5th week of Security Podcast for CERTSTATION

Hello and welcome to the CERTStation Podcast for the 5th week in 2009. I am Jay Johnson and these are the headlines:

Ex-employee calls Microsoft spying lawsuit as Desperate (pause)
Human error causes Google search bug while
Symbian Trojan steals money from mobile accounts (pause)
Patches for VMware ESX and ESXi release and finally
One-Click iPhone Application Cracker Released to the Public

And now for this week's newswire details.
A former Microsoft employee accused of stealing company information is disputing Microsoft's version of events, saying the lawsuit against him is an attempt to force him to abandon a patent infringement case. Mullor, who was employed by Microsoft from November 2005 to September 2008, was sued by the company earlier this month for allegedly downloading documents related to a Microsoft antipiracy technology used by computer makers to lock Windows to their PCs. Microsoft fired Mullor last September after allegedly finding evidence of his unauthorized downloading. Although Mullor did not address the accusations that Microsoft has made regarding downloading of confidential documents and then trying to hide the evidence on his company laptop, he did deny that he kept his past, and his patent, a secret when he was hired.

(pause)
Human error caused a search results glitch that returned the message "this site may harm your computer" for about an hour last Saturday on Google's Web site. The mistake was Google's and not StopBadware.org's, as was originally thought. Google said it released an update Saturday morning to its list of URLs known to install malicious software. Some news reports earlier in the day said that Google had also stopped flagging known bad sites, but according to StopBadware that wasn't the case and Google was correctly flagging those sites as malicious.

(pause)
Kaspersky has warned of a Trojan which is able to transfer small sums, of between 45 and 90 cents, by the use of texting. It makes use of a prepaid service from an Indonesian mobile phone provider to do the transfer. The malware spreads via Bluetooth and is written in Python. A successful infection requires an active Bluetooth connection and multiple clicks to confirm receipt of the Trojan, as well as the presence of a Python interpreter on the phone. Australian media are now warning of a wave of Trojans heading for Australia, where, they say, a single call is sufficient to spread the Trojans.

(pause)
VMware has released updates for the ESX server and ESXi hypervisor, to fix four vulnerabilities. The major fixes are release for VMware ESXi 3.5, ESX 3.5, ESX 3.0.3 and VMware ESX 3.0.2. One of the fixes is for an issue with corrupted VMDK delta snapshots, which meant that if a corrupted snapshot was loaded, it was possible that it could crash the complete ESX host.

(pause)
Anyone with an iPhone or iPod Touch can now start cracking software purchased from Apple so that they can share them with their friends. A project started named Crackulous which was officially only available to a limited number of individuals is now available publically. The software has quickly gained attention as it makes the process of cracking software very easy. Currently a few people are reporting that they are experiencing difficulty getting the release to run, while others have no problems. There are also a couple of minor acknowleged bugs, but these are expected to be fixed shortly. The latest version of Crackulous is now officially available from the Hackulous Cydia Repository. It is expected to become one of the most downloaded iPhone apps ever.

If you enjoyed this podcast why not visit CERTStation.com and check out our free Internet Security Dashboard. In the meantime this is your host Jay Johnson wishing you a safe and secure week.