Forum Thread: Daily CYBERCLIPS May

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Open Discussions

This thread has been marked as locked.
mogs Daily CYBERCLIPS May
Member 1st May, 2012 21:20
Ranking:
Posts: 6,279
User Since: 22nd Apr, 2009
System Score: N/A
Location: UK

Twentieth Edition.

Thankyou for the support . Hope you find something of value/interest in the new thread. The new INDEX thread will follow shortly.
Please refrain from scoring on both threads.
Security is the mainstay of the thread with some related and varied topics.
Scroll down for the latest posts !!
Note; that no entry/post should be taken as a personal recommendation, unless otherwise stated.
Please continue to keep CYBERCLIPS free of junk and unattractive to any contentious individuals..
* Keep patching : up to date : be Cybersafe ! *

--

mogs CClip 1
Member 1st May, 2012 21:22
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Stable Channel Update
Monday, April 30, 2012 | 13:38
Labels: Stable updates

The Chrome Stable channel has been updated to 18.0.1025.168 on Windows, Mac, Linux and Chrome Frame.


Security fixes and rewards:

Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

[106413] High CVE-2011-3078: Use after free in floats handling. Credit to Google Chrome Security Team (Marty Barbella) and independent later discovery by miaubiz.
[117110] High CVE-2012-1521: Use after free in xml parser. Credit to Google Chrome Security Team (SkyLined) and independent later discovery by wushi of team509 reported through iDefense VCP (V-874rcfpq7z).
[117627] Medium CVE-2011-3079: IPC validation failure. Credit to PinkiePie.
[121726] Medium CVE-2011-3080: Race condition in sandbox IPC. Credit to Willem Pinckaers of Matasano.
[$1000] [121899] High CVE-2011-3081: Use after free in floats handling. Credit to miaubiz.

The bugs [106413], [117110] and [121899] were detected using AddressSanitizer.


Full details about what changes are in this release are available in the SVN revision log. Interested in hopping on the stable channel? Find out how. If you find a new issue, please let us know by filing a bug.

Karen Grunberg
Google Chrome

http://googlechromereleases.blogspot.co.uk/

--
Was this reply relevant?
+0
-0
mogs CClip 2
Member 1st May, 2012 21:43
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
IE on a rebound, browser share data shows
Microsoft's IE gains usage share for third month in the first four of 2012

By Gregg Keizer
May 1, 2012 03:21 PM ET
Computerworld - Microsoft's Internet Explorer (IE) in April again gained usage share, the third time in the year's first four months, to stay well above the 50% mark and remain the world's top browser, a Web analytics company said today.

Google's Chrome's share also climbed in April, said Net Applications, ending that browser's three-month decline.

IE boosted its share by about three-tenths of a percentage point last month to average 54.1% in April. That returns IE to a mark comparable to its September 2011 share.

Since Jan.1, IE has increased its usage share by 2.2 percentage points for a 4% gain since the end of 2011. The turnaround has been IE's largest and longest since the browser began shedding share years ago to Firefox, then later, Chrome.

Microsoft has pinned its hopes almost entirely on IE9, the 2011 edition that runs only on Windows Vista and Windows 7.

Read more at :-
http://www.computerworld.com/s/article/9226753/IE_...

--
Was this reply relevant?
+0
-0
mogs CClip 3
Member 1st May, 2012 21:47
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Symantec: More Malware on Religious Sites Than Porn Sites

Pornographic Web sites are less likely to be infected than religious, automotive or health sites, according to the company.

By Jeff Goldman

According to Symantec's annual Internet Security Threat Report, religious and ideological Web sites have far more security threats per infected site than adult/pornographic Web sites.

"We hypothesize that this is because pornographic Web site owners already make money from the Internet and, as a result, have a vested interested in keeping their sites malware-free -- it's not good for repeat business," the report states.

"Pornography-themed Web sites have long had a reputation as the 'dark alleyways' of the Internet," writes Threatpost's Paul Roberts. "In fact, porn sites ranked tenth in the list of the top ten categories of Web sites that are most infected, after automotive themed sites (ranked 8th) and health and medicine sites (ranked 9th). Top on that list: blogs and Web communications, including religious Web sites. That was followed by personally hosted sites, business sites, shopping and education."

"The average number of threats found on religious sites was 115 (mostly fake antivirus software)," writes The Wall Street Journal's Ben Rooney. "By contrast, pornographic sites had less than a quarter, at around 25 threats per site. Of course, the number of pornographic sites is vastly greater than religious sites."

"Symantec measured an increase of more than 81 percent in malware in 2011 over 2010, while the number of malware variants increased by 41 percent," writes PCWorld's Daniel Ionescu. "On the flip side, spam volumes have decreased from 88.5 percent of all email in 2010 to 75.1 percent in 2011 -- thanks to law enforcement action which shut down the Rustock worldwide botnet that was responsible for sending out large amounts of spam."

http://www.esecurityplanet.com/malware/symantec-mo...

--
Was this reply relevant?
+0
-0
mogs CClip 4
Member 1st May, 2012 21:51
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Skype investigates tool that reveals users' IP addresses
Skype said the privacy-compromising issue is present in other peer-to-peer systems

By Jeremy Kirk | IDG News Service

Skype said Tuesday it is investigating a new tool that collects a person's last known IP address, a potential privacy-compromising issue.

Instructions posted on Pastebin on Thursday showed how a person's IP address could be shown without adding the targeted user as a contact by looking at the person's general information and log files.

Skype, which is owned by Microsoft, said in an email statement that "this is an ongoing, industry-wide issue faced by all peer-to-peer software companies. We are committed to the safety and security of our customers and we are taking measures to help protect them."

Read more at :-
http://www.infoworld.com/d/security/skype-investig...

--
Was this reply relevant?
+0
-0
mogs CClip 5
Member 1st May, 2012 21:54
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft's Windows XP is still the most popular

It's hard to get users to migrate to Windows 7
By Lee Bell
Tue May 01 2012, 17:35
SOFTWARE HOUSE Microsoft's decade old operating system (OS) Windows XP is still the most popular, according to data released today by web analytics firm Net Applications.
Despite shedding users over the past year, Windows XP is still clinging onto a sizeable share of the market, with Net Applications' report showing only a minor drop in users to 46.08 per cent in April from 46.86 per cent in March.
Interestingly, the data also reflect an unusual rise-and-fall pattern in Windows XP's audience each month since last November.
Meanwhile, the study tells us that Windows 7 is continuing to grow in popularity with its most recent edition capturing a 38.67 per cent share of the market in April, up from 37.54 per cent in March.
Despite Windows XP's firm grip, Microsoft has been encouraging users and businesses to switch to Windows' most recent version, with relative success.
However, Microsoft will have to step up the message as a post on the Windows Team Blog announced last month that support for Windows XP will end in two years, causing panic among large enterprises that have to migrate thousands or tens of thousands of users, something that doesn't happen overnight.

Read more at :-
http://www.theinquirer.net/inquirer/news/2171792/m...

--
Was this reply relevant?
+0
-0
mogs CClip 6
Member 1st May, 2012 22:03
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 7
Member 2nd May, 2012 21:26
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 8
Member 2nd May, 2012 21:33
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Mozilla ponders major Firefox UI refresh
Same look and feel on all editions, including tablet, phone and Windows 8 Metro, may show later this year

By Gregg Keizer
May 2, 2012 12:47 PM ET
Mozilla is working on a revamp of Firefox to synchronize its various versions -- desktop, tablet, phone and Windows 8 Metro -- into a single visual style, according to documents posted by members of its user interface (UI) design team.

The project, which does not have a name, and the earlier blending of Mozilla's mobile and desktop design groups, is meant to bring more coherence to the various versions of the open-source browser.

"One of our major goals for the year [is] getting Firefox to feel more like one product -- more 'Firefoxy' -- across all our platforms, desktop to tablet to phone," Madhava Enro of the Mozilla UI design team, said in a post to his personal blog yesterday.

Enro posted a slideshow he and others used the week before to present their proposals at a company get-together. According to the presentation, some UI elements will be shared across all Firefox editions, among them a lean toward "softer texture" and smoother curves in the design.

Read more at :-
http://www.computerworld.com/s/article/9226787/Moz...

--
Was this reply relevant?
+0
-0
mogs CClip 9
Member 2nd May, 2012 21:37
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 10
Member 2nd May, 2012 21:41
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Scrambls puts control of social media back in the hands of users
Service allows users to keep their Facebook posts away from prying eyes -- including Google itself -- and lets corporations redact sensitive posts

By Robert Lemos | InfoWorldFollow @infoworld

Facebook, Twitter, and other social media sites may not be happy if a new service that launched in beta Wednesday takes off.

The service, scrambls, may be misspelled and lack a proper capital letter, but it aims to put the control of social-media posts back in the hands of users. Using scrambls, which is an add-on to major browsers, users can encrypt submissions to Facebook, Twitter, and other social networks, giving them fine-grained control over the scrambled text.

The service suggests interesting possibilities: Consumers could make their posts unreadable to anyone but themselves after three or six months, restrict access to certain posts to only family members, or block the social media site from using the posts for marketing purposes. Companies could create internal feeds unreadable by competitors and have an undo button to redact posts that leak sensitive information.

More at :-
http://www.infoworld.com/t/data-security/scrambls-...

--
Was this reply relevant?
+0
-0
mogs CClip 11
Member 2nd May, 2012 21:50
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Check Point relaunches ZoneAlarm antivirus as free product
Adds firewall and cloud protection
By John E Dunn | Techworld | 02 May 12

Check Point is offering its ZoneAlarm antivirus software as a free consumer product for the first time, adding the company's no-cost firewall to the bundle to offer all-in-one PC protection.

The thinking behind ZoneAlarm Free Antivirus + Firewall 2013 appears to be to pack more under the 'free' banner than its rivals, which stick pretty much to file scanning with a layer of realtime threat detection.

The combined product gets identity theft protection (first added to the paid software in 2008), an anti-phishing toolbar of the sort sometimes found at the browser layer, and free online backup for those who want an alternative to Google's Drive or Microsoft's SkyDrive.

It also comes with a download protection layer that monitors for known 'bad' files and what Check Point calls an "OS firewall", a way of monitoring for craftier threats that have somehow bypassed Windows itself.

However, the most interesting addition is the integration of the antivirus client with Check Point's free firewall, which uses Check Point's DefenseNet cloud system to analyse a PC's files against known bad examples.

An obvious question is what customers of the company's paid software - Internet Security Suite 2012 - will get over and above the free client and the answer seems to be extras such as parental controls, credit monitoring and the company's virtual browser technology.

More at :-
http://www.pcadvisor.co.uk/news/security/3355337/c...

--
Was this reply relevant?
+0
-0
mogs CClip 12
Member 3rd May, 2012 03:49
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Beta Channel Update
Wednesday, May 2, 2012 | 18:00
Labels: Beta updates
The Beta channel has been updated to 19.0.1084.41 for Windows, Mac, Linux, and Chrome Frame.

Take a look at the changelog to see what happened in this release.

If you'd like to get on the Beta channel, you can download it from our Beta download page. If you find a new issue, please let us know by filing a bug.

Anthony Laforge
Google Chrome

http://googlechromereleases.blogspot.co.uk/

--
Was this reply relevant?
+0
-0
mogs CClip 13
Member 3rd May, 2012 12:14
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

IE 'silent' upgrade helps put newest browser on Windows
Stats show some Windows 7 and Vista users upgraded to IE9, but the new practice affected few XP users

By Gregg Keizer
May 2, 2012 04:05 PM ET
Computerworld - Microsoft's decision late last year to switch on "silent" upgrades for Internet Explorer (IE) has moved some Windows users to newer versions, but has had little, if any, impact on the oldest editions, IE6 and IE7, according to usage statistics.

