Support Wars

From Dark Reading: Adobe’s Reader and Acrobat PDF applications have been hit by a new attack exploiting an unpatched vulnerability in the pervasive tools. So far the exploit has been used mostly in targeted attacks, but researchers say it could soon spread now that the cat is out of the bag. Adobe late yesterday issued [...]

From ISC SANS: We received a note from a reader who wanted to remain anonymous that the MS09-039 vulnerability is actively exploited in the wild. To remind you, this vulnerability affects servers with the WINS service installed. The patch fixes two vulnerabilities. We do not have any technical information yet. However, the DShield graph shows [...]

ISC SANS has been updating their information on the ActiveX exploit.  Here’s some highlights in case you haven’t been keeping up. ———– Matt Hrynkow and John Silvestri have submitted .ADM files for use in Active Directory GPO templates for setting the ActiveX killbits for last week’s and this weeks vulnerabilities. Here is the one for [...]

Symantec has a great write up of Conficker and how it attempts to spread across the network.  I wish more organizations would publish detailed information like this. Update:  Added 5 more links from Symantec including a resolve tool for clearing Conficker. Downadup: Small Improvements Yield Big Returns Downadup: A Lock with No Key Downadup: Geo-location, [...]