Ad: Manage updates with the Download App

ms08-067

Bots exploiting Microsoft's latest RPC flaw

Several antivirus vendors are reporting on Monday a new round of exploitation of Microsoft's out-of-cycle security bulletin last month. The flaw in MS08-067, which affects how remote procedure calls (RPC) are handled in the Windows Server Service, has the potential to become a fast-spreading worm, according to Microsoft. But experts predict any exploitation will be bundled within an existing Trojan horse or botnet package because that's where criminals can make the most money from the malware code.

Ken Dunham of iSIGHT Partners said his company was looking at three samples of interest.

One is what F-Secure is calling … Read more

Microsoft RPC exploit could be a packaged deal

While Microsoft has labeled Thursday's emergency patch MS08-067 as "critical" and provided a rareout-of-cycle fix because its exploit could easily be used as worm on a compromised network, one security researcher doesn't think it will happen that way.

"It's likely we're going to see this packaged with some other attack." said Ben Greenbaum, senior research manager at Symantec. "A Web-based attack, for example. We're looking out for are exploits of this being bundled with client-side exploits or Trojans so that the worm can get past corporate firewalls and get … Read more

iPhone Atlas

The one stop shop for all things iPhone

What's the #1 music streaming-app for iOS? Who wins in an iPhone v. S4 faceoff? We've got it covered with iPhone news, rumors, app recommendations, and more.

Find out more

ms08-067

Bots exploiting Microsoft's latest RPC flaw

Microsoft RPC exploit could be a packaged deal

Featured Posts

Most Popular

iPhone Atlas