« May 2008 | Main | July 2008 »
Wednesday, June 04, 2008
Evil Hewlett-Packard support application
If you use an HP computer chances are it has a pre-installed customer support application that has been found to contain multiple security vulnerabilities. The software is designed to make it simple for users to automatically update HP drivers and software. However, flaws in ActiveX components within the HP Instant Support allow drive-by download attacks in cases where users unwittingly visit insecure websites.
HP Instant Support HPISDataManager.dll version 1.0.0.22 and earlier are affected. Users should upgrade to version 1.0.0.24.
To install the upgrade HP users should visit "http://www.hp.com/go/ispe" and choose “launch an online diagnostic session".
| Categories: Adware/Spyware, Security Alerts, Viruses-Trojans-Worms
Their problem could be your problem
It appears the website of an Ottawa recreation centre may have been the victim of a SQL injection attack that infected guests computers with a computer virus leaving them vulnerable to various nasties including spam, fraud or identity theft. The Ray Friel Recreation Centre was infected between May 14 - 21, 2008.
Those with up to date Anti-virus and spyware protection using Firefox or Opera browsers had little to fear but others may not have been so lucky. Mac users are safe ;-)
Remember, be alert because the world needs more lerts . . .
| Categories: Security Alerts, Viruses-Trojans-Worms
