Warning

 

Close

Confirm Action

Are you sure you wish to do this?

Confirm Cancel
Member Login
Posted: 1/3/2006 6:16:57 PM EDT
oh crap, this is not good. I went to the gym and came back home to find my Yahoo messenger logged out saying I logged into another machine. Well since I was at the gym I know I didn't do that. When I tried to log back in my username and password will not work. I quickly got online to a friend who told me I popped online for a second and sent him a massage asking him to log into a Yahoo photo site. Well I got a message from someone the other day stating the exact same thing. In my case it was a link to a geocities site but "redirected" to Yahoo. The link came from a trusted source so I followed it. There is also a new Windows virus that was found that affects images. Just by going to a website that displays an image your machine can get hacked. I'm not sure exactly what's going on but be warned!
Link Posted: 1/3/2006 6:18:44 PM EDT
http://www.securityfocus.com/brief/89

From securityfocus.com:

Windows 0-day exploit found on Web
Published: 2005-12-28

Click here for Core Impact!

A previously unknown vulnerability in the Microsoft Windows graphics rendering engine is being exploited by several malicious Web sites to infect visitors' systems, security experts said on Wednesday.

The vulnerability can be triggered remotely and gives the attacker full system privileges, according to technical descriptions of the issue. However, in a security bulletin released late Wednesday, Microsoft maintained that only local user privileges could be gained through the vulnerability. In the last 24 hours, three different Windows Meta Files (WMFs) have been detected trying to use the vulnerability to spread, according to antivirus firm F-Secure.

"Do note that it's really easy to get burned by this exploit if you're analyzing it under Windows," Mikko Hyppönen, chief research officer for F-Secure said in a blog posting. "All you need to do is to access an infected web site with IE (Internet Explorer) or view a folder with infected files with the Windows Explorer."

Increasingly, security and software companies are worried about vulnerabilities that are exploited without any previous warning. Called zero-day exploits, the attacks can compromise systems before software makers issue patches to fix a security issue. Last month, a security researcher attempted to sell a previously unknown vulnerability in Microsoft Excel on eBay. Several companies have marketed defenses against zero-day exploits and Microsoft has created a network of automated Windows systems, known as honeymonkeys, that browse the Web to find malicious code targeted at Internet Explorer.

Google Desktop users have to be particularly careful as the search giant's software indexes any downloaded image file, an action that will cause the exploit to immediately execute, according to security researchers. A Microsoft spokesperson said the company is currently investigating the reports.

UPDATE: This brief has been updated to reflect information published by Microsoft in a Security Bulletin released late on Wednesday. The original brief was published about noon PST on Wednesday, and the updated version at 6:30 PST on Thursday.
Link Posted: 1/3/2006 6:20:17 PM EDT
[Last Edit: 1/3/2006 6:20:33 PM EDT by Tostitos]
this is old news.

i've had three different POC .rars on my desktop since the 29th.



Link Posted: 1/3/2006 6:22:04 PM EDT

Originally Posted By Tostitos:
this is old news.

i've had three different POC .rars on my desktop since the 29th.






3 techs in our Security department were owned on the 28th and 29th.
Link Posted: 1/3/2006 6:24:10 PM EDT

Originally Posted By Gixxerpunk:

Originally Posted By Tostitos:
this is old news.

i've had three different POC .rars on my desktop since the 29th.






3 techs in our Security department were owned on the 28th and 29th.



I deny everything.
Link Posted: 1/3/2006 6:25:26 PM EDT
I love having a secure PC.
Link Posted: 1/3/2006 6:27:37 PM EDT
Link Posted: 1/3/2006 6:27:39 PM EDT
This is not necessarily related to the windows image problem. It could just be the old stand trojan horse type website. The IM I received came from someone on this site. So most likely anyone else on that persons IM list also got the message. If you get an IM from someone pointing you to a geocities site with no explaination as to why should follow the link be very cautious.
Link Posted: 1/3/2006 6:32:48 PM EDT

Originally Posted By FieroLoki:
I love having a secure PC.



OSX?
Link Posted: 1/3/2006 6:34:22 PM EDT
[Last Edit: 1/3/2006 6:36:02 PM EDT by VooDoo3dfx]
damn.

Password changed!
Link Posted: 1/3/2006 6:38:12 PM EDT

Originally Posted By VooDoo3dfx:
damn.

Password changed!



Did you happen to get a message from me point to a geocities site? Add my to your yahoo under s_j_wire.
Link Posted: 1/3/2006 6:39:28 PM EDT

Originally Posted By Gixxerpunk:

Originally Posted By FieroLoki:
I love having a secure PC.



OSX?



Nope. Windows XP. I just now how to secure my PC. I havnt had a viri in years and rarely get spyware.
Link Posted: 1/3/2006 6:46:14 PM EDT
[Last Edit: 1/3/2006 6:59:37 PM EDT by Andreuha]

Originally Posted By Gixxerpunk:

Originally Posted By FieroLoki:
I love having a secure PC.



OSX?



He said "P.C."

Probably Linux

Edit... Took a while to type that

I'm in the same position.. Win XP, and using it the smart way...
Link Posted: 1/3/2006 6:48:14 PM EDT

Originally Posted By Tostitos:
this is old news.

i've had three different POC .rars on my desktop since the 29th.







whats a POC .rar? a winrar file?
Top Top