Latest news
blocked. This method can also circumvent attachment checking in some email content filtering solutions.
The enclosed attachment looks like a simple JPG file but is actually a CLSID file that contains code. If you open this file, it creates a text file on your desktop, gfi-test.txt, that has read vital information about your system.
* If you cannot run this file
If you are unable to run the file, this means you have effective client-based email security. Note that, for your network to be secure, every machine on your network must have such client-based protection installed,
including your servers. Server level security is
recommended as additional protection.
3) VBS attachment vulnerability test E-Mail
(As I passed this one also, for now I have 100% efficiency)
Your mail server has just accepted and sent you an email containing a .vbs attachment! This means it is relying on desktop level security to protect you. You should now try to run the attachment.
* If you can run this file
If you can run this file, then you are vulnerable to attacks by email viruses like the LoveLetter, and AnnaKournikova. VBS files contain commands which, when executed, can do virtually anything on the recipient's PC. This includes running malicious code such as viruses and worms. As you can see, the enclosed attachment has read vital information about your system, showing you that, in fact, it could have done anything it wanted on your system had it contained harmful code.
* If you cannot run this file
If you are unable to run the file, this means you have effective client-based email security. Note that, for your network to be secure, every machine on your network must have such client-based protection installed, including your servers. Server level security is recommended as additional protection.
4) ActiveX vulnerability test E-Mail
(Ooops, it's like 3 out of 4 as I flunked this one. Exploit created txt file on my Desktop and automatically started it)
The ActiveX component exploit test has just been performed on your computer. Opening this mail automatically activates the test.
* If you can see gfi-test.txt
If the text file gfi-test.txt appears on your desktop, then you are vulnerable to this exploit.
ActiveX within HTML content can circumvent security measures in certain circumstances. Vulnerabilities within Internet Explorer and Outlook allow such content to be executed. The text file demonstrates that it has read vital information about your system.
* If you cannot see gfi-test.txt
Spotlight
The CSO perspective on healthcare security and compliance
Posted on 20 May 2013. | Randall Gamby is the CSO of the Medicaid Information Service Center of New York. In this interview he discusses healthcare security and compliance challenges and offers a variety of tips.
Cyber espionage campaign uses professionally-made malware
Posted on 20 May 2013. | A massive cyber espionage campaign has been hitting government ministries, IT companies, academic research institutions, and more.
Ransomware adds password stealing to its arsenal
Posted on 17 May 2013. | Microsoft researchers are warning about a new variant of the well-known Reveton ransomware doing rounds.
IT security jobs: What's in demand and how to meet it
Posted on 15 May 2013. | Let's say you want a career in information security, where do you start? What credentials do you need? What are employers looking for? Read on to find some answers.
Hacking charge stations for electric cars
Posted on 15 May 2013. | Ofer Shezaf talks about what charge stations really are, why they have to be ‘smart’ and the potential risks created to the grid, to the car and most importantly to its owner’s privacy and safety.
By subscribing to our early morning news update, you will receive a daily digest of the latest security news published on Help Net Security.
With over 500 issues so far, reading our newsletter every Monday morning will keep you up-to-date with security risks out there.
 |
