I have added up all my incoming email and counted those classified as spam, and found that in the last week, my percentage of spam has been almost 40%. During the same period last year, it measured just 30%. This is a 10% increase.

I measure the amounts and types of spam with MailWasher Pro (2012), which compiles very good statistics for its users. If you don't already know about this program, it is a spam filter and email classifier, which sits between your email servers and your email client. It receives either POP3 or IMAP email from your mail servers and applies any filter or blacklist rules you define. I write and publish spam filters for MailWasher Pro and most of them are so reliable that I set them to automatically delete known spam. In case the filters are in error, I am able to restore the wrongly deleted messages from the MailWasher Recycle Bin.

While the volume and percentage of spam has increased over the last 7 days, an interesting development occurred: there was no spam with either malware links or attachments! In the previous weeks there were many such hostile messages, spoofing all manner of known websites and banks. Make no mistake, the malware scams will resume soon. Stay alert, especially if you have Java, Flash, or Adobe Reader installed on your computers or smart phones/tablets.

I always advise my readers to hover over links before clicking on them. Doing this causes the actual URL (web address) to be displayed on the bottom of your browser (Web-mail) or email client (desktop email program). This gives the savvy user a chance to see if the link claiming to lead to Intuit actually goes to a website that has nothing to do with intuit.com, or facebook.com, paypal.com, linkedin.com, etc, etc.

On the other hand, clicking (without hovering first to check it out) on a poisoned link takes you to a compromised website, which uses JavaScript and iframes to redirect you to a Russian malware server, where your computer is attacked for any vulnerable software. If you have any exploitable, unpatched software installed, your computer may be taken over by criminals and drafted into a spam and attack botnet, and have malware installed which steals money from your financial accounts, or extorts money from you to fix non-existent problems.

Let's move on to the spam analysis for the week...

Total incoming email: 531
Classified as spam: 210
Percentage classified as spam: ~40%; 30% this time last year
Number of messages classified as spam by my custom filters: 201
Number auto-deleted by my custom blacklist: 7
Number classified as spam by the Bayesian Learning filter: 2

The order of spam categories, according to the highest percentages, is as follows:

Male Enhancement: 55
Fake Pharmacies: 31
Counterfeit Cialis: 18
Counterfeit Watches: 18
Money Mule & work at home scams: 17
Fake Diplomas: 16
Weight Loss scams: 10
Blacklisted: 7
Russian and Ukrainian spam domain links: 6
Fake online Casinos: 5
Russian Dating scams: 2
Nigerian 419 & Lottery scams: 6
Miscellaneous spam: 19

Updates and/or additions to my custom spam filters:

Known Spam Subjects #4,
Male Enhancement [S] (twice),
Money Mule Scam #2 (twice).
Updated and renamed ".RU .UA" Domain Link to "Russian" Domain Link

Additions to my MailWasher Pro Blacklist:

+@chinesegamer.net

There was 1 false positive last week, which I corrected in my published filters. All other filters behaved as intended. Note, that I now publish three types of spam filters for MailWasher Pro. One type is for the latest 2012 series, in xml format, and two are for the previous series 6.x. One of those filters is set for manual deletions and the other for automatic deletions. You can read all about MailWasher Pro and the filters I write for it, on my MailWasher Pro Custom Filters page.

If you are having trouble caused by excess volumes of spam email, and are not using an effective filter, why not try out MailWasher Pro? It sure works for me!

Let's take a look at this scam from a curiosity point of view.

First of all, the sender has covered his tracks by using compromised email relaying PCs in a botnet. Two computers were used, both belonging to US residents. One belongs to an organization named "Secured Private Network" - which is obviously not so well secured! The second relay occurred via an open relay in a mail server belonging to CrystalTech Web Hosting.

The return path was interesting. It used a (possibly spoofed) account on a Ukrainian domain: terence_m@e-mail.ua. However, the From address shows test@milkom.net, which is obviously spoofed.

The message body claims to be from the "United states ambassador to nigeria
Ambassador terence mccauley" - yet it is filled with incorrect grammer, bad spelling and letter cases. I have to believe that any school kid in the USA knows that titles, countries and personal names always have the first letter capitalized.

The scammer claims to have plans to be: "coming to your country for an official meeting and i will be bringing your funds of ($500,000:00) FIVE HUNDRED THOUSAND UNITED STATES DOLLARS {bank draft} along with me." He goes on to demand an up front payment of $250 processing fee! "the cost of registering it is $250 USD the fee must be paid in the next 48 hours via western union."

Finally, to add insult to injury, the scam contains this outrageous statement:

Please, if you know you will not or can not send the requested $250 USD, please, dont bother replying this mail.

It is the up front, advance fee demands that gave these scams the name 419 scam. You see, section 419 of the Nigerian Penal Code makes it a serious offense to commit financial fraud involving advance fees. Yet, Nigerians go to Internet Cafes every day and mail out thousands of such scams to people in all parts of the World, but especially English speaking people in North America, the United Kingdom and the lands down under.

Never reply to a Nigerian scammer and never give them your phone number! There is no 500 Gs waiting for you, and you are not the beneficiary of anybody who died and left millions in a Nigerian bank. They will bleed you out of all your money with new fees and bribes and never send you the promised funds (because they do not exist). This has happened over and over to greedy people who fall for such scams. W.C. Fields once said "Never wisen up a chump or give a sucker an even break." That is exactly how Nigerian 419 scammers behave. They target the elderly as well as business owners and town clerks.

Does this worry you? It should if you are one of the people operating an unsecured wireless router. Not because of what Google was doing with this openly transmitted data, but because if a Google van can read your unencrypted data, so can a neighbor's hacker kid, or somebody with bad intentions driving down your street, looking for wireless connections to piggyback on, or data to steal (a.k.a: War-driving).

Here is what the FCC determined about Google Street View vans intercepting wireless data as they dove down streets:

The FCC has been investigating, and recently fined Google $25,000 [details] for the incident. In its report, the FCC concludes, "For more than two years, Google's Street View cars collected names, addresses, telephone numbers, URLs, passwords, e-mail, text messages, medical records, video and audio files, and other information from Internet users in the United States."

So, how can you make sure that something like this doesn't happen to your wireless connections? Secure your wireless routers, or hotspots! Here's how...

First and foremost, no matter what brand or type of wireless router, modem/router, access point, or hotspot you employ, change the default administrator password to something not easily guessed, or found in a common dictionary. This won't stop unencrypted data from being intercepted but will definitely make it much harder for a hacker, or malicious script to take over control of critical router/hotspot functions. If your router's password can be guessed, the DNS [1] settings can be changed without your knowledge, to point to rogue DNS servers, which will re-route every Internet based request to hostile territory, for nefarious purposes [2].

The next item you should take care of is to apply the best level of wireless "encryption" [3] that your wireless device is capable of using. This is what will stop almost all War-drivers and nearby snoops from intercepting anything they can make sense of. Right now, WPA2 [4]is the strongest security available in home routers, using a 256 bit key code. Don't even think for one minute that applying the ancient WEP [5] security protocol is going to keep even script kiddies out of your router!

Wireless hackers would have to run a super heavy duty encryption cracking program, over a long period of time, to decipher 256 bit security keys. If somebody is willing to go to that much trouble and resides next door to, or within signal acquisition distance of your location, you'll need to apply the strongest encryption possible, plus some extra measures to lock out unknown devices.

Some of these additional measures include allowing only specified MAC addresses to connect (although these can be spoofed by hackers), or only as many IP addresses to be assigned as required by the wireless devices in your location [6]. For instance, if you have a wireless laptop and wireless hand-held smart device, with your desktop PC hard-wired with a network cable, you only need to assign three wireless IP addresses. There will be a section in the "web" configuration screens of your router that allow you to set how many IP addresses can be assigned to any devices requesting a connection. If you can limit the connections to only what you need for your own internal use, a snooper will not be able to obtain the IP address required to join your network.

There is a new feature showing up on N protocol wireless routers called WIPS [7] which establishes an additional layer of security between a wireless router and the devices known to it. In particular, WIPS detects and takes action against rogue access points, or man-in-the-middle router attacks.This is not an end-all protocol and can be cracked by determined hackers with plenty of time on their hands and gear to do the dirty deed.

Once again, many of the attacks aimed at wireless routers (including breaking WIPS, WEP and WPA) can be thwarted by changing the default login password to the router to a strong code, not easily guessed, or found in a common dictionary.

You can learn more about wireless security development on this Wiki-pedia page. Remember, it takes a combination of techniques to keep determined crackers out of your wireless network. Make it as difficult as possible for unauthorized devices to connect to your network. This way, both your data, including logins and passwords, and your connection itself will remain under your control, as pertains to the wireless network. Protecting your individual devices from attacks from the Internet, via exploits, trickery and social engineering tactics is another matter, beyond the scope of this article.

Stay safe and practice safe Hex!

On the same date, all support and patches for Microsoft Office 2003 will also come to an end.

Windows XP has enjoyed a long life since its official release to retail date of October 25, 2001. It has been the most popular version of Windows since Windows 95 was released with parties and huge fanfare on August 24, 1995. XP has received three service pack upgrades since 2002, ending with SP 3, which was issued on April 21, 2008. Windows XP market share peaked at 76.1% in January 2007. But, with the introduction of Windows 7, there has been a steady decline in the number of XP users online. As of today, the market share for XP is only about 29%.

If you are reading this from an XP computer you need to begin planning to upgrade before all support for your aged operating system ends on April 8, 2014. Since there won't be anymore patches, you will be left unprotected by Microsoft against any vulnerabilities that may be discovered running in the wild after that date. History teaches us that as soon as support is dropped for one of the versions of Windows, cyber criminals ramp up their attacks to try to draft as many of the unpatched machines as possible into spam and DDoS attack botnets.

Another fact we have seen play out is that security software vendors begin to drop support for any version of Windows that has been end-of-lifed by Microsoft. So, people hanging onto XP after April 2014 will not only be left out in the cold by MS, but will soon see an end of support from anti-malware companies as well. Without virus and malware protection or Windows Updates, those computers will become cannon fodder for exploit kit writers.

I have already upgraded to Windows 7 and love it! My XP desktop computer is only turned on once a month, on Patch Tuesdays, to download any available Windows Updates. That machine is only here as a backup unit in case my main Win 7 computer hard drive crashes. It would only be used until I could restore a saved Acronis image of the operating system to the new hard drive. I save a complete image of the hard drive once a week, but backup my documents and libraries every night.

If you have programs that are only written for Windows XP, without newer versions that work under Windows 7, even in Compatibility Mode, you should consider buying a copy of Windows 7 Professional. It allows you to download a free, fully licensed copy of XP Pro, with SP 3, which you install into a virtual machine that runs inside Windows 7, as an application. You can run any Windows XP based program inside that Window, as though you had booted into XP. Of course, it takes away a gig of your RAM to run XP in the virtual machine, but, be happy if it runs at all.

Note: Your computer must have a CPU that supports running Virtual Technology (VT) in order to use the XP Mode in Windows 7 Professional. Learn more about the hardware requirements for running XP as a Virtual Machine in this article.

Well, it may have taken Apple 2 months to issue "a" patch, but they enjoyed doing that so much that they have now released their third patch in 7 days! Yes Mac owners, you have three critical patches to download and apply, including the latest one issued late yesterday (April 12, 2012).

You see, Apple has a policy of discontinuing support for certain third party software for various reasons. They decided about a year ago to drop support for Adobe Flash. Not too long ago they also decided to drop support for Oracle Java and removed it from the list of applications that are installed or updated by Apple Software Updates.

This decision to stop deploying Java with Apple/Mac updates was a tactical error in my opinion. It was well intentioned, but short sighted. Java exploits are absolutely the number one infection vector used by perpetrators of the ZeuS Trojan and various botnet installers. Java is cross-platform, and has been described by its original maker Sun Corporation as "write once, run anywhere" technology. Java is not a scripted language, but is deployed as compiled mini-programs, known as Applets, using what are known as .JAR files to distribute these programs and their supporting files.

