January 2007
Welcome to January's edition of Internet Security News, the monthly risks bulletin detailing the
latest Internet software and system vulnerabilities from NTA Monitor, a leading IT security testing
company. It provides a convenient way to keep up to date with the fast changing world of IT security;
this month's edition includes a total of 10 risk issues:
4 High, 2 Low and 4 Informational .
AOL 7.0 flaw
(
High risk)
AOL 7.x, 8.x and 9.x have a vulnerability that could compromise a user's system if exploited
8th January 2007
Read More
Microsoft monthly update - two critical flaws unaddressed
(
High risk)
Seven vulnerabilities were addressed in Microsoft's December security bulletin, three of which were ranked as 'critical' and four as 'important'
8th January 2007
Read More
Multiple high risk Firefox vulnerabilities
(
High risk)
Multiple Firefox vulnerabilities have been reported that could facilitate cross site scripting
8th January 2007
Read More
Yahoo! Messenger buffer overflow flaw
(
High risk)
A serious security flaw has come to light in Yahoo! Messenger, prompting users to upgrade
8th January 2007
Read More
Firefox password manager flaw
(
Low risk)
A flaw has been discovered in Firefox 2.0.0 that if exploited, could facilitate phishing attacks
8th January 2007
Read More
'Happy new year' worm
(
Low risk)
New year, new worm. The 'happy new year' worm spreads through malicious attachments
8th January 2007
Read More
Criminals recruiting IT graduates
(
Informational)
It has recently transpired that some criminals are grooming young IT students for a life of cybercrime
8th January 2007
Read More
MySpace passwords surprisingly strong
(
Informational)
As a result of a recent MySpace phishing attack, users' passwords were revealed to be relatively strong, with 45% including at least one number
8th January 2007
Read More
Online fraud up 8000%
(
Informational)
The Financial Services Authority (FSA) recently revealed that online fraud has increased by 8000% over the last two years
8th January 2007
Read More
UBS logic bomber sentenced
(
Informational)
A disgruntled former UBS Paine Webber employee caused $3 million worth of damage by unleashing a logic bomb onto the company's network
8th January 2007
Read More
This bulletin is produced as a by-product of ongoing research carried out to develop NTA Monitor's Internet security
testing service, Regular Monitor. NTA are a full-service Internet security testing company with a comprehensive range of
testing services including: