http://www.purdue.edu/securepurdue/news/securePurdueRSS_6.xmlCollaborating to create the university of the future through IT. Service quality, powerful partnerships, and a great place to work.Wed, 25 Aug 2010 09:28:24 -0400Cascade Serveritap@purdue.eduhttp://www.purdue.edu/securepurdue/news/2012/critical-java-zero-day-exploit.cfmA new vulnerability has been discovered that affects all versions of Java 7 (1.7) and active attacks have been confirmed.Tue, 28 Aug 2012 01:00:00 -0400http://www.purdue.edu/securepurdue/6eea1232ac1e8c3500cade5832acd722http://www.purdue.edu/securepurdue/news/2012/osx-flashback-trojan---detecting-and-removing.cfmDetecting and removing the Flashback Trojan from your MacTue, 10 Apr 2012 16:00:00 -0400http://www.purdue.edu/securepurdue/9d62eafdac1e8c36019edfc9fd6e4aabhttp://www.purdue.edu/securepurdue/news/2012/phishing-email---allegedly-from-purdue-help-desk-blocked.cfmPhishing attempt allegedly from Purdue help-desk blocked.Wed, 28 Mar 2012 01:00:00 -0400http://www.purdue.edu/securepurdue/5abb06f6ac1e8c3500d38dbcc6c3909bhttp://www.purdue.edu/securepurdue/news/2011/Update 11-9-2011 microsoft-windows-win32k.sys-truetype-font-parsing-vulnerability.cfmA TrueType Font Parsing vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.Fri, 04 Nov 2011 03:30:00 -0400http://www.purdue.edu/securepurdue/70221f49ac1e8c3500ef264533adf892http://www.purdue.edu/securepurdue/news/2011/multiple-vulnerabilities-in-adobe-coldfusion.cfmMultiple vulnerabilities have been reported in Adobe ColdFusion, which can be exploited by malicious people to conduct cross-site request forgery attacks, cause a DoS (Denial of Service), and compromise a vulnerable system.Wed, 15 Jun 2011 15:00:00 -0400http://www.purdue.edu/securepurdue/9a2356cd80d2073500033174ca9c7778http://www.purdue.edu/securepurdue/news/2011/bug-in-blackberry-causes-vulnerability.cfmBug in BlackBerry Browser exposes vulnerability.Thu, 17 Mar 2011 01:00:00 -0400http://www.purdue.edu/securepurdue/c4f23a1280d2073500e34f1d72fc7fcfhttp://www.purdue.edu/securepurdue/news/2011/vulnerability-in-mhtml-could-allow-information-disclosure.cfmThere is a reported vulnerability in Windows that could allow for information disclosure via malicious scripts in MHTML pages.Mon, 31 Jan 2011 15:00:00 -0500http://www.purdue.edu/securepurdue/ec90da9a80d207350136b688306799aehttp://www.purdue.edu/securepurdue/news/2010/firesheep-will-steal-your-passwords.cfmA new firefox add-on will allow novice computer users to steal your Facebook, Twitter and other login information when using open Wi-Fi spots.Wed, 27 Oct 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/ee3a0db280d2073601ea00240b9d7744http://www.purdue.edu/securepurdue/news/2010/mplayer-flic-processing-multiple-array-indexing-vulnerabilities.cfmMPlayer FLIC Processing Multiple Array Indexing VulnerabilitiesFri, 01 Oct 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/68e1606280d2073501b602b9db3fd8f3http://www.purdue.edu/securepurdue/news/2010/security-news-and-info-for-9032010.cfmSecurity News and Info for 9/03/2010Fri, 03 Sep 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/ed5193e280d207360146817defc20e9ahttp://www.purdue.edu/securepurdue/news/2010/security-news-for-9022010.cfmSecurity News and InfoFri, 03 Sep 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/d7a2aa9c80d2073501b602b99a4d8bd0http://www.purdue.edu/securepurdue/news/2010/security-issues-for-9012010.cfmLatest Security Issuses for a wired worldThu, 02 Sep 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/d3ea136080d2073501b602b921684868http://www.purdue.edu/securepurdue/news/2010/Toy-Story-3-Facebook-Scam.cfmWhen clicking on a message that appears to come from one of your friends, if it insists that you click "Like" before viewing the page, it will send a rude hidden message to all of your facebook friends.Tue, 03 Aug 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b74d6f80d207350028420673006688http://www.purdue.edu/securepurdue/news/2010/KOOBFACE-bot-via-fake-YouTube-pages.cfmFake YouTube pages are being used by the Koobface Bot to insert JavaScript Code.Tue, 03 Aug 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b6a67480d20735002842066c5dbc6fhttp://www.purdue.edu/securepurdue/news/2010/iPhone-JailBreak-Trojan.cfmAn email campaign is targeting iPhone users who might want to jailbreak their phones has been reported by BitDefender.Tue, 03 Aug 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b60c3e80d2073500284206a511c66ehttp://www.purdue.edu/securepurdue/news/2010/Apple-iOS-Security-Bypass-and-PDF-Processing-Vulnerability.cfmTwo vulnerabilities have been reported in Apple iOS, version 4.0.1 which may be exploited to compromise a user's system.Tue, 03 Aug 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b4ad6d80d207350028420616fd7d89http://www.purdue.edu/securepurdue/news/2010/Apple-Mac-OS-X-Vulnerability.cfmA vulnerability in Apple Mac OS X due to the "webdav_mount()" function of the WebDAV kernel extension can be exploited by malicious, local users to cause a DoS (Denial of Service). Tue, 03 Aug 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b407e680d2073500284206be7aa0achttp://www.purdue.edu/securepurdue/news/2010/Quicktime-Player-Allows-Movies-To-Trigger-Malware-Downloads.cfmTrend Micro is reporting that Quicktime Player can be used by maliscious people to deploy malware to users' systems using specially crafted movie files. When a user plays one of the files, their