Run Anywhere includes Mac OS computers, as well as smartphones, tablets, ATMs, on and on. Even though the user base for Mac computers is relatively small, compared to Windows, they have now become targets of Java exploit kits, due to the erroneous attitude of many Mac users that they are immune to malware sneak attacks. This has been proven to be wrong thinking.

It was not too complicated for the authors of the Flashback backdoor Trojan to update their exploit kit to detect if the computer being attacked was a Mac. If yes to is Mac, the machine is probed to see if a vulnerable version of Java is installed (whether or not the owner is using Java or even aware of it), then if certain security programs are also installed. If Java is installed, and these particular effective anti-malware programs, the Trojan installer bails out and deletes itself, knowing it has no chance of success.

Due to the viruses don't infect us attitude of many Mac owners who also had Java installed and were lured to compromised websites, or served malicious advertisements on legitimate websites, over 600,000 of them were infected with the Flashback backdoor, which drafts the computer into the Flashback Botnet. The Trojan also steals login credentials and other personal information from those computers.

Here is how a CNET security blogger described the new Mac Flashback infection routine:

Simply visiting a malicious Web site containing Flashback on an OS X system with Java installed will result in one of two installation routes. The malware will request an administrator password, and if one is supplied, it will install its package of code into the Applications folder. If a password is not offered, the malware will install to the user accounts where it can run in a more global manner.

Once installed, the Flashback will inject code into Web browsers and other applications like Skype to harvest passwords and other information from those program's users.

Apple has finally responded to this threat that has affected so many of its trusting Mac OS X users. The third update, issued on April 12, 2012, includes a removal tool for the Flashback Trojan itself. The previous updates included the latest version of Java, for those computers that had a previous version installed, as well as a code patch that will make it much more difficult for silent infections to occur in user space.

Mac users still need to be aware that malware is targeting them and even if this one is being dealt with, others are certain to come along, exploiting a to be discovered weakness in the operating system. Then, there is always social trickery that fools people into supplying their administrator password for a malware Trojan, disguised as some desirable utility program.

Finally, only Macs running OS X Lion, or 10.6 are patched by the Apple Java updates. If your Mac runs on Snow Leopard or earlier, you remain totally vulnerable to the Flashback Trojan, if you have Java installed and it it not at least patched version Java 1.6.0_31. Your only protections are to disable Java from running in your browsers, or uninstall it completely from your computer.

There are many anti-virus programs available for Mac computers, including Smart Surfing for Mac from Trend Micro, which detects, blocks and removes Mac viruses and content stealing Trojans.

Here is an excerpt from one which I received a couple of minutes ago:

From: "American Express"
Subject: Confirmation of email address change

Thanks for updating your email address

We changed your e-mail address in our files to {spoofed or harvested email account}. If the new e-mail address is not correct or you did not request this change, please click here,..{spoofed link leads to malware}

If you lack any installed computer security, here are some options for you to try:

• Trend Micro security programs (I use this)


• Malwarebytes Anti-Malware (I use this)


• Kaspersky Lab's Products - Try out a free 30-day trial!

These attack kits are mostly made in Russia and all target vulnerable flaws in Java, which used to belong to Sun Corp, but now is owned by Oracle. Don't confuse Java and JavaScript; they are horses of a different color. JavaScript is an interpreted code that runs in your browser to do special feature things. Java is a compiled executable program that runs on any device (over 3 billion devices according to Oracle!). While JavaScript is used on hostile websites to probe your browser for any vulnerabilities, the actual payload it delivers is usually a Java Applet, or .JAR file. If you have an exploitable version of Java, chances are strong that your computer will become botted and have a bank account stealing Trojan installed by the hostile Java Applet.

Do I have Java?

You really need to know the answer to this, no matter what operating system your computers run on. This is serious sh_t. Go to Java.com and click on the link labeled "Do I have Java." If you do have Java installed the version will be displayed on the results page. If it is not the current version, you are exploitable and should either download the latest version and uninstall all previous versions, or just uninstall all versions of Java and be done with it. Fewer and fewer pages demand that you have Java to function. It is most often used in online games. Unless you must use Java, the safest course is to not have any version of it installed at all!