In December 2011, Microsoft announced it would start automatically upgrading IE so that users ran the newest version suitable for their copy of Windows.

Under the plan, Windows XP users still on IE6 or IE7 would be updated to IE8, while Windows Vista or Windows 7 users running IE7 or IE8 would be pushed to IE9.

Previously, Microsoft has always asked users for their permission before upgrading IE from one version to the next, even if Windows' automatic updates was enabled.

First to get the automatic treatment, Microsoft said, would be Australia and Brazil, both guinea pigs for the January 2012 debut. The program would then be gradually expanded to other markets.

Yesterday, Microsoft declined to disclose what other countries, if any, had had the auto-upgrade switched on.

But in Australia and Brazil, the move shuffled share among some editions of IE, according to data from StatCounter, an Irish Web analytics company that publishes country-by-country usage share numbers for IE6, IE7, IE8 and IE9.

Read more at :-
http://www.computerworld.com/s/article/9226799/IE_...

--
Was this reply relevant?
+0
-0
mogs CClip 14
Member 3rd May, 2012 21:02
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 15
Member 3rd May, 2012 21:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Botnet army flicks 'off' switch at UK crime agency website

Suspiciously close to Soca's shutdown of stolen-data shops
By Brid-Aine Parnell

Posted in Enterprise Security, 3rd May 2012 13:26 GMT
The UK's Serious Organised Crime Agency's website has been taken offline following a DDoS attack that started last night and is still going on.

SOCA decided to take the site down itself around 10pm last night to stop the distributed denial of service attack from bothering other connected websites.

"We took the site off temporarily to limit the impact of the DDoS on other clients who are hosted by the same service provider," a spokesperson told The Reg.

The botnet army has succeeded in getting the site offline, but not a whole lot else.

"Frankly, DDoS are a temporary inconvenience to website visitors but they're not a security risk to the organisation," the spokesperson said.

More at :-
http://www.theregister.co.uk/2012/05/03/soca_site_...

--
Was this reply relevant?
+0
-0
mogs CClip 16
Member 3rd May, 2012 21:13
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 17
Member 3rd May, 2012 21:25
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 18
Member 4th May, 2012 17:15
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft boots Chinese firm for leaking Windows exploit
Kicks Hangzhou DPTech out of MAPP after tracing proof-of-concept code leak

By Gregg Keizer
May 4, 2012 06:39 AM ET
Computerworld - Microsoft on Thursday identified a Chinese security partner as the source of a leak last March in its highly restricted vulnerability information-sharing program.

The company, Hangzhou DPTech Technologies, was tossed out of the Microsoft Active Protection Program (MAPP) for leaking the proof-of-concept exploit.

"During our investigation into the disclosure of confidential data shared with our Microsoft Active Protections Program (MAPP) partners, we determined that a member ... Hangzhou DPTech Technologies Co., Ltd., had breached our non-disclosure agreement (NDA)," Yunsun Wee, director of Microsoft's Trustworthy Computing group, wrote in a post to a company blog. "Microsoft takes breaches of our NDAs very seriously and has removed this partner from the MAPP Program."

More at :-
http://www.computerworld.com/s/article/9226877/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 19
Member 4th May, 2012 17:18
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Bloggers plead for Windows Live Writer's life
Microsoft says the tool 'works great' on Windows 8, but dodges questions on demise after Live brand is retired

By Gregg Keizer
May 3, 2012 05:08 PM
Computerworld - A Windows developer, upset at the likely demise of Windows Live Writer as part of Microsoft's move to retire the Live brand, has launched an online petition drive to save the tool.

On Wednesday, Microsoft announced it was retiring the Windows Live brand, and will replace it with a set of online consumer services targeting Windows 8, the operating system upgrade expected to launch later this year.

In a grid Microsoft published yesterday, Windows Live Writer was noticeably absent, leading users to conclude that the company was killing the blog publishing program.

More at :-
http://www.computerworld.com/s/article/9226850/Blo...

--
Was this reply relevant?
+0
-0
mogs CClip 20
Member 4th May, 2012 17:21
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Microsoft plans big May patch slate for next week
Schedules seven updates to patch 23 bugs in Windows, Office

By Gregg Keizer
May 3, 2012 03:00 PM
Computerworld - Microsoft today said it would ship seven security updates next week, three critical, to patch 23 bugs in Windows, Office and its Silverlight and .Net development platforms.

The number of patches -- nearly two dozen -- is higher than usual for an odd-numbered month; for some time, Microsoft has used an even-odd schedule, patching more vulnerabilities in the even months, when it also regularly updates Internet Explorer.

"May has been a light month, historically, very light," said Andrew Storms, director of security operations at nCircle Security, who tracks the number of patches and updates Microsoft issues each month.

In May 2011, Microsoft shipped two update that patched three vulnerabilities. The year before, it delivered two updates that patched two bugs.

"So, this is a big number," said Storms.

The pace so far this year -- Microsoft's collections during the first five months have included seven, nine, six, six and seven updates -- puts to rest the idea that Microsoft still hews to a wave-and-trough practice.

More at :-
http://www.computerworld.com/s/article/9226846/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 21
Member 4th May, 2012 17:27
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Oracle urges removal of older Java versions due to security risks
Company points users to latest Java update, with most recent features, fixes, and performance improvements

By Paul Krill | InfoWorldFollow @pjkrill

Oracle, in making Java Platform, Standard Edition (SE) 7 the default runtime environment for Java this week, is emphasizing that older versions of Java be removed for security purposes.

The company recommends updating to the latest version of Java, which contains the most recent features, fixes, and performance improvements. Along with that, older versions should be removed. "Keeping old and unsupported versions of Java on your system presents a serious security risk," Oracle said on Java.com. "Removing older versions of Java from your system ensures that Java applications will run with the most up-to-date security and performance improvements on your system."

[ Also on InfoWorld: Last week, Oracle released Java SE 7 Update 4 and JavaFX 2.1, including a Java Development Kit and JavaFX Software Development Kit for Mac OS X. | For more on Java, subscribe to InfoWorld's Enterprise Java newsletter. ]

Oracle offers instructions for removing older versions. Java, however, has been under fire lately in the security realm, with a Java-borne Trojan, called Flashback, affecting Apple Macs.

More at :-
http://www.infoworld.com/d/application-development...

--
Was this reply relevant?
+0
-0
mogs CClip 22
Member 4th May, 2012 17:30
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Critical PHP vulnerability exposes servers to data theft -- or worse
PHP Group releases updates to fix vulnerability that allows a remote attacker to easily pass command-line switches to servers through URLs

By Ted Samson | InfoWorldFollow @tsamson_IW


A newly reported critical vulnerability in PHP enables would-be cyber criminals to steal source code or inject and run malware in PHP applications by adding command-line parameters to URLs. Fortunately, The PHP Group has announced updates to PHP that its says eliminates the vulnerability.

The vulnerability specifically affects the way PHP-CGI-based setups parse query string parameters from PHP files. FastCGI for PHP installations are not affected. The vulnerability can only be exploited if the HTTP server follows a fairly obscure part of the CGI spec, according to Eindbazen, the group of researchers that initially found the bug

More at :-
http://www.infoworld.com/t/application-security/cr...

--
Was this reply relevant?
+0
-0
mogs CClip 23
Member 4th May, 2012 17:37
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
SOCA website still down after mystery cyber attack
Cause unknown, DDoS suspected

By John E Dunn | Computerworld UK | 04 May 12
The website of the UK's Serious Organised Crime Agency (SOCA) has been downed by what is starting to look like the most serious cyberattack ever to hit the site.

Reported as having been offline since Wednesday night (2 May), by Thursday morning the site had still not returned as expected, an unusually long blackout for such a high-profile website.

The site has been hit before, notably by alleged LulzSec hacker Ryan Cleary in June 2011, and will have found itself under some form of attack more or less every day since.

What has caused the latest downing is unknown. A DDoS attack is the most likely culprit but these do not usually take hours to deflect. A more serious incursion is starting to look at least possible; the outage is now even longer than that allegedly caused by Cleary.

More at :-
http://www.pcadvisor.co.uk/news/security/3355753/s...

--
Was this reply relevant?
+0
-0
mogs CClip 24
Member 4th May, 2012 17:41
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
John McAfee, antivirus pioneer, arrested by Belize police
Detained by anti-gang police who shot dog, reports say

By John E Dunn | Techworld | 04 May 12
McAfee antivirus founder John McAfee is reportedly taking legal advice after a raid on his Belize home by police resulted in the software entrepreneur's arrest and the death of his pet dog.

The raid in the early morning of 1 May by the country's armed 'Gang Suppression Unit' (GSU) allegedly involved the doors to McAfee's house being smashed down, his property ransacked, and his dog shot.

After searching the house for drugs and firearms and handcuffing him and his 12 employees, the police detained McAfee for a number of hours before releasing him at 2am the following morning.

The police haven't given a reason for the raid but did reportedly find a cache of weapons including 12 gauge shotguns, handguns, rifles with scopes and ammunition. McAfee said he'd presented permits for all but one of the weapons which were for his company's security.

More at :-
http://www.pcadvisor.co.uk/news/security/3355796/j...

--
Was this reply relevant?
+0
-0
mogs CClip 25
Member 4th May, 2012 18:56
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Ministry of Defence security chief admits organisation hit by cyber attacks The Ministry of Defence's (MoD) security chief has warned that the UK needs to take urgent measures to combat the growing threat of cyber attacks, revealing the organisation has itself recently been breached.
Major general Jonathan Shaw made the claim during an interview with The Guardian, reporting there is an increasing number of attacks now targeting the UK.
"The number of serious incidents is quite small, but it is there. The likelihood is there are problems in there [MoD networks] we don't know about," he said.
Shaw suggested that the MoD will have to seek aid from young people to effectively combat criminals and hostile nation's cyber attacks.
"My generation, we are far too old for this; it is not what we have grown up with. Our natural recourse is to reach for a pen and paper. And although we can set up structures, we really need to be on listening mode for this one," he said.

More at :-
http://www.v3.co.uk/v3-uk/news/2172735/ministry-de...

--
Was this reply relevant?
+0
-0
mogs CClip 26
Member 5th May, 2012 05:57
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Download Google Chrome 20.0.1123.4 Dev, Chrome 21 Around the Corner There's a good two weeks until Google Chrome 20 is set to graduate to the beta channel, but it seems Google has already started preparing Chrome 20.0.1123.* for this.

The latest update to the dev channel, Chrome 20.0.1123.4, is a bug-fixing release and that's what all the future ones will be until Chrome 21 enters the dev channel.

There's a fix for the Pepper version of the Flash Player for Linux. Chrome is getting ready to make the switch to the PPAPI Flash Player replacing the old NPAPI one. A rendering bug, which left the process running even after navigating away, has now been fixed.

Chrome 21 should be landing as part of the Chromium daily builds and the Canary channel soon, if 1123 is the branch Google chooses to move up to the beta channel and then to the stable release.

http://news.softpedia.com/news/Download-Google-Chr...

--
Was this reply relevant?
+0
-0
mogs CClip 27
Member 5th May, 2012 06:03
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 28
Member 5th May, 2012 06:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Adobe patches new Flash zero-day bug with emergency update
In-the-wild attacks target Windows' Internet Explorer, says company

By Gregg Keizer
May 4, 2012 02:19 PM
Computerworld - Adobe today warned that hackers are exploiting a critical vulnerability in its popular Flash Player program, and issued an emergency update to patch the bug.

"There are reports that the vulnerability is being exploited in the wild in active targeted attacks designed to trick the user into clicking on a malicious file delivered in an email message," the Friday advisory said.

Although all editions of Flash Player contain the vulnerability and should be patched, the active exploit is targeting only users of Microsoft's Internet Explorer (IE).

Flash Player for IE is an ActiveX plug-in, the Microsoft-only standard; other browsers, including Firefox and Chrome, use a different plug-in structure.

The update was pegged with Adobe's priority rating of "1," used to label patches for actively-exploited vulnerabilities or bugs that will likely be exploited. For such updates, Adobe recommends that customers install the new version within 72 hours.

Adobe disclosed relatively few details about the vulnerability -- its usual practice -- other than to label it an "object confusion vulnerability," note the Common Vulnerabilities & Exposures ID of CVE-2012-0779, and acknowledge that triggering the bug "could cause the application to crash and potentially allow an attacker to take control of the affected system."

It's unclear how extensive the active attacks are, although Adobe's calling them "targeted" hints at a low volume of attempts aimed at specific individuals or companies.

Today's Flash Player update was the fourth this year -- the latest before Friday was on March 28 -- putting the frequently-patched program on about the same pace as last year, when Adobe issued a total of nine Flash security updates.

In March, Adobe addressed the frequent updating pain point -- at least for Windows users -- by shipping Flash Player 11.2, which uses a silent, background update mechanism. The silent update is supposed to kick in in some situations to automatically patch the plug-in in IE, Firefox, Safari and Opera on Windows without notifying or bothering users.

At the time, Adobe said it would switch on silent updates " on a case-by-case basis," but hinted that the service would primarily be used to distribute patches for zero-day vulnerabilities, such as today's.

Friday, Adobe confirmed that it has, in fact, enabled Flash silent updates for Windows in this instance.

A Computerworld Windows 7 system, however, was not silently updated to 11.2.202.235, the patched version within an hour of booting the PC, the interval the tool uses to check for new updates. Adobe's explanation: It did not begin serving Flash Player via silent update until about 10:30 a.m. PT, after the Windows 7 machine had pinged Adobe's servers. If the silent updater receives no response from Adobe, it waits 24 hours before trying again.

More at :-
http://www.computerworld.com/s/article/9226892/Ado...

--
Was this reply relevant?
+0
-0
mogs CClip 29
Member 5th May, 2012 11:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Study Finds Child Identity Theft on the Rise

According to AllClear ID, identity theft affecting children ages five and under grew by 105 percent since last year.

By Jeff Goldman

According to a recent study from AllClear ID, fully 10.7 of children are victims of identity theft, making them 35 times more likely than adults to have their identities stolen.

"The new data also showed that identity theft is increasing most quickly in young children," Help Net Security reports. "In fact, identity theft among children ages 5 and under grew 105 percent since last year -- the highest growth rate of any age group -- while 26 percent of children targeted were between the ages of six and ten, a 34 percent increase."

"Meanwhile, growth rates for kids over 11 remained flat, which indicates that criminals are now going after the SSNs of ever younger children," writes TechCrunch's Sarah Perez.

"Young children have become a popular target for criminals because they 'present a clean slate,'" writes MidlandsConnect.com's Kara Durrette. "Their identities are not tied to credit cards, student loans, or other lines of credit, which means loss can go undetected for years, according to the report."

"It's important for parents to understand that child ID theft is a real and growing trend," AllClear ID CEO Bo Holland said in a statement. "Rather than letting this trend continue, consumers -- parents especially -- should take the necessary precautions to ensure the safety of their child's livelihood."

http://www.esecurityplanet.com/hackers/study-finds...

--
Was this reply relevant?
+0
-0
mogs CClip 30
Member 5th May, 2012 19:56
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 31
Member 6th May, 2012 08:07
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 32
Member 6th May, 2012 08:13
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Email 'vacations' decrease stress, increase concentration, researchers say

Being cut off from work email significantly reduces stress and allows employees to focus far better, according to a new study by UC Irvine and U.S. Army researchers.
Heart rate monitors were attached to computer users in a suburban office setting, while software sensors detected how often they switched windows. People who read email changed screens twice as often and were in a steady "high alert" state, with more constant heart rates. Those removed from email for five days experienced more natural, variable heart rates.

More at :-
http://phys.org/news/2012-05-email-vacations-decre...

--
Was this reply relevant?
+0
-0
mogs CClip 33
Member 6th May, 2012 08:19
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Nearly 13 Million U.S. Facebook Users Fail to Use Privacy Controls

A Consumer Reports study has found that many members share sensitive data that could be used against them.

By Jeff Goldman | May 04,

According to a recent report from Consumer Reports, almost 13 million U.S. Facebook users either don't use any privacy controls or aren't aware that they're available.

"The magazine also reported that a significant number of members have shared potentially sensitive information that could be used against them," writes The Chicago Tribune's Wailin Wong. "For example, 4.7 million have clicked 'Like' on pages about health conditions or treatments, which Consumer Reports said 'an insurer might use against you.' And 20.4 million included their birth date and year in their profile."

"Facebook really is changing the way the world socially communicates and has become a successful service in part by leveraging copious amounts of personal data that can be spread far wider than its users might realize," Consumer Reports technology editor Jeff Fox said in a statement. "Our investigation revealed some fascinating, and some disquieting trends -- but ones always worth knowing for consumers who wish to keep their personal data under better control."

More at :-
http://www.esecurityplanet.com/network-security/ne...

--
Was this reply relevant?
+0
-0
mogs CClip 34
Member 6th May, 2012 08:31
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 35
Member 6th May, 2012 08:39
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Intel and McAfee unveil plans for unified security future

After 18 months, the results are in
By Iain Thomson in San Francisco

Posted in Cloud, 5th May 2012 02:01 GMT
Intel and MacAfee have been talking about the fruits of their merger and their plans for a cloud to computer security network that will be built into new systems.

Jason Waxman, general manager of Intel's Cloud Infrastructure Group, said that over the last year or so he'd been inundated with questions about what Intel was going to do with McAfee since it lashed out $7.68bn for the security firm, during an industry-wide buying spree on cyber-security companies. Chipzilla's been intentionally quiet on the subject, but was now ready to talk he said.

What Intel is planning is a cloud to desktop security strategy, mixing hardware and software features in a federated framework designed to make cloud computing safer, locking down the desktop and, coincidentally, giving IT managers another reason to specify Intel's systems during the next upgrade cycle.

More at :-
http://www.theregister.co.uk/2012/05/05/intel_mcaf...

--
Was this reply relevant?
+0
-0
mogs CClip 36
Member 6th May, 2012 08:44
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 37
Member 6th May, 2012 09:13
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Try a free security suite with Bitdefender Total Security 2012
A 30-day trial version that enables you to test the software fully
Computeractive staff Download review Security 02/05/2012

Bitdefender's Auto Pilot tool keeps user management of PC security to the bare minimum

Bitdefender Total Security 2012 is the package that offers the company's highest level of protection against online threats, with the same ease of use that is built into its full range of security products.
This download gives home PC owners the chance to evaluate the software completely free of charge for 30 days.
Total Security 2012 features an Auto Pilot mode that takes the hassle out of maintaining online security, with no pop-ups, no alerts and nothing to configure.
For those who prefer to manage PC security themselves, Total Security 2012 offers plenty of flexible tools, including parental controls that keep mum and dad in charge of the PC.
Whether you decide to switch Auto Pilot on or off, Bitdefender's social media filtering tools will block suspicious links in Facebook and Twitter windows, as well as blocking ID theft attempts.
As a free trial of the full software rather than a feature-restricted version, this download is worthy of our Try It award. You can also read our full and independent review of Bitdefender Total Security 2012.


Read more: http://www.computeractive.co.uk/ca/download-review...


--
Was this reply relevant?
+0
-0
mogs CClip 38
Member 6th May, 2012 09:20
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 39
Member 6th May, 2012 09:27
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 40
Member 6th May, 2012 21:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Chrome App Translates Portions of Pages So You Can Learn While Browsing There are plenty of ways of learning a new language, but none are as good as living in a place where everyone speaks it around you. Of course, moving to a new country probably isn't the most efficient way of picking up a new language.

Immersion for Chrome helps to solve the problem by surrounding you with the foreign language of your choosing while you surf.

It leverages Google Translate and actively replaces words or even entire sentences in the articles you read online with their foreign translation.

You can choose between a Novice level, which replaces only a few words, all the way up to Fluent which replaces big portions of text. It's surprisingly easy and effective in practice.

You can even set it to speak the translated parts so you can hear how they're pronounced as well.

http://news.softpedia.com/news/Chrome-App-Substitu...

--
Was this reply relevant?
+0
-0
mogs CClip 41
Member 7th May, 2012 11:08
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Apple engineering mistake exposes clear-text passwords for Lion
An attacker could potentially decrypt information secured with an older version of FileVault, Apple's encryption technology

By Jeremy Kirk
May 6, 2012 09:47 PM ET
IDG News Service - Apple's latest update to OS X contains a dangerous programming error that reveals the passwords for material stored in the first version of FileVault, the company's encryption technology, a software consultant said.

David I. Emery wrote on Cryptome that a debugging switch inadvertently left on in the current release of Lion, version 10.7.3, records in clear text the password needed to open the folder encrypted by the older version of FileVault.

Users who are vulnerable are those who upgraded to Lion but are using the older version of FileVault. The debug switch will record the Lion passwords for anyone who has logged in since the upgrade to version 10.7.3, released in early February.

More at :-
http://www.computerworld.com/s/article/9226916/App...

--
Was this reply relevant?
+0
-0
mogs CClip 42
Member 7th May, 2012 11:15
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 43
Member 7th May, 2012 11:29
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Internet group: Quality over speed in new domains
May 6, 2012 By ANICK JESDANUN , AP Technology Writer
(AP) -- The organization in charge of expanding the number of Internet address suffixes - the ".com" part of domain names - is apologizing for delays but says it's favoring "quality, not speed."
Three weeks ago, the Internet Corporation for Assigned Names and Numbers abruptly shut down a system for letting companies and organizations propose new suffixes, after it discovered a software glitch that exposed some private data. At the time, ICANN planned to reopen the system within four business days. The system remains suspended indefinitely.
"We've very focused on the quality of what we do," ICANN CEO Rod Beckstrom said. "We take this very seriously. That's why we're moving very methodologically and professionally."
In an interview with The Associated Press this week, Beckstrom added, "We apologize for the delay, but we're committed to getting this right."
ICANN has said it needed time to figure out why the software failed and how to fix it. That was completed last week, Beckstrom said, but ICANN still must undergo extensive testing on the fixes and inform companies and organizations whose data had been exposed. He declined to offer a timetable; ICANN said Friday that it planned to provide an update after Tuesday.
Up to 1,000 domain name suffixes could be added each year in the most sweeping change to the domain name system since its creation in the 1980s.

More at :-
http://phys.org/news/2012-05-internet-group-qualit...

--
Was this reply relevant?
+0
-0
mogs CClip 44
Member 7th May, 2012 17:06
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 45
Member 7th May, 2012 17:16
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Adobe preps silent Flash updates for Macs
Flash Player 11.3 hits beta 3; final to ship before end of June

By Gregg Keizer | Computerworld US | 07 May 12
Adobe last week released a new beta of Flash Player that includes silent updates for Macs.

Adobe first included silent updates for OS X in the Flash Player beta a month ago; the version shipped Friday was tagged as "Beta 3."

Adobe introduced silent updates for Flash Player on Windows in late March. At the time, the company committed to creating the same feature on OS X, but did not set a timetable.

As far as users are concerned, the Mac version is identical to the Windows tool: It pings Adobe's servers every hour until it gets a response. If it reaches Adobe and finds no ready update, the tool re-checks the servers 24 hours later. Found updates, however, are applied entirely in the background, and do not display notices on the screen or require the user to take any action.

By default, Flash 11.3 has silent updates switched on, but users can change the setting to continue to receive on-screen alerts.

Read more: http://www.pcadvisor.co.uk/news/security/3356030/a...

