One of the benefits of “virtual machine” software, such as Sandboxie and Greenborder and others, is that they purport to protect a Internet user form malware infection by containing the infection to the “virtual machine”.

We do recommend the use of such software, but users should be aware that virtual machine software is not invulnerable to exploitation, just as is any complex piece of software. Users should be careful to update these programs whenever updates are offered, as they may fix security vulnerabilities.

Source:
http://googleonlinesecurity.blogspot.com/2007/05/on-virtualisation.html

The Finely Tailored Suit, er Email.

Spammers have learned to tailor their scam emails to specific groups of users. These spammers use clever social engineering to ensnare their victims. These emails can be successful in disarming caution in even the most cautions email recipient.

Our advice:

Google researchers have found malware lurking in 450,000 web sites, out of 4.5 million sites studied…. An amazingly large percentage.

Correction: Google researchers have clarified and revised their statements and it turns out that out of the Internet as a whole, they estimate less than 0.1% of web sites attempt to infect visitors with malware. Their original statements were speaking of a “subset” of risky sites that contained the much higher percentage of malware.
Source: http://news.com.com/8301-10784_3-9721866-7.html

Many of the attacks focused on security defects in various programs that have Internet access. This is why updating those programs is critical to maintaining a secure computer or computer network.

Besides the obvious programs. such as Internet Browsers, don’t forget to update programs such as QuckTime, Flash, Real Media, Microsoft Office, Outlook Express, Adobe Reader and all your anti-virus and anti-spyware programs, etc.

Many users don’t even know they have QuckTime and Flash and many of these other programs on their computers.

For more information:
http://news.com.com/8301-10784_3-9719590-7.html?tag=head

A new Trojan horse attack has been identified in the wild, named Trojan.Kardphisher by Symantec. This Trojan horse uses *very* clever social engineering to steal the credit card numbers from users.

If infected, you will be presented with a very realistic looking warning that your copy of Windows has been activated by another user, and you will be asked to enter personal data including a credit card number, in order to re-activate your Windows license. It tells you that your credit card is basically for identification purposes only and will not be charged. (Rest assured, it will be charged.)

This Trojan takes full control of your computer and renders it unusable. It blocks the Task Manager, so you cannot end it’s process. If you do not enter your credit card number, your computer will shut down immediately.

For more information:

http://www.symantec.com/security_response/writeup.jsp?docid=2007-042705-0108-99&tabid=1
or
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9018645&source=NLT_PM&nlid=8

The Sober worm is back. There are a number of variants, but, don’t trust any emails warning about a forgotten or reset password.

One variant targets MSN users, and purports to be from the webmaster@msn.com. The attachment contains the sober worm.

Don’t fall for it. If your antivirus doesn’t catch it, delete it immediately. Then get a better antivirus program. Or update the darned thing.

Apple has released new version QuckTime that fixes a critical vulnerability.

QuckTime is one of those ubiquitous programs that is installed on almost all computers, and that most computer owners probably don’t even realize is there.

So, we advise all users to install this update right away. Look for the blue ‘Q’ icon in your task bar, right click and select, Check for QuckTime updates.

Or visit apple.com:

http://www.apple.com/quicktime/win.html