Zeus Bank Account Trojan and internet email hole
Zeus is a new prolific trojan making its rounds on the internet. This is a new type of stealthy trojan lies idle until a user visits a banking website. The trojan has an incredible url list of banking websites. The lists exceeds 5,000 financial institutions. Once the trojan detects that the user has visited a banking website, the software sends the stolen information to compromised servers across the world. Then, the information can be used to withdraw money from unsuspecting users accounts. Normally, this type of trojan can be quickly neutralized by most antivirus software. However, the trojan or virus incorporates root kit technology to hide deep in an infected system. A recent study was compiled and found that only 20% of antivirus software were able to detect the trojan. This is a very small number and is due to the trojan's advanced antivirus evading techniques. To combat this trojan I recommend installing a free antivirus solution immediately. The trojan has already compromised more than 4 million computers in the United States alone. Please utilize all of the free antivirus on this website to neutralize this virus. Run at least 3 antivirus online scans to make sure that your windows computer is truly virus free. Good luck.
A recent report outlines a vulnerability in the yahoo email system. The email service has known about this bug for about 3 years. The bug allows an attacker to essentially brute force guess the password of any user account. For those of you that don't know what brute force is, it is a method for guessing a password by trying all different types of password combinations. The following usually takes place with a denial of service or DoS attack comprising of multiple web page requests. Each webpage request trys a different password. This whole process takes place automatically with the computer reading a dictionary file with many possible password combinations. In other situations, rainbow tables can be used to make random passwords utilizing a series of password rules. The most interesting part about this attack, is it takes place not on the main yahoo mail login page but though partner sites using the yahoo mail api. This is because the main login page has a significant amount of protection. One site used an analogy of the main page acting as a secure castle gate but the api's attacking as a hole in the castle wall. Either way, you can mitigate your risk by creating complex passwords. You should use a password manager to store your complex passwords. Also consider one of these password making services.