--
Was this reply relevant?
+0
-0
mogs CClip 46
Member 7th May, 2012 17:21
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
PHP working on new patch for critical vulnerability after initial one failed
Upcoming PHP updates will address two known remote code execution vulnerabilities

By Lucian Constantin | 07 May 12
The PHP Group plans to release new versions of the PHP processor on Tuesday in order to patch two publicly known critical remote code execution vulnerabilities, one of which was improperly addressed in a May 3 update.



Read more: http://www.pcadvisor.co.uk/news/security/3356029/p...

--
Was this reply relevant?
+0
-0
mogs CClip 47
Member 7th May, 2012 21:29
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 48
Member 8th May, 2012 16:36
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

So many recent exploits have used Java as their attack vector, you might conclude Java should be shown the exit

By Roger A. Grimes | InfoWorldFollow @rogeragrimes

Java's direct responsibility in the recent Mac Flashback Trojan attacks have many calling for Java's retirement, including InfoWorld's own Woody Leonhard.

It's understandable. Unpatched Java is responsible for sizable proportion of today's successful Internet browser attacks, including two compromises I've suffered over the last couple of years. It's also been the culprit behind nearly every Windows exploit that's affected friends and family, aside from the pure social engineering exploits from phishing, Craigslist scams, and so on.

[ Also on InfoWorld: Woody Leonhard makes the case for dumping Java. Do you agree? | InfoWorld's expert contributors show you how to secure your Web browsers in this "Web Browser Security Deep Dive" PDF guide. | Keep up with key security issues with the Security Central newsletter. ]

Those anecdotal experiences are backed up by good data. Microsoft's Security Intelligence Report 11 shows Java exploits are by far the biggest ongoing problem impacting monitored Windows computers. Java has been bedeviled by hundreds of security vulnerabilities over time. Go to any security vulnerability database and you'll see dozens of bug fixes each year since Java's creation in 1995. You'd be hard-pressed to find any single application that has hosted as many security bugs as Java.

Banishing Java: Easier said than done
Is it time for Java to go? Should we recommend that people disable or remove it? Like most problems in life, the answer isn't an easy yes or no.

One thing is certain: Any software not in use, including Java, should be removed from your system. That's common sense -- and a long-recommended security tenet. It reduces the attack surface for exploits and their creators.

But many enterprises live and thrive on Java -- both pure Java programs and runtime applets running in the browser. They can't remove it. Personally, I've removed Java a few times over the years, though many websites and services I love (like Secunia's Online Software Inspector) require Java. There are enough cool and useful services that depend on Java that I end up reinstalling it.

Read more at :-
http://www.infoworld.com/d/security/why-you-cant-d...

--
Was this reply relevant?
+0
-0
mogs CClip 49
Member 8th May, 2012 19:36
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 50
Member 8th May, 2012 19:51
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Windows 8 privacy worry overblown, says Microsoft analyst
By Taylor Armerding | CSO | 08 May 12
It sounds like a privacy hole big enough for a truckload of your personal information to be leaked to the world, but experts say a recently disclosed Windows 8 privacy issue is really a non-issue.

Microsoft's Windows 8, which connects its users with networks including Facebook, Flickr, Twitter, LinkedIn, Hotmail, Gmail, Exchange leaves a "lingering cache of automatically collected contacts [that] are stored unencrypted on a Windows 8 client," InfoWorld's Woody Leonhard reports this week.

"[Windows 8] doesn't build its Contacts list dynamically," Leonhard reports. "Instead, it keeps a cache of contacts from all of those sources stored on the machine. The cache persists even when the user logs off or the machine is turned off."

"That means anyone who can sign on to your PC with an administrator account can see all of your contacts and all of their data -- names, email addresses, pictures, telephone numbers, addresses," he writes.

Read more: http://www.pcadvisor.co.uk/news/security/3356327/w...

--
Was this reply relevant?
+0
-0
mogs CClip 51
Member 8th May, 2012 20:03
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

British internet users are being targeted by a 'ransomware' campaign that locks people out of their computers unless they hand over the right amount of money.


Criminals posing as police are demanding money to unlock PCs. Image credit: Abuse.ch

Spotted by security blog Abuse.ch, the malware taps into an exploit kit known as 'Blackhole'. Sold underground, Blackhole is used by criminals to infect computers via security holes in a browser or in third-party plug-ins such as Java and Adobe Reader, Abuse.ch said in its post on Saturday.

If the version of Java, for example, is not up to date with the latest patches, the downloaded file will exploit the software's weakness by downloading a Trojan to the PC and then running it. Once the PC is infected, the user will receive a message on the screen saying that the computer has been locked for illegally downloading pirated music.

More at :-
http://www.zdnet.co.uk/news/security-threats/2012/...

--
Was this reply relevant?
+0
-0
mogs CClip 52
Member 8th May, 2012 20:08
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Mozilla patches leaky add-ons issue
By Tom Espiner , 8 May, 2012 17:20

Security Bulletin
Analysis of security, technology, and attempts to filter random noise
Mozilla has patched a memory-consumption issue in Firefox caused by leaky add-ons, but has found the patch may not be 100 percent successful.

Mozilla developer Nicholas Nethercote tested a patch by fellow developer Kyle Huey for six add-ons, including McAfee SiteAdvisor 3.4.1, and found the patch reduced incidents of 'zombie compartments'.

However, the patch also caused code built with the Mozilla Add-on SDK to "leak badly". Developers are discussing the issue, Nethercote said in a blog post on Monday.

http://www.zdnet.co.uk/blogs/security-bulletin-100...

--
Was this reply relevant?
+0
-0
mogs CClip 53
Member 8th May, 2012 22:05
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 54
Member 8th May, 2012 22:18
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 55
Member 9th May, 2012 08:15
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Dev Channel Update
Tuesday, May 8, 2012 | 18:05
Labels: Dev updates
The Dev channel has been updated to 20.0.1130.1 for Windows, Mac, Linux, and Chrome Frame. This build contains update for V8 - 3.10.8.4 and several stability fixes. Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome
http://googlechromereleases.blogspot.co.uk/

--
Was this reply relevant?
+0
-0
mogs CClip 56
Member 9th May, 2012 08:20
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 57
Member 9th May, 2012 08:26
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Twitter says many leaked passwords inaccurate, duplicates
Many accounts were used for spamming and have been suspended, Twitter said

By Jeremy Kirk
May 8, 2012 08:14 PM
IDG News Service - Many of the Twitter logins and passwords leaked on the web this week are either inaccurate or belong to accounts already suspended for spamming, the company said late Tuesday.

The logins and passwords were published Monday on Pastebin, a website intended for programmers to share code but favored by hackers to release stolen data. The data was published on five separate posts on Pastebin, comprising a total of 58,978 login and password combinations.

"We've discovered that the list of alleged accounts and passwords found on Pastebin consists of more than 20,000 duplicates, many spam accounts that have already been suspended and many login credentials that do not appear to be linked," Twitter said via email. "The password and username are not actually associated with each other."

More at :-
http://www.computerworld.com/s/article/9226997/Twi...

--
Was this reply relevant?
+0
-0
mogs CClip 58
Member 9th May, 2012 20:38
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
PHP patches actively exploited CGI vulnerability
PHP 5.4.3 and PHP 5.3.13 include fix for PHP CGI vulnerability that is being actively exploited to compromise websites

By Lucian Constantin
May 9, 2012 08:44 AM
IDG News Service - The PHP Group has released PHP 5.4.3 and PHP 5.3.13 on Tuesday in order to address two remote code execution vulnerabilities, one of which is being actively exploited by hackers.

"The releases complete a fix for a vulnerability in CGI-based setups (CVE-2012-2311)," the PHP developers said in the release notes. Additionally, PHP 5.4.3 fixes a buffer overflow vulnerability, identified as CVE-2012-2329, in the apache_request_headers() function.

The CVE-2012-2311 vulnerability, also known as CVE-2012-1823, was publicly disclosed last week and prompted the PHP Group to release PHP 5.3.12 and PHP 5.4.2 as emergency security updates in order to resolve it, on May 3.

Unfortunately, the initial patch proved to be ineffective against all variations of the exploit for CVE-2012-1823, and the manual workaround suggested by the PHP developers when releasing the emergency updates was easy to bypass as well.

The PHP developers investigated the issue further and published a new workaround on Sunday. They also promised to have a new working patch ready on Tuesday.

More at :-
http://www.computerworld.com/s/article/9227012/PHP...

--
Was this reply relevant?
+0
-0
mogs CClip 59
Member 9th May, 2012 20:50
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
ICANN targets May 22 to resume name expansion
May 9, 2012
(AP) -- The organization behind a major expansion of Internet address suffixes hopes to resume taking proposals on May 22 following a technical glitch that shut down its computer system for weeks.
Last month, the Internet Corporation for Assigned Names and Numbers abruptly shut down a system for letting companies and organizations propose new suffixes, after it discovered a software glitch that exposed some private data. The data in some cases offered clues about which companies were proposing what suffixes, which was supposed to be confidential. ICANN says it has no evidence that anyone intentionally viewed the data.
If it can accept proposals again, the application window will run until May 30.
Up to 1,000 domain name suffixes - the ".com" part of an Internet address - could be added each year.

http://phys.org/news/2012-05-icann-resume-expansio...

--
Was this reply relevant?
+0
-0
mogs CClip 60
Member 9th May, 2012 20:59
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 61
Member 9th May, 2012 21:06
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Download OpenOffice 3.4 Stable
Apache Software Foundation just released the stable version for OpenOffice 3.4.0, which now goes under the name of Apache OpenOffice. It touts improved support for ODF, better graphics and performance improvements, which include a faster startup.

The new version of the suite supports the new ODF 1.2 encryption options and new spreadsheet functions. Documents encrypted with AES256 algorithm are now recognized and decrypted when the correct password is provided.

As far as graphics is concerned, the improvements refer to line caps, shear transformations and native support for Scalable Vector Graphics (SVG).

Chart viewing is better in the latest revision as it is driven by a new mechanism that increases speed, reduces memory usage and improves chart visualization in all visualizations, including PDF export and printing.

There is also a new regular expressions engine (ICU), which provides better standards compliance especially regarding Unicode, eliminates bugs in "Find and Replace" and speeds up the search process.

There is a full list of changes available on this page. Download Apache OpenOffice.

http://news.softpedia.com/news/Download-OpenOffice...

--
Was this reply relevant?
+0
-0
mogs CClip 62
Member 10th May, 2012 07:20
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Beta Channel Update
Wednesday, May 9, 2012 | 18:26
Labels: Beta updates
The Beta channel has been updated to 19.0.1084.46 for Windows, Mac, Linux, and Chrome Frame.

Take a look at the changelog to see what happened in this release.

If you'd like to get on the Beta channel, you can download it from our Beta download page. If you find a new issue, please let us know by filing a bug.

Anthony Laforge
Google Chrome
http://googlechromereleases.blogspot.co.uk/

--
Was this reply relevant?
+0
-0
mogs CClip 63
Member 10th May, 2012 07:27
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 64
Member 10th May, 2012 21:03
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Apple patches Safari, blocks outdated Flash Player
Yanks Flash plug-ins older than November 2010 version from browser

By Gregg Keizer
May 9, 2012 10:09 PM
Computerworld - Apple on Wednesday patched four security vulnerabilities in Safari and blocked outdated versions of Adobe's Flash Player from running in its browser.

The Flash blocking move was similar to one Apple made last month when it stopped the Java plug-in from launching automatically.

Safari 5.1.7, which runs on OS X 10.6 and 10.7 -- Snow Leopard and Lion, respectively -- as well as on Windows XP, Vista and Windows 7, was released alongside another update for Lion that included a slightly-older version of the browser. Lion users must download and install both updates to push Safari to version 5.1.7.

The four security flaws fixed were the same ones patched Tuesday in iOS 5.1.1 for the iPhone, iPad and iPod Touch. All were labeled as bugs in WebKit, the open-source rendering engine that powers Safari as well as Google's Chrome.

