Security

Cyber-criminals exploit Access flaw

  • Email a Friend
  • Print Page
Cyber-criminals exploit Access flaw
Related Articles
Breaking Stories
By Robert Jaques
Mar 7, 2008 8:28 AM
Tags: Cyber-criminals | exploit | Access | flaw

Security experts have warned of a new vulnerability in Microsoft Access which is being used by cyber-criminals to install malware on victims' computers.

PandaLabs said that the security hole is exploited through specially crafted Access files (.mdb) embedded with malicious code.

The flaw is being used to distribute the Keylogger.DB Trojan which is designed to steal confidential data by logging keystrokes.

PandaLabs said that this is a similar security problem to that discovered a few months back, categorised as CVE-2007-6026, but the new flaw also affects the msjet40.dll library, albeit at a different point.

Luis Corrons, technical director of PandaLabs, said: "Whenever a vulnerability of this type appears cyber-crooks will try to take full advantage.

"We can therefore expect to see more malicious Access files in circulation that contain this Trojan and other types of threat."

 

Copyright © 2009 vnunet.com
 


Comments

Be the first to comment on this article.
Thoughts on this article? Add a comment below.
Comment:
Want to participate in the discussion?
Or log in now to comment


Top Stories
iPhone vulnerable to hackers
iPhone vulnerable to hackers
Flaw could allow hackers to remotely execute code.
 
Conroy opens NBNCo regulation debate
Conroy opens NBNCo regulation debate
Part two of the regulatory reforms paper.
 
ShoreTel on recruitment drive for partners
ShoreTel on recruitment drive for partners
ShoreTel has signed a UC system deal with Cooma-Monaro Shire Council in New South Wales saving the company more than $20,000 annually on telephony costs.
 

Shortcutsall you need to know on...

  • NBN 
  • Windows 7 
  • Unified Communications 
  • Twitter 
  • Virtualisation 

Latest Comments

"Hi Cecil, Tony Lagan from Sony made it clear that is the very case. Thanks for your input. "
on Sony secures surveillance for resellers
by lguan Jul 1, 2009 6:33 PM
 
"Cool, I shall jump in my DeLorean right away, and head off to the Google developer day :-) Back ..."
on Google opens six-star Sydney ‘Googleplex’
by jgcertified Jun 30, 2009 10:11 PM
 
"A key issue for organisations is the complexity of licensing, particularly with the wide range ..."
on How resellers benefit from SAM
by easysam Jun 30, 2009 6:50 PM
 
"All these $150-$200 predictions assume that $40 million will be paid by home and small business ..."
on NBN keeps industry guessing
by peterh_oz Jun 30, 2009 5:06 PM
 
"I read eon below link unencrypting takes along time and another limitation appears to be if ..."
on First look at Windows 7 security
by kWAT Jun 30, 2009 9:56 AM
 

Polls

Has dealing with email security become easier?
   |   View results
The war on junk viruses is never ending, just when one thing is fixed another pops up
  38%
 
Hardware and software has become better at dealing with spam, fake email and virus attachments
  42%
 
Users are the key to dealing with email deluge they just need to be smarter about it
  21%
TOTAL VOTES: 53

Vote now
view previous polls »

CRN Magazine

Issue: 268 | June, 2009

CRN Magazine looks in-depth at the emerging issues and developments for the Channel, and provides insight, analysis and strategic information to help resellers better run their businesses.

Popular Tags

accc access cybercriminals data exploit flaw ibm internet internode management microsoft mobile network security server service telstra terms ull vulnerability