In Windows, you can uninstall Java via your Windows Control Panel, using the Add/Remove or the Programs and Features icon. Mac owners must download the patched version from Apple, using the built in Apple software updater.

The latest version of Java is Java 6 update 31.

This discount is an affiliate offer, not offered to the general public arriving at their website via normal methods. No coupon codes are needed to get the discounts. I never cared for those codes anyway. Too much room for typos.

Here is a breakdown of the programs being discounted, along with their list and discounted prices.

Trend Micro Maximum Internet Security for 2012
This includes the whole ball of wax. All of the protections offered by the other Trend Titanium programs, plus additional protections against phishing and man in the middle attacks, computer and identity theft, both at home and when you're on the road using a wireless connection at a hotel, motel, coffee shop or fast food restaurant. It even includes a security app for Android Smartphones. Also included is Smart Surfing for Mac.

Regular price: $79.95 Sale price: $55.95. Learn more or Buy it now

Read the details about this program and find my yellow highlighted discount links on my Trend Micro web page.

Trend Micro Titanium Internet Security 2012
This is the most popular security program from Trend Micro, best suited to computer towers that stay in one location. Some of the key features are Enhanced Behavior Monitoring/Proactive Intrusion Blocking, Antivirus Security, Spyware Protection, Detect and Block Image Spam, Personal Firewall, Fraud Defense, Data Theft Protection, Wireless Network Monitoring, Network Control, and, coolest of all, you get all this protection for up to 3 home or mobile computers with just one license fee.

Regular price: $69.95 Sale price: $48.95. Learn more or Buy it now

Read the details about this program and find my yellow highlighted discount links on my Trend Micro web page.

Trend Micro Titanium™ Antivirus Plus Anti-Spyware
Trend Micro Titanium Antivirus + is very light on computer resources, because it uses a set of fairly small on-disk definitions that get loaded at startup, covering the most prevelant known threats. Additional real-time threat protection comes from Trend's in-the-cloud† security technology which is constantly updated as new malware is identfied and definitons are written.

Regular price: $39.95 Sale price: $27.95. Learn more or Buy it now

Subscribers to any of these Titanium programs are protected against hostile and compromised web pages by the Trend Micro Web Threat technology, which blocks access to bad websites before they can exploit your computer.

This 30% off sale ends on April 30, 2011. If you were waiting for a great discount before buying commercial security for your computers, now is the time you've been waiting for! Furthermore, because we are currently into a model year and subscriptions run 365 days, you would be entitled to a free upgrade to version 2013 of the same program.

I know this because I purchased a one year subscription to Trend Micro 2011 and received a free upgrade to version 2012. I'll be renewing it for another year next month. Having tried many other security programs I see no reason to change. Trend Micro does what it's supposed to do, without slowing me down or annoying me with a lot of pop-ups, like some other security programs did. The web threat protection blocks dangerous web pages from loading, preventing their exploit kits from attacking my defenses.

Read the rest of the details and find my highlighted discount links on my Trend Micro web page.

Second place went to replicas Chinese watches that rip off legitimate name brands, like Breitling. This was closely followed by spam for fake pharmacies and bogus diplomas. Drugs bought from fake pharmacies, if they ever arrive, will do you no good and may actually harm you. Buying fake diplomas won't necessarily get you hired, but they will get you fired, once your deception is discovered during routine background checks.

Runners up in spam were Russian domains pushing counterfeit goods and drugs, work at home scams, weight loss pills, male enhancement, Cialis and Viagra and three malware link scams.

The malware threats from last week were all fake Intuit invoices, with links to read invoices online. Those links all led to exploit attacks against browsers and their add-ons and plug-ins. If you clicked on a link in an email claiming to come from Intuit, scan your computer for malware Trojans and Bots. You can use a free 30 day trial copy of Trend Micro™ Titanium™ Internet Security, if you have nothing else that is current for virus detection.

The following represents my email totals and spam percentages by category. All results were obtained from MailWasher Pro, which I use to filter out spam before I download any incoming email to Windows Live Mail.

