McAfee vows to fix ISP-disabling false positive McAfee Inc. said this week it will update AV signatures to correct a false positive that misidentifies ISPWizard, a popular Internet connection management program, as a Trojan horse. The problem surfaced with the Sept. 1 update and impacts older versions of ISPWizard, according to The Register, which first published the problem. Those who've had the program stripped from their systems can call their ISPs and disable the McAfee AV program while reinstalling ISPWizard.
F-Secure fixes Internet Gatekeeper vulnerability
Remote exploitation of an input validation error in F-Secure's Internet Gatekeeper could allow an attacker to trigger a denial of service against the software's Content Scanner Server. The server provides automated antivirus scanning, content filtering and access control for e-mail and Web traffic. According to Reston, Va.-based iDefense, which reported the flaw, malformed packets received by the Content Scanner on port 18,971 can trigger a denial of service during the parsing of the packet, causing the application to fail with an access violation error. Internet Gatekeeper Server 6.32 and earlier and F-Secure Anti-Virus for Microsoft Exchange 6.21/6.01 and earlier are vulnerable. F-Secure recommends configuring the product so that the F-Secure Content Scanner Server accepts connections only from known IP addresses. A hotfix is also available.
Spyware, file swapping targeted by lawmakers
The House Judiciary Committee this week approved two bills: one making it a crime to surreptitiously place "spyware" on people's computers and another targeting file swapping. According to the Washingtonpost.com, "People who illegally share copyrighted music and movies over the Internet could be jailed for up to five years under a bill approved by a powerful congressional panel today." If the law is passed, file-swappers could face three years in prison for illegal file sharing or five years if they do it for private financial gain. Second offenders could be jailed for twice that long.
German youth indicted for Sasser worm
German officials this week indicted Sven Jaschan, 18, for computer sabotage after the teenager admitted to authorities he created the Sasser worm, according to the Associated Press. Jaschan was arrested last May after reward-seeking informants tipped Microsoft to Jaschan, who was arrested while sitting in front of a computer in his mother's home in Lower Saxony. The AP says Jaschan told police Sasser was a modification of the Netsky worm, which he also created to combat the Mydoom and Bagle worms. The BBC reports that if that claim proves true, antivirus firm Sophos believes Jaschan then may have been responsible for 70% of virus activity in the first half of 2004. Police continue to look into whether Jaschan, who also was charged with data manipulation and disruption of public systems, had accomplices.
Avanton releases ReadyARM
Avanton Inc., a new security company in Manhattan Beach, Calif., released its first product, ReadyARM, a network security appliance designed to provide small and mid-sized businesses (SMBs) with a full range of information security functions. According to the company, the appliance is designed to help enterprises comply with security provisions of GLBA, HIPAA, SOX and other government regulations. With a suggested price of $9,995, ReadyARM integrates the security aspects of intrusion detection alerting and reporting, vulnerability scanning and reporting and correlation.
For more information, click here.