Vulnerabilities and attacks

The United States is responsible for the highest number of botnet servers in the world, according to new data from McAfee.

A map and a list of major countries posted by McAfee yesterday show the greatest concentration of botnet servers to be in the U.S., with 631. That's more than two and a half times higher than the second country on the list -- the British Virgin Islands with 237.

The Netherlands took third place with 154 servers, followed by Russia with 125, Germany with 95, and Korea with 81. Among the Top 10, Canada fared the best … Read more

Sony Computer Entertainment Europe has been fined 250,000 pounds (US$395,775) by the Information Commissioner's Office in the U.K., following the massive hacking of Sony's PlayStation Network in 2011 that saw million of users' personal data leaked.

The monetary penalty on Sony comes after the "serious breach of the Data Protection Act," the ICO said in a statement today.

When the Sony PlayStation Network Platform was hacked in April 2011, it compromised the personal information of millions of customers, including names, addresses, e-mail addresses, dates of birth, and account passwords. Customers' payment card … Read more

Following recent security vulnerabilities in Java, malware developers are taking a new approach to exploit the Java platform by issuing false updates that pose as legitimate updates for the runtime.

The latest version of the Java runtime that fixes recent vulnerabilities is update 11, and Kaspersky labs is reporting that a new malware is out that poses as "Java Update 11." The malware is packaged in a Java archive file called "javaupdate11.jar" that contains two Windows-based executables called "up1.exe" and "up2.exe." When installed the programs open a back door … Read more

Learning a lesson from the Stuxnet attack, Iran has beefed up its cyber forces and poses a greater threat to the United States.

At least, that was the word of warning from U.S. Air Force General William Shelton yesterday, according to Reuters. Speaking with reporters, Shelton said that the Iranian government has increased its cyber efforts since and as a result of being hit by Stuxnet.

In 2010, the infamous computer worm was unleashed in Iran and other countries. Designed to seize control of power grids and other industrial control systems, Stuxnet infected computers at Iran's Natanz nuclear … Read more

Anonymous has set its sights on Mexico's Department of Defense.

The group's Mexican legion has claimed responsibility for waging a distributed-denial-of-service attack on the government site, rendering it inoperable for several hours yesterday, according to the Associated Press.

During the attack, the group posted a statement on the media section of the government's Web site. The statement claimed that a "bad government" was running the country.

"Our struggle is for life, and our bad government offers death as the future," the statement read, according to Spanish language tech news site Web Adictos. "… Read more

Microsoft isn't too happy with the results of a recent test that found fault with its antivirus software.

For the second time in a row, the company's Security Essentials failed to win certification from AV-Test, a German-based testing lab that evaluates the efficacy of antivirus products. Out of 25 programs tested, only three failed to gain AV-Test's thumb's up for certification.

Microsoft's Forefront Endpoint Protection, which is geared toward corporate customers, also failed to gain certification.

Microsoft responded to the test via a blog posted yesterday, challenging its findings.

"Our review showed that 0.… Read more

Lately Java has been getting a bit of bad press, thanks to several consecutive security holes that have been exploited by malware developers. One notable occurrence was the Flashback malware threat that affected a number of OS X users, which (though due in part to Apple's negligence about Java upkeep) was rooted in the Java runtime. More recently, Java 7 has seen a new zero-day vulnerability that has been circulating in exploit kits.

In response to these threats, many in the tech community have recommended that people uninstall Java altogether. However, this can be impractical for some, as many … Read more

Despite an emergency software update issued yesterday by Oracle, the U.S. Department of Homeland Security is still advising computer users to disable Java on their Web browsers, fearing that an unpatched vulnerability remains.

Oracle released a software update on Sunday to address a critical vulnerability in Oracle's Java 7 after the DHS' Computer Emergency Readiness Team issued an advisory last week recommending users disable the cross-platform plugin on systems where it was installed. The flaw could allow a remote, unauthenticated attacker to execute arbitrary code when a vulnerable computer visits a Web site that hosts malicious code designed … Read more

Microsoft will fix a zero-day hole in IE today almost a week after this month's regular Patch Tuesday updates.

Discovered late last month, the vulnerability could allow attackers to gain control of a Windows computer running one of the older versions of IE by directing users to malicious Web sites. In response, Microsoft had suggested several workarounds and even offered a "one-click fix" designed to mitigate the problem, but those were considered temporary solutions.

Today's update will fully resolve the issue, according to Microsoft. Scheduled for rollout at 10 a.m. PT, the fix will be … Read more