Overview
Total incoming email: 450 (10 more than last week)
Good mail: 367 (340 last week)
Classified as spam: 83 (100 last week)
Percentage rated spam: 18% (22.7% last week)

Breakdown by category of spam

Nigerian 419 scams: 19% (4% last week)
Watches: 18% (13% last week)
Fake pharmacies: 17% (17% last week)
Diploma scams: 12% (17% last week)
Russian domain links: 9.6% (2% last week)
Cialis & Viagra: 7.3% (9% last week)
Work at home scams: 6% (5% last week)
Weight Loss HCG scams: 3.7% (4% last week)
Male Enhancement scams: 3.7% (1% last week)
Intuit fraud exploit links: 3.7%

I made the following additions or updates to my custom MailWasher spam filters

No Additions last week

The following (single or wildcard) email addresses were added to my MailWasher Blacklist:

None added


About MailWasher Pro
I publish filters for both the old and new versions of MailWasher Pro. However, the new version allows for more lines of conditions than the previous ones. If you use a desktop application to send and receive POP3 email, MailWasher can act as a spam filter before you download email to your email client. You can learn more about the program, download a trial version, or purchase a subscription, at the MailWasher Pro website.

News: MailWasher Pro is once again offering lifetime licenses, covering three computers. You should try it out and see how it works for you in reducing spam in your desktop email client's inbox.

The caveat is that the Mac must contain an Intel processor and a decent amount of RAM. The full requirements are as follows:

• A Mac computer with an Intel Core 2 Duo, Core i3, Core i5, Core i7, or Xeon processor.


• Minimum 2 GB of memory (4 GB of memory is recommended to run Windows 7 in a virtual machine or if your host OS is Lion)


• About 500 MB of disk space on the boot volume (Macintosh HD) for Parallels Desktop installation.


• About 15 GB of disk space for each virtual machine.


• Mac OS X Lion 10.7


• Mac OS X Snow Leopard 10.6.3 or later


• Mac OS X Leopard v10.5.8 or later


• A valid license for the version of Windows you intend to install with Parallels.

For those who want to install Windows 7 into their Mac, you can buy a copy from Tiger Direct or NewEgg.

Parallels Desktop for Mac allows you to install Windows, or any other supported operating system - like Linux, into a virtual machine (VM), then install applications compatible with that operating system and run them as if you were using a Windows or Linux computer. This means that if you have a Mac that meets the requirements to run Parallels, you an install a valid copy of Windows 7 into it, then install Windows only software and run it as an application inside the Mac desktop. You can maximize the Parallels windows to be full screen if you need all of the monitor for your Windows applications,

Parallels 7 is currently on sale for 25% off the regular price, but only through March 13, 2012. You can learn more about Parallels here, or here.

If you have an older version of Parallels you may be entitled to a greatly reduced upgrade license for the current version.

When I published my article there were still an estimated 400,000 PCs in the USA infected with this malware. Many of these infected PCs belong to Fortune 500 companies and even parts of the US Federal Government, Millions more are still infected around the World. This extension of the cutoff date is to allow more time for the large entities in business and Government circles to search for and disinfect their compromised computers. It is a monumental task and many companies have already stretched the IT personnel and budgets to the limit, sniffing out any infected machines on their premises.

It was back in early November, 2011, that the FBI filed an indictment against an Estonian crime gang whose members were accused of creating and operating the "DNS Changer" malware and botnet. Search and seize warrants were obtained and the servers being used by the criminals running this enterprise were seized and taken offline. The named suspects have been arrested and are awaiting extradition, or have already been extradited to the USA, to face charges in a US Federal Court.

But, there was a downside to this victory. Innocent victims were unknowingly having all of their Internet connectivity routed though those "rogue" DNS servers that were taken down by the FBI and DOJ.

In order to minimize damage to those machines, a Judge ordered a New York hosting company to take over supplying IP connectivity to those infected PCs and routers. All requests from the "infectees" were rerouted to these interim servers, allowing the owners of the infected machines to happily go about their web browsing, online banking, auctioning, emailing, FTP-ing an IM-ing. Further, the Court set a cutoff date of March 8, 2012 for the company assigned to act as go-between for the infected machines.

