pd

il servizio di Qui UBI – Ricerca – Conti Correnti

Inserito da Silvio Passalacqua 13 novembre, 2008 (0) Commenti

e-mail ai limiti della fantascienza, qui i truffatori si spacciano per la Banca Ubi e addirittura credendoci fessi patentati si inventano una storia qui si dice che la banca qui Ubi ci fa rispramiare l’invio postale e per comunicarci questa lieta notizia ha messo uno straniero dotato di scarsissima padronanza linguistica e carenze abnormi della lingua italiana nel front office ovvero nella parte cruciale cioè in due parole è assolutamente impossibile che la banca metta una persona che non sa nemmno scrivere in italiano!

ma poi ricerca conti correnti che cervellone questo phisher !!!

segue e-mail

Ricerca – Conti Correnti

“Le mie contabili” ? il servizio di Qui UBI che ti permette di ricevere la tua corrispondenza bancaria direttamente via internet, risparmiando i costi postali di invio.

Una volta attivato il servizio, le contabili relative ai tuoi rapporti bancari ti vengono inviate direttamente in Qui UBI in formato elettronico (pdf) ed hanno lo stesso valore di quelle che ricevevi per posta (se ne hai bisogno, puoi sempre richiedere alla tua filiale copia della documentazione in formato cartaceo).

Il servizio ? comodo e conveniente: in ogni momento hai la possibilita di consultare, stampare o salvare sul tuo pc le contabili relative, ad esempio, all’estratto di conto corrente o di deposito titoli, ai movimenti di conto, al pagamento delle rate del mutuo e alle note informative degli eseguiti di Borsa.

Attiva subito il servizio!

Categories : Phishing e Truffe Tags : and, art, arte, Banca, borsa, car, cervello, con, conto corrente, de, del, dell, della, di, e-mail, game, il, in, inter, Internet, italia, italiano, iva, la, mail, me, net, of, Office, pc, pd, per, red, ricerca, river, scie, scienza, servizi, sito, sogno, storia, Truffa

Ocean Bank security measures – Only A Spammer Phishing Measures

Inserito da Silvio Passalacqua 30 ottobre, 2008 (0) Commenti

Si tratta di :Phishing e Truffe

Attention Ocean Bank consumers!
This update is for customers who use Ocean Business and/or Personal online banking in North America.
Update your system through this official site if your account has been created before October 22, 2008.
There is no guarantee of proper operation with NOT UPDATED consumer systems.

Apple Security Update 2008-007

Inserito da Silvio Passalacqua 24 ottobre, 2008 (0) Commenti

Si tratta di :Sicurezza

Descrizione del problema

Apple ha rilasciato il Security Update 2008-007 per correggere
varie vulnerabilta’ che affliggono il sistema operativo Mac OS X
ed alcune applicazioni distribuite insieme al sistema stesso.
:: Software interessato

Apple Mac OS X

:: Impatto

Security Bypass
Cross Site Scripting
Spoofing
Manipolazione di dati
Esposizione di dati sensibili
Esposizione di informazioni sul sistema
Privilege escalation
Denial of Service
System access

:: Soluzione

Applicare il Security Update 2008-007:

http://www.apple.com/support/downloads/

:: Riferimenti

Apple – About Security Update 2008-007:
http://support.apple.com/kb/HT3216

Secunia:
http://secunia.com/advisories/32222/

Categories : Sicurezza Tags : 2008, 3, 89, Apple, Denial of Service, inter, la, MAC, Mac OS X, man, opera, pd, security, software, spoofing, TRE

Oracle Critical Patch Update (Ottobre 2008)

Inserito da Silvio Passalacqua 16 ottobre, 2008 (0) Commenti

Si tratta di :Sicurezza

Descrizione del problema

Oracle ha rilasciato una Critical Patch Update Ottobre 2008.
Tale aggiornamento e’ una collezione di patch nata per porre
soluzione a 36 difetti di sicurezza presenti in vari prodotti
Oracle.

