Fraudulent 9/11 Web Sites

Antivirus Advice for Computer Protection on the Internet

:: Apple Releases QuickTime 7.7.2 :: Google Releases Google Chrome 19 :: Apple Releases Multiple Security Updates :: Adobe Releases Security Bulletins for Multiple Products :: Apple Releases iOS 5.1.1 :: Adobe Releases Security Advisory for Adobe Flash Player :: Microsoft Releases May Security Bulletin :: Microsoft Releases Advanced Notification for May Security Bulletin :: Microsoft Releases Advance Notification for May Security Bulletin :: Google Releases Chrome 18.0.1025.168 :: RuggedCom Rugged Operating System Vulnerability :: DNSChanger Malware :: Oracle Releases Critical Patch Update for April 2012 :: Apple Releases Flashback Malware Security Updates :: Apple Releases Flashback Malware Security Updates :: HP ProCurve 5400 zl Switches Security Bulletin :: Samba Releases Updates for 3.0.x - 3.6.3 :: Adobe Releases Security Bulletin for Adobe Reader and Acrobat :: Microsoft Releases Advance Notification for April Security Bulletin :: Microsoft Releases April Security Bulletin

US-CERT is aware of public reports indicating that attackers are using legitimate web pages to run malicious code on victims' machines.

Reports, including a posting by Sophos, indicate that these messages

Include keywords and names related to the 9/11/2001 terrorist attack
Prompt users with a fake virus scan that attempts to make users believe they have a security issue. The users are then asked to download fake security software that is actually malicious code.

Please note that these characteristics may change at any time.

US-CERT encourages users and administrators to take the following preventative measures to help mitigate the security risks:

Install anti-virus software, and keep its virus signature file up to date
Refer to the Avoiding Social Engineering and Phishing Attacks document for more information on social engineering attacks

Read more: US-CERT Current Activity

Today's Internet Security Alerts

SANSFIRE 2011
SANSFIRE 2011
(1) HIGH: Google Chrome Sandbox Escapes
...
(2) HIGH: Microsoft Remote Desktop Protocol Vulnerability
...
(3) HIGH: Mozilla Firefox Use-After-Free Vulnerability
...
2.8 Mozilla Firefox/Thunderbird/SeaMonkey "shlwapi.dll" Use-After-Free Memory Corruption
...
12.11.11 IBM DB2 Multiple Security Vulnerabilities
...
12.11.12 IBM Maximo Asset Management Multiple Security Vulnerabilities
...

Popular Words in Security Alerts
systems attacks phishing gateway devices traffic signature dnschanger february receiving unauthorized including compromised center indicate