Threats

GDI+ Vulnerability
This is a very serious issue that will become problematic soon. Unfortunately, there's no magic update or hot fix to resolve this threat.

Basically, the GDI+ vulnerability exposes the computer to malicious code if an infected JPEG file (any graphics image with a file extension like .JPG, such as a photo) is viewed. Once the image file is viewed, the malicious code is executed and any number of very bad scenarios can play out. more>>

Fraudulent E-Mail Claims to Be From the FDIC

E-mails that fraudulently claim to be from the FDIC are requesting that recipients
provide highly sensitive personal information, including bank account information. more>>

UPDATES

Gaim has recently started crashing for a bunch of people (most notably Windows users) when trying to connect a MSN account. Gaim 2.0 has been released which fixes this and other bugs. You can download it from the downloads page.
We have learnt of a new AIM worm. Once infected, a running process called csts.exe will start. This file will make constant calls to suspicious websites that will slow down your internet use. Please watch out for any suspicious messages.
Many employees are receiving emails from “service@paypal.com”, who misrepresent themselves as being a part of eBay. Some employees have fallen victim and provided confidential information, including credit card numbers and PIN information. They have subsequently discovered charges against these credit accounts. Please watch out for these kind of scams.
You can download some key Windows and Office updates at http://its.manchester.edu/Downloads.
When reporting issues to me, please press the Clipboard button on the GDI+ Scan tool. You can then paste the findings in the e-mail that you send to me (Case, Michael).
If you are running Windows 2000, Windows Me, Windows 98 SE, Windows 98 or Windows NT and are running Internet Explorer 6.0 SP1, you must download the patch found here: http://www.microsoft.com/downloads/details.aspx?FamilyId=B0095851-674D-4357-868C- DD75D88405EC&displaylang=en. To find out if you are running IE v6.0 SP1, open Internet Explorer and go to the menu at the top. Click on Help and then About Internet Explorer from the context menu that appears. Look for the version on the screen that appears.
The following versions of Internet Explorer are not affected (being unaffected by the vulnerability is true in the following instances of the Internet Explorer product only and does not negate the vulnerability in Windows, Office or third-party apps which could still be problematic):
- IE 5.01 SP3 on Windows 2000 SP3
- IE 5.01 SP4 on Windows 2000 SP4
- IE 5.5 SP2 on Windows Me

The following versions of Office are not affected (being unaffected by the vulnerability is true in the following instances of the Office product only and does not negate the vulnerability in Windows, Internet Explorer or third-party apps which could still be problematic):
- Office 2003 SP1
- Any flavor of Office 2000
The following version of Windows are not affected (Being unaffected by the vulnerability is true in the following instances for the Windows operating system only and does not negate the vulnerability in Internet Explorer, Office or third-party apps which could still be problematic):
- Windows XP SP2
- Windows 2000 SP3 or SP4
- Windows Me
- Windows 98 SE
- Windows 98

Back to the Top