Microsoft Exposes a New Kind of Browser Attack.


Internet Explorer Mobile Logo

Image via Wikipedia

Microsoft has released a warning about a new kind of browser-based attack.

The attack mimics genuine pages generated by Internet Explorer, Firefox and Chrome and fools users into installing a fake anti-virus software.

Users that visit a compromised website, are presented with a genuine looking pop-up on their web browser, with an bogus alert that their security defences have failed and they need to install the an anti-virus software to contain the virus.

Advertisements

Microsoft’s new Internet Explorer 9 interface


Image representing Microsoft as depicted in Cr...

Image via CrunchBase

Microsoft Russia’s press site, on August 25, posted information and a photo that seem to be connected to the coming IE 9 beta. (The site has since pulled their post, but I grabbed the information and screen shot in the nick of time.)

More here at ZDNET ….

Windows DLL bug hits dozens of apps


Logo of CNET.

Image via Wikipedia

Microsoft confirmed earlier this week that a type of attack mechanism known as ‘DLL preloading’. Malicious code can be planted on a network server making it easier to attack vulnerable systems by fooling users into following malicious Web links or opening
malicious documents.

More Info here from CNET

Windows applications harbor bugs


Computerworld – Microsoft has known since at least February that dozens of Windows applications, including many of its own, harbor bugs that hackers can exploit to seize control of computers, an academic researcher said Sunday.

Image representing Microsoft as depicted in Cr...

Image via CrunchBase

At least 19 of the bugs can be exploited remotely, Taeho Kwon, a Ph.D. candidate at the University of California Davis, said in a paper he published in February and presented last month at an international conference.

Kwon added his voice to a growing chorus of researchers who claim that a large number of Windows programs are vulnerable to attack because of the way they load components.
Read more …