system is redirected to download a malware payload.Mon, 02 Aug 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b34aeb80d20735002842064ae4a151http://www.purdue.edu/securepurdue/news/2010/Wireshark-Vulnerabilities.cfmThere were multiple vulnerabilities reported in Wireshark with an available update.Fri, 30 Jul 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b5502080d2073500284206c967ca43http://www.purdue.edu/securepurdue/news/2010/Cisco-Multiple-Products-TLS-Session-Renegotiation-Plaintext-Injection.cfmCisco has acknowledged a vulnerability in multiple Cisco productsThu, 29 Jul 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b2576c80d20735002842064cf3eeebhttp://www.purdue.edu/securepurdue/news/2010/APPLE-SA-2010-07-28-1-Safari-5.0.1-and-Safari-4.1.1.cfmApple released this advisory addressing vulnerabilities (15 unique CVEs) in the Safari browser for Windows and Mac platforms.Thu, 29 Jul 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b1924380d20735002842062fc91f92http://www.purdue.edu/securepurdue/news/2010/Security-Issues-7-27-2010.cfmSecurity Issues 7-27-2010Tue, 27 Jul 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b0f8e880d20735002842063ee7022ahttp://www.purdue.edu/securepurdue/news/2010/Plug-in-Security-Checker.cfmEver wonder if all your browser plug-ins are up-to-date and secure? Well Windows users now can check IE, Firefox and Chrome simply by going to a website and running a scan.Tue, 20 Jul 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52af1fc080d20735002842065d22e23ehttp://www.purdue.edu/securepurdue/news/2010/Windows-Shortcut-Parsing-Vulnerability.cfmA vulnerability in Windows versions including XP, Vista, 7, Server 2003 and Server 2008 which can be utilized by maliscious parties to compromise a user's system using specially crafted shortcuts (.lnk and .pif files).Mon, 19 Jul 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/52b03ee680d207350028420628bdd675http://www.purdue.edu/securepurdue/news/2010/Security-Issues-7-2-2010.cfmSecurity Issues 7-2-2010Fri, 02 Jul 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/a92ab97380d2073500284206a08725d0http://www.purdue.edu/securepurdue/news/2010/Security-Issues-71.cfmOpera browser users will want to upgrade to the latest patch level 10.60. Thu, 01 Jul 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/a929ba3080d2073500284206b9fcfaa6http://www.purdue.edu/securepurdue/news/2010/adobe-updates-and-pci-expectancies.cfmAdobe has released update 9.3.3 for Acrobat and Reader. Users are suggested to upgrade as soon as possible to patch vulnerabilities that could allow for denial-of-service.Wed, 30 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/8f618dba80d2073500284206ebcf6addhttp://www.purdue.edu/securepurdue/news/2010/security_issues_6_29_2010.cfmSecurity Issues 6-29-2010Tue, 29 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/8f6cee9b80d20735002842066231f71fhttp://www.purdue.edu/securepurdue/news/2010/Mozilla-Thunderbird-Multiple-Vulnerabilities.cfmPer Secunia, some vulnerabilities have been reported in Mozilla Thunderbird, which can be exploited by malicious people to compromise a user's system.Mon, 28 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/8f708f3880d207350028420696702ac0http://www.purdue.edu/securepurdue/news/2010/apple_mac_os_x_security_update_fixes_multiple_vulnerabilities.cfmPer Secunia, Apple has issued security updates for Mac OS X, which fixes multiple vulnerabilities.Mon, 28 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/8f6e9fe980d2073500284206caf1dce6http://www.purdue.edu/securepurdue/news/2010/Security-Issues-616.cfmMicrosoft Windows XP & 2003 Help and Support Center has been found to be vulnerable to a recent attack. Users who visit a compromised site can be affected by malicious malware being downloaded to the hosts machine.Wed, 16 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/a92b711f80d20735002842068c0b0acahttp://www.purdue.edu/securepurdue/news/2010/End-of-Windows-2000--XP-SP-2-Support.cfmThe end is finally here for support on Windows 2000 & XP SP 2. Microsoft plans on expire support on July 13th.Tue, 15 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/a92c27c680d2073500284206b76040cehttp://www.purdue.edu/securepurdue/news/2010/Adobe-AIR-Multiple-Vulnerabilities.cfmVulnerabilities have been reported in Adobe AIR. Malicious individuals can exploit these vulnerabilities to conduct cross-site scripting attacks or compromise a user's system. The vulnerabilities are reported in Adobe AIR versions 1.5.3.9130 and prior.Fri, 11 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/a92d213580d2073500284206de9d9267http://www.purdue.edu/securepurdue/news/2010/Description-of-the-Microsoft-Office-2008-for-Mac-12.2.5-Update.cfmSecurity Updates have been released for OpenOffice and MS Office 2008 for Mac. Fri, 11 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/a92dd0c480d2073500284206e60f1905http://www.purdue.edu/securepurdue/news/2010/Microsoft-Cumulative-Security-Update-for-Internet-Explorer.cfmWhile Microsoft recently patched the Vulnerability in Internet Explore which could allow for information disclosure, they have expressed concern now that the patch is public that malicious people could be reversed engineered the flaw more easily -- and that additional public exploits may begin. Therefore, the most recent round of Windows updates has become very important to circumvent this and should be applied as