Zero Day

This year’s Verizon Data Breach Investigations Report (DBIR) challenge is well and truly underway. I see where the (public) contestants are stumped so, here’s a clue to nudge them along.

Apple has shipped QuickTime 7.6.7 to fix a critical vulnerability that exposes Windows users to malicious hacker attacks.

The NTLMv1-2 challenge-response protocol provides absolutely no protection against credentials forwarding/relay or reflection attacks. This means that an active attacker (such as a man-the-middle) can redirect the login of the legitimate user to authenticate his own session.

The most serious of the three flaw could allow hackers to execute harmful code and take complete control of a target compute

The iOS 3.2.2 update corrects two flaws — a stack buffer overflow in FreeType’s handling of CFF opcodes, and a privilege escalation issue in IOSurface — that combined to expose Apple’s devices to takeover if a user simply surfs to a rigged Web site.

So, according to a little birdie tweeting in the night, the 2010 Verizon Data Breach Investigations Report (DBIR) contains another encryption challenge that leads to actual cash prizes.

The flaws affect Adobe Flash Player 10.1.53.64 and earlier versions for Windows, Macintosh, Linux and Solaris.

It’s a very busy Patch Tuesday for Windows users: 14 bulletins covering 34 serious security vulnerabilities in Internet Explorer, Microsoft Windows, Microsoft Office, Silverlight, Microsoft XML Core Services and Server Message Block

Citing the potential for “political IT attacks”, Germany’s Interior Minister is advising ministers to dump the BlackBerry, and replace it with BSI-certified SiMKo 2 smart phones.

Multiple vendors are reporting on a currently ongoing scareware and client-side exploits serving, spam campaign, impersonating Best Buy, Chase, Macy’s, Target.com and Evite.

Barring last minute hiccups, Apple will ship a critical iOS patch this week to fix the vulnerabilities exploited by the JailbreakMe.com site.

Microsoft’s Windows 7 operating system is vulnerable to a new zero-day vulnerability that exposes users to blue-screen crashes or code execution attacks.