Executive Summary

Gozi is a well known Trojan that has been around for a number of years now.

Evgeny Legerov is wrapping up his month of 0day awareness. We are mid-way through his week of database 0day on the Intevydis blog:

“[January 25 - February 1] – week of database bugs, inspired by our research for DBJIT Toolset, 0days in Mysql, IBM DB2, Lotus Domino, Informix, Oracle(?)…and hopefully more”

Internet Explorer's latest vulnerability is causing Germany and France to advise against its use.

That's a bit overkill, though, we do recommend using another browser by default.

We're curious, how many of our readers have tried the option of turning off Internet Explorer 8 in Windows 7?

Microsoft recently announced a new vulnerability in certain versions of its Internet Explorer web browser. If exploited, the vulnerability (CVE 2010-0249) can allow remote code execution.

Announcement of this vulnerability follows on the heels of last week's targeted zero-day attacks against a number of companies.

The Google compromise in China story builds interest as Microsoft released an advisory and blog post on the relevant Internet Explorer browser vulnerability, crediting “details” to G

This is a post from our blog in May 2007:

Yesterday, three people were sentenced for writing the above malware (it's a variant of the Vanbot family) and other attacks — including some DDoS action.

PPStream is a multimedia player used widely throughout Asia, as in hundreds of millions of users. As such, it is interesting when crashes for widely used client-side software are reported as "exploitable" on various blogs and PoC sites.

We've been waiting for some stats to come rolling in, but we haven't seen a hint of an 0day worm or any attacks for that matter on the current Microsoft Ftp module 0day.

We have been monitoring and examining the second of the fairly prevalent ActiveX 0day in the past couple of weeks, this one targeting Microsoft Office Web components for Internet Explorer. The exploits have been distributed mostly on servers in China. Accordingly, the payloads that we have examined target a massive audience.

You might have heard a few things about a vulnerability in Microsoft Internet Explorer this week. This is otherwise known as a “zero day” because it was found and hasn’t been patched by Microsoft at the time of discovery.