soon as possible. Thu, 10 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/a92ffa8980d2073500284206088b7db9http://www.purdue.edu/securepurdue/news/2010/Microsoft-Windows-Help-and-Support-Center-URL-Processing-Vulnerability.cfmA vulnerability has been discovered in Microsoft Windows. From Secunia as sited below: "The vulnerability is caused due to an error when processing escaped URLs through Microsoft Windows Help and Support Center (helpctr.exe). This can be exploited to bypass restrictions normally imposed by the "-FromHCP" command-line argument and pass arbitrary parameters to local help documents.Thu, 10 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/a92eacea80d2073500284206d674c6bfhttp://www.purdue.edu/securepurdue/news/2010/Apple-Safari-Multiple-Vulnerabilities.cfmPer Secunia: "Some vulnerabilities have been reported in Apple Safari, which can be exploited by malicious people to bypass certain security restrictions, disclose sensitive information, conduct spoofing or cross-site scripting attacks, and potentially compromise a user's system."Wed, 09 Jun 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/a93093c480d2073500284206bb7f66adhttp://www.purdue.edu/securepurdue/news/2010/FYI-Browser-Plugin-Check-Site-Neat-.cfmBrowser Plugin Check Site (works with Firefox 3.6+, Opera 10.5,Safari 4, Chrome 4, or IE 8)Wed, 19 May 2010 01:00:00 -0400http://www.purdue.edu/securepurdue/a931aede80d2073500284206aeb4d3b9http://www.purdue.edu/securepurdue/news/2009/Windows-SMB-Remote-Exploit.cfmVulnerability has been discovered in Microsoft Windows 7 & Sever 2008. This is a 0-day vulnerability that can be exploited from remote by a malicious user.Fri, 13 Nov 2009 01:00:00 -0500http://www.purdue.edu/securepurdue/a933034180d20735002842065758fd57http://www.purdue.edu/securepurdue/news/2009/Goodbye-to-Thawte,-Huge-Patch-Tuesday,-and-More-Adobe-Vulnerabilities.cfmThawte email services will be discontinued as of November 16th, 2009. Current customers will receive a free year of VeriSign service. Microsoft has posted that this months patch Tuesday will be its largest ever. Adobe has posted vulnerabilities found in Reader and Acrobat.Fri, 09 Oct 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a934863d80d20735002842069453af56http://www.purdue.edu/securepurdue/news/2009/Hotmail-Passwords-Posted,-New-OpenSSH-Version-Released--Samba-Vulnerabilities-Fixed.cfmHotmail, Live, and MSN users are advised to change their passwords after it was found that usernames and passwords for 10,000 users were posted online. Tue, 06 Oct 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a935d5a680d20735002842065e7bd39ehttp://www.purdue.edu/securepurdue/news/2009/Microsoft-IIS-FTP-Vulnerability.cfmVulnerability has been found in Microsoft Internet Information Services FTP server that can allow a remote attacker to potentially execute arbitrary code. IIS FTP servers that allow anonymous users write access can potentially be affected due to a boundary error when the server processes NLST commands. Tue, 01 Sep 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a93d125a80d207350028420665ae42aehttp://www.purdue.edu/securepurdue/news/2009/Linux-2.4-and-2.6-kernel-vulnerability.cfmA recently discovered vulnerability in the Linux 2.4 and 2.6 kernels can allow an attacker with local user privileges to gain root access using a widely distributed exploit for a NULL pointer reference caused by incorrect proto_ops initializations. As of August 17th, the issue is still unpatched and the vulnerability affects basically all distributions of Linux running on the 2.4 or 2.6 kernels.Mon, 17 Aug 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a93de25a80d207350028420679408afahttp://www.purdue.edu/securepurdue/news/2009/Mac-and-Windows-Updates.cfmThis week saw a surge of new security updates for both Mac and Windows computers, partially due to Patch Tuesday.Fri, 14 Aug 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a93edd9880d2073500284206b8afa053http://www.purdue.edu/securepurdue/news/2009/Vulnerabilities-in-Mozilla-Products.cfmMozilla Firefox, Thunderbird and SeaMonkey have been found to be vulnerable to an issue in which domain name certificates are dealt with between client browsers and CA servers. The issue is currently unpatched for all products except for users of Firefox 3.5. It is suggested to not browse untrusted sites or open emails from untrusted sources.Wed, 05 Aug 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a93fabc280d2073500284206988b1138http://www.purdue.edu/securepurdue/news/2009/Squid-3.x-Multiple-Denial-of-Service-Vulnerabilities.cfmMultiple vulnerabilities exist in Squid 3.x that can allow a malicious remote user to cause a denial of service (DoS) attack.Wed, 29 Jul 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a94051b880d2073500284206168b9b9dhttp://www.purdue.edu/securepurdue/news/2009/July-14-Unpatched-Firefox-Vulnerability.cfmA new vulnerability has been discovered in the latest version of Mozilla Firefox that can cause memory corruption and may be exploited by malicious people to compromise a user's system.Tue, 14 Jul 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a940ff7880d20735002842064415fffahttp://www.purdue.edu/securepurdue/news/2009/Vulnerability-updates-MS-Office,-Tomcat,-and-Internet-Explorer.cfmVulnerability updates: MS Office, Tomcat, and Internet ExplorerMon, 13 Jul 