:: Software interessato

Oracle Database 11g, version 11.1.0.6
Oracle Database 10g Release 2, versions 10.2.0.2, 10.2.0.3, 10.2.0.4
Oracle Database 10g, version 10.1.0.5
Oracle Database 9i Release 2, versions 9.2.0.8, 9.2.0.8DV

Oracle Application Server 10g Release 3 (10.1.3), versions
10.1.3.3.0, 10.1.3.4.0
Oracle Application Server 10g Release 2 (10.1.2), versions
10.1.2.2.0, 10.1.2.3.0
Oracle Application Server 10g (9.0.4), version 9.0.4.3

Oracle E-Business Suite Release 12, version 12.0.4
Oracle E-Business Suite Release 11i, version 11.5.10.2

Oracle PeopleSoft Enterprise PeopleTools versions 8.48.18, 8.49.14
Oracle PeopleSoft Enterprise Portal versions 8.9, 9.0

Oracle WebLogic Server (formerly BEA WebLogic Server) 10.0 released
through MP1, 10.3 GA
Oracle WebLogic Server (formerly BEA WebLogic Server) 9.0 GA, 9.1 GA,
9.2 released through MP3
Oracle WebLogic Server (formerly BEA WebLogic Server) 8.1 released
through SP6
Oracle WebLogic Server (formerly BEA WebLogic Server) 7.0 released
through SP7
Oracle WebLogic Server (formerly BEA WebLogic Server) 6.1 released
through SP7

Oracle Workshop for WebLogic (formerly BEA WebLogic Workshop) 10.0
released through MP1, 10.2 GA, 10.3 GA
Oracle Workshop for WebLogic (formerly BEA WebLogic Workshop) 9.0,
9.1, 9.2 released through MP3
Oracle Workshop for WebLogic (formerly BEA WebLogic Workshop) 8.1
released through SP6

:: Impatto

Security Bypass
Exposure of sensitive information
Privilege escalation
DoS
System access

L’impatto delle vulnerabilita’ varia in base alla configurazione
del sistema, del prodotto o della componente considerata.

:: Soluzioni

Applicare le patch appropriate o procedere all’opportuno
aggiornamento secondo le istruzioni rilasciate da Oracle:

http://www.oracle.com/technology/deploy/security/critical-patch-updates/cpujul2008.html

:: Riferimenti

Oracle Critical Patch Updates and Security Alerts

http://www.oracle.com/technology/deploy/security/alerts.htm

SecurityFocus

http://www.securityfocus.com/bid/31683

Mitre’s CVE ID

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4008

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4009

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4010

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4011

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4012

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4013

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4000

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4001

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4002

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4003

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4004

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3985

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3988

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3998

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3619

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3993

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3975

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3977

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3588

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3986

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3987

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3989

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2624

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3996

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3992

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3976

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3982

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3983

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3984

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3994

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3980

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4005

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2625

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3990

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-3991

Categories : Sicurezza Tags : 2008, 3, 89, blog, dell, DoS, html, inter, la, mp3, Oracle, OTTOBRE, patch, pd, security, Sicurezza, siti, software, TRE, web

FALSA E-MAIL MICROSOFT KB584432.exe VIRUS Security Update for OS Microsoft Windows

Inserito da Silvio Passalacqua 15 ottobre, 2008 (0) Commenti

Si tratta di :Exploits,Phishing e Truffe

NON APRITE LA FALSA E-MAIL DELLA MICROSOFT CHE STA ARRIVANDO IN QUESTI GIORNI !

DA : Microsoft Customer Service” <customerservice@microsoft.com>

OGGETTO : Security Update for OS Microsoft Windows

SEGUE TESTO E ALLEGATO DI 33 KB

QUESTA E-MAIL E’ ASSOLUTAMENTE FALSA E DANNOSA GLI AUTORI DELLA MAIL IN OGGETTO HANNO UTILIZZATO UN SERVER NELLA REPUBBLICA CECA, NULLA A CHE FARE CON I SERVER MICROSOFT.

