September 2014• 5 Million Passwords Leaked
February 2013• Flames Ticket GIVEAWAY!
December 2012• Holiday Update, from the Team at Benson & Associates
October 2012• If it ain't broke, don't fix it. I'm talking to you, Microsoft
September 2012• Microsoft to end support of Windows XP and Office 2003
June 2012• Microsoft Unveils New tablet
April 2012• WHAT EXACTLY IS "MANAGED SERVICE"?
February 2012• Buzzwords We Hate
December 2011• Benson IT News • Backup and Disaster Recovery / Business Continuity Planning
September 2011• eScan Update • HP Notebook PC battery Pack Replacement Program - IMPORTANT SAFETY RECALL
August 2011• Reclaim your privacy settings on LinkedIn
July 2011• Anti-virus Software Scam • Electronics recycling fees are being reduced
June 2011• Canada Post Strike
May 2011• The Importance of Backups
April 2011• (APRIL FOOLS) - Very Important - URGENT ACTION REQUIRED!
March 2011• The end to pharmaceutical scam emails?
February 2011• MDaemon v12 - BlackBerry Edition
November 2010• Barracuda Spam and Virus Protection • Microsoft's Streetslide takes on Google Streetview
October 2010• A Few Perspectives on OpenOffice.org • The History Of The (Fake) 'Free Public WiFi' You Always See At Airports
September 2010• We Have Moved
August 2010• Private browsing: not so private • Microsoft Releases Emergency Patch For Windows
July 2010• How to spot an e-mail hoax
June 2010• MDaemon v11 Released
May 2010• Autotask Community Live!
April 2010• Facebook Privacy Warning • Slaying Zombie Servers • Going Green • Alberta Immigrant Nominee Program
March 2010• Beginner Tips for SEO • What the heck is SEO, and does it actually work?
February 2010• Encourage Your Customers to Complain • Five Reasons to Consider Managed Service
January 2010• Social Networking Sites • Happy New Year
December 2009• iPhone Rick Roll
November 2009• Flu Season Alert • Make Your Tech Guy Sweat • Flash Player Alert
October 2009• Genie Timeline Now Available • Independent Anti-Virus Field Test
September 2009
August 2009
July 2009
June 2009• Cloud Computing • Kids Up Front • Benson & Associates NEW Advertisement
May 2009
April 2009
March 2009
February 2009
January 2009
November 2008
August 2008
May 2008
April 2008
March 2008
February 2008
November 2007
June 2007
September 2005
August 2005
|
Microsoft Releases Emergency Patch For Windows - 2010-08-09 The "out of band" emergency update addresses a Windows vulnerability that is being exploited by attackers using a "highly virulent strain" of malware.
Microsoft released an emergency fix yesterday for a Windows vulnerability that is being exploited by attackers using a "highly virulent strain" of malware.
Because of the seriousness of the flaw, Microsoft has decided to publish the patch before the company's scheduled release of security patches Aug. 10. The so-called a "out of band" release corrects a flaw that results in Windows incorrectly parsing shortcuts in a way that allows malicious code to be executed when the icon of a specially crafted shortcut is displayed.
"We're able to confirm that, in the past few days, we've seen an increase in attempts to exploit the vulnerability," Christopher Budd, of the Microsoft Security Response Center. "We firmly believe that releasing the update out of band is the best thing to do to help protect our customers."
According to the Microsoft Malware Protection Center, attackers have used .LNK files to exploit the vulnerability. As malware writers have learned of the flaw, multiple techniques to exploit it are showing up on the Internet.
One family of viruses, called Sality, has caught the attention of security researchers, who have spotted a newly developed member Sality.AT that exploits the latest vulnerability. "Sality is a highly virulent strain," the Protection Center says in its blog. "It is known to infect other files, making full removal after infection challenging, copy itself to removable media, disable security and then download other malware."
With the release of Sality.AT, developers of other virus families will likely move quickly to copy the technique to target the same vulnerability.
Affected versions of Windows include Windows 7, XP, Server 2003, Vista and Server 2008.
Should you have any questions about this security posting, or questions the IT Security you currently have in place – please call our Help Desk at 1-877-247-1664.
|