1. NAT/PAT Affects DNS Cache Poisoning Mitigation
(News/CERT)

...em vulnerable to cache poisoning. Technical details regarding this vulnerability have been posted to public websites. Attackers could use these details to construct exploit code. Users are encouraged ...

2. Apple Releases Security Updates for iPhone and iPod touch
(News/CERT)

... these vulnerabilities may allow an attacker to execute arbitrary code, obtain sensitive information, spoof websites, conduct cross-site scripting attacks or cause a denial-of-service condition.US-CER...

3. DNS Implementations Vulnerable to Cache Poisoning
(News/CERT)

...ting a legitimate website.UPDATE: Technical details regarding this vulnerability have been posted to public websites. Attackers could use these details to construct exploit code. Users are encouraged ...

4. Microsoft Releases Security Advisory
(News/CERT)

...oft has released a Security Advisory to alert users of a recent increase in SQL injection attacks targeting websites using Microsoft ASP and ASP.NET. These attacks target websites that have inadequate...

5. Apple Releases Safari v3.1.2 for Windows
(News/CERT)

...s executables, which may allow arbitrary code execution an issue in the way Safari handles executables from websites in a trusted Internet Explorer zone, which may lead to automatic arbitrary code exe...

6. Compromised Websites Hosting Malicious JavaScript
(News/CERT)

US-CERT is following reports of SQL injection attacks that have compromised a large number of legitimate websites. The compromised websites contain injected JavaScript that attempts to exploit multipl

7. Search Engine IFRAME Injection Attacks
(News/CERT)

...orts of attacks using specially crafted URLs that inject IFRAMEs as terms into search engines on legitimate websites.  The affected URLs include popular search terms, and may be returned as high ...

8. Compromised Websites Redirect Users to Malicious Websites
(News/CERT)

US-CERT has seen reports of an attack that has compromised a large number of legitimate websites. The reports indicate that attackers are modifying the sites and embedding JavaScript code. Users who v

9. Websites Compromised Through SQL Injection
(News/CERT)

US-CERT has seen reports of an attack that has compromised a large number of legitimate websites. The reports indicate that attackers are modifying the sites and embedding a reference to JavaScript co

10. Email Attacks Circulating
(News/CERT)

...ster or larger refunds may request that users provide personal information or may contain links to phishing websites.US-CERT encourages users to take the following preventative measures to mitigate th...

11. Fraudulent Mac OS Security Tool Circulating
(News/CERT)

...crepancies in the language used to describe the software, citing plagiarism from well-known security vendor websites. In addition, some users on the Apple message boards have indicated that they are a...

12. Widespread SQL Injection Attacks Compromising Websites
(News/CERT)

US-CERT is aware of widespread SQL injection attacks compromising websites across all sectors.  The compromised sites have been modified to include a reference to a malicious JavaScript file. Whe

13. Spyware
(Top/Antispyware)

...probably were tricked into it or it snuck in with some other program. Often it includes keyloggers or watch websites you browse, and it usually show ads. Basically it does whatever unethical thing wil...

14. Other Behavior
(Top/Antispyware)

...ss-website cookies. These work by having an single server somewhere, and putting a reference to it on other websites. In practice, this is done via ad images. They then know a bunch of websites the sa...

15. Clearing Disk Space
(Top/Maintain)

...re in 'Temporary Internet Files', and if you delete all those you'll have to log back in to all websites. (A better solution for managing cache, history, and cookie files is to buy antispy...