Friday, September 22, 2006

Is it a spam, is it a phish, no its Symantec

Is it a Spam is it a phish NO It's from Symantec.....!!

Note if you received it, the mail invites you to click on the following link

http://dr.bluehornet.com

There are NO references to Symantec in any of the links and if you are a security savvy user, you will probably treat the mail as spam.....

This one is OK though, honestly..... :-)

Keep your computer safe from the New Internet Explorer zero-day attack

Protection Update
As of September 18, 2006, Symantec Security Response is advising users to take extra precautions if they use any version of Microsoft Internet Explorer as a result of a new zero-day attack against the application.The attack leverages a previously unknown vulnerability in Microsoft Internet Explorer. This vulnerability is due to the way Internet Explorer handles Vector Markup Language (VML).

Currently, the vulnerabilities are being hosted primarily on adult and pornographic websites and used to attack users visiting those sites to install spyware onto the victim’s machine. It is important to note that although the attacks appear primarily on adult sites at the moment, it is possible that they may spread to other more mainstream websites on the internet. The spyware may include a variety of security risks such as keyloggers that will monitor the keystrokes in an attempt to steal financial and confidential information.

There are no patches available from Microsoft for the vulnerability at this point.

Symantec Security Response has analyzed the threat and has provided protection for it via LiveUpdate and Intelligent Update. The current Trojan that leverages the zero-day vulnerability to attack is detected as Trojan.Vimalov. Symantec Security Response is also releasing intrusion protection (IPS) signatures to proactively protect customers against attempts to exploit the Internet Explorer vulnerability itself.
Next Steps?
If you are a current Symantec Customer running Norton AntiVirus or Norton Internet Security and regularly run LiveUpdate™, you are protected from this threat and its varients.

If you are unaware of the security status of your PC, please take one of the following actions:
What action can be taken from here?
Run LiveUpdate™
Virus Definitions are available via the LiveUpdate or the Security Response Website. Protect Yourself

To upgrade to Norton Internet Security 2007, please click here
Posted by at

No comments:

Post a Comment

Subscribe to: Post Comments (Atom)