Malware May

User Group Network UGN Safenetting and Cybercrime report We need your help spreading the Safenetting Infomanager to people in your sphere of influence who may not be quite as computer savvy as our main Infomanager subscribers. This week is punctuated by Adobe Malware vulnerability and more ICANN failures … here are just a few from this week’s cache
* Amnesty International: when bad things happen on good sites
* Oxford University Profusely Infected with Flashback
* Phony Flash Player Plants Malware on Android Phones
* If Ann Nyberg’s Gmail can be hacked, so can yours
* Mountain Lion Debut Bad for Snow Leopard Users
* ‘Critical’ TIFF vulnerability in CS5 software
* 9 Tips To Block Hotel Wi-Fi Malware
* Apple patches 36 bugs in OS X
and more . . .



For over a decade we’ve warned and advocated that ICANN needs to be restructured or scrapped because of a 100% absence of accountability. The UGN “ISP Self-Regulation Initiative” published in 2000 spelled out problems in ICANN that would lead to insurmountable problems on the internet. Last week, ICANN’s own WhoIS Review Team publicly agreed.
      The WHOIS Review Team just issued a 92 page report “to review the extent to which ICANN’s WHOIS policy and to see whether ICANN’s implementation are effective, meet the legitimate needs of law enforcement and promote consumer trust.” The answer was clear: FAIL!
Report PDF: final-report-11may12-en.pdf
READ THIS REPORT Full story : Michael H. Berkens for The Domains

Apple patches 36 bugs in OS X

Apple yesterday patched 36 vulnerabilities in Mac OS X, most of them critical, plugging a hole that revealed passwords used to encrypt folders with an older version of FileVault.
      Both Mac OS X 10.7, aka Lion, and 10.6, better known as Snow Leopard, were updated with fixes. The two operating systems were last updated in February.

Mountain Lion Debut Bad for Snow Leopard Users

Mac users running the OS X 10.6 Snow Leopard may be out of luck when it comes to patches once Mac debuts its Mountain Lion operating system. According to InfoWorld, though the new Apple operating system has no set release date, it is rumored to be coming out in late summer.
      While retiring operating systems roughly every three years has been Apple’s modus operandi for the past decade, the computer giant has never set its cycle in stone the way Microsoft has. The latter is diligent about reminding customers to upgrade, while Apple remains relatively mum before each new debut.

Oxford University Profusely Infected with Flashback

The computer-systems at Oxford University were infected with the Flashback Trojan in hundreds of instances targeting faculty and students during the weeks just passed, while the problem is found to continue, published dated May 2, 2012.
      The University’s OxCERT, the network security group says that the Flashback menace brought about a stark difference to the security scenario. The Trojan’s massive number of assaults is equivalent to those Windows-users encountered for years before. The time is for security professionals to deal with the largest onslaught, about a thousand incidents, ever-since 2003 summer when Blaster attacked Windows-users globally, the group points out. published this on May 2, 2012.
READ THIS REPORT Full story : SPAMfighter News

Phony Flash Player Plants Malware on Android Phones

Adobe Flash Player users beware: A website that promises visitors a free copy of the download for all versions of Android is reportedly planting malware on smartphones running Google’s mobile operating system.
      The infected web page used to distribute the malware was discovered in a number of Russian domains, wrote Karla Agregado, a fraud analyst with Trend Micro, in a recent company blog. A similar tactic emerged last month to infect Android phones with bogus copies of Angry Birds and Instagram.
READ THIS REPORT Full story : John P. Mello Jr., PCWorld

‘Critical’ TIFF vulnerability in CS5 software

Contrary to reports that Adobe had suggested users should pay for an upgrade to CS6 to patch a serious security hole, the company has now announced that it is “in the process of resolving these vulnerabilities” in versions CS5 and CS5.5 of its applications.
      The bug allows a maliciously designed TIFF file to cause a buffer overflow and act as a backdoor for malware, and it affects older versions of Photoshop, Illustrator, and Flash on both Windows and Mac.
READ THIS REPORT Full story : The Verge

If Ann Nyberg’s Gmail can be hacked, so can yours

There is not a week that goes by that I don’t get at least five opportunities to download malware, or a virus on my PC, intended to either ruin my computer or gain access to sensitive files.
      That is apparently what happened to New Haven TV personality Ann Nyberg this week when some hacker was able to access her Gmail account and send out emails from her asking for help, claiming she was stuck in Spain and needed money
READ THIS REPORT Full story : George Gombossy –

Amnesty International malware attack: when bad things happen on good sites

Shattering the myth that only disreputable sites push malware, Amnesty International’s UK website was recently compromised and used to install a notorious backdoor trojan that allows hackers to spy on political activists and government employees, security researchers said.
      People visiting on Wednesday and Thursday were exposed to malicious code that exploited a now-patched vulnerability in Oracle’s Java software framework, according to a blog post published Friday by Websense. End users who hadn’t yet applied the patch were infected with Gh0stRat, a family of malware that siphons sensitive data from victims’ machines and can also operate Web cams and microphones in real time. The trojan came to light in 2009 when researchers reported that it infiltrated government and private offices in 103 countries. That included computers belonging to the Dalai Lama.
READ THIS REPORT Full story : Dan Goodin – Ars Technica

9 Tips To Block Hotel Wi-Fi Malware

The FBI issued an unusual warning this week to people traveling abroad: Beware malware attacks via hotel hotspots.
      “Recent analysis from the FBI and other government agencies demonstrates that malicious actors are targeting travelers abroad through pop-up windows while establishing an Internet connection in their hotel room,” according to an advisory released by the Internet Crime Complaint Center (IC3), which is an FBI and National White Collar Crime Center partnership. (IC3)
“The FBI recommends that all government, private industry, and academic personnel who travel abroad take extra caution before updating software products on their hotel Internet connection.”
READ THIS REPORT Full story : Mathew J. Schwartz – InformationWeek

What did you miss in the last Safenetting post
GO Send in your items for Safenetting readers
GO Facebook Safe Netting
GO Join / Like / contribute : UGNN FaceBook Group, (ug.netnews)


If you think you’re a victim, file a complaint with the
GO FBI Internet Crime Complaint Center : IC3.

You can also keep up with the efforts to curb spam and cybercrime by reading the news at
GO Knujon and
GO And, you should
GO switch to SpamCop and take a stand against spam.