Today, we are reporting a couple of exploited websites for affiliate spam. One is that of the Synergy Project at Temple University. The other exploited website belongs to the Loréan Library (forums) at the University of Rochester. Continue reading
Mozilla has updated the second popular web browser for Mac. This minor update fixes several vulnerabilities. These security fixes include “XUL Popup Spoofing,” “XSS using addEventListener” and “Path Abuse in Cookies.”
Click on the button for Firefox 2 security fixes. 
It is true that affiliate spam exploitations against the websites of American colleges and universities have decreased substantially in the past few weeks. But their websites are still targeted by the notorious affiliate spam group. Continue reading
Apple has released a security update patch for QuickTime 7.1.6. According to Apple, this security update is valid for Mac OS, Windows 2000 and Windows XP. It will fix a couple of QuickTime vulnerability holes that are related to Java execution. The company writes, “An implementation issue exists in QuickTime for Java, which may allow instantiation or manipulation of objects outside the bounds of the allocated heap. By enticing a user to visit a web page containing a maliciously crafted Java applet, an attacker can trigger the issue which may lead to arbitrary code execution.”
For more information, check out this Apple Security Update page.
We often report exploited websites of colleges and universities. Occasionally, affiliate spam criminals exploit websites of high schools and school districts as well. What we found today is a series of webpages exploited for affiliate spam found at the website of Newberry County School District (newberry.k12.sc.us).
By the way, from now on, Internet security news will be reported at our SEO section. Continue reading