In this section

• Home
• Press office
• News archive
• Articles
• 2006
• 08

• Journalists' guide
• News archive

Talk to our experts

• Press contacts

Resources

• Sophos Podcasts
• SophosLabs blog
• Graham Cluley's blog
• Image gallery
• Customer case studies
• Free anti-virus
• White papers
• Awards and reviews
• Industry affiliations

Info feeds

• Security news
• Company news

• Security news
• Company news

What are info feeds?

2 August 2006

Centrino wireless flaw could be exploited by hackers to spread malware Memory corruption software flaw could leave door open for wireless worm

Experts at SophosLabs™, Sophos's global network of virus, spyware and spam analysis centers, have advised computer users to ensure they are running the latest security patches following the announcement of vulnerabilities in Intel Centrino's wireless features. The flaws could, theoretically, allow hackers to spread malicious code such as a worm wirelessly between computers.

According to a statement by Intel, the security vulnerabilities exist in the Microsoft Windows drivers for certain versions of their Wireless Network Connection hardware.

"A hacker could exploit these wireless vulnerabilities to run malicious code on an innocent user's computer, giving them control over other people's PCs or spreading a wireless worm which could leapfrog from one laptop to the next," said Graham Cluley, senior technology consultant for Sophos. "The good news is that we haven't seen any attacks using this exploit yet, but that doesn't mean computer users should be laid back about applying fixes."

Intel has published a tool on its website to help users determine if they are running hardware which may be affected.

• Read more about the vulnerabilities and the hardware which is potentially affected
• Read about an Intel tool that will help you identify your wireless adapter

"It is essential that all companies remain alert to the latest security issues, and ensure their business computers are properly defended with the latest patches," continued Cluley. "The more time taken to patch a flaw, the greater the opportunity for a malicious hacker to exploit it."

Although Intel has published generic updates to its software which reportedly fix the issue on its website, the company is recommending that users contact their laptop manufacturers for vendor-specific information and fixes.

Sophos continues to recommend companies protect their laptops, desktops and servers with automatically updated protection against viruses, spyware, and spam.

• Bookmark with del.icio.us
• Submit this story to digg
• Submit this story to slashdot

About Sophos

Sophos enables enterprises all over the world to secure and control their IT infrastructure. Sophos's network access control, endpoint, web and email solutions simplify security to provide integrated defenses against malware, spyware, intrusions, unwanted applications, spam, policy abuse, data leakage and compliance drift. With over 20 years of experience, Sophos protects over 100 million users in nearly 150 countries with its reliably engineered security solutions and services. Recognized for its high level of customer satisfaction and powerful yet easy-to-use solutions, Sophos has received many industry awards, as well as positive reviews and certifications.

Sophos is headquartered in Boston, US and Oxford, UK. More information is available at www.sophos.com

See also:

• RSS security news and live virus information feeds
• Free notification of new viruses found in the wild