Panetta fires first shot in DOD budget showdown

Having trouble viewing this e-mail? Click here to view as a Web page.
CLOUD & VIRTUALIZATION    |     GOVERNMENT 2.0    |     MANAGEMENT & WORKFORCE   |     SECURITY    |    TELEWORK
1/27/2012 Panetta fires first shot in defense budget showdown Get ready for the future's leaner Defense Department. Justice officials defend wireless network program Survey: Federal telework gains momentum Who should you follow on Twitter? Ask the pros. VA mobile devices to be primarily for clinicians, CIO says Successful IT projects: Good news travels slowly Cloud report Defense board issues cloud recommendations, warnings NIST sets security approach for cloud computing The STAND: Data Center Efficiency Sponsored by: Brocade What are the biggest technology and/or operational barriers to optimal efficiency in the typical data center? Learn more In case you missed it Technology on the outs in 2012 Google's new privacy policy raises new worries for feds Agencies that miss small-biz goals could face penalties More resources How to relieve the pressure of data center consolidation Optimization mixes multiple tactics that have proven to be effective at boosting server efficiency and trimming data center costs. Mobile movement infiltrates the health IT world Roughly three-quarters of U.S. physicians have joined the mobile revolution, and apps are popping up to help patients interact with doctors and other health care providers. Adobe Digital Government 2012 Adobe Government Assembly February 8, 2012 The National Press Club - Washington, D.C. FREE Registration for Government Register Now! Download resources Adobe Government Assembly: Free for Government! Feb 8, Washington, DC This year's robust program features public sector leaders and industry experts focused on the key issues of advancing citizen engagement, implementing innovative technologies and protecting critical information. Don't miss your opportunity to learn tactics for meeting today's challenges and for revolutionizing operations in your agency. Register Now! Sponsored Links FEEDBACK    |    ADVERTISE   |    CHANGE EMAIL ADDRESS    |    UNSUBSCRIBE   |    PRIVACY   |    CONTACT STAFF Federal Computer Week 1105 Government Information Group 8609 Westwood Center Drive, Suite 500 Vienna, VA 22182-2215 703-876-5100   Federal Computer Week Daily News Editor - Michael Hardy | Online Editor-in-Chief - Susan Miller 1105 Government Information Group President - Anne A. Armstrong | Vice President, Group Publisher - Jennifer Weiss 1105 Media President/CEO - Neal Vitale   Copyright 2012 1105 Media Inc. Federal Computer Week newsletters may only be redistributed in their unedited form. Written permission from the editor must be obtained to reprint the information contained within this newsletter. This message was sent to: security-news@awsoda.net

TrendLabs | Malware Blog - by Trend Micro - Malware Leveraging MIDI Remote Code Execution Vulnerability Found

 

Click here to read this mailing online.

Here are the latest updates for security-news@awsoda.net   "TrendLabs | Malware Blog - by Trend Micro" - 1 new article Malware Leveraging MIDI Remote Code Execution Vulnerability Found More Recent Articles Search TrendLabs | Malware Blog - by Trend Micro Prior Mailing Archive Malware Leveraging MIDI Remote Code Execution Vulnerability Found Earlier today, we encountered a malware that exploits a recently (and publicly) disclosed vulnerability, the MIDI Remote Code Execution Vulnerability (CVE-2012-0003). (Ed. Note: addressed in MS12-004) The said vulnerability is triggered when Windows Multimedia Library in Windows Media Player (WMP) fails to handle a specially crafted MIDI file, consequently allowing remote attackers to execute arbitrary code. In the attack that we found, the infection vector is a malicious HTML which we found hosted on the domain, hxxp://images.{BLOCKED}p.com/mp.html. This HTML, which Trend Micro detects as HTML_EXPLT.QYUA, exploits the vulnerability by using two components that are also hosted on the same domain. The two files are: a MIDI file detected as TROJ_MDIEXP.QYUA, and a JavaScript detected as JS_EXPLT.QYUA. HTML_EXPLT.QYUA calls TROJ_MDIEXP.QYUA to trigger the exploit, and uses JS_EXPLT.QYUA to decode the shellcode embedded in HTML_EXPLT.QYUA’s body. Below is a screenshot of HTML_EXPLT.QYUA's code. Notice the highlighted parts where it calls the MIDI and JavaScript components: Upon successfully exploiting the vulnerability, it decodes and executes the decoded shellcode. This shellcode then connects to a site to download an encrypted binary: This binary is then decrypted and executed as a malware detected as TROJ_DLOAD.QYUA. We’re still conducting further analysis on TROJ_DLOAD.QYUA, but so far we’ve been seeing some serious payload, including rootkit capabilities. Meanwhile, as the routines stated above happens in the background, the affected users remains unsuspecting and sees the following: Microsoft has already issued an update to address this vulnerability during the last patch Tuesday, so our first advice to users is to patch their system with the Microsoft security update here. It affects Windows XP SP2 and SP3, Server 2003 SP2, Vista SP2, and Server 2008 SP2. We’d like to reiterate that this is a publicly disclosed exploit. As such, we can expect similar attacks in the future. On the other hand, Trend Micro customers are already protected from this by the Trend Micro™ Smart Protection Network™, which blocks the related malicious files and URLs. We will update this blog entry once more information is available. Update as of January 26, 2011, 7:50 a.m. (PST) Trend Micro Deep Security shields this vulnerability using the specified rules. For more information on the Deep Security rules, users can visit our vulnerability page here. Post from: TrendLabs | Malware Blog - by Trend Micro Malware Leveraging MIDI Remote Code Execution Vulnerability Found   • Email to a friend • Article Search • View comments • Track comments • • More Recent Articles How Private Is My Online Information? Towards A More Secure Industrial Control Systems Security Posture Tax Season Opens, Tax Spam Follows The Ins and Outs of One-Click Billing Fraud Kyoto Prefectural Police Arrest Suspects Related to One-Click Billing Fraud