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a950da0a80d2073500284206a5c6e894http://www.purdue.edu/securepurdue/news/2009/Shockwave-Vulnerability-and-Tbird-update.cfmA new vulnerability has been discovered in Adobe Shockwave player which could allow for arbitrary code execution on a machine which attempts to play a specially crafted malicious Shockwave player 10 content. Also, a new round of Thunderbird updates have been released addressing a number of security issues. Wed, 24 Jun 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a951b86880d207350028420673212d3dhttp://www.purdue.edu/securepurdue/news/2009/Adobe-Updates.cfmCritical vulnerabilities are found in Adobe Reader/Acrobat 9.1.1 and earlier.Thu, 11 Jun 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a95276a480d2073500284206924dffechttp://www.purdue.edu/securepurdue/news/2009/IIS-6.0,-ntpd,-and-new-netbooks-coming-preloaded-with-malware.cfmNew vulnerabilities have been reported for IIS 6.0 users who have WebDAV enabled. The vulnerability allows escalation of privileges if a specially crafted HTTP GET request is made to the vulnerable server. Thu, 21 May 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a953496c80d2073500284206601b1a72http://www.purdue.edu/securepurdue/news/2009/Firefox,-Thunderbird,-and-Seamonkey-Vulns.cfmNew as of today (April 22nd, 09) there are a fresh batch of vulnerabilities that have been discovered in Mozilla products Firefox, Thunderbird, and Seamonkey.Wed, 22 Apr 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a954142180d20735002842067c41fc4ahttp://www.purdue.edu/securepurdue/news/2009/MS-and-Oracle-Patches.cfmOn Tuesday, Microsoft and Oracle released critical patches that affect multiple products.Thu, 16 Apr 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a954ef8580d2073500284206b64a028chttp://www.purdue.edu/securepurdue/news/2009/SAPJavaVMware.cfmCritical updates for SAP, Java and VMware are now available.Tue, 14 Apr 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a955b50d80d2073500284206d14c5b4dhttp://www.purdue.edu/securepurdue/news/2009/Highly-Critical-Vulnerability-in-MS-Powerpoint.cfmA newly released vulnerability in MS PowerPoint versions 2000 through 2004 for Mac and PC could allow a maliciously crafted PowerPoint file to compromise a user's system and run arbitrary code with permissions of the user.Fri, 03 Apr 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a9566ca480d2073500284206fddf0cfehttp://www.purdue.edu/securepurdue/news/2009/Import-notice-for-Mac-users-connected-to-Active-Directory.cfmThe security department has recently seen some cases where Active Directory accounts have been locked out due to excessive failed login attempts when a Mac that is synced to Active Directory is also listening for inbound SSH connections.Mon, 30 Mar 2009 01:00:00 -0400http://www.purdue.edu/securepurdue/a9572a0980d2073500284206d6c1b824http://www.purdue.edu/securepurdue/news/2009/Critical-Adobe-ReaderAcrobat-Vulnerability.cfmUnpatched Vulnerability in Adobe Reader and Acrobat may allow attacker to take control of users system via specially crafted document. Affected versions include Adobe Reader/Acrobat 9 and earlier.Tue, 24 Feb 2009 01:00:00 -0500http://www.purdue.edu/securepurdue/a957db1280d2073500284206534264b1http://www.purdue.edu/securepurdue/news/2008/FirefoxThunderbirdIE-7-issues.cfmAn out of band patch is being released by Microsoft today for the infamous IE 7 0-day vulnerability discovered last week. Wed, 17 Dec 2008 01:00:00 -0500http://www.purdue.edu/securepurdue/a958c30e80d207350028420695d7c6a0http://www.purdue.edu/securepurdue/news/2008/Critical-MS-Word-and-Excel-Patches-released-Tuesday.cfmBoth MS Word and Excel had some major vulnerabilities that were patched in the most recent patch release from Microsoft. Versions affected go all the way back to MS Office 2000.Wed, 10 Dec 2008 01:00:00 -0500http://www.purdue.edu/securepurdue/a95a266580d20735002842069210818bhttp://www.purdue.edu/securepurdue/news/2008/Fraudulent-CNN-emails-contain-links-to-Trojan.cfmMalicious emails purporting to contain personalized news links from CNN are being reported by campus users as well as across the Internet. These unsolicited emails contain links to supposed videos of recent or false news stories. Additionally, the emails use graphics from legitimate CNN pages to further make the messages appear genuine. When clicked, the links take the user to a fraudulent copy of the CNN video player site which is hosted on a malicious site. Instead of playing a video, the site prompts the user to download a Flash player update. This executable is a Trojan and contains code designed to compromise a user's computer. Fri, 08 Aug 2008 01:00:00 -0400http://www.purdue.edu/securepurdue/a95b683280d2073500284206ae60adb6http://www.purdue.edu/securepurdue/news/2008/Java-updates-galore.cfmJava updates galoreWed, 09 Jul 2008 01:00:00 -0400http://www.purdue.edu/securepurdue/a95c82a280d207350028420675cbf8a9http://www.purdue.edu/securepurdue/news/2008/STEAM-CIRT-Summary--Trends-for-April-2008.cfmMonthly Summary and TrendsThu, 15 May 2008 01:00:00 -0400http://www.purdue.edu/securepurdue/a95d681d80d207350028420655675bd4http://www.purdue.edu/securepurdue/news/2008/STEAM-CIRT-Summary--Trends-for-March-2008.cfmMonthly Summary and TrendsWed, 30 Apr 2008 01:00:00 -0400http://www.purdue.edu/securepurdue/a95e407680d2073500284206bad3a92dhttp://www.purdue.edu/securepurdue/news/2008/New-Phishing-Exploit-Doesnt-Ask-for-Credentials.cfmOver the past few