More at :-
http://www.computerworld.com/s/article/9227038/App...

--
Was this reply relevant?
+0
-0
mogs CClip 65
Member 11th May, 2012 09:17
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft touts Windows 8's ability to detect, fix hard disk problems
The new operating system makes the process faster and less disruptive to the operation of the computer

By Juan Carlos Perez
May 10, 2012 04:46 PM ET
IDG News Service - Microsoft has revamped the way Windows 8 monitors hard disk operations and detects problems in an effort to make the diagnostic and repair process less intrusive and disruptive, even as disk capacity continues to balloon.

The improvements in Windows 8 center on the ChkDsk utility, which inspects the hard disk and checks for a variety of errors and problems. Until now, running ChkDsk has often been inconvenient because end users have to stop using the machine while the utility runs, and the scan can take a long time to complete.

Microsoft also tweaked NTFS, the Windows OS file system. Until now, the NTFS "health model" conceived the machine's hard disk as a single unit that was either well or damaged, and which thus was taken completely offline and made unavailable to the end user while ChkDsk ran, sometimes for hours.

"Downtime was directly proportional to the number of files in the volume," reads Microsoft's blog post late Wednesday authored by Kiran Bangalore , senior program manager of Windows Core Storage and File Systems.

In Windows 8, however, the NTFS scans for problems in the background while the system remains online, and an initial attempt to fix problems on-the-fly is done.

More at :-
http://www.computerworld.com/s/article/9227070/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 66
Member 11th May, 2012 09:21
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 67
Member 11th May, 2012 09:26
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 68
Member 11th May, 2012 09:34
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 69
Member 11th May, 2012 22:05
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft preps Windows 8 upgrade deal for early June debut, says report
Even with the offer, summer sales expected to remain 'lousy,' says analyst

By Gregg Keizer
May 11, 2012 12:52 PM ET
Computerworld - Microsoft will kick off a Windows 8 upgrade program for buyers of Windows 7 PCs in early June, according to a report.

But unlike past deals, this one may come with a price tag.

The program will, said CNET yesterday, provide a discounted upgrade to Windows 8 to anyone who purchases a new Windows 7-powered PC between June 2012 and January 2013.

Citing unnamed sources, CNET said that the upgrade offer would let buyers of Windows 7 systems purchase Windows 8 Pro -- the highest-priced edition that will be sold at retail -- for an undisclosed price.

The offer will debut at the same time that Microsoft launches Windows 8 Release Preview, which the company has pegged to the first week of June. The most likely date is June 5, assuming Microsoft follows the same schedule it used in 2009 to deliver Windows 7's release candidate.

More at :-
http://www.computerworld.com/s/article/9227092/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 70
Member 11th May, 2012 22:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Amnesty International UK website compromised
Malicious code on Amnesty International website exploited a Java vulnerability to install Gh0st RAT on computers

By Lucian Constantin
May 11, 2012 11:41 AM ET
IDG News Service - The U.K. website of Amnesty International, a human rights watchdog organization, was compromised by hackers, who used it to infect visitors with a remote access Trojan horse program known as Gh0st RAT, security firm Websense reported on Friday.

Websense's automated malware scanners detected the compromise on the Amnesty site on Tuesday and Wednesday, Websense security researcher Gianluca Giuliani, said in a blog post on Friday. The attackers managed to inject malicious code that attempted to exploit a Java vulnerability known as CVE-2012-0507 into the site's homepage, he said.

The same vulnerability was exploited earlier this year to infect more than 600,000 Mac computers with the Flashback malware. It was patched in Java for Windows back in February and in Java for Mac in April.

The exploit code used in this attack appears to have been copied from Metasploit, an open source penetration testing framework popular among security professionals, Giuliani said.

More at :-
http://www.computerworld.com/s/article/9227091/Amn...

--
Was this reply relevant?
+0
-0
mogs CClip 71
Member 11th May, 2012 22:16
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 72
Member 11th May, 2012 22:25
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
- Strengthens protection against XSS vulnerabilities
NoScript extension for Firefox keeps improving by adding security against new exploitation methods. Besides fixing up two issues, build 2.4.1 also integrates protection against two new XSS vulnerabilities.

It can now keep you safe against exploitation of classic MS ASP's coalescing of same-name query parameters. On the same note, it features Protection against URL injections in window.name. Also added in this build is the type check exception to the lesscss Google Code file repository, which is often used as a CDN.

As far as mending goes, NoScript 2.4.1 fixes case-sensitivity bug in detection of unicode escape sequences and the "Allow sites open through bookmarks" regression.

The current stable version was preceded by three release candidates, each solving its share of issues.

The entire list of changes for this update is available on this page. Download NoScript extension for Firefox

http://news.softpedia.com/news/Download-NoScript-2...

--
Was this reply relevant?
+0
-0
mogs CClip 73
Member 12th May, 2012 05:02
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Dev Channel Update
Friday, May 11, 2012 | 14:00
Labels: Dev updates
The Dev channel has been updated to 20.0.1132.3 for Windows, Mac, Linux, and Chrome Frame. This build contains update for several fixes. Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome
http://googlechromereleases.blogspot.co.uk/

--
Was this reply relevant?
+0
-0
mogs CClip 74
Member 12th May, 2012 05:16
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Internet safe spot planned at ".secure" domain
May 11, 2012 by Glenn Chapman
Internet security specialists have applied for a ".secure" domain that they plan to turn into an online safe zone where bad guys aren't allowed.
San Francisco-based Artemis was awaiting word Friday from the Internet Corporation for Assigned Names and Numbers (ICANN) on whether it was approved to host websites with ".secure" addresses.
"We are creating a safe neighborhood where you know people follow the rules and you can rely on them to do things securely," Artemis chief technical officer Alex Stamos told AFP.
"There is not going to be typo squatting or malware... We are going to make it really air tight so even if you were in Syria the Syrian government couldn't hijack you."
Commonly available, but typically unused, technology tools for thwarting online hackers, viruses, snoops, spies and scammers will be mandatory at websites with .secure addresses.
"The idea is to make it effortlessly secure for individuals," Stamos said.
"In the end, the actual technical security tactics are things (websites) should be doing anyway. We are just making it a requirement."
Plans for .secure were part of an Internet domain name "revolution" that remained on hold due to a flaw that let some aspiring applicants peek at unauthorized information at the ICANN registration website.
ICANN intends to resume taking applications on May 22 from those interested in running new generic top-level domains (gTLDs) online, with the window staying open for about five days.

Read more at :-
http://phys.org/news/2012-05-internet-safe-domain....

--
Was this reply relevant?
+0
-0
mogs CClip 75
Member 12th May, 2012 05:22
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Get a detailed diagnostic report on your computer with HijackThis
This free tool will report on Windows Registry and file settings on your PC
Tim Smith Download review Problem solving 11/05/2012
Get a detailed report on changes made to your computer using HijackThis

Fixing the changes made by malicious software can be a tricky business, but initially you have to discover exactly what was changed in the first place. HijackThis is a helpful tool that will create a report of suspicious changes and can be used to reverse them.
There is no installation. Just run the downloaded file to get started.
The main menu shows all of the different tools in HijackThis. The first option is to run a system scan and save the results in a text file. The option below just runs the scan but there isn't much point in not saving the results.
The scan doesn't take long, even on a computer that has seen a lot of changes such as our test machine. All the changes made to the Registry and settings are shown with a simple code identifying the type of change.
Changes can range from a new home page for Internet Explorer or search engines in other browsers. A full list of the codes and their meanings can be found by clicking on the Info button.
More details about changes can be found by clicking on them and then the Info on selected item button.
The Analyze This button takes you to the HijackThis forum hosted by TrendMicro to share the results of the scan and to look for advice. A HijackThis report is often requested on our own forums.
HijackThis can be used to reverse the changes it finds. Select items using the check boxes and click on the Fix checked button. We would echo the warnings in HijackThis that you should only do this if you know exactly what the change will do.
While the results may not make a lot of sense when they first appear, this is a valuable tool for getting help with computer problems as it gives the experts the information they need.


Read more: http://www.computeractive.co.uk/ca/download-review...


--
Was this reply relevant?
+0
-0
mogs CClip 76
Member 12th May, 2012 10:18
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Viewpoint: Preparing for the digital defence of the realm
By Simon McCalla
Director of IT, Nominet The notion of a co-ordinated cyberthreat has moved from the abstract to being all too real for many of us in the last few years.

From a theoretical risk to a tangible reality, the attacks by Anonymous on a variety of UK internet sites including the UK government, breaches of global giants like Sony and the debate that surrounded the digital discussion during the London riots truly transformed cybersecurity from a topic that was the province of technologists to a down-the-pub discussion that affects the everyday citizen.

The UK government is pledging hundreds of millions of pounds to defend the realm from cyber-attacks, but they are just one player in an inter-connected web of stakeholders looking to keep the internet in the UK safe, secure, trusted and contributing to Britain's economic growth and recovery.

It's not all about the spooks, digital or otherwise, and we need to be ready.

Read more at :-
http://www.bbc.co.uk/news/technology-18032278

--
Was this reply relevant?
+0
-0
mogs CClip 77
Member 12th May, 2012 22:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 78
Member 12th May, 2012 22:29
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 79
Member 12th May, 2012 22:33
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft Prepares New Antimalware Engine Release for May 15th, 2012 On May 15th, 2012, Microsoft will release a new Antimalware Engine to address security threats out there. The new release is part of the regular antimalware technology updates that Microsoft is pushing out each month.

According to the Redmond-based software giant, the upcoming Antimalware Engine iteration will affect products such as Microsoft Security Essentials, Forefront Client Security, Forefront Endpoint Protection, Windows Intune Endpoint Protection.

Additionally, the company notes that the new Engine will come out of its laboratories with a version in the range of 1.1.840X.0. Additional details on the matter are expected to be pushed out along with the official release.

Last month, the software behemoth made available for download Antimalware Engine version 1.1.8304.0. The release was delivered to all of the affected Microsoft customers starting April 18th.

http://news.softpedia.com/news/Microsoft-Prepares-...

--
Was this reply relevant?
+0
-0
mogs CClip 80
Member 13th May, 2012 12:05
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Adobe backpedals, will now patch software for free
Changes tune after customers, security pros condemned Adobe's advice to spend hundreds on upgrades to get fixes

By Gregg Keizer
May 12, 2012 06:47 PM ET
Computerworld - After being pummeled by customers and security experts for telling users to spend hundreds of dollars on upgrades because it wasn't going to patch critical bugs in older versions of its software, Adobe has reversed course.

The company will now fix the eight vulnerabilities in the one-year-old Illustrator and Flash Professional CS5.5, and the two-year-old Photoshop CS5, an Adobe spokeswoman said via email late Friday.

There will be no charge for the updates.

A post by Adobe's product security response team to its official blog spelled out the change.

Read more at :-
http://www.computerworld.com/s/article/9227119/Ado...

--
Was this reply relevant?
+0
-0
mogs CClip 81
Member 14th May, 2012 08:37
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Senate to look at Mozilla's browser competition allegations
Sen. Herb Kohl's office to examine Mozilla's complaint against Microsoft over browser API access in Windows RT

By Gregg Keizer
May 13, 2012 03:30 PM ET1 Comment. What's this?
Computerworld - The U.S. Senate Judiciary Committee will look into accusations by Mozilla that Microsoft is restricting access to important programming tools for browsers that will run in Windows RT, a political blog reported Friday.

The Hill cited unnamed aides to Sen. Herb Kohl (D-Wis.), the chairman of the Subcommittee on Antitrust, Competition Policy, and Consumer Rights, as the source for its report.

Last week, Mozilla, the maker of Firefox, said Microsoft was withholding access to APIs -- application programming interfaces -- that Mozilla considers crucial for building a browser that can compete with Microsoft's own Internet Explorer 10 (IE10) on ARM devices.

