Adobe Flash Player which delivers high-impact, rich Web content, has attracted millions of internet users towards it by offering a rich web experience. In the starting of July, it is found that the security flaws in Adobe have paved way for hackers to get access to user’s computer easily. They just email PDF files with corrupted Flash video clips to hack websites and implant their malicious code in user’s computer.

When user clicks on the received clip, malicious codes get loaded in the program and start controlling the computer. They steal data, draw off cash from online financial accounts, spread spam and trigger promotions to sell fake anti-virus programs from the victim’s computer.

Adobe has taken enough measures to issue security patches once a quarter. It scrambles to develop an emergency patch by this Friday as they suspect the number of attacks could soar this week.

“The volume of cybercrime has been increasing, so we’ve stepped up our efforts to supply best-in-class security,” says Rob Tarkoff, Adobe’s senior vice president and general manager of business productivity.

Computer users were given reminders every seven days about software updates by Adobe; they were advised to install it immediately to safeguard their system.

At the end of the previous week, Mikeyy, a cross site scripting vulnerability, entered into twitter. It displays the message “Hey everyone, join StalkDaily.com. It’s a site like Twitter but with pictures, videos and so much more.” If you join there, your Twitter account will be locked as said by Sheamus Bennett at Twittercism. Don’t visit the site “StalkDaily”. Precautions to save your account from this worm, are don’t view any profile and don’t follow any link.

Mikeyy Mooney – owner of StalkDaily.com confessed that “I am the person who coded the XSS which then acted as a worm when it auto updated a users profile and status, which then infected other users who viewed their profile. I did this out of boredom, to be honest. I usually like to find vulnerabilities within websites and try not to cause too much damage, but start a worm or something to give the developers an insight on the problem and while doing so, promoting myself or my website.”
Bennet recommends few following steps to remove stock daily from your account if you think you’ve been infected.

In your browser, clear your cache and empty all your cookies. (This can be found in your settings.)
• Log out of TweetDeck or any external applications you are using.
• On Twitter.com, change your password.
• Log back in. It should be okay. If so, log back into TweetDeck et al.
• Go back and delete any tweets sent by you recommending StalkDaily. This is very important.

Prevx, a U.K based security firm, find that an unknown website with operating server from Ukraine, has used to harvest confidential information from 160,000 infected computers before it was shutdown this month. The site was on online still nearly the security researchers alerted the internet service provider about the theft. The report states that the site collected information from 5000 infected computers every day.

It doesn’t stop with personal computers; they have also stolen data from infected computers of banks, and Governments. Prevx said that it has alerted the site’s Internet provider, the FBI and U.K. authorities about the breach it discovered. The company also talked to the affected bank, Doraville, Ga.-based Metro City Bank, a community bank whose Web site lists four locations, and Prevx said the bank has removed the infected computers.

“The level of amateurness speaks to how widespread it is,” Joe Stewart, a SecureWorks Inc. He helped to shutdown a command-and-control server of a botnet that had infected more than 378,000 computer and more than 460,000 username and password.

Researchers try to deactivate the server before criminals get the data from them.