There's an unpatched Internet Explorer 6, 7, and 8 vulnerability in the wild. Drive-by exploitation could allow remote code execution. Reports are that Metasploit already has a module available. There's a concise write-up at SANS Diary, and Microsoft's Security Response Center has more extensive details.

Year 2010 is becoming a good year in shutting down big botnets.

Latest case: Bredolab.

Actually, Microsoft Security Essentials is not fake. It's a real antivirus product from Microsoft.

However, there's a rogue security product out there that claims to be "Microsoft Security Essentials". It has nothing to do with Microsoft.

This malware is distributed via drive-by-download attacks as hotfix.exe or mstsc.exe (md5: 0a2582f71b1aab672ada496074f9ce46)

Here's what it looks like:

At this point, you've probably read there are vulnerabilities in Apple's iOS that allow drive-by jailbreaks. And you also know that those vulnerabilities can be used for other drive-by exploits such as malicious attacks.

Edited to add: Due to a communication error between our labs, we incorrectly stated that the exploit PDF files, mentioned below, crash Adobe Reader. This is not the case. Our apologies for the error.

The iOS drive-by jailbreak available at jailbreakme.com (see yesterday's post) utilizes a PDF exploit. The PDF files, 20 of them, for various combinations of hardware/firmware, are located in a subdirectory off the root of the website.

There are numerous reports that JailbreakMe 2.0 has been released with support for iOS 4. All that's needed to jailbreak an iPhone, iPod or iPad is to visit http://www.jailbreakme.com and then to engage the drive-by script.

This follows last week's news that jailbreaking is legal in the USA.

Anti-Malware Testing Standards Organization (AMTSO), which F-Secure is a member of, had a meeting in Helsinki in May. During that meeting AMTSO members approved two new guidelines to be published.

F-Secure Labs is launching a new feature in Browsing Protection today.

Web security has become increasingly important over the last few years and we've already developed various protection mechanisms to keep our customers safe against exploits, phishing attacks, and drive-by-downloads. However, there's still more we can do against one of the most sinister of attacks.

The Fbi released its Internet Crime Complaint Center (IC3) 2009 report. The organization maintains that cyberfraud losses reported to them doubled year over year.

Executive Summary

Gozi is a well known Trojan that has been around for a number of years now.