ALLEGO TESTO E-MAIL :

Dear Microsoft Customer,

Please notice that Microsoft company has recently issued a Security Update for OS Microsoft Windows. The update applies to the following OS versions: Microsoft Windows 98, Microsoft Windows 2000, Microsoft Windows Millenium, Microsoft Windows XP, Microsoft Windows Vista.

Please notice, that present update applies to high-priority updates category. In order to help protect your computer against security threats and performance problems, we strongly recommend you to install this update.

Since public distribution of this Update through the official website http://www.microsoft.com would have result in efficient creation of a malicious software, we made a decision to issue an experimental private version of an update for all Microsoft Windows OS users.

As your computer is set to receive notifications when new updates are available, you have received this notice.

In order to start the update, please follow the step-by-step instruction:
1. Run the file, that you have received along with this message.
2. Carefully follow all the instructions you see on the screen.

If nothing changes after you have run the file, probably in the settings of your OS you have an indication to run all the updates at a background routine. In that case, at this point the upgrade of your OS will be finished.

We apologize for any inconvenience this back order may be causing you.

Thank you,

Steve Lipner
Director of Security Assurance
Microsoft Corp.

—–BEGIN PGP SIGNATURE—–
Version: PGP 7.1

0849JB5RD2VW1QL4NWFGQUL1LDPE49EPZHWG85DIC99Z9CZ9Z7SR9J7JLD1FY61TJ
6NXM1VC8DTKWAI9PSPH9T8SD2JSPH1L0EL8M968TUEHSG5UFTHUQUD95RNU3DKRQ6
4FO81Y6QTTK452ORNUVXKI8HB8TU0N4F1TGWVJ9KQQ8W3UNG2VV3AN5Q7GZVQ2PFF
B87089F03JDELY8ZJ11XUF7NILGF8D8S9QT14YS2LYLMVM478NDMDNK4H263S8KIC
66UB1N5V47OLP117AAZVQUZ9TE966UDXJFK==
—–END PGP SIGNATURE—–

SEGUE ANALISI DETTAGLIATA VIRUS

AhnLab-V3	-	-	Win-Trojan/Goldun.33398.B
AntiVir	-	-	TR/Drop.HeadJoe.N
Authentium	-	-	W32/Trojan3.CI
Avast	-	-	Win32:Trojan-gen {Other}
AVG	-	-	BackDoor.Haxdoor.EJ
BitDefender	-	-	Trojan.PWS.Goldun.SZR
CAT-QuickHeal	-	-	TrojanSpy.Goldun.bce
ClamAV	-	-	Trojan.Goldun-305
DrWeb	-	-	Trojan.PWS.GoldSpy.2278
eSafe	-	-	-
eTrust-Vet	-	-	Win32/ProcHide.Z
Ewido	-	-	-
F-Prot	-	-	W32/Trojan3.CI
F-Secure	-	-	Trojan-Spy.Win32.Goldun.bce
Fortinet	-	-	W32/Goldun.BCE!tr.spy
GData	-	-	Trojan.PWS.Goldun.SZR
Ikarus	-	-	Trojan-Spy.Win32.Goldun.bce
K7AntiVirus	-	-	-
Kaspersky	-	-	Trojan-Spy.Win32.Goldun.bce
McAfee	-	-	BackDoor-BAC.gen
Microsoft	-	-	Backdoor:Win32/Haxdoor
NOD32	-	-	Win32/Spy.Goldun.NDO
Norman	-	-	-
Panda	-	-	Trj/Goldun.TL
PCTools	-	-	Trojan-Spy.Goldun!sd6
Prevx1	-	-	Suspicious
Rising	-	-	Trojan.Spy.Win32.Goldun.zzt
SecureWeb-Gateway	-	-	Trojan.Drop.HeadJoe.N
Sophos	-	-	Mal/EncPk-CZ
Sunbelt	-	-	Goldun.Fam
Symantec	-	-	Infostealer
TheHacker	-	-	-
TrendMicro	-	-	BKDR_HAXDOOR.MX
VBA32	-	-	Malware-Cryptor.Win32.General.2
ViRobot	-	-	Trojan.Win32.Goldun.33398
VirusBuster	-	-	TrojanSpy.Goldun.AQI