More at :-
http://www.computerworld.com/s/article/9227121/Sen...

--
Was this reply relevant?
+0
-0
mogs CClip 82
Member 14th May, 2012 21:06
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Adobe changes course and patches Photoshop for free
Adobe has apparently changed its mind about requiring customers to pay to get recent security patches for its Photoshop, Illustrator and Flash Professional products.

The patches cover vulnerabilities in Creative Suite 5 and earlier versions of the products that could let a remote intruder execute malicious code and take control of computers running the software. Adobe had originally said customers would need to pay to upgrade to the Creative Suite 6 versions to get the fixes.

"We are in the process of resolving the vulnerabilities...in Adobe Illustrator CS5.x, Adobe Photoshop CS5.x (12.x) and Adobe Flash Professional CS5.x, and will update the respective security bulletins once the patches are available," Adobe said in a post to its security blog on Friday.

More at :-
http://www.zdnet.co.uk/news/security-threats/2012/...

--
Was this reply relevant?
+0
-0
mogs CClip 83
Member 14th May, 2012 21:11
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 84
Member 14th May, 2012 21:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
MoD to warn of E-bomb attack
The UK needs to build its digital defences, defence secretary Philip Hammond will say

By Anh Nguyen | Computerworld UK | 14 May 12
The UK needs to defend itself against an electromagnetic pulse-based 'E-bomb' that could knock out all electronic systems, the defence secretary will say today.

Philip Hammond will tell a security conference in London that traditional defences based on "infantry or jet planes" would not be enough to protect the country from such an attack, and that Britain needs to spend money on building its digital defences.

"One of the challenges we face, particularly at a time of limited resources, is to make the case for spending on defence and security solutions that cannot readily be seen by the public - that cannot be shown off in the parade ground - that could be digital, not necessarily physical," Hammond is due to say, according to The Telegraph.

More at :-
http://www.pcadvisor.co.uk/news/security/3357548/m...

--
Was this reply relevant?
+0
-0
mogs CClip 85
Member 15th May, 2012 21:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft to charge $15 for Windows 8 upgrade deal
Blogger pegs price for Windows 7 PC buyers during run-up to fall debut of new OS

By Gregg Keizer
May 15, 2012 11:30 AM ET
Computerworld - Microsoft will charge users who buy a new Windows 7 PC $14.99 for an upgrade to Windows 8, according to a report.

The cost of the upgrade was revealed yesterday by Paul Thurrott, a popular blogger who writes SuperSite for Windows.

An earlier report by CNET had claimed that Microsoft would charge a fee for the upgrade, but had not spelled out the amount. CNET said that the program would kick off alongside the delivery of Windows 8 Release Preview.

Microsoft has said it will ship the preview the first week of June. If the company follows the same schedule it used in 2009 to deliver Windows 7's release candidate, the most likely date is Tuesday, June 5.

More at :-
http://www.computerworld.com/s/article/9227169/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 86
Member 15th May, 2012 21:29
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Wikipedia warns users about malware injecting ads into its pages
The normally ad-free site says some visitors have encountered a browser-based malware infection

By Lucian Constantin
May 15, 2012 02:33 PM ET
IDG News Service - Visitors to Wikipedia who see advertisements on the site have most likely fallen victim to a browser-based malware infection, Wikimedia Foundation, the organization operating the website, said on Monday.

"We never run ads on Wikipedia," said Philippe Beaudette, director of community advocacy for the Wikimedia Foundation, in a blog post. "If you're seeing advertisements for a for-profit industry ... or anything but our fundraiser, then your web browser has likely been infected with malware."

One example of such malware is a rogue Google Chrome extension called "I want this," Beaudette said. However, similar malicious add-ons might also exist for Mozilla Firefox, Internet Explorer and other browsers, he said.

This type of malicious software is known as click fraud malware and can target multiple websites at once. In addition to injecting ads into Web pages, such rogue extensions are also known to hijack search queries in order to earn their creators affiliate revenue, said Graham Cluley, a senior technology consultant at Sophos, in a blog post Tuesday.

Read more at :-
http://www.computerworld.com/s/article/9227179/Wik...

--
Was this reply relevant?
+0
-0
mogs CClip 87
Member 15th May, 2012 21:38
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

EU-Microsoft browser deal requires ballot screen in Windows 8
Microsoft declines to comment on its interpretation of the 2009 settlement

By Gregg Keizer
May 14, 2012 04:19 PM ET
Computerworld - Microsoft today declined to comment when asked whether it believed it's required to offer a ballot screen in Windows 8 to European users for selecting rival browsers in the new operating system's desktop mode.

In late 2009, Microsoft struck a deal with European Union (EU) antitrust regulators that required the company to display a screen in Windows providing download links to other browsers, including Mozilla's Firefox, Google's Chrome and Opera Software's Opera.

The settlement specifically called out future editions of Windows.

"For Windows Client PC Operating Systems after Windows 7, the Choice Screen update will first be made available at the general commercial release date of such an operating system and remain in place for distribution ... for the entire duration of these Commitments," the document stated.
According to the final agreement (download PDF), the deal has a five-year lifespan -- meaning it will expire in late 2014 -- and broadly defined "Windows" and "Internet Explorer" to include "successors" of the then-current Windows 7 and IE8

More at :-
http://www.computerworld.com/s/article/9227148/EU_...

--
Was this reply relevant?
+0
-0
mogs CClip 88
Member 15th May, 2012 21:43
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 89
Member 15th May, 2012 21:51
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft announces Windows 8 Family Safety child monitoring feature

Parents will receive weekly activity reports via email
By Lee Bell
Tue May 15 2012, 12:44

SOFTWARE HOUSE Microsoft has announced that its Windows 8 operating system will offer weekly monitoring reports on children's online activity when it is released later this year.
In an effort to make it easier for parents to supervise their pesky children who they suspect are getting up to no good online, Microsoft said that its Family Safety feature will monitor web pages they've visited, their latest searches and their most used apps and games.
In a Building Windows 8 post on the Microsoft Developer Network blog, lead programme manager for Microsoft Phil Sohn said that the firm's Family Safety system will "monitor first", rather than focusing on filtering and software-based restrictions, as these could be difficult to set up and manage.
"The end result was that many parents abandoned family safety products and returned to in-person supervision only - a tactic that has become less effective as computers have gotten more mobile," he said.

More at :-
http://www.theinquirer.net/inquirer/news/2174805/m...

--
Was this reply relevant?
+0
-0
mogs CClip 90
Member 15th May, 2012 21:57
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 91
Member 16th May, 2012 07:19
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Dev Channel Update
Tuesday, May 15, 2012 | 17:15
Labels: Dev updates
The Dev channel has been updated to 20.0.1132.8 for Windows, Mac, Linux, and Chrome Frame. This build contains updates to V8 (3.10.8.5) and several other fixes. Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome
http://googlechromereleases.blogspot.co.uk/

--
Was this reply relevant?
+0
-0
mogs CClip 92
Member 16th May, 2012 08:23
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Zeus variant tricks Facebook users into exposing card data
New Zeus version injects rogue debit card-related offers into popular websites

By Lucian Constantin
May 15, 2012 04:17 PM ET
IDG News Service - A new variant of the Zeus trojan tricks users into exposing their debit card details by displaying rogue offers when they visit Facebook, Gmail, Yahoo and Hotmail, according to researchers from security firm Trusteer.

"We've recently discovered a series of attacks being carried out by a P2P [peer-to-peer] variant of the Zeus platform against some of the Internet's leading online services and websites," Trusteer CTO Amit Klein said in a blog post Tuesday. "The attacks are targeting users of Facebook, Google Mail, Hotmail and Yahoo -- offering rebates and new security measures."

Like most financial malware, Zeus has the ability to inject malicious content into browsing sessions. This functionality is commonly used to display rogue Web forms when users visit online banking websites.

Read more at :-
http://www.computerworld.com/s/article/9227186/Zeu...

--
Was this reply relevant?
+0
-0
mogs CClip 93
Member 16th May, 2012 08:29
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

EU to 'remain vigilant' on Microsoft's browser commitments
However, it's unclear if a 2009 competition agreement with Microsoft extends to tablets

By Loek Essers
May 15, 2012 05:34 PM ET
IDG News Service - Regulators in Europe said Tuesday they will watch closely to make sure Microsoft complies with its commitments to ensure competition in the browser market, after Mozilla complained its Firefox browser is being excluded from Windows RT.

However, the European Commission noted that an agreement it struck with Microsoft in 2009 to regulate its behavior applied only to "client PCs," and it wasn't immediately clear if that incudes tablets, one of the main targets for Windows RT.

Mozilla protested last week that Windows RT, the version of Windows 8 for devices that use ARM processors, restricts choice and might violate an agreement Microsoft struck with the Commission to resolve an antitrust probe of the company.

Windows RT grants full access only to Internet Explorer (IE) and effectively blocks other browsers from accessing important functions, according to Mozilla. Its complaint was backed by Google, which makes the Chrome browser.

More at :-
http://www.computerworld.com/s/article/9227185/EU_...

--
Was this reply relevant?
+0
-0
mogs CClip 94
Member 16th May, 2012 08:33
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 16th May, 2012 08:37


--
Was this reply relevant?
+0
-0
mogs CClip 95
Member 16th May, 2012 08:45
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Apple issues security update for QuickTime Apple has released a major security update for the Windows versions of its QuickTime media player.
The company said that the QuickTime 7.7.2 update would address some 17 security vulnerabilities in QuickTime for Windows 7, Vista and Windows XP SP2 or later.
Among the issues addressed in the update are flaws which could allow an attacker to remotely execute code on a target system. Among the vulnerable QuickTime components are tools which handle movie files, MP4 content, and web pages.
Each of the flaws can be triggered by tricking a user into viewing a specially-crafted media file or web page.
Much of the credit for the research was given to HP's TippingPoint security initiative. Apple cited researchers affiliated with the program in discovering 14 of the 17 patched security issues.
For users running the OS X version of QuickTime, Apple's release should cause little to no new concern. Many of the listed vulnerabilities were not applicable to OS X, while a number of others were addressed in Apple's recent OS X Lion 10.7.3 release and OS X10.6 security update.
Users can obtain the security update through Apple's Software Update tool or by downloading the latest version of QuickTime from the comp

Read more at :-
http://www.v3.co.uk/v3-uk/news/2174999/apple-issue...

--
Was this reply relevant?
+0
-0
mogs CClip 96
Member 16th May, 2012 12:13
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 97
Member 16th May, 2012 19:47
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

ICO website hit by DDoS attack
Anonymous unconfirmed as source of breach
By Anh Nguyen | Computerworld UK | 16 May 12

The Information Commissioner's Office (ICO) website has been taken offline following a suspected distributed denial of service (DDoS) attack.

The public-facing website does not contain any sensitive information, the information watchdog said.

"Access to the ICO website has been disrupted over the past few days. We believe this is due to a distributed denial of service attack," a spokesperson for the ICO said.

"The website itself has not been damaged, but people have been unable to access it."

He added: "We regret this disruption to our service and we are working to try to bring the website back online as soon as possible."

Despite a number of reports online claiming that a group with links to the Anonymous hacktivist collective is behind the attack, over what it believes is corruption in the Leveson inquiry into press standards, the ICO spokesperson said that this could not be confirmed

More at :-
http://www.pcadvisor.co.uk/news/security/3357911/i...

