ESET Threat Blog

This is a quick follow-up to the earlier blog about Adobe updates.
I’ve just received notification that the Adobe Flash Player updates bulletin released yesterday has been updated: it now contains information about (and links to) the promised Adobe Reader and Acrobat patches.
Adobe states that it categorizes these updates as critical and recommends that you apply … Read More…

I’d like to call your attention (again) to a major Adobe bulletin that was released yesterday (actually, still today, if you’re far enough behind GMT, but I’m sitting just a train ride away from Greenwich, UK).
In brief, the bulletin concerns the following CVE (Common Vulnerabilities and Exposures) issues:

CVE-2009-1862
CVE-2009-0901
CVE-2009-2395
CVE-2009-2493
CVE-2009-1863
CVE-2009-1864
CVE-2009-1865
CVE-2009-1866
CVE-2009-1867 … Read More…

Wow, talk about burying your head in the sand. One day Apple will learn, but that day is not today.
In an article at http://arstechnica.com/apple/news/2009/07/apple-claims-jailbreaking-could-bring-down-the-network.ars Apple claimes that “jailbreaking” iphones may cause their towers to crash.
The purpose in this claim is to avoid security at all costs and try to get the government … Read More…

You probably aren’t looking for trouble, but there’s a good chance you’ll find it when you search the internet. An article in Information Week http://www.informationweek.com/news/security/vulnerabilities/showArticle.jhtml?articleID=218700239&cid=RSSfeed_IWK_All it was reported that the bad guys are trying to make sure their bad web pages come up when you search common terms on the internet. In this case the … Read More…

Yes, it is true. Airbags in cars save a whole bunch more lives than they end of costing, but sometimes, on rare occasions, they may take a life that otherwise would have been saved. Almost anyone, except the airbag instigators of the story, below understand the trade offs.
The TechnologyBUFOON.com, I mean Technologyreview.com published the following … Read More…

Adobe has issued an important announcement, much of it relating to the impact of vulnerabilities in the Microsoft Active Template Library (ATL)  flagged as CVE-2009-0901, CVE-2009-2395, CVE-2009-2493 and described in Microsoft Security Advisory (973882) on Adobe products used as Internet Explorer plug-ins. 
It appears that Flash Player and Shockwave Player "leverage" vulnerable versions of ATL.
According to Adobe, … Read More…

No, nothing to do with drive-by downloads…
Our colleagues in Europe came up with a nice idea: an article on the dangers of web surfing on free wi-fi and some tips on staying safe. (A topic dear to the hearts of all of us who find ourselves out and about with our laptops from time to … Read More…

I’ve been up to my ears in travelling and AMTSO and had limited connectivity over the last week, but even I noticed that a lot of patching issues have risen to the surface in the past few days. In case some of this has passed you by, here are a few of the more prominent … Read More…

I received an email from an acquaintance this morning. It said:
Please Urgent Needed
Hello,
  How are you doing?hope all is well, I"m sorry that i didn’t inform you about my traveling to England for a Seminar.I need a favor from you as soon as you receive this e-mail because i misplaced my wallet on my way … Read More…

Do you ever use a public computer? Do you realize that potentially everything you type and read may be public information?
I was checking a hotel business center computer this weekend. I found some interesting stuff. A military document for a local air force base. It wasn’t classified. The confidential test results for a semi-synthetic lubricant, … Read More…