-----Original Message----- From: NIPC Watch [mailto:nipcwatch@private] Sent: Thursday, September 12, 2002 8:11 AM To: Cyber Threats Subject: [Cyber_threats] Daily News 09/12/02 September 11, The Register - IE 6 SP1 Omits Fixes for 20 Outstanding Flaws. Researchers have discovered that inadequate security restrictions in Internet Explorer make it possible for an attacker to execute script on any Web page that containing frames. Grey Magic Software describes the vulnerability as critical, a warning backed up by several proof of concept demonstrations. Because of the way frames (and iframes) are handled by IE version 5.5 and above, attackers are able to get into all sorts of mischief with minimal effort. Source: http://www.ds-osac.org/edb/cyber/news/story.cfm?KEY=8987 September 11, MSNBC News - Buggy 'Chet' comes with attachment named 11september.exe. but is not considered a real threat. A programming prankster has released an Internet worm that seeks to tempt victims by promising a message about Sept. 11. Antivirus firm F-secure Corp. rates the worm - called "Chet" - a low risk because it is hampered by programming bugs, and doesn't work as its author intended. They issued a warning about "Chet" Tuesday evening at about 8 p.m. ET, just hours before the anniversary of last year's Sept. 11 attacks. The company says on its Web site that the program was written in Russia, but isn't likely to spread because it has "lots of bugs." Source: http://www.ds-osac.org/edb/cyber/news/story.cfm?KEY=8984 September 11, DDP News Agency - The al-Qaida Islamist terror organization is obviously embarking on new ways of terror. According to most recent intelligence service information, the group is now even preparing cyber attacks on western computer systems. "Following the attacks of 11 September 2001 in the United States, the situation has become even more sensitive for us because the Islamist terrorists are obviously planning new methods for attacking our computer networks," a German intelligence service expert told ddp news agency in Berlin on Tuesday 10 September . "Why kill people when an attack on the electronic control centres will lead to much more dramatic and longer-term results for Al-Qa'id ah," terrorism expert Walter Laqueur said. Intelligence service experts agree that even the United States would be unable to defend itself against a "global attack" from the international data networks. Source: http://www.ds-osac.org/edb/cyber/news/story.cfm?KEY=8978 _______________________________________________ Cyber_Threats mailing list Cyber_Threats@listserv http://listserv.infragard.org/mailman/listinfo/cyber_threats
This archive was generated by hypermail 2b30 : Thu Sep 12 2002 - 15:02:36 PDT