days, there has been a new type of phishing e-mail spotted. This new phishing method no longer asks for credentials and other personal information. The new tactic is to pose as a company and ask for the end user to "renew" their digital certificate. A link is presented in the e-mail, which when clicked on will download a keylogging Trojan onto the computer. The Trojan is then used to steal information and/or credentials from the victim's computer. Currently the most commonly used companies to pose as include Comerica Bank and Colonial Bank.Tue, 29 Apr 2008 01:00:00 -0400http://www.purdue.edu/securepurdue/a95f9c9380d2073500284206eca09302http://www.purdue.edu/securepurdue/news/2008/Archive-Format-Vulnerabilities.cfmPrograms that handle archive formats ACE, ARJ, BZ2, CAB, GZ, LHA, RAR, TAR, ZIP and ZOO could potentially be affected by newly discovered vulnerabilities. Various types of programs that could be affected include: anti-virus, firewalls (software-based), encryption products (VPN, PGP), backup software, office programs, operating systems and libraries.Thu, 20 Mar 2008 01:00:00 -0400http://www.purdue.edu/securepurdue/a961386180d2073500284206dea2fca3http://www.purdue.edu/securepurdue/news/2008/New-Buffer-Overflow-Vulnerability-in-CUPS-CGI.cfmCUPS (Common UNIX Printing System), which provides a standard printer interface for various Unix based operating systems, has a new vulnerability. An unspecified error within the CUPS CGI backend, if exploited by an attacker, could cause a heap-based buffer overflow by sending a specially crafted IPP request.Thu, 20 Mar 2008 01:00:00 -0400http://www.purdue.edu/securepurdue/a960689f80d2073500284206f5dd6c2fhttp://www.purdue.edu/securepurdue/news/2008/STEAM-CIRT-Summary--Trends-for-February-2008.cfmMonthly Summary and Trends February 2008Wed, 12 Mar 2008 01:00:00 -0400http://www.purdue.edu/securepurdue/a9637b8b80d2073500284206c339b6b9http://www.purdue.edu/securepurdue/news/2008/STEAM-CIRT-Summary--Trends-for-January-2008.cfmMonthly Summary and TrendsWed, 12 Mar 2008 01:00:00 -0400http://www.purdue.edu/securepurdue/a962d0e480d20735002842060ce25bcahttp://www.purdue.edu/securepurdue/news/2008/STEAM-CIRT-Summary--Trends-for-December-2007.cfmMonthly Summary and TrendsWed, 12 Mar 2008 01:00:00 -0400http://www.purdue.edu/securepurdue/a96217a280d207350028420604154ba3http://www.purdue.edu/securepurdue/news/2008/Symantec-Backup-Exec-calendar-control-vulnerabilities-discovered.cfm"Secunia Research has discovered some vulnerabilities in Symantec Backup Exec for Windows Servers, which can be exploited by malicious people to overwrite arbitrary files or compromise a vulnerable system."Fri, 29 Feb 2008 01:00:00 -0500http://www.purdue.edu/securepurdue/a9653bef80d2073500284206083dd7b5http://www.purdue.edu/securepurdue/news/2008/New-unpatched-vulnerability-in-VMware-products-found.cfmA new unpatched vulnerability has been found in several VMware products that would allow a user (or malicious individual) to "break out" of the guest OS/VM and read/write to the host file system.Fri, 29 Feb 2008 01:00:00 -0500http://www.purdue.edu/securepurdue/a96437ae80d20735002842066a3d24achttp://www.purdue.edu/securepurdue/news/2008/Beware-Fraudulent-Microsoft-Security-Updates.cfmPurdue University cautions users to be skeptical of email messages claiming to be from Microsoft and requesting that users download a critical update. These emails appear to be fraudulent and users should NOT follow the links in the email. Users are requested to ignore the email and delete it.Wed, 06 Feb 2008 01:00:00 -0500http://www.purdue.edu/securepurdue/a966111480d207350028420604dbc5d5http://www.purdue.edu/securepurdue/news/2008/Phishing-reminder-and-a-new-UPnP-attack-vector.cfmPhishing reminder and a new UPnP attack vectorWed, 16 Jan 2008 01:00:00 -0500http://www.purdue.edu/securepurdue/a966ee4480d2073500284206a9da586fhttp://www.purdue.edu/securepurdue/news/2008/More-Phishing,-Quicktime,-and-remote-controlled-Trains.cfmYou've probably all seen the notifications that there is a current Phishing attack targeting Purdue accounts. Over the weekend we saw some minor modifications to the message which mostly just includes changes to the address it seemed to be coming from.Mon, 14 Jan 2008 01:00:00 -0500http://www.purdue.edu/securepurdue/a9681e5d80d2073500284206c9c5230fhttp://www.purdue.edu/securepurdue/news/2008/RealPlayer-Unspecified-Buffer-Overflow-Vulnerability.cfmA recently found unpatched flaw in RealPlayer 11 may lead to execution of arbitrary code.Thu, 03 Jan 2008 01:00:00 -0500http://www.purdue.edu/securepurdue/a969fa5780d207350028420650b01aachttp://www.purdue.edu/securepurdue/news/2008/Storm-Worm-Changes-Its-Campaign-In-Time-For-The-Holidays.cfmArbornetworks.com is reporting about active Storm Worm domains that are currently being used with the latest round of Storm Worm emails attempting to take advantage of the holidays.Thu, 03 Jan 2008 01:00:00 -0500http://www.purdue.edu/securepurdue/a968e86f80d20735002842060e1ab053http://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-November-2007.cfmNovember 2007 Summary and TrendsThu, 20 Dec 2007 01:00:00 -0500http://www.purdue.edu/securepurdue/a96c206b80d20735002842064f3eec0bhttp://www.purdue.edu/securepurdue/news/2007/Adobe-Flash-Player-update-fixes-multiple-vulnerabilities.cfmAdobe Flash Player update fixes multiple vulnerabilitiesThu, 20 Dec 2007 01:00:00 -0500http://www.purdue.edu/securepurdue/a96b7b5c80d2073500284206b01b62e0http://www.purdue.edu/securepurdue/news/2007/WordPress-Charset-SQL-Injection-Vulnerability.cfmDetails are emerging about a new vulnerability in WordPress. An unpatched flaw in WordPress may lead to SQL injection.Fri, 14 Dec 2007 01:00:00 -0500http://www.purdue.edu/securepurdue/a96defe580d20735002842067d0f550ahttp://www.purdue.edu/securepurdue/news/2007/Samba-send_mailslot-Buffer-Overflow-Vulnerability.cfmDetails are emerging about a moderately critical vulnerability in Samba. A flaw in Samba may lead to a buffer overflow resulting in execution of arbitrary code.Fri, 14 Dec 2007 01:00:00 -0500http://www.purdue.edu/securepurdue/a96d336680d207350028420618f3f8d9http://www.purdue.edu/securepurdue/news/2007/Apple-Quicktime-RTSP-buffer-overflow-vulnerability.cfmDetails are emerging about a critical exploit vulnerability in Apple's Quicktime product. An unpatched flaw in the RTSP (real-time streaming protocol) may allow remote attackers to compromise a system. Mon, 03 Dec 2007 01:00:00 -0500http://www.purdue.edu/securepurdue/a96eb3d280d207350028420632995aafhttp://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-October-2007.cfmOctober 2007 Summary and TrendsMon, 19 Nov 2007 01:00:00 -0500http://www.purdue.edu/securepurdue/a96fb0d380d20735002842068b334e7ahttp://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-September-2007.cfmSTEAM-CIRT Summary & Trends for September 2007Fri, 26 Oct 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a9706fb080d20735002842066d2b35d2http://www.purdue.edu/securepurdue/news/2007/Multiple-Vulnerabilities-in-Firefox-Prompts-Mozilla-to-Provide-Version-Update.cfmA variety of vulnerabilities in the popular web browser Firefox have been reported. When exploited, these vulnerabilities can lead to: disclosure of sensitive information, phishing attacks, data manipulation, and/or system compromise.Fri, 19 Oct 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a9712fc880d20735002842068a687956http://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-August-2007.cfmAugust 2007 Summary and Trends Fri, 21 Sep 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a971e9f280d207350028420686bbf188http://www.purdue.edu/securepurdue/news/2007/Firefox--chrome-Parameter-Vulnerability.cfmA vulnerability affecting Firefox versions previous to 2.0.0.7 is caused by the "-chrome" parameter allowing remote attackers to run code with the current user's privileges. When exploited, the remote attacker can install malware, steal data, or simply corrupt the user's system.Wed, 19 Sep 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a972fef580d2073500284206f0a48823http://www.purdue.edu/securepurdue/news/2007/Subversion-overwrites-arbitrary-files.cfmFor our campus users of Subversion and TortoiseSVN version control systems it is time to update. Versions prior to the recently released 1.4.5 version have a bug that allows a directory-traversal attack on a windows system using the "..\" syntax. This would allow a client user with write access to overwrite arbitrary system files for which he has write access privileges.Thu, 30 Aug 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a973e00c80d2073500284206833d2282http://www.purdue.edu/securepurdue/news/2007/Media-Player-Classic-.FLI-File-Processing-Buffer-Overflow-Vulnerability.cfmA highly critical vulnerability has been discovered in the open source media player Media Player Classic (MPC), which can be exploited by malicious people to compromise a vulnerable system. The vulnerability is caused due to a boundary error processing .FLI files (an old animation compression format). Wed, 29 Aug 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a9751ecc80d2073500284206347f6b4chttp://www.purdue.edu/securepurdue/news/2007/New-Storm-Worm-Variant.cfmThe newest method that is being highly utilized to trick people into becoming storm worm infected is by sending out e-mails regarding various "club" memberships.Thu, 23 Aug 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a975f41480d2073500284206b26260c3http://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-July-2007.cfmJuly 2007 Summary and TrendsWed, 22 Aug 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a97a82a280d20735002842069f8b5f98http://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-February-2007.cfmFebruary 2007 Summary and TrendsWed, 22 Aug 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a979e9a180d2073500284206055e4705http://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-March-2007.cfmMarch 2007 Summary and TrendsWed, 22 Aug 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a97932d080d20735002842068fb54061http://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-April-2007.cfmApril 2007 Summary and TrendsWed, 22 Aug 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a97884a080d2073500284206864098fdhttp://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-May-2007.cfmMay 2007 Summary and TrendsWed, 22 Aug 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a977b60680d20735002842064f9a88d0http://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-June-2007.cfmJune 2007 Summary and TrendsWed, 22 Aug 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a976c76280d2073500284206db8c78dfhttp://www.purdue.edu/securepurdue/news/2007/Highly-critical-vulnerability-found-in-component-of-Microsofts-DirectX-Media-SDK.cfmA highly critical vulnerability has been found in the Live Picture Corporation DirectTransform