In the meantime, ISPs and IP connectivity providers were notified about the IP addresses found in the log files of the seized malware servers. Owners of infected machines and routers were and still are being identified and being contacted by their ISPs or connectivity providers. It has been discovered that this process is taking much longer than anticipated when a Federal Court assigned a March 8, 2012 cutoff date for the handling of requests from the infected machines.

You can get more details in my previous blog article about the DNS Changer malware, how it affects computers and routers and links you can use to check if your systems have become compromised by this malware.

One final word: Now that we have been granted another 4 months to discover infected computers and routers, let's get to work doing so. I have checked my DNS servers and found them to be correct and clean. You can check your DNS servers here, if you are English speaking. There are equivalent DNS checking services in other languages, like http://dns-ok.de/ for German speaking Netizens.

Keep your Windows PCs patched via Windows Updates and your anti-virus software up to date with daily definitions updates. Scan for threats every night, before shutting down your PC, or yourself ;-). One of the symptoms of a DNS Changer infection is that Windows Updates and anti-virus programs get turned off. If you find that you cannot access Windows Updates or update your security programs, contact a competent computer technician or computer troubleshooter.

Android smartphone users who have Flash installed also have upgrades waiting, to version 11.1.111.7 (Android 2x, 3x) or 11.1.115.7 (Android 4x) respectively.

The previous patch fixed 7 security vulnerabilities, one of which was being exploited in the wild in February. This latest update patches 2 more newly discovered vulnerabilities (CVE-2012-0768 and CVE-2012-0769), which they claim are not yet being exploited by web browser attack kits. That is bound to change in a few days.

The first newly announced vulnerability allows an attacker to take over control of a user's computer or smartphone via a memory corruption attack against a component of Flash known as Matrix 3D. The second vulnerability in Flash Player allows a hacker to steal sensitive information from a victim's computer or smartphone.

While the Adobe Priority table says users should apply the new patches within 30 days, I recommend you do it as soon as you read this. Exploit kit writers are not going to wait 30 days to go after unpatched computers or smartphones. If you have Flash on a computer, visit the Adobe Flash Download page and download one version of Flash for Internet Explorer and another if you use Firefox or Safari browsers.

Mac users should visit the Adobe Flash download page for other systems and browsers. Apple itself does not support Adobe Flash.

Google Chrome has released a new version of the Chrome browser, which has an embedded version of Flash. To upgrade, open Chrome, then click on the Settings wrench icon on the upper right of the browser, then on "About Google Chrome." If the update has not already been installed it will begin downloading as you open the About Chrome box.

You will have to restart your browsers for the upgrades to take effect. This goes for most plug-ins like Flash. After restarting them, go to the About Flash page and verify that you have the most current version for your browser and operating system. Your installed version is displayed above a table on the page, which lists all current versions of Flash, by operating system.

I cannot stress enough the importance of keeping your software which is used by your browsers updated. Criminals pay talented, but unscrupulous programmers to research published vulnerabilities and write codes to attack browsers that are lured to attack servers by spam links. Victims get drafted in criminal and spam botnets and very often have bank account stealing Trojans installed as well. Further, their infected devices are used in distributed denial of service (DDoS) attacks on targets who have incurred the wrath of the criminal elements renting those botnets.

With so many threats in the wild and new ones being discovered every month, or less, it is hard to keep up with all of the updates to the various software applications that connect to the Internet via a browser, email client, instant messenger, Facebook, whatever. You need to remain concerned and stay aware of threats that are either loose in the wwild, or are about to be exploited. When you learn that Adobe has released a new version of something, check your computers to see if you have a previous version installed. If so, update everything out-dated to the latest versions.

Maintain a good line of self defense for your computers and smart devices, by installing automatically updated security software. I use and recommend Trend Micro and Malwarebytes Anti-Malware. Whatever brand you choose, make sure that if it has an annual subscription, that you keep your subscription active. An expired security program is like a sleeping doorman. No protection to mention.