networks, geographical areas and organizational boundaries, the new version enhances the award winning product with new features and standards-based provisioning capabilities on a significantly reduced footprint.