Zero information on zero ... |
Microsoft publishes advis... »
Update on zero day Word vulnerability
Sat, 20 May 2006 15:30:04 GMT
Bad news: The back door door does actively connect back to a malicious website (apparently a server in the 3322.org domain) and accepts commands.
Good news: It appears that most AV vendors have succedded in getting a signature out.
The SANS Internet Storm Center is doing a good job keeping up to date on this.
Automating Review and Response to Security Events
Understanding the Difference between “Account Logon” and “Logon/Logoff” Events in the Windows Security Log
New Features in LogRhythm 4.0 Deserve a Place on Your Short List
How Randy and Company Do IT: Server and Application Monitoring
powered by Bloget™