Anti-virus software maker McAfee warned that a flaw in one of its products could make customers’ PCs vulnerable to attacks in which hackers used their computers to distribute spam.

The company, which is a unit of chipmaker Intel Corp, disclosed the flaw in a message to customers on its website Wednesday.

McAfee spokesman Ian Bain said t least one customer had fallen victim to such an attack, which leveraged a flaw in a service offering known as McAfee SaaS for Total Protection.

The web-based service protects customers from viruses hidden in emails and websites. Bain said the flaw was in a piece of software that McAfee customers install on their PCs to enable them to use the service.

While the flaw could enable hackers to send spam from machines of McAfee SaaS for Total Protection customers, it does not grant them access to data on an affected PC, Bain said.

He said that the company’s engineers were working to fix the bug and expected to have it fixed on Thursday.

In April 2010, a glitch included in a regular release of McAfee’s anti-virus software mistakenly identified part of Microsoft Corp’s (MSFT.O) popular Windows XP operating system as a virus, triggering personal computer outages at many of its customers, including more than 100 large corporations.

Source:http://www.hindustantimes.com/technology/PersonalTech-Updates/McAfee-software-bug-could-turn-customers-PCs-into-spam-servers/SP-Article1-799407.aspx

Anti-virus software maker McAfee warned that a flaw in one of its products could make customers’ PCs vulnerable to attacks in which hackers used their computers to distribute spam.

The company, which is a unit of chipmaker Intel Corp, disclosed the flaw in a message to customers on its website Wednesday.

McAfee spokesman Ian Bain said at least one customer had fallen victim to such an attack, which leveraged a flaw in a service offering known as McAfee SaaS for Total Protection.

The web-based service protects customers from viruses hidden in emails and websites. Bain said the flaw was in a piece of software that McAfee customers install on their PCs to enable them to use the service.

While the flaw could enable hackers to send spam from machines of McAfee SaaS for Total Protection customers, it does not grant them access to data on an affected PC, Bain said.

He said that the company’s engineers were working to fix the bug and expected to have it fixed on Thursday.

In April 2010, a glitch included in a regular release of McAfee’s anti-virus software mistakenly identified part of Microsoft Corp’s (MSFT.O) popular Windows XP operating system as a virus, triggering personal computer outages at many of its customers, including more than 100 large corporations.

Source:http://mybroadband.co.za/news/security/41655-mcafee-software-bug-could-turn-your-pcs-into-a-spam-server.html

McAfee is looking into a problem with a service in its SaaS Endpoint Protection software that appears to be allowing computers to serve as open proxies for sending spam, the company told CNET today.

“We are aware of the issue and have both threat analytics and development teams diligently analyzing the problem and possible solutions,” the company said in a statement. “We will have more information on the issue shortly.”
A public relations representative said she was attempting to get more information on the matter but did not get back to CNET by the end of the work day. The problem was reported by McAfee customers on the Web who complained that their e-mails were being blocked by e-mail providers and their IP addresses were being blacklisted for sending spam.

The problem appears to be in the RumorServer Service myAgtSvc.exe, McAfee Peer Distribution Service, which is part of McAfee SaaS Endpoint Protection Suite, previously known as Total Protection Service, according to the Kaamar Blog. The technology, used for delivering updates to computers without a direct Internet connection, serves as an Open Proxy on Port 6515, which effectively opens the computer up to being used by spammers to use the computer to send spam to other sites that looks like it is coming from that IP address, the blog post says.

The Kaamar blog first detected a problem on January 4 when e-mail was returned undelivered with a message saying “Our system has detected an unusual rate of unsolicited mail originating from your IP address.”

“Our Windows 2008 server was one of the computers affected. We first realised there was a problem on the 4th January 2012 when an email was returned undelivered with the message: “Our system has detected an unusual rate of unsolicited mail originating from your IP address. To protect our users from spam, mail sent from your IP address has been blocked,” the blog post says. “On checking through our mail logs, we also noticed that an earlier email sent 2nd January had been delayed with a message saying our IP was on the spamhaus/cbl list as being infected with a trojan spambot.”

The Kaamar blog site was able to stop the traffic on January 5 but received a data limit warning from the ISP that the site was nearing its monthly limit for traffic in only a few days. The problem, which appeared to start December 31, 2011, caused the site to get the equivalent of 10 months of normal traffic in just one day, according to the post. Meanwhile, IP addresses for the site were on several public blacklists for spamming activity.

Mr.HinkyDink’s UT Blog reported finding nearly 1,900 IP addresses serving as open proxies running the McAfee software since December 1, 2011.

The Kaamar blog has instructions for checking to see if a computer is affected and protecting computers until McAfee fixes the problem.

In the meantime, a McAfee customer posted on a Microsoft Technet forum that “McAfee has developed a patch that will instruct rumor to not respond to most incoming requests on port 6515. The patch will be posted through updates over a week time. The updated version will show 5.2.3 patch 4.”

Source:http://news.cnet.com/8301-1009_3-57360694-83/mcafee-software-lets-scammers-hijack-pcs-to-send-spam/

Mcafee Stinger is an antivirus scanner intended to be used if you think a computer has been infected.

It doesn’t provide any active protection like a full anti-virus program but is a useful tool to copy onto a USB memory key or CD so that you can scan a computer that is acting strangely.

There is no installation required for Stinger: simply run the downloaded file.

There are some preferences that can be set although the defaults are quite acceptable. Stinger can be set to scan for suspicious processes, registry entries, boot sectors and rootkits. It can merely report on viruses although it is set to repair them by default.

Without making any changes Stinger will scan the entire hard disk of the computer but it is possible to add specific folders to the scan.

The List Viruses button shows a list of all the viruses that Stinger can detect and remove.

All that remains to make the scan is to click on the green Scan Now button. The folders and files that are being scanned are shown with a report of anything it finds.

Mcafee Stinger comes with all the virus-definition files included so there is no need to connect to the internet to get the latest updates.

For this reason it is best to download Stinger when it is needed so that you always have the latest version.

Read more: http://www.computeractive.co.uk/ca/download-review/2133505/remove-malicious-software-mcafee-stinger#ixzz1i0mI42gv
Software, gadgets, magazines and more in our webstore. Click here to see our latest offers.

Source:http://www.computeractive.co.uk/ca/download-review/2133505/remove-malicious-software-mcafee-stinger