Lost+Found: Password shaking, macro viruses and comment spam
Too short for news, too good to lose; lost+found is a round up of useful security information. Today, Password shaking, macro viruses and comment spam
Shake it baby! Apple's iPhone update 3.1 fixes a vulnerability which made it possible to literally shake passwords out of the phone.
In the forthcoming version 3.2, the OpenOffice development team plans to fix a conceptual vulnerability relating to encrypted documents. It's possible to inject malicious code into a file by exchanging macros between encrypted documents.
According to a study by Websense, 95 per cent of all comments on blog's, forum's and message boards are spam or malicious content. Websense says that the data was obtained from customer installations of their ThreatSeeker system.
The Australian Internet Industry Association (IIA) has published draft guidelines requiring ISPs to block infected bots.