FlashPix ActiveX control included in the Microsoft DirectX Media SDK, which can be exploited by malicious people to compromise a vulnerable system.Wed, 15 Aug 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a97b59fa80d2073500284206c42668b4http://www.purdue.edu/securepurdue/news/2007/Firefox-Used-as-an-Attack-Vector-via-URI-Filtering-Vulnerability.cfmExploitation is as simple as using Firefox to visit a malicious website with a specially crafted URI (such as "mailto") containing a "%" character and ends with a specific extension, such as ".bat" or ".cmd".Mon, 30 Jul 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a97c5cd680d20735002842060a13cfbchttp://www.purdue.edu/securepurdue/news/2007/Java-Runtime-Environment-Vulnerabilities-Lead-to-Remote-Compromise.cfmSun Java Runtime Environment (JRE) has a buffer overflow vulnerability in its image parsing code which could allow an untrusted applet or application to escalate its privileges. If this happens, the applet or application could provide itself permissions to read and write local files or execute local applications which are available to the user who is running the untrusted applet or application. All systems running Windows, Linux variants, and Solaris are considered vulnerable.Tue, 17 Jul 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a97d509280d20735002842060c1d9e6dhttp://www.purdue.edu/securepurdue/news/2007/Mozilla-Firefox-OnKeyDown-Event-Focus-Vulnerability.cfmA new Firefox vulnerability is caused by a design flaw within the focus handling method of form fields. Thu, 05 Jul 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a97e432980d20735002842068dbcc643http://www.purdue.edu/securepurdue/news/2007/Xvid-Library-version-1.1.2-Vulnerability.cfmThe Xvid library version 1.1.2 has a newly discovered vulnerability in the get_intra_block, get_inter_h263, and get_inter_block_mpeg functions. This vulnerability could allow a remote attacker to execute arbitrary code on the victim's computer.Fri, 29 Jun 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a9853c8c80d2073500284206f1b63619http://www.purdue.edu/securepurdue/news/2007/Security-Hole-in-Java-Web-Start-Could-Provide-Privilege-Escalation.cfmIf you use Java Web Start on your computer, now is the time to update to JRE 5.0 Update 12 or later (JDK) or JRE 1.4.2_14 or later (SDK). An unspecified error in Java Web Start allows an untrusted application to escalate its own privileges in order to overwrite any file that is "writable" by the current user running the application. Even further, the user's ".java.policy" file can be overwritten which allows the application to summon applets or other Java Web Start applications which could execute arbitrary code with the same privilege level as the user running the application.Fri, 29 Jun 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a97f132f80d2073500284206827b8539http://www.purdue.edu/securepurdue/news/2007/Zlob-Trojan-Finds-YouTube.cfmIf you ever browse through YouTube videos, you might want to be extra cautious. Why? Because attackers are infecting victims with a trojan using fake video links on the YouTube website. The trojan initially floods victims with pornographic adware, then installs data-stealing code on the victim's computer.Fri, 22 Jun 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a986734a80d20735002842067bdb063bhttp://www.purdue.edu/securepurdue/news/2007/PHP-coders-take-a-look-at-Pixy.cfmThe application, called Pixy, can automatically scan your PHP source code for Cross-site scripting and SQL injection vulnerabilities. Pixy takes a PHP program as input, and creates a report that lists possible vulnerable points in the program, together with additional information for understanding the vulnerability.Fri, 22 Jun 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a9872a2280d2073500284206a7d6bf19http://www.purdue.edu/securepurdue/news/2007/Mozilla-Firefox-File-Type-Check-Vulnerability.cfmMozilla Firefox, a popular web browser, has a new vulnerability that is exploitable in versions 0.10 to 2.0.0.4.Thu, 21 Jun 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a9886cab80d2073500284206e3819868http://www.purdue.edu/securepurdue/news/2007/Safari-Beta-Vulnerabilities-for-Windows.cfmThe Safari v3.0 Public Beta web browser for Windows was released on 06/11/07. Within the first 24 hours multiple exploits were released.Mon, 18 Jun 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a989782780d2073500284206798875b8http://www.purdue.edu/securepurdue/news/2007/Microsoft-Out-of-Cycle-Patch-Coming.cfmThis is just an FYI for those who may not be following the latest Windows 0-day vulnerability and an upcoming out of cycle patch. Last Thursday, Microsoft published a Security Advisory (935423) describing a vulnerability in Animated Cursor Handling affecting a range of Windows OS versions. The result is that a user that visits a malicious website or reads a specially crafted HTML e-mail may automatically trigger the vulnerability and executing arbitrary code running as that user.Mon, 02 Apr 2007 01:00:00 -0400http://www.purdue.edu/securepurdue/a98b597580d20735002842068d596b4bhttp://www.purdue.edu/securepurdue/news/2007/Detecting-Windows-Intruders.cfmCERT/CC and AUSCERT provide a thorough checklist for investigating a Windows based system for signs of intruders.Tue, 27 Feb 2007 01:00:00 -0500http://www.purdue.edu/securepurdue/a98e347e80d2073500284206d715c118http://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-January-2007.cfmJanuary 