Active exploits for bugs in IE 6 & 7 are now in the wild. It is time to upgrade to IE 8 or another browser of your choice.
Read more here.
Improvements in 2011 include:
- Better rootkit detection and removal
- Improved heuristics
- More languages
- A fresh new GUI
- Improved scanning speed
- Improved registry malware detection and removal abilities
- Improved command line scanner (The Cleaner CL)
- Improved TCActive! real-time scanning module
Read the expanded list at http://www.moosoft.com/whatsnew
You can download the new release from here.
A new flaw has been discovered in IE that could allow an attacker to take control of your computer.
…attackers could exploit it by feeding users malicious code disguised as a Windows help file — such files have a “.hlp” extension — then convincing them to press the F1 key when a pop-up appeared.
Microsoft advises its customers to not press F1 if a website tells them to.
Windows7 users are safe from this exploit.
See more here
The bad guys wasted no time in exploiting people searching Google for news about the earthquake and tsunami. We are working diligently to protect our customers from this threat.
Security AntiVirus
The Cleaner 2010 v6.2.2.2100 is out and includes the following changes:
- Improved rootkit detection and removal.
- Fixed command-line scanner bug where a non-existent file would return a false positive.
- Added path scanning to the command-line scanner.
- Adjusted heuristic scanning to help reduce false positives.
- Added Italian translation.
- Added Chinese Simplified translation.
- Updated languages.
You can get this update via the Update tab in The Cleaner 2010.
Websense reports that malware is on the rise and the methods of spreading it are changing.
- 13.7 percent of searches for trending news/buzz words (as defined by Yahoo Buzz & Google Trends) lead to malware
- 95 percent of user-generated comments to blogs, chat rooms and message boards are spam or malicious
- 35 percent of malicious Web attacks included data-stealing code
- 58 percent of data-stealing attacks are conducted over the Web
- 85.8 percent of all emails were spam
- an average growth of 225 percent in malicious Web sites
Read more here
From the Mozilla Add-ons blog:
Two experimental add-ons, Version 4.0 of Sothink Web Video Downloader and all versions of Master Filer were found to contain Trojan code aimed at Windows users. Version 4.0 of Sothink Web Video Downloader contained Win32.LdPinch.gen, and Master Filer contained Win32.Bifrose.32.Bifrose Trojan. Both add-ons have been disabled on AMO.
There is a hoax going around on Facebook about a bad application called “Unnamed App.” This is leading people to Google for information on it which is turning up results for Rogue Anti-Virus. These Rogue Anti-Virus applications try to trick you into installing them by claiming your computer is infected with a variety of malware.
Credit goes to Peter Kruse for finding this issue.
Microsoft has released a patch for the IE exploit dubbed Aurora and seven other vulnerabilities. You can get the updates via Windows Update.
Details of the patches can be found here: http://www.microsoft.com/technet/security/Bulletin/MS10-002.mspx
There is now malware in the wild exploiting the IE flaw as reported here. If you haven’t already followed the suggestions there you should do so now.