Weekend Roundup

Here is a roundup of some of the security news from this week:


BES Vulnerability
Research in Motion (RIM) Warned of a high severity vulnerability on Blackberry Enterprise Servers (BES).  The vulnerabilities could allow attackers to gain access to and execute code on a BES Server:


http://www.v3.co.uk/v3-uk/security-watchdog-blog/2101385/rim-warns-severity-blackberry-enterprise-server-vulnerabilities


Hong Kong Exchange DDoS
A DDoS (Distributed Denial of Service) attach forced the Hong Kong Exchange Offline


http://threatpost.com/en_us/blogs/ddos-attack-forces-hong-kong-exchange-site-offline-second-day-081111


Android Users At Risk
Android users may be at risk.  A security vulnerability has been found in the Android operating system that may put users of the system at risk:
 http://ozarksfirst.com/fulltext?nxd_id=504697
http://techcrunch.com/2011/08/12/mystery-android-vulnerability-not-detailed-by-prudent-hackers/


Anonymous Facebook threat or not?
It was reported earlier this week that the hacking group Anonymous was going to take down Facebook.  However later it was reported that Senior members of the group had tightened the reigns and they were not planning on taking down Facebook after all.

http://www.forbes.com/sites/parmyolson/2011/08/11/why-the-anonymous-facebook-plot-was-a-dud/


http://www.telegraph.co.uk/technology/facebook/8696390/Anonymous-hackers-disown-Facebook-plot.html


http://hollysprings.patch.com/articles/facebook-fallout-a-hoax-or-is-your-privacy


osCommerce Websites used in Drive-By-Download Hacking
If you are using osCommerce, you may want to check your website.  A group of hackers is leveraging vulnerabilities in sites using OsCommerce to infect them with Drive-by downloads:


http://www.usatoday.com/money/industries/technology/2011-08-11-mass-website-hacking_n.htm