NetTech Corp » Security

New worm attacking MS08-067 vulnerability

admin — Wed, 26 Nov 2008 12:34:05 +0000

M0re than a month after releasing an emergency patch for the MS08-067 RPC vulnerability , Microsoft on Tuesday warned that it is seeing increased levels of attack activity against the flaw. The company said that there is a new worm, being called Win32/Conficker.A , which is exploiting the RPC flaw and spreading in both enterprises and in home user environments. Conficker opens a random TCP port between 1024 and 10000 and then starts exploiting the MS08-067 vulnerability on other PCs on the network.

Read more from the original source:
New worm attacking MS08-067 vulnerability

Trojan exploiting MS08-067 RPC vulnerability

admin — Mon, 27 Oct 2008 19:31:11 +0000

If you haven’t pached your Microsoft systems, YOU BETTER!!!

There are reports emerging Friday morning of a new Trojan exploiting the MS08-067 RPC vulnerability in Windows that Microsoft patched with an emergency fix yesterday. Known as Gimmiv.A, the Trojan propagates automatically through networks, and also installs a number of small programs on compromised machines. But its most worrisome capability is a feature that enables Gimmiv.A to find cached passwords in a number of locations and then send them off to a remote server. Before sending the data, the Trojan encrypts the passwords with AES encryption.

Even the most secure systems get breached!!!

admin — Wed, 24 Sep 2008 00:56:40 +0000

“Pentagon e-mail system broken into”

According to BBC News, a hacker has managed to penetrate one of the e-mail systems in the Pentagon. Because of that, up to 1,500 accounts were taken off-line as a precaution.

US Secretary of defense Robert Gates, speaking at a news briefing, said that the penetrated system was an unclassified one that does not contain information related to military operations