| |
 |
 |
 |
|
|
|
|
Date: 18 March 2011
Click here for printable version
AusCERT Week in Review
18 March 2011
Greetings,
This week proved, if proof were needed, that in times of disaster there will always be a criminal element of society that seeks to turn tragedy into financial advantage. In the wake of the Japanese earthquake, a number of different methods of fraud hit the Internet, with the common objective of fleecing victims of the disaster via the generosity of well-minded people. Some attacks were basic, with fake sites set up to accept and deliver donations into the hands of criminals. Others used the disaster as a 'hook' to deliver the same old malware that we're so used to seeing.
Here's some sites with information about just a few that we're aware of:
http://blog.trendmicro.com/most-recent-earthquake-in-japan-searches-lead-to-fakea/
http://www.bbc.co.uk/news/technology-12745128
http://www.japantoday.com/category/crime/view/police-warn-of-bogus-e-mails-phone-calls-seeking-earthquake-donations
So, if you're interested in donating to disaster relief, of any kind, please confirm that you're giving your money to a legitimate organisation.
The Australian Government Directory has a listing at http://www.agd.com.au/directory.php?dirpage=search&act=search&cat=000100&state=ion_id=.
We'd suggest that's a great place to begin.
Best regards,
The AusCERT Team
Alerts, Advisories and Updates:
- -------------------------------
Title: ASB-2011.0022 - [Win][UNIX/Linux] RSA SecurID: Reduced security -
Unknown/unspecified
Date: 18 March 2011
URL: http://www.auscert.org.au/14119
External Security Bulletins:
- ----------------------------
Title: ESB-2011.0306 - [RedHat] krb5: Denial of service -
Remote/unauthenticated
Date: 17 March 2011
OS: Red Hat Linux
URL: http://www.auscert.org.au/14116
Title: ESB-2011.0305 - [Win] VMware vCenter Orchestrator(vCO) : Execute
arbitrary code/commands - Remote/unauthenticated
Date: 17 March 2011
OS: Virtualisation
URL: http://www.auscert.org.au/14115
Title: ESB-2011.0304 - [Win][UNIX/Linux] MIT krb5: Denial of service -
Remote/unauthenticated
Date: 17 March 2011
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD
Variants, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista,
Other Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/14117
Title: ESB-2011.0303 - [Linux][Debian] libcgroup: Increased privileges -
Existing account
Date: 17 March 2011
OS: Red Hat Linux, Other Linux Variants, SUSE, Debian GNU/Linux, Ubuntu
URL: http://www.auscert.org.au/14113
Title: ESB-2011.0302 - [SUSE][OpenSUSE] SUSE: Multiple vulnerabilities
Date: 17 March 2011
OS: SUSE, Other Linux Variants
URL: http://www.auscert.org.au/14114
Title: ESB-2011.0301 - [Win][VMware ESX][RedHat][Solaris][AIX][SUSE] RSA®
Access Manager Server: Unauthorised access - Unknown/unspecified
Date: 17 March 2011
OS: Solaris, Windows 2003, Windows XP, Virtualisation, SUSE, Windows 2000,
Windows 7, AIX, Windows Vista, Windows Server 2008
URL: http://www.auscert.org.au/14112
Title: ESB-2011.0300 - [Win][UNIX/Linux][Mac][OSX] EMC Avamar: Access
confidential data - Existing account
Date: 17 March 2011
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD
Variants, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista,
Other Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/14111
Title: ESB-2011.0299 - [Win][UNIX/Linux][Mac][OSX] EMC Avamar: Administrator
compromise - Existing account
Date: 17 March 2011
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD
Variants, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista,
Other Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/14110
Title: ESB-2011.0298 - [Debian] chromium-browser: Execute arbitrary
code/commands - Remote with user interaction
Date: 16 March 2011
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/14108
Title: ESB-2011.0297 - [UNIX/Linux][Debian] proftpd-dfsg: Multiple
vulnerabilities
Date: 15 March 2011
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Mac OS X, Debian
GNU/Linux, Ubuntu, HP-UX, Other BSD Variants, SUSE, OpenBSD, AIX,
FreeBSD, Other Linux Variants
URL: http://www.auscert.org.au/14107
Title: ESB-2011.0296 - [Win] HP Client Automation Enterprise (HPCA) : Execute
arbitrary code/commands - Remote/unauthenticated
Date: 15 March 2011
OS: Windows 2003, Windows XP, Windows 2000, Windows 7, Windows Vista,
Windows Server 2008
URL: http://www.auscert.org.au/14106
Title: ESB-2011.0295.2 - UPDATED ALERT [Win][Linux][Solaris][Mac][OSX] Adobe:
Execute arbitrary code/commands - Remote with user interaction
Date: 16 March 2011
OS: SUSE, Windows XP, Debian GNU/Linux, Ubuntu, Mac OS X, Windows 7, Red
Hat Linux, Windows 2003, Solaris, Windows 2000, Windows Vista, Other
Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/14105
Title: ESB-2011.0294 - [Win][UNIX/Linux] Apache Tomcat: Reduced security -
Unknown/unspecified
Date: 14 March 2011
OS: IRIX, HP Tru64 UNIX, Solaris, Red Hat Linux, Windows 2003, Windows 7,
Mac OS X, Ubuntu, Debian GNU/Linux, HP-UX, Windows XP, Other BSD
Variants, SUSE, OpenBSD, Windows 2000, AIX, FreeBSD, Windows Vista,
Other Linux Variants, Windows Server 2008
URL: http://www.auscert.org.au/14104
Title: ESB-2011.0293 - [Debian] wordpress: Multiple vulnerabilities
Date: 14 March 2011
OS: Debian GNU/Linux
URL: http://www.auscert.org.au/14103
===========================================================================
Australian Computer Emergency Response Team
The University of Queensland
Brisbane
Qld 4072
Internet Email: auscert@auscert.org.au
Facsimile: (07) 3365 7031
Telephone: (07) 3365 4417 (International: +61 7 3365 4417)
AusCERT personnel answer during Queensland business hours
which are GMT+10:00 (AEST).
On call after hours for member emergencies only.
===========================================================================
|
|
|
|
 |
|
 |
|
|