2007 Summary & TrendsThu, 22 Feb 2007 01:00:00 -0500http://www.purdue.edu/securepurdue/a98edcf680d2073500284206e6516f89http://www.purdue.edu/securepurdue/news/2007/STEAM-CIRT-Summary--Trends-for-December-2006.cfmDecember 2006 Summary & TrendsWed, 17 Jan 2007 01:00:00 -0500http://www.purdue.edu/securepurdue/a98fbcc180d207350028420693cd2207http://www.purdue.edu/securepurdue/news/2006/STEAM-CIRT-Summary--Trends-for-November-2006-.cfmNovember 2006 Summary & Trends Fri, 15 Dec 2006 01:00:00 -0500http://www.purdue.edu/securepurdue/ad124bd180d2073600e1b6ace7eacda8http://www.purdue.edu/securepurdue/news/2006/STEAM-CIRT-Summary-and-Trends-for-October-2006.cfmOctober 2006 Summary & TrendsWed, 15 Nov 2006 01:00:00 -0500http://www.purdue.edu/securepurdue/ad13fffb80d2073600e1b6acce9941d1http://www.purdue.edu/securepurdue/news/2006/ADODB-Vulnerability-and-MS-Security-Intelligence-Report.cfmThe Microsoft Response Center posted a note about a new DoS proof of concept against the ADODB.connection ActiveX control. Right now, that just makes it annoying, but it could also allow execution of remote code. US-CERT has the best summary of information about it at the moment. You can either disable ActiveX entirely or set the kill bit for this control as a workaround for now.Mon, 30 Oct 2006 01:00:00 -0500http://www.purdue.edu/securepurdue/ad1505d980d2073600e1b6ac72d26923http://www.purdue.edu/securepurdue/news/2006/STEAM-CIRT-Summary,-Trends-for-September-2006.cfmSeptember 2006 Summary & TrendsFri, 20 Oct 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad23742480d2073600e1b6ac0086f16ehttp://www.purdue.edu/securepurdue/news/2006/Newest-Symantec-Threat-Report-Published.cfmSymantec just released their Internet Security Threat Report which can be thought (at least by me) as a larger version of the STEAM Reports we publish. The report notes trends and shifts in the threat landscape as reported by Symantec clients.Tue, 26 Sep 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad246bb180d2073600e1b6ac863766c4http://www.purdue.edu/securepurdue/news/2006/MS-VML-Exploits-in-the-Wild.cfmOn September 19th, Microsoft issued an advisory about a new vulnerability in their Vector Markup Language (VML) implementation.Mon, 25 Sep 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad2534aa80d2073600e1b6aca02dfa63http://www.purdue.edu/securepurdue/news/2006/STEAM-CIRT-Summary,-Trends-for-July-2006.cfmJuly 2006 Summary & TrendsFri, 22 Sep 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad2692c780d2073600e1b6acd3367961http://www.purdue.edu/securepurdue/news/2006/STEAM-CIRT-Summary,-Trends-for-August-2006.cfmAugust 2006 Summary & TrendsFri, 22 Sep 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad25e07a80d2073600e1b6ace9f01ad7http://www.purdue.edu/securepurdue/news/2006/STEAM-CIRT-Summary,-Trends-for-June-2006.cfmJune 2006 Summary & TrendsTue, 25 Jul 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad273d9680d2073600e1b6ac442be95dhttp://www.purdue.edu/securepurdue/news/2006/Internet-Explorer-Twofer.cfmThe ISC is reporting on two vulnerabilities found in Internet Explorer.Thu, 29 Jun 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad286b7f80d2073600e1b6ac153ad321http://www.purdue.edu/securepurdue/news/2006/STEAM-CIRT-Summary,-Trends-for-May-2006.cfmMay 2006 Summary & Trends Wed, 28 Jun 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad2914a180d2073600e1b6ac5fa2a4e3http://www.purdue.edu/securepurdue/news/2006/Top-100-Security-Tools.cfmFyodor, author of Nmap has revised his top 100 security tools list.Thu, 22 Jun 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad29eaff80d2073600e1b6ac05fc7fcfhttp://www.purdue.edu/securepurdue/news/2006/STEAM-CIRT-Summary-and-Trends-for-April,-2006.cfmSTEAM-CIRT Summary and Trends for April, 2006Tue, 16 May 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad2ab62680d2073600e1b6ac5eee53e7http://www.purdue.edu/securepurdue/news/2006/SANS-Spring-2006-Top-20-released.cfmSANS Spring 2006 Top 20 releasedTue, 02 May 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad2c9ce380d2073600e1b6ac6c48aeeehttp://www.purdue.edu/securepurdue/news/2006/Super-Tuesday-Updates,-Hybrid-Viruses,-PeteAuth.cfmSuper Tuesday Updates, Hybrid Viruses, PeteAuth?Tue, 11 Apr 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad2daadb80d2073600e1b6aca5b89749http://www.purdue.edu/securepurdue/news/2006/STEAM-CIRT-Observations-and-Trends-Summary-for-March-2006.cfmSTEAM-CIRT Observations and Trends Summary for March 2006Thu, 06 Apr 2006 01:00:00 -0400http://www.purdue.edu/securepurdue/ad30c3d580d2073600e1b6ac6a0bdf0bhttp://www.purdue.edu/securepurdue/news/2006/New-vulnerabilities,-new-rootkit.cfmNew vulnerabilities, new rootkit...Wed, 22 Mar 2006 01:00:00 -0500http://www.purdue.edu/securepurdue/ad31840580d2073600e1b6ac6a2dbc2bhttp://www.purdue.edu/securepurdue/news/2006/IE-zero-day,-phpBB-troubles-looming.cfmIE zero-day, phpBB troubles looming?Sun, 19 Mar 2006 01:00:00 -0500http://www.purdue.edu/securepurdue/ad331e9480d2073600e1b6ace6b00ea0http://www.purdue.edu/securepurdue/news/2006/Want-to-know-more-about-botnets.cfmThe Worm Blog posted this article about a paper on botnets from researchers at the University of Wisconsin. If you're unfamiliar with botnets and their uses, this is a good read for you. Thu, 16 Mar 2006 01:00:00 -0500http://www.purdue.edu/securepurdue/ad33ea7780d2073600e1b6acd0c67afd