1661

Adobe Flash and Adobe AIR security vulnerability fixed, new versions released
http://www.adobe.com/support/security/bulletins/apsb11-28.html

details and download: http://forum.avast.com/index.php?topic=9671.msg706346#msg706346

1662

FBI busts global internet fraud ring.
http://www.dailytelegraph.com.au/technology/fbi-busts-internet-fraud-ring-affecting-tens-of-thousands-of-australian-computers/story-fn7bsi21-1226192935830

1663

Steam compromised by hackers
http://www.h-online.com/security/news/item/Steam-compromised-by-hackers-1377240.html

1664

Malware Signed With a Governmental Signing Key
http://www.f-secure.com/weblog/archives/00002269.html

1665

Thanks for the warning as I used Steam for all my Call of Duty Modern Warfare games :wink:

1666

NP pal. :slight_smile:

1667

Apple OS X Sandbox Predefined Profiles Bypass
http://www.coresecurity.com/content/apple-osx-sandbox-bypass

1668

It was really only the forums that were affected and that has been resolved.

1669

not true, both STEAM forum and STEAM user database were leaked,
it’s unknown what type of encryption was used for STEAM account passwords
only that the part with CreditCards info was by AES256

1670

That’s what they thought at first but there is no evidence of any compromise or illegal usage of customer data. The only impact was on the forums which had to taken down temporarily. It’s nothing like the fiasco with Sony. They may have gotten in but anything they got seems to have been unusable to them.

1671

New facebook virus,here we go again :
http://www.zdnet.com/blog/facebook/facebook-confirms-images-of-porn-and-violence-is-investigating/5330?tag=content;siu-container
Facebook says it is aware of users reporting a huge flood of unwanted content. This includes links, videos, and images depicting pornography, acts of violence, self-mutilation, and bestiality.

1672

Unknown network event causing BIND 9 DNS server crashes
http://www.h-online.com/open/news/item/Unknown-network-event-causing-BIND-9-DNS-server-crashes-1380518.html
https://www.isc.org/software/bind/advisories/cve-2011-4313

1673

XSS vulnerability in the translate helper method in Ruby on Rails
http://groups.google.com/group/rubyonrails-security/browse_thread/thread/2b61d70fb73c7cc5

1674

Spam Gets a Touch of Facebook Camouflage
http://blogs.norman.com/2011/for-consumption/spam-gets-a-touch-of-facebook-camouflage

Recycling – Not Always A Good Idea
http://blogs.norman.com/2011/for-consumption/recycling-not-always-a-good-idea

Invisible YNK, a Code Signing Conundrum
http://blogs.norman.com/2011/malware-detection-team/invisible-ynk-a-code-signing-conundrum

Back to the trojans. The one above is signed in June, and it’s now November, so this trojan has lived an undisturbed and validated life for about 4.5 months.
1675

H(ackers)2O: Attack on City Water Station Destroys Pump
http://www.wired.com/threatlevel/2011/11/hackers-destroy-water-pump/all/1

1676

German spyware exploits iTunes vulnerability
http://www.h-online.com/security/news/item/German-spyware-exploits-iTunes-vulnerability-1382455.html

1677

Alleged water utility hack causes confusion
http://www.h-online.com/security/news/item/Alleged-water-utility-hack-causes-confusion-1383976.html

1678

Apple Took 3+ Years to Fix FinFisher Trojan Hole
http://krebsonsecurity.com/2011/11/apple-took-3-years-to-fix-finfisher-trojan-hole/

1679

FakeAV/FakePoliceAlert: Source code for sale
http://xylibox.blogspot.com/2011/11/fakeavfakepolicealert-source-code-for.html

1680

Google account are now more secure with two step verification.
http://lifehacker.com/5756977/set-up-googles-two+step-verification-now-for-seriously-enhanced-security-for-your-google-account