Hackers wield newest IE exploit in drive-by attacks

Computerworld Security: January 19, 2010
===============================================================

Hackers wield newest IE exploit in drive-by attacks

A security researcher said hackers are attacking some PC users by using an
Internet Explorer exploit allegedly used last month to break into Google's
network.
http://cwflyris.computerworld.com/t/6086269/644394564/255091/0/

~~~~~~~~~~~~~~~~~~~~~~~~SPONSOR~~~~~~~~~~~~~~~~~~~~~~~~~~

This section of Computerworld Security is sponsored by RSA

RSA® Conference 2010 | March 1-5 | San Francisco.

Access the insights, tools and knowledge you need to prepare for 2010 and
beyond. Face security challenges and complexities with confidence. Attend RSA
Conference 2010. Discount registration ends soon. Register before January 30th
and save $400!

http://cwflyris.computerworld.com/t/6086269/644394564/255092/0/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

IN THIS ISSUE

1. Chinese authorities behind Google attack, researcher claims
http://cwflyris.computerworld.com/t/6086269/644394564/255093/0/

2. What Gmail hack? China spins news of Google threat
http://cwflyris.computerworld.com/t/6086269/644394564/255094/0/

3. Google cyberattack probe includes employees
http://cwflyris.computerworld.com/t/6086269/644394564/255095/0/

4. Google runs Microsoft's IE, attacks show
http://cwflyris.computerworld.com/t/6086269/644394564/255096/0/

5. China: We are biggest victim of cyberattacks
http://cwflyris.computerworld.com/t/6086269/644394564/255097/0/

6. Vendor retracts claim of Adobe flaw's part in Google attack
http://cwflyris.computerworld.com/t/6086269/644394564/255098/0/

7. Three lessons for businesses from the Google attack
http://cwflyris.computerworld.com/t/6086269/644394564/255099/0/

8. Preston Gralla: How to protect yourself against the Chinese Google hack
http://cwflyris.computerworld.com/t/6086269/644394564/255100/0/

9. Blaming IE for Attacks is Dangerous
http://cwflyris.computerworld.com/t/6086269/644394564/255101/0/

10. IT Blogwatch: Ditch IE over Google China hack bug?
http://cwflyris.computerworld.com/t/6086269/644394564/255102/0/

11. Smartphones need smart security practices
http://cwflyris.computerworld.com/t/6086269/644394564/255103/0/

12. IT Blogwatch: Twitter "terrorist" taken to task
http://cwflyris.computerworld.com/t/6086269/644394564/255104/0/

13. Financial firm notifies 1.2M after password mistake
http://cwflyris.computerworld.com/t/6086269/644394564/255105/0/

14. Attack code used to hack Google now public
http://cwflyris.computerworld.com/t/6086269/644394564/255106/0/

15. Microsoft cuts time Bing stores some user data to six months
http://cwflyris.computerworld.com/t/6086269/644394564/255107/0/

OTHER RESOURCES

1. The Commercialization of ITIL: Lessons Learned
http://cwflyris.computerworld.com/t/6086269/644394564/246213/0/

2. The Business Case for Virtualization
http://cwflyris.computerworld.com/t/6086269/644394564/248254/0/

~~~~~~~~~~~~~~~~~~~~~~~~SPONSOR~~~~~~~~~~~~~~~~~~~~~~~~~~

This section of Computerworld Security is sponsored by Microsoft

DirectAccess and UAG: Better Together

Here are some of the key reasons why you would want to run Unified Access
Gateway with DirectAccess

http://cwflyris.computerworld.com/t/6086269/644394564/243858/0/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Chinese authorities behind Google attack, researcher claims

The malware used to hack Google is so sophisticated that researchers brought in
by the company to investigate believe the attack code was designed and launched
with support from Chinese authorities.
http://cwflyris.computerworld.com/t/6086269/644394564/255093/0/

What Gmail hack? China spins news of Google threat

Chinese state media has spun Google's threat to leave China as a purely
commercial move, as authorities there apparently work to limit discussion of
human rights issues raised by Google.
http://cwflyris.computerworld.com/t/6086269/644394564/255094/0/

Google cyberattack probe includes employees

Google's investigation of a cyberattack that rocked the company's infrastructure
in mid-December includes a probe of its staff in China, a source familiar with
the investigation said on Monday.
http://cwflyris.computerworld.com/t/6086269/644394564/255095/0/

Google runs Microsoft's IE, attacks show

Google's corporate network was hacked because its workers were running rival
Microsoft's Internet Explorer browser, a point that didn't escape the notice of
security researchers and Web users.
http://cwflyris.computerworld.com/t/6086269/644394564/255096/0/

China: We are biggest victim of cyberattacks

China on Tuesday denied any role in alleged cyberattacks on Indian government
offices, calling China itself the biggest victim of hackers.
http://cwflyris.computerworld.com/t/6086269/644394564/255097/0/

Vendor retracts claim of Adobe flaw's part in Google attack

A vendor that earlier this week claimed that a vulnerability in Adobe Reader
appeared to have resulted in the recent attacks against Google and other
companies has retracted that claim.
http://cwflyris.computerworld.com/t/6086269/644394564/255098/0/