--
Was this reply relevant?
+0
-0
mogs CClip 98
Member 16th May, 2012 22:16
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 16th May, 2012 22:20
Google searches get smarter (Update)
May 16, 2012 by Glenn Chapman
Google on Wednesday began making its search engine smarter, in what the Internet giant called a major upgrade that looks beyond query words to figure out what people are actually seeking online.
"Knowledge Graph" technology built to recognize people, places or things signified by keywords took its fledgling steps in the United States with the hope of eventually extending it to Google searches worldwide.
"The Knowledge Graph is built to understand real things in the world," said Google fellow Ben Gomes, who has worked on search at the California-based company for more than a decade.
"It is the beginning of a long journey we will be on to cover more topics and more complex queries."
Gomes envisions Google search being able to eventually answer tricky questions such as where to attend an outdoor Lady Gaga concert in warm weather or the location of an amusement park near a vegetarian restaurant.
For now, people using US Google search in English will start seeing on search pages boxes suggesting what they are interested in finding.
A demonstration showed that searching on the word "Kings" in California, for example, prompted the search engine to point out that one is likely interested in a hockey team, basketball team, or film.
Using the keyword "Andromeda" prompted Knowledge Graph to note one might be interested in a galaxy, a television series, or a Swedish rock band.
Clicking on a suggested topic instantly refined search results.

Read more at :-
http://phys.org/news/2012-05-google-smarter.html

--
Was this reply relevant?
+0
-0
mogs CClip 99
Member 17th May, 2012 19:37
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 17th May, 2012 19:39
UK-based hacking doubled in first quarter of 2012
The number of cyber attacks stemming from the UK doubled during the first three months of the year, making it the seventh biggest source of online attacks in the world.
The UK is now responsible for 2.4 per cent of global cyber attacks, according to a new report from security firm NCC Group.
The sharp rise came as a shock to NCC technical director Paul Vlissidis.
"We we surprised by the variation in numbers. It's not easy to know why, I don't think the UK has been invaded by a horde of cyber criminal gangs over the last three months," Vlissidis told V3.
"Still, it's not too surprising that cybercrime is common in the UK. It's one of the most online, connected and educated societies in the world, so it makes sense that it would house a lot of cyber criminals."
NCC's quarterly Origin of Hacks report also revealed a marked increase in the number of attacks stemming from Russia. There, the number of attacks increased by 12 per cent over the quarter, making it the third biggest hacker hotbed in the world.

More at :-
http://www.v3.co.uk/v3-uk/news/2175520/uk-hacking-...

--
Was this reply relevant?
+0
-0
mogs CClip 100
Member 17th May, 2012 19:44
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 101
Member 17th May, 2012 19:49
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 102
Member 17th May, 2012 19:56
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 103
Member 21st May, 2012 21:34
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Chrome trumps IE as world's top browser
StatCounter says Google's browser edged Microsoft's for the week's No. 1 spot; Chrome on pace to take May, too

By Gregg Keizer
May 21, 2012 12:59 PM ET
Computerworld - Google's Chrome edged past Microsoft's Internet Explorer (IE) last week to become the world's most widely-used browser, according to data from an Irish metric firm.

Chrome's average usage share for the week of May 14-20 was 32.8%, said StatCounter, an analytics company that tracks browser and operating system trends. For the same week, IE's share was 31.9%.

Although Chrome has beaten IE in StatCounter's tally before -- a day here, another there, this was the first time that Google's browser took the top spot for an entire week.

Mozilla's Firefox placed third with a share of 25.5%, while Apple's Safari and Opera Software's Opera brought up the rear with 7.1% and 1.7%, respectively

Chrome and IE are locked in a dead heat so far this month, separated by only five-hundredths of a percentage point through Sunday. The trend, however, is in Chrome's favor: It came within a whisker of beating IE the week of May 7-13, and early Monday it led Microsoft's browser 31.9% to 31.5%.

More at :-
http://www.computerworld.com/s/article/9227341/Chr...

--
Was this reply relevant?
+0
-0
mogs CClip 104
Member 21st May, 2012 21:46
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Cross-browser worm spreads via Facebook, security experts warn
Malware writers use Crossrider browser extension development framework to build Facebook worm

By Lucian Constantin | 21 May 12
Malware writers have used Crossrider, a cross-browser extension development framework, to build a click-fraud worm that spreads on Facebook, security researchers from antivirus firm Kaspersky Lab said on Monday.

Crossrider is a legitimate Javascript framework that implements a unified API (application programming interface) for building Mozilla Firefox, Google Chrome and Internet Explorer extensions.

The API allows developers to write code that will run inside different browsers and, by extension, on different OSes. The framework is still in beta testing and its creators plan on adding support for Safari soon.

"It is quite rare to analyze a malicious file written in the form of a cross-platform browser plugin. It is, however, even rarer to come across plugins created using cross-browser engines," said Kaspersky Lab malware expert Sergey Golovanov in a blog post on Monday.

Read more at :-
http://www.pcadvisor.co.uk/news/security/3359080/c...

--
Was this reply relevant?
+0
-0
mogs CClip 105
Member 21st May, 2012 21:50
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Twitter Tweaks Privacy Policy, Adds Custom Digests
The microblogging site offers more information on its data collection habits and promises to support Do Not Track.

By John P. Mello Jr. | PC World | 21 May 12
In an e-mail Sunday, Twitter is alerting its members to changes to its policies on privacy and service usage, including support for Do Not Track, as well as informing them about a new weekly digest of interesting news and items from their feeds.

"New things are always happening here at Twitter HQ," the e-mail says. "We're growing at a rapid pace, and our commitment to simplicity, transparency, and reaching every person on the planet continues."

In the service's privacy policy, it's offering more detail -- in plain English -- about what information it collects. Not only does it collect information when you register with Twitter, but also profile information you post to your account.

Read more: http://www.pcadvisor.co.uk/news/security/3358906/t...

--
Was this reply relevant?
+0
-0
mogs CClip 106
Member 21st May, 2012 21:56
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 107
Member 21st May, 2012 22:08
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 108
Member 22nd May, 2012 10:41
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Dev Channel Update
Monday, May 21, 2012 | 17:29
Labels: Dev updates
The Dev channel has been updated to 21.0.1145.0 for Windows, Mac and Linux platforms

All
Updated V8 - 3.11.3.0
Allow certain unused renderer processes to exit before the tab is closed. (Issue: 126333)
Fix password autofill to work again for Incognito windows (Issue: 117720)
Prevent an infinite loop inside SSLClientSocketNSS::OnSendComplete. This has been observed in Chrome OS, but could also happen on other platforms. (Issue: 127822)
Known Issues
In bookmark bubble unable to edit the name and select the sub folder from drop down (Issue: 128612)
More details about additional changes are available in the svn log of all revisions.

You can find out about getting on the Dev channel here: http://dev.chromium.org/getting-involved/dev-chann...

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

Karen Grunberg
Google Chrome

--
Was this reply relevant?
+0
-0
mogs CClip 109
Member 22nd May, 2012 12:33
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 110
Member 22nd May, 2012 12:39
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 111
Member 22nd May, 2012 12:49
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft service makes research a social affair
May 22, 2012
An "experimental" project by Microsoft to mix online social networking and academic research was open to the public on Monday.
The Redmond, Washington-based software colossus invited anyone to join its Internet community at so.cl, which was pronounced "social."
"So.cl is an experimental research project, developed by Microsoft's FUSE Labs, focused on exploring the possibilities of social search for the purpose of learning," a frequently-asked-questions page at the website said.
"So.cl combines social networking and search to help people find and share interesting Web pages in the way students do when they work together."
The online community had previously only welcomed students studying information and design at select US universities.
As of Monday, those interested in getting involved with the social network were invited to send messages to socl@microsoft.com.

Read more at :-
http://phys.org/news/2012-05-microsoft-social-affa...

--
Was this reply relevant?
+0
-0
mogs CClip 112
Member 22nd May, 2012 21:15
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Windows Vista infection rates climb, says Microsoft
End of support last year for SP2 responsible for spike in successful attacks

By Gregg Keizer
May 22, 2012 01:29 PM ET
Computerworld - Microsoft said last week that a skew toward more exploits on Windows Vista can be attributed to the demise of support for the operating system's first service pack.

Data from the company's newest security intelligence report showed that in the second half of 2011, Vista Service Pack 1 (SP1) was 17% more likely to be infected by malware than Windows XP SP3, the final upgrade to the nearly-11-year-old operating system.

That's counter to the usual trend, which holds that newer editions of Windows are more secure, and thus exploited at a lower rate, than older versions like XP. Some editions of Windows 7, for example, boast an infection rate half that of XP.

Tim Rains, the director of Microsoft's Trustworthy Computing group, attributed the rise of successful attacks on Vista SP1 to the edition's retirement from security support.

"This means that Windows Vista SP1-based systems no longer automatically receive security updates and helps explain why there [was] a sudden and sharp increase in the malware infection rate on that specific platform," said Rains in a blog post last week.

Microsoft stopped delivering patches for Vista SP1 in July 2011. For the bulk of the reporting period, then, Vista SP2 users did not receive fixes to flaws, including some that were later exploited by criminals.

Vista SP2 will continue to be patched until mid-April 2017.

Read more at :-
http://www.computerworld.com/s/article/9227384/Win...

--
Was this reply relevant?
+0
-0
mogs CClip 113
Member 22nd May, 2012 21:20
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Banking malware spies on victims by hijacking webcams, microphones, researchers say
The SpyEye variant secretly films and records what victims say and do when they are being defrauded

By Lucian Constantin
May 22, 2012 12:07 PM ET
IDG News Service - A new variant of SpyEye malware allows cybercriminals to monitor potential bank fraud victims by hijacking their webcams and microphones, according to security researchers from antivirus vendor Kaspersky Lab.

SpyEye is a computer Trojan horse that specifically targets online banking users. Like its older cousin, Zeus, SpyEye is no longer being developed by its original author, but is still widely used by cybercriminals in their operations.

SpyEye's plug-in-based architecture allows third-party malware developers to extend its original functionality, Kaspersky Lab malware researcher Dmitry Tarakanov said in a blog post on Monday. This is exactly what happened with the new webcam and microphone spying feature, which is implemented as a SpyEye plug-in called flashcamcontrol.dll, Tarakanov said.

More at :-
http://www.computerworld.com/s/article/9227387/Ban...

--
Was this reply relevant?
+0
-0
mogs CClip 114
Member 22nd May, 2012 21:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Beta Channel Update
Tuesday, May 22, 2012 | 09:15
Labels: Beta updates

The Beta channel has been updated to 20.0.1132.11 for Windows, Mac, Linux, and Chrome Frame. This build contains several bug and stability fixes. Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome

--
Was this reply relevant?
+0
-0
mogs CClip 115
Member 22nd May, 2012 21:30
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Paysafecard PINs Sold Over The Internet Linked To Fraud
22 May, 2012

Scammers are taking advantage of the payment method's customers.

Paysafecard PINs sold over the Internet are increasingly being linked to fraud, the Vienna-based company warns.

The electronic payment method billed as "cash for the Internet" uses a pre-paid system and does not require debit or credit cards. The service, which is regulated in the UK by the Financial Services Commission, aims to function like cash instead.

Customers can purchase secure 16-digit PINs, printed on the back of a card or voucher, from one of 350,000 official sales outlets worldwide, and then spend that money at any of 3,500 authorised online shops, many of which are gaming-related.

But there is a growing trend of PINs being sold over the Internet for sums below their actual value, a practice that violates Paysafecard's terms and conditions. The overwhelming majority of these are fraudulent, with users discovering the cards have previously been used or locked only while attempting to redeem them.



Read more: http://www.itproportal.com/2012/05/22/paysafecard-...

