If you have already seen this - or are not a windows user- hit delete.
Is everyone here aware of this latest non-sense that wants to irritate
us? I do know that the hort.net servers are not Microsoft so we are safe
here... but!... don't say you were not warned!:)
Hackers Planting Malicious Code on Major Web Sites
Internet scammers appear to be using three flaws in Microsoft
products to place malicious code on popular web sites. Hackers struck
Microsoft's Internet Information Server web site and planted code
that plants keystroke recording software.
Hackers could be stealing people's financial data through this
infection known as "Scob" and it may not be long before others use
this exploit to launch big attacks on the Internet and use it for
Microsoft says it issued patches in April which correct two of the
flaws but has yet to issue a patch to correct the 3rd flaw. Users are
advised Internet Explorer on its highest security setting, turn off
What You Should Know About Download.Ject
Published: June 24, 2004 | Updated June 26, 2004 8:45 P.M. Pacific Time
Get this information in additional languages
Microsoft teams are investigating a report of a security issue known as
Download.Ject affecting customers using Microsoft Internet Information
Services 5.0 (IIS) and Microsoft Internet Explorer, components of
Windows. (Download.Ject is also known as: JS.Scob.Trojan, Scob, and
Important Customers who have deployed Windows XP Service Pack 2 RC2 are
not at risk.
Reports indicate that Web servers running Windows 2000 Server and IIS
that have not applied update 835732, which was addressed by Microsoft
Security Bulletin MS04-011
<http://www.microsoft.com/technet/security/bulletin/MS04-011.mspx> , are
possibly being compromised and being used to attempt to infect users of
Internet Explorer with malicious code.
How to Help Protect Your Systems
* System administrators. System administrators should follow the
steps outlined in Knowledge Base Article 871277
<http://support.microsoft.com/?kbid=871277> to apply update 835732 and
take any recovery steps that may be necessary.
* Enterprise customers. Enterprise customers can minimize risk
by increasing the security of the Local Machine Zone in Internet
* Home users. Use the following steps to update your computer,
remove any infection, and increase your browsing and e-mail safety
Actions for Home Users
Install Critical Updates
Visit the Windows Update Web site <http://windowsupdate.microsoft.com/>
to install all critical updates.
Check for Infection
To determine if the malicious code is on your computer, search for the
Steps for Windows XP users:
1. On the taskbar at the bottom of your screen, click Start, and
then click Search.
2. Under What do you want to search for? click All files and
3. Under All or part of the file name:
and then click the Search button.
4. Under All or part of the file name:
and then click the Search button.
If either of these files is present, your computer may be infected. You
can find tools to clean your computer and obtain up-to-date antivirus
protection from the following software vendors participating in the
Microsoft Virus Information Alliance:
* F-Secure <http://www.f-secure.com/v-descs/scob.shtml>
* Computer Associates
Increase Your Browsing and E-Mail Safety
Follow the steps outlined on the page to Increase Your Browsing and
E-Mail Safety <http://www.microsoft.com/security/incident/settings.mspx>
Support hort.net -- join the hort.net fund drive!
Other Mailing lists |
Author Index |
Date Index |
Subject Index |