The source code for the Spyeye toolkit has been leaked onto the Internet meaning that it could now be modified to create variants and prompt further malware infections and security attacks. According to the network security company Damballa, the Spyeye toolkit, which includes the Zeus malware builder, was leaked by an infamous French security researcher named Xyliton,
Barracuda Labs has discovered a vulnerability in the way the DHCPv6 components of Windows handle malformed packets. Upon the reception of a "malformed” DHCPv6 Reply packet, the RPC server reports a critical error 0xc0000374 and then becomes unresponsive.
NSS Labs has released its latest Web Browser Security Comparative Test Reports against Socially-Engineered Malware for the third quarter of 2011. The report examines the ability of the top five web browsers to protect users from websites that look harmless but actually are designed to trick visitors into downloading and installing malware. According to a recent study by AVG, users are four times more likely to be tricked into downloading malware than be compromised by a vulnerability.
Mozilla has shipped a new version of its Firefox web browser with increased support for HTML5, faster startup times and improved per-site permission management. But most importantly it fixes a number of critical vulnerabilities, some serious enough to expose web surfers to drive-by download attacks. The Critical and High impact bugs include: Mozilla identified and fixed several
Kaspersky Lab has published its malware report for the second quarter of 2011 and it has found that seven of the current top ten vulnerabilities are in Adobe Flash Player and the other three in Java. This means that for the first time Microsoft products have disappeared from this list. Kaspersky put this down to "improvements in the automatic Windows update mechanism and the growing proportion of users who have Windows 7 installed on their PCs.” According to the report, navigating the web remains the riskiest activity on the Internet, with malicious URLs that serve exploit kits, bots, ransomware Trojans, etc.
