The FBI continues to remind shoppers to be wary of Internet fraud during the holiday shopping season. Scammers use many techniques to deceive potential victims, including creating fraudulent auction sales, reshipping merchandise purchased with a stolen credit card, selling fraudulent or stolen gift…
The IC3 has been made aware of various malware attacking Android operating systems for mobile devices. Some of the latest known versions of this type of malware are Loozfon and FinFisher. Loozfon is an information-stealing piece of malware. Criminals use different variants to lure the victims. One…
FBI Tips on Avoiding Internet Fraud: Tips for Avoiding Internet Auction Fraud: Understand as much as possible about how the auction works, what your obligations are as a buyer, and what the seller’s obligations are before you bid. Find out what actions the website/company takes if a problem…
The Mozilla Foundation has released updates to address multiple vulnerabilities for the following products:Firefox 17.0Firefox ESR 10.0.11Thunderbird 17.0Thunderbird ESR 10.0.11SeaMonkey 2.14These vulnerabilities may allow an attacker to execute arbitrary code, operate with elevated privileges,…
Adobe has released a security hotfix for ColdFusion 10 Update 1 and above for Windows. This hotfix resolves a vulnerability affecting ColdFusion on Windows Internet Information Services (IIS), which could result in a denial of service.US-CERT encourages users and administrators to review Adobe…
Since the winter holidays are quickly approaching, US-CERT is republishing this entry to increase awareness about phishing scams and malware campaigns.In the past, US-CERT has received reports of an increased number of phishing scams and malware campaigns that take advantage of the winter holidays…
GAZA — Israel has both admitted and denied murdering members of Hamas. Is Israel taking the lead from the United States and President Obama? The United States of America has started behaving exactly like the terrorists they seek to destroy. Sometimes the US gets their target, such as, Saddam…
Microsoft has released updates to address multiple vulnerabilities in Microsoft Windows Shell, .NET Framework, Windows Kernel-Mode drivers, Excel, Internet Information Services (IIS), and cumulative security updates for Internet Explorer as part of the Microsoft Security Bulletin Summary for…
Cisco Secure Access Control Systems (ACS) contains a vulnerability that could allow an unauthenticated, remote attacker to bypass the TACACS+ based authentication service offered by the product.Cisco has released software updates that address this vulnerability.US-CERT encourages users and…
The Standard Traveler scam is a computer program that hacks the victims’ emails. Then, it asks the contacts for money: Hello, Just writing to let you know our trip to Manila Philippines has been a mess. I was having a great time until last night when we got mugged and lost all my cash, credit…
Google has released Google Chrome 23.0.1271.64 for Windows, Macintosh, Linux, and Chrome Frame to address multiple vulnerabilities. These vulnerabilities may allow an attacker to execute arbitrary code.US-CERT encourages users and administrators to review the Google Chrome Release blog entry and…
Adobe has released security updates for Adobe Flash Player. These updates address vulnerabilities that could cause a crash and potentially allow an attacker to take control of the affected system.Secure updates are available for the following versions of Adobe Flash Player:Adobe Flash Player…
Cisco Prime Data Center Network Manager (DCNM) contains a remote command execution vulnerability that may allow a remote, unauthenticated attacker to execute arbitrary commands on the computer that is running the Cisco Prime DCNM application.Cisco has released software updates that address this…