Three lessons for businesses from the Google attack

The cyberattacks against Google and more than 30 other technology companies by
adversaries operating out of China highlights what some call the Advanced
Persistent Threat confronting a growing number of U.S commercial entities.
http://cwflyris.computerworld.com/t/6086269/644394564/255099/0/

~~~~~~~~~~~~~~~~~~~~~~~~SPONSOR~~~~~~~~~~~~~~~~~~~~~~~~~~

This section of Computerworld Security is sponsored by Palo Alto Networks

Enterprise 2.0 Apps – Block or Not?

Enterprise 2.0 applications are changing the way organizations get things done.
These applications deliver significant business value but can also introduce
substantial risks. What should organizations do to control these applications?
It's not a simple binary decision to block or allow. Learn how to safely enable
Enterprise 2.0.

http://cwflyris.computerworld.com/t/6086269/644394564/255108/0/

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Preston Gralla: How to protect yourself against the Chinese Google hack

Worried about the security hole in Internet Explorer that was used to launch
attacks by China against Google and others? There are ways to help close it and
limit your exposure to similar threats — and it won't take more than a few
minutes. Here's how to do it.

http://cwflyris.computerworld.com/t/6086269/644394564/255100/0/

Blaming IE for Attacks is Dangerous

In the wake of the attacks in China it has been determined that a zero-day flaw
in Microsoft's Internet Explorer Web browser is one of the primary exploits used
to compromise target systems. Germany, and now France, feel the solution is
easy–stop using Internet Explorer. This simplistic approach is shortsighted and
may create a false sense of security.
http://cwflyris.computerworld.com/t/6086269/644394564/255101/0/

IT Blogwatch: Ditch IE over Google China hack bug?

Should we be ditching IE because of the Google China vulnerability? The German
government thinks so. In IT Blogwatch, bloggers debate putting Internet Explorer
out of our misery. (MSFT)

http://cwflyris.computerworld.com/t/6086269/644394564/255102/0/

Smartphones need smart security practices

Smartphones may seem cute and personal, but in a business setting, they're
really handheld computers that need to be secured to prevent data loss.
http://cwflyris.computerworld.com/t/6086269/644394564/255103/0/

IT Blogwatch: Twitter "terrorist" taken to task

Paul Chambers, a Brit twit, is ruing the day he posted a joke bomb threat to his
Twitter followers. He was summarily arrested as an alleged terrorist, suspended
from his job, and banned from Doncaster's Robin Hood Airport. In IT Blogwatch,
bloggers steal from the poor to give to the rich.

http://cwflyris.computerworld.com/t/6086269/644394564/255104/0/

Financial firm notifies 1.2M after password mistake

A Concord, N.H., financial services company is sending data breach notification
letters to customers after discovering that shared passwords, set up to simplify
administrative functions nearly 10 years ago, could have exposed the private
data of 1.2 million customers.
http://cwflyris.computerworld.com/t/6086269/644394564/255105/0/

Attack code used to hack Google now public

The dangerous Internet Explorer attack code used in last month's attack on
Google's corporate networks is now public.
http://cwflyris.computerworld.com/t/6086269/644394564/255106/0/

Microsoft cuts time Bing stores some user data to six months

Microsoft announced plans to cut the length of time it stores IP addresses of
Web searchers using its Bing search engine from 18 months to six in a bid to
improve its privacy track record.
http://cwflyris.computerworld.com/t/6086269/644394564/255107/0/

===============================================================

Nominate your world-class company

Is your IT department great place to work? Our 17th annual "Best Places to Work
in IT" special report and listing will honor 100 organizations that offer great
benefits, salaries and opportunities for training and advancement, as well as
provide interesting projects and a flexible and diverse work environment.

Nominate a company today: http://cwflyris.computerworld.com/t/6086269/644394564/237817/0/

NEW COMPUTERWORLD JOB BOARD
______________________________

Search multiple listings now and get new job alerts as they are posted.

http://cwflyris.computerworld.com/t/6086269/644394564/156832/0/

COMPUTERWORLD ON TWITTER

Are you a Twit? So are we! Follow the Computerworld editors at Twitter
to hear what's coming, what's breaking, what's hot, what's not.
Plus: Talk back to us via @computerworld
http://cwflyris.computerworld.com/t/6086269/644394564/126780/0/

===============================================================

___________CONTACTS/SUBSCRIPTIONS___________________________

FEEDBACK
——–
To submit feedback about Computerworld's e-mails, contact our
online customer service group at online@computerworld.com.
Please include your subscriber e-mail address in all
correspondence: senay111.rss-opml@blogger.com

ADVERTISING
———–
For information on advertising, contact
Sean_Weglage@computerworld.com.

PRIVACY POLICY
————–
Computerworld's online privacy policy is at:
http://cwflyris.computerworld.com/t/6086269/644394564/72509/0/

SUBSCRIPTION SERVICES
———————
You are currently subscribed to computerworld_security as: senay111.rss-opml@blogger.com.

To change your e-mail address or subscription preferences, go to:
http://cwflyris.computerworld.com/t/6086269/644394564/72510/0/

To unsubscribe from this newsletter, go to:
http://cwflyris.computerworld.com/t/6086269/644394564/131135/0/?90482085=aHR0cDovL2N3Zmx5cmlzLmNvbXB1dGVyd29ybGQuY29tL3U%2faWQ9NjQ0Mzk0NTY0Ljc1NDJmMTg5YTg4ZmNhODVlYjE3ZGRjNjA5NmYwNzZjJm49VCZsPWNvbXB1dGVyd29ybGRfc2VjdXJpdHkmbz02MDg2MjY5&x=78c7f150

If the above URL is not enabled as a link, please copy it in to your
browser window to access our Subscription Page.

Did you know Computerworld has 46 other e-mail newsletters that may be
of use to you? go to the following URL to find out more…
http://cwflyris.computerworld.com/t/6086269/644394564/72511/0/

Copyright 2010
Computerworld Inc.
492 Old Connecticut Path
Framingham MA 01701

Popularity: unranked [?]

Related posts

• ​Documents List API: Upload any file type and more! (0)
• [DIY Tips & SEM Video] Has Google’s PageRank Update Left You Confused? (0)
• Zeitgeist 2009: the collective consciousness (0)
• Yummy! Free Food and Cakes Icon Set (0)
• yuku.com failures — never mind (0)