Symantec patched up the Norton product suite

Symantec has released a patch related to the use of ActiveX programming language in Norton Antivirus security suite, Norton Internet Security 2006 version.

Being rated as "extremely dangerous" by security company Secunia, this error could be exploited by hackers to execute unknown programs on the victim's computer. The main cause of the two ActiveX controls in Symantec's workstation suite is Norton AntiVirus 2006, Norton Internet Security 2006 (the Anti Spyware Edition version is also affected) and the Norton SystemWorks 2006 system application suite.

Symantec recommends that users use the LiveUpdate auto-update function to download this new patch.

ESET releases the online malware scanning tool

This tool allows users to use scans and "clean" systems, hard drives, infected files or email without removing the antivirus program installed on the computer.

Based on ESET NOD32 Antivirus security software, ESET Online Scanner is a free web-based service, equipped with advanced detection technology, to help all users identify security risks and Defensive state of the computer.

Not only identifying malware (malware), ThreatSense or ESET Online Scanner can also find and remove viruses, trojans, worms, phishing and even spyware. It will clean up and fix the problems caused by malware. This program is free: no need to fill in contact information to use.

New Crimeware steals bank account information

Finjan, a security company for web server protection products, announced a new way crimeware (*) uses to steal victims' bank accounts from infected computers.

During July 2007, Finjan identified 58 crimeware using the MPack toolkit, bringing the number of infected users to more than 500,000. The rate of 16% on 3.1 million victims will be exploited for information. MPack helps hackers gather information such as: name, account password, credit card number, social security number . Stolen data will be sent back to the owner via a secure communication channel ( SSL) to avoid tracing.

Victims will not pay any attention to changes on their computers, as well as web surfing and online payments are recorded. Crimeware uses the technique of rootkits to hide themselves without leaving any sign, the most dangerous is that the security software solutions on users' computers have not yet detected it. Finjan's analysis also shows how victims are exploited.

Finjan gave advice to users :

1. Financial service providers will not require detailed information such as social security numbers, questions, secret answers or ATM PINs on online banking applications (online banking). ) their. If the bank website you are using requires these things, contact them first by phone to confirm the information.

2. Always use a protection solution for computers such as antivirus software that is automatically updated to a new database, a firewall to prevent unauthorized intrusion, manage the operation of applications on the computer want to connect to the internet.

-----------
(*) Crimeware is a term used to describe software created by hackers to exploit victim information, especially financial information such as bank accounts, credit cards, social security numbers . .

Thanh Truc