Geek News: Latest Technology, Product Reviews, Gadgets and Tech Podcast News for Geeks


Tag: Internet Explorer

Bofra Worm Gets Past Antivirus Software

Posted by geeknews at 7:27 AM on November 26, 2004

Users of Microsoft Internet Explorer and Windows XP Service Pack 2 (SP2) are vulnerable to infection by the Bofra worm, downloaded through website banner ads.

The Bofra worm, previously described only as a variant of the MyDoom worm, takes advantage of the iFrame vulnerability in Microsoft Internet Explorer; Microsoft has not yet been able to release a patch that repairs this security hole. According to SANS Internet Storm Center, sites in the U.K., the Netherlands and Sweden have been infected, including The Register, tech website. The Register advises users who visited the site between 6:00 A.M. and 12:30 P.M. GMT on Saturday November 20, 2004, to check their machines for possible infection by the Bofra worm.

Bofra Skirts Antivirus Software
The more significant problem is that the Bofra worm, which is a spyware application cannot be detected by most antivirus software applications. Repairing the effects of this worm are difficult and costly. The effect of the worm is so many popups and unwanted software installations that the computer will slow to a crawl and be, effectively, useless. Many users will be forced to rebuild their drives from scratch, starting with a reformatting and reinstallation of Windows.

Dave’s Opinion
Affected users who are fortunate to not lose all of their data files will do well to rebuild their computer and stop using Microsoft’s integrated web browser. Until Microsoft is able to take security seriously and create a stable, secure browsing platform, Windows users should move to alternative web browsers such as Firefox or Opera.

Call for Comments
What do you think? Leave your comments below.

References
SANS Internet Storm Center
The Register
Firefox
Opera
Message Center

Microsoft Sued Over Security Flaws

Posted by geeknews at 7:15 AM on October 8, 2003

Marcy Levitas Hamilton, a media corporation CEO, has filed suit and is seeking to class action status for her complaint against Microsoft. Hamilton says that the software giant is responsible for a cracker’s being able to steal her Social Security number’s using a flaw in Microsoft’s software.

This is a new type of complaint: holding Microsoft legally responsible for the security of its applications and operating systems because the software maker’s disclaimers against responsibility for security flaws are an unfair business practice under the laws of California since consumers have few options other than using Microsoft products.

Dave’s Opinion
This is an interesting legal argument: should software makers be held to a standard of liability similar to the standards of other major industries.

Microsoft says that Hamilton’s law suit is misdirected because the theft is the work of vandals. But I think Microsoft is missing the point — it manages the only building in town and left the door open. Shouldn’t Microsoft, as the only landlord in town, be responsible to lock the door against the vandals?

Call for Comments
What do you think? Leave your comments below.