Informazioni addizionali
MD5: 1ffcb1ea024c228ade6d8dad681c6ed7
SHA1: f665f9a30e72d3d5f994993a6a7649d98b5a2686
SHA256: 87f9fa50a42a8761f29d4f44fba35f0d638bcbc0036e00f1b78632526d5f5432
SHA512: bf9299112d25a3f121825f852ca5c8caf0861beb750df9a21a9ba55b97f5a3380538ef305b007b71ae171ec9a72fd7a5061bd63641aaeec1c554956bc6dba7f5

Categories : Exploits,Phishing e Truffe Tags : 3, 89, antivirus, attenzione, auto, avg, computer, dell, e-mail, falsa e-mail, Gateway, ici, iva, la, lega, MAC, mail, malicious software, malware, man, McAfee, microsoft, Microsoft Windows, moto, NEW, Notifica, ong, pc, pd, security, siti, sky, software, STAR, threats, TRE, trojan, Virus, web, Win, WIND, windows, Windows 98

Apple Security Update 2008-006

Inserito da Silvio Passalacqua 17 settembre, 2008 (0) Commenti

Si tratta di :Sicurezza

Descrizione del problema

Apple ha rilasciato il Security Update 2008-006 per correggere
varie vulnerabilta’ che affliggono il sistema operativo Mac OS X
ed alcune applicazioni distribuite insieme al sistema stesso.

: Descrizione del problema

Apple ha rilasciato il Security Update 2008-006 per correggere
varie vulnerabilta’ che affliggono il sistema operativo Mac OS X
ed alcune applicazioni distribuite insieme al sistema stesso.

:: Software interessato

Apple Mac OS X version 10.4.11 e precedenti
Apple Mac OS X Server version 10.4.11 e precedenti
Apple Mac OS X dalla versione 10.5 alla 10.5.4
Apple Mac OS X Server dalla versione 10.5 alla 10.5.4

L’aggiornamento riguarda sia i sistemi Intel-based
sia quelli PowerPC-based.

:: Impatto

Security Bypass
Cross Site Scripting
Spoofing
Manipolazione di dati
Esposizione di dati sensibili
Esposizione di informazioni sul sistema
Denial of Service
System access

:: Soluzione

Applicare il Security Update 2008-006 attraverso lo strumento
‘Software Update’ o scaricandolo da Apple Downloads:

Apple Security Update 2008-006 Client (Intel) :
http://www.apple.com/support/downloads/securityupdate2008006clientintel.html

Apple Security Update 2008-006 Client (PPC) :
http://www.apple.com/support/downloads/securityupdate2008006clientppc.html

Apple Security Update 2008-006 Server (PPC) :
http://www.apple.com/support/downloads/securityupdate2008006serverppc.html

Apple Security Update 2008-006 Server (Universal) :
http://www.apple.com/support/downloads/securityupdate2008006serveruniversal.html

Apple Mac OS X 10.5.5 Combo Update :
http://www.apple.com/support/downloads/macosx1055comboupdate.html

Apple Mac OS X 10.5.5 Update :
http://www.apple.com/support/downloads/macosx1055update.html

Apple Mac OS X Server 10.5.5 :
http://www.apple.com/support/downloads/macosxserver1055.html

Apple Mac OS X Server Combo 10.5.5 :
http://www.apple.com/support/downloads/macosxservercombo1055.html

:: Riferimenti

Apple – About Security Update 2008-006
http://support.apple.com/kb/HT3137