---

Click here to safely unsubscribe from "TrendLabs | Malware Blog - by Trend Micro." Click here to view mailing archives, here to change your preferences, or here to subscribe • Privacy

---

 

---

Your requested content delivery powered by FeedBlitz, LLC, 9 Thoreau Way, Sudbury, MA 01776, USA. +1.978.776.9498

 

Say goodbye to some favorite technologies | Google's new rules raise new worries

Having trouble viewing this e-mail? Click here to view as a Web page.
CLOUD & VIRTUALIZATION    |     GOVERNMENT 2.0    |     MANAGEMENT & WORKFORCE   |     SECURITY    |    TELEWORK
1/26/2012 Technology on the outs in 2012 Some technology standbys will get their walking papers this year. Google's new privacy policy raises new worries for feds New policies concerning Google's collection and use of user data should have feds taking a close look at their use of the company's services. Agencies that miss small-biz goals could face penalties DISA sees opportunity in commercial cloud mandate DOD still falters on auditabilty, Congressional panel says Special comment Why career feds are needed now more than ever Where saving the planet and saving money intersect Research Sponsored By: CDW-G and EMC Server virtualization has the power to make life much easier for IT administrators and managers. Among government managers, the most recognized benefit of virtual servers is smarter, more efficient utilization of resources. But besides greater hardware utilization efficiency, agencies also can meet increasingly important green initiatives while also saving money. Server virtualization helps agencies reduce costs from hardware purchases and the power and cooling costs that come with making all that hardware run reliably in a data center. Read More Here In case you missed it DOD to allow Android on classified networks Election preview: The Oval Office and the tech agenda IJIS exec makes jump to private industry More resources DOD, VA recalibrate the model for health records The Defense and Veterans Affairs departments are integrating their EHR programs via open-source coding that promises to give service members one record that will follow them their entire career. Where saving the planet and saving money intersect When it comes to cutting energy costs in data centers, what's good for the government is also good for the environment. Data-Enabled Government. How Well Is Our Personal Information Protected Sponsored by HP This paper examines the key issues surrounding the use and protection of personal data and draws on in-depth interviews with experts working on the front lines of public sector data management. Read more Download resources Federal IT: Consolidating Your Data Securely in a Cloud Sponsored By EMC The decision on how to execute a consolidation will depend on the applications an agency has, their varying levels of importance, their connection to one another and the agency's environment. Learn more about the progress being made in data center consolidation and cloud migration in this brief. Read more. Integrated and Automated Budget, Program and Performance Reporting Sponsored By IBM Read this paper to learn how IBM Cognos FSR with TM1 helps budget and finance teams to automate the generation of complex, process driven reports while maintaining the agency's current business processes and disclosure management requirements. Read more. Adobe Government Assembly: Free for Government! Feb 8, Washington, DC This year's robust program features public sector leaders and industry experts focused on the key issues of advancing citizen engagement, implementing innovative technologies and protecting critical information. Don't miss your opportunity to learn tactics for meeting today's challenges and for revolutionizing operations in your agency. Register Now! Sponsored Links FEEDBACK    |    ADVERTISE   |    CHANGE EMAIL ADDRESS    |    UNSUBSCRIBE   |    PRIVACY   |    CONTACT STAFF Federal Computer Week 1105 Government Information Group 8609 Westwood Center Drive, Suite 500 Vienna, VA 22182-2215 703-876-5100   Federal Computer Week Daily News Editor - Michael Hardy | Online Editor-in-Chief - Susan Miller 1105 Government Information Group President - Anne A. Armstrong | Vice President, Group Publisher - Jennifer Weiss 1105 Media President/CEO - Neal Vitale   Copyright 2012 1105 Media Inc. Federal Computer Week newsletters may only be redistributed in their unedited form. Written permission from the editor must be obtained to reprint the information contained within this newsletter. This message was sent to: security-news@awsoda.net