en-erteam.nprotect.com
INCA Internet's Emergency Response Team's official blog.: 2011.06
http://en-erteam.nprotect.com/2011_06_01_archive.html
Warning] A malicious file masqueraded as a Melon player is spreading. Recently, malicious file spreading technique using Flash player’s vulnerability trying to download or execute additional malicious file is prevalent. In case of being infected with this malicious file, various malicious behaviors can be performed in user’s computer unconsciously. Therefore, user needs special attention about prevalent malicious file to avoid it. 2 Spreading path and symptoms of infection. Http:/ /share/a1.html. Var zm...
en-erteam.nprotect.com
INCA Internet's Emergency Response Team's official blog.: 2011.12
http://en-erteam.nprotect.com/2011_12_01_archive.html
Warning] Santa Claus is coming to down with scams.(Update #1). As a result of intensive monitoring during Christmas season, INCA Internet's Emergency Response Team detected various scams around the year. Malicious hackers are trying to spread malicious files with using Christmas season and the end of the year. Users need to be careful on using about "Christmas, video URL, season's greetng, SNS message, or shorten URL", especially on e-mail with attachment or URL. 2 Malicious files related Christmas.
yukun.info
Link | Yukun's Blog
http://www.yukun.info/link
The Linux Kernel Archives. DataBase Security Consortium Top. SANS – Information Security Resources. Internet Assigned Numbers Authority. 技術者でなくても分かる 電子証明書とPKI入門 基本情報 日本ベリサイン. Zeus (Trojan horse) – Wikipedia, the free encyclopedia. セキュリティ用語事典 [RA Registration Authority ]. 情報処理推進機構 プレス発表 記事 組織内部者の不正行為によるインシデント調査 報告書を公開. SSS Lab SAKA Security and Safety Lab. DigiNotar – Wikipedia, the free encyclopedia. まったく痕跡を残さず匿名でコンピューターを使える Tails : ライフハッカー 日本版. Oxidit – Cain and Abel. JVN iPedia – 脆弱性対策情報データベース. に apach...
en-erteam.nprotect.com
INCA Internet's Emergency Response Team's official blog.: 2012.05
http://en-erteam.nprotect.com/2012_05_01_archive.html
Microsoft Security Bulletin Summary for May 2012. Microsoft(MS)'s regular security updates were released for April 2012. MS12-029] Vulnerability in Microsoft Word Could Allow Remote Code Execution (2680352). Vulnerability: RTF Mismatch Vulnerability- CVE-2012-0183. Microsoft Office 2003 SP3. Microsoft Office 2007 SP2. Microsoft Office 2007 SP 3. Microsoft Office 2008 for Mac. Microsoft Office 2008 for Mac 2011. Microsoft Office Compatibility Pack SP2. Microsoft Office Compatibility Pack SP3. Excel MergeC...
en-erteam.nprotect.com
INCA Internet's Emergency Response Team's official blog.: 2012.01
http://en-erteam.nprotect.com/2012_01_01_archive.html
Warning] Malicious files using MIDI exploit. We found malicious file which uses MS12-004(CVE-2012-0003), one of MS security update. This security vulnerability is known that Shane Garrett of IBM Security System X-orce Research reported MS on Jan 10 2012. It uses remote code execution vulnerability located on winmm.dll, MS Windows multimedia library for media player. To maintain MS latest security update can protect against this exploit. Microsoft Windows Media Could Allow Remote Code Execution. Windows S...
en-erteam.nprotect.com
INCA Internet's Emergency Response Team's official blog.: 2012.07
http://en-erteam.nprotect.com/2012_07_01_archive.html
Warning] Detected APT attack for Korean famous web portal site (#Update 02). INCA Internet response team detected APT type e-mail which is disguised as resume on Korean famous web portal site. This e-mail contains attachment "My resume.doc". Exploit and tries to install another malicious file secretly. If user is exposed by security vulnerability, attacker can collect user PC and user's company's information. 2 Malicious file attacking procedure and technique. Detail content is as following. I participat...
en-erteam.nprotect.com
INCA Internet's Emergency Response Team's official blog.: 2013.01
http://en-erteam.nprotect.com/2013_01_01_archive.html
Microsoft Security Bulletin Summary for October 2012. Microsoft(MS)'s regular security updates were released for October 2012. Vulnerabilities in Microsoft Word Could Allow Remote Code Execution (2742319). Vulnerability: Word PAPX Section Corruption Vulnerability - CVE-2012-0182. RTF File listid Use-After-Free Vulnerability - CVE-2012-2528. Microsoft Office 2003 SP3. Microsoft Office 2007 SP2. Microsoft Office 2007 SP3. Microsoft Office 2010 SP1 (32bit). Microsoft Office 2010 SP1 (64bit). This security u...
en-erteam.nprotect.com
INCA Internet's Emergency Response Team's official blog.: 2012.08
http://en-erteam.nprotect.com/2012_08_01_archive.html
Information] 2012 London Olympic schedule, or a malicious file. London 2012 Olympic Games will be held, and the world's attention has been focused on the Olympics. Athletes are playing games and malicious attackers are spreading malicious files disguised as Olympic schedule. This malicious file uses PDF font exploit. And it can print Olympic schedule. Therefore, general users can't recognize whether they were infected or not. 2 Spreading path and symptom of infection. It uses PDF font exploit. And, these...
en-erteam.nprotect.com
INCA Internet's Emergency Response Team's official blog.: 2011.08
http://en-erteam.nprotect.com/2011_08_01_archive.html
Types of malicious files being spread as an attachment of E-Mail. Recently, malicious files masqueraded as a normal attachment of e-mail are being reported. General users need to be careful from those malicious e-mails. Malicious file can command victim's computer or can be become a root PC for spreading another malicious files. Spreading malicious file through e-mail is really traditional; however, malicious file distributers are still using this technique for spreading malicious files. Following figure...