Viruses, worms, trojans and other stuff

Tuesday, July 26, 2005

Someone got too much SPAM ?

Russian media reported today that the owner of the American Language Center, Vardan Kushnir, had been killed. According to the reports, Kushnir's body with massive head trauma was found in his apartment in Moscow.

The American Language Center provides English language courses for Russian speaking people. In order to get new customers, the Center reportedly organized the largest SPAM campaign in Russian history. A huge amount of SPAM was (and still being) sent to over 20 000 000 e-mail addresses belonging to Russian speaking people. They say that you can hardly find a Russian who has never received a SPAM advertising the American Language Center.

The SPAM campaign reportedly organized by the Center was so annoying that many people were trying to fight back. Some of them tried to sue, but with no results. Some tried to organize "denial of service" attacks to American Language Center phone numbers, advertised in SPAM messages (it should be noted that such attacks are basically illegal, but the authorities and the phone companies took no immediate action). As a result the Center's phone lines were totally overloaded for some time. Someone even tried to post Kushnir's personal information online so his mailbox, e-mail address and phone number could be targeted. There also appeared a lot of private webpages and forums devoted to fighting against the American Language Center, here's an example (NOTE: the site is in Russian and connection is slow).

However the killing of Kushnir might not be related to the American Language Center's SPAM campaign. Russian authorities are currently investigating this crime.

Wednesday, July 13, 2005

July's Microsoft security bulletin

As every second Tuesday of each month Microsoft brings their latest security fixes. In this occasion 3 updates have been released.

MS05-035 affects several Microsoft Word versions. A vulnerability in the font parsing allows remote code execution. The vulnerability could be used to craft documents that would run malicious code and has been rated as Critical.

MS05-036 addresses a vulnerability found in the Color Management Module and could allow remote code execution. MS05-036 has also been rated as Critical.

And finally MS05-037 fixes a vulnerability in JView Profiler. According to the vulnerability description, a web page could be crafted so that it crashes Internet Explorer or even manages to run code, which could lead to the typical exploitation for installation of malware through an apparently innocuous web page. MS05-037 is, not surprisingly, also rated Critical.

We urge people running the affected versions of the Microsoft products to update their systems through the traditional channels.