--
Was this reply relevant?
+0
-0
mogs CClip 116
Member 22nd May, 2012 21:38
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft's Rozzle bolsters drive-by malware defences Microsoft researchers have shown off a new anti-malware tool which could be used to defeat so-called drive-by attacks, where users' computers are infected without them actively installing rogue software.
Drive-by attacks typically rely on vulnerabilities in JavaScript but are near-impossible for traditional static and runtime anti-malware tools to detect, according to the researchers.
These JavaScript attacks typically target specific browsers running certain plugins. Unless the malware detects that specific set up, the trap will not be sprung, which makes it hard to detect.
But Benjamin Livshits and Benjamin Zorn of Microsoft Research, along with Clemens Kolbitsch from the Technical University of Vienna have devised a virtual machine tool, known as Rozzle [PDF], which dramatically improves detection of the JavaScript threats.
Rozzle is a JavaScript virtual machine that can simultaneously mimic different set-ups by presenting the malware with multiple execution paths, increasing the likelihood that it can be detected. In effect, it provides a tool to decloak this hidden JavaScript malware.

Read more at :-
http://www.v3.co.uk/v3-uk/news/2178656/microsofts-...

--
Was this reply relevant?
+0
-0
mogs CClip 117
Member 23rd May, 2012 12:17
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 118
Member 23rd May, 2012 13:12
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
'Do Not Track' system rapped over lack of renown
by James Dohnert The effectiveness of user privacy system, 'Do Not Track' (DNT) has been questioned by a prominent security expert, who argued that lack of user awareness is undermining the system.
The warning came from SANS Institute chief research officer Johannes Ullrich. He said that the lack of user awareness and requirement to opt-in nature would limit the DNT system.
DNT allows for users to opt out of tracking by various internet sites, including analytics services, advertising networks, and social platforms. By enabling a special HTML header in their browser preferences, users can request that sites refrain from tracking their activity.
Despite its support in internet browsers such as Firefox, Internet Explorer and Safari, DNT has yet to be adopted by many third-party websites. Experts believe the initiative is being held back because of its voluntary nature and lack of consumer awareness.
"There is no technical means to enforce use of the DNT header. Some legal protections are in the works, but as usual they will probably only apply to legitimate advertisers who are likely going to comply,' Ullrich said in a blog post.

More at :-
http://www.v3.co.uk/v3-uk/news/2178857/expert-outl...

--
Was this reply relevant?
+0
-0
mogs CClip 119
Member 23rd May, 2012 13:19
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Malware Attacks On The Rise, Says McAfee
23 May, 2012
The security company warns that threats to desktop and mobile operating systems are increasing.

PC malware is higher than it has ever been in the last four years, McAfee revealed in a threat report covering the first quarter of 2012.

Despite previous reports citing Android as a primary target, McAfee researchers now warn that PC and laptop users are not off the hook. Between 2011 and the end of the first quarter of 2012, McAfee Labs traced some 83 million examples of malware, most instances of which were rootkits or password stealers.

The report also found that malware targeting Apple's desktop operating system has shown consistent growth, with a slight increase in the number of samples reported by the end of March.

Though McAfee suggests desktop and laptop users should beware, mobile operating systems continue to be victims to attacks.

Read more: http://www.itproportal.com/2012/05/23/malware-atta...

--
Was this reply relevant?
+0
-0
mogs CClip 120
Member 23rd May, 2012 21:03
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 23rd May, 2012 21:06
Google warns users infected with DNSChanger as Web outage nears
Infected PCs and Macs trigger unusual warning on Google's search site

By Gregg Keizer
May 23, 2012 06:36 AM ET
Computerworld - Google on Tuesday hauled out a tool it last used nearly a year ago to warn users infected with the "DNSChanger" malware.

Starting Tuesday, special messages will be displayed at the top of a Google search results page to people whose Windows PCs and Macs have been infected with malicious code that hijacks their clicks.

"Our goal with this notification is to raise awareness of DNSChanger among affected users," said Damian Menscher, a Google security engineer, in a post to a company blog. "We believe directly messaging affected users on a trusted site and in their preferred language will produce the best possible results."

One security expert appreciated Google's effort.

"Let's face it, Google is basically a central piece of infrastructure now, and as such they have a responsibility to do their part to keep the pipes clean," said Andrew Storms, director of security operations at nCircle Security.

DNSChanger silently redirects clicks by modifying victimized computers' domain name system (DNS) settings. The users are sent to hacker-created websites that resemble the real domains.

More at :-
http://www.computerworld.com/s/article/9227397/Goo...

--
Was this reply relevant?
+0
-0
mogs CClip 121
Member 23rd May, 2012 21:12
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 23rd May, 2012 21:14


--
Was this reply relevant?
+0
-0
mogs CClip 122
Member 23rd May, 2012 21:20
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 123
Member 23rd May, 2012 21:34
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Website address 'revolution' back in motion
by Glenn Chapman The Internet domain name "revolution" was back in action on Tuesday with the agency in charge of website addresses once again taking applications for online neighborhoods breaking the ".com" mold.
The Internet Corporation for Assigned Names and Numbers (ICANN) had put the process on hold after discovering a flaw that let some aspiring applicants peek at unauthorized information at the registration website.
"During the last few weeks, we have fixed the technical glitch that caused us to take the system offline," ICANN chief operating officer Akram Atallah said in a message at the agency's website.
The window for applying will remain open until the end of May 30 based on GMT time.
Those interested in running new generic top-level domains (gTLDs) online were assured the problem was fixed and that they could securely apply.
"We recognize and regret the inconvenience caused by this glitch," Atallah said.
In January, ICANN began taking applications from those interested in operating Internet domains that replace endings such as .com or .org with nearly any acceptable words, including company, organization or city names.
Outgoing ICANN president Rod Beckstrom has championed the change as a "new domain name system revolution."

More at :-
http://phys.org/news/2012-05-website-revolution-mo...

--
Was this reply relevant?
+0
-0
mogs CClip 124
Member 24th May, 2012 10:37
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 125
Member 24th May, 2012 10:48
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Windows 8 puts end to endless reboots
OS kicks out to recovery tools after second boot failure

By Gregg Keizer

Computerworld - Microsoft yesterday promised that a feature it's added to Windows 8 will put a stop to endless reboots.

Unlike earlier versions, Windows 8 will automatically call up a new menu with repair and recovery options when the software sniffs out problems getting the machine to boot or the OS to load properly.

In a post to the Building Windows 8 blog Tuesday, Chris Clark, a program manager with the user Experience team, described new tools embedded in the operating system designed to step in when a PC reboots more than twice because of problems.

Although Clark couched the changes as necessary because of increasingly-fast boot times -- meaning users are often unable to interrupt the process with traditional key presses like F2 or F8 -- one side effect is that endless reboots should be a thing of the past.
The problem has plagued Windows at times.

In 2008, an update to prep machines for the release of Vista Service Pack 1 (SP1) crippled PCs when it sent them into an endless cycle of rebooting.

More at :-
http://www.computerworld.com/s/article/9227411/Win...

--
Was this reply relevant?
+0
-0
mogs CClip 126
Member 24th May, 2012 10:56
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Oracle slammed for outdated approach to Java security
by Shaun Nichols Oracle has fallen dangerously behind the times with the security policies and practices it utilises on its Java platform, according to one of Kaspersky Lab's top researchers.
Roel Schouwenberg, a senior antivirus researcher with the Kaspersky Lab global research and analysis team told V3 that Oracle has not kept pace with the security advances made by other companies in recent years.
"You can see that Microsoft has gone to sandboxing for Office, Adobe has gone that way, Google has gone that way with Chrome," Schouwenberg noted.
"When you look at what Oracle has done, the sad reality is nothing. And I have to ask why we are letting Oracle get away with this?"
According to figures from Kaspersky, Java remains a top target for malware writers and cyber criminals. Along with Adobe Reader and Flash, Java vulnerabilities are the most popular for online exploits which lead to malware infections.

More at :-
http://www.v3.co.uk/v3-uk/news/2179375/researcher-...

--
Was this reply relevant?
+0
-0
mogs CClip 127
Member 24th May, 2012 21:54
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 128
Member 24th May, 2012 22:00
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Windows 8 to Run Adobe Flash Only on Some Websites
By Ian Paul, PCWorld May 24, 2012 5:42 AM

The touch-centric Metro version of Internet Explorer 10 in Windows 8 is plug-in free, but the browser may still be able to run Adobe Flash video, according to an online report. Microsoft is reportedly taking the Google Chrome approach with IE10 and building Flash capability directly into the touch-friendly browser. But Flash won't be available for every site on the Web in Metro IE10. Instead, Microsoft will only extend the capability to select popular sites, according to Windows bloggers Paul Thurrott and Rafael Rivera.

Read more at :-
http://www.pcworld.com/article/256148/windows_8_to...

--
Was this reply relevant?
+0
-0
mogs CClip 129
Member 25th May, 2012 09:12
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 25th May, 2012 09:14
Beta Channel Update
Thursday, May 24, 2012 | 17:15
Labels: Beta updates

The Beta channel has been updated to 20.0.1132.17 for Windows, Mac, Linux, and Chrome Frame. This build contains updates to v8 (3.10.8.10) and fixes for bugs and stability. Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome

--
Was this reply relevant?
+0
-0
mogs CClip 130
Member 25th May, 2012 10:21
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Researchers propose TLS extension to detect rogue SSL certificates
TACK TLS extension combines public key pinning with self-generated keys to validate SSL certificates

By Lucian Constantin

IDG News Service - A pair of security researchers have proposed an extension to the Transport Layer Security (TLS) protocol that would allow browsers to detect and block fraudulently issued SSL certificates.

Called TACK, short for Trust Assertions for Certificate Keys, the extension was developed by security researchers Trevor Perrin and Moxie Marlinspike and was submitted for consideration to the Internet Engineering Task Force (IETF), the body in charge of TLS, on Wednesday.

TACK tries to resolve the trust-related problems with the public key infrastructure that were highlighted by last year's security breaches at certificate authorities (CAs) Comodo and Diginotar.

Both of those breaches resulted in SSL certificates for high profile domains like google.com, hotmail.com or mail.yahoo.com, being issued fraudulently. In Diginotar's case, the certificates were even employed in active attacks against Google users in Iran.

At the moment, Web browsers trust over 600 organizations from around the world to issue SSL certificates. These organizations are known as certificate authorities and every one of them can technically issue a valid certificate for any domain on the Internet.

Several proposals to improve the current CA-based system have been put forward by Internet and security experts in the past 12 months, but there's no consensus regarding which one offers the best solution.

In November 2011, security engineers from Google proposed an HTTP extension called "public key pinning" that would allow websites to effectively tell browsers via an HTTP header which certificate authorities should be trusted to issue SSL certificates for their domain names.

The browsers would then remember (pin) this information and refuse to establish the connection if they receive a certificate signed by a different CA in the future. A more static implementation of this system already exists in Google Chrome for particular domain names, including Google's.

TACK is based on the same public key pinning concept, but instead of pinning CA public keys to particular domain names, it pins public keys generated by the domain owners themselves.

Read more at :-
http://www.computerworld.com/s/article/9227481/Res...

--
Was this reply relevant?
+0
-0
mogs CClip 131
Member 25th May, 2012 10:30
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 132
Member 25th May, 2012 10:39
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Cookie law: websites must seek consent from this weekend
COMMENTS (41)
By Dave Lee
Technology reporter, BBC News

The EU wants to put a stop to tracking cookies logging a user's activity without their knowledge
Friday marks the last working day for UK businesses to prepare their websites for a new law governing the use of cookies.

From Sunday, sites must obtain "informed consent" from visitors before saving cookies on a machine.

Cookies are pieces of personal data stored when users browse the web, sometimes to power advertising.

The Information Commissioners Office (ICO) is to launch a tool for the public to report non-compliant sites.

It is expected that the vast majority of websites will not be ready in time.

However, the ICO has said it would not take immediate action over non-compliant sites, and would instead offer guidance.

Tracking data
The rules are designed to tackle privacy issues resulting from the growing use of cookies which track users' browsing habits.

The guidelines, set by the EU, mean visitors must be told what cookies are being placed on their machine.

More at :-
http://www.bbc.co.uk/news/technology-18194235

--
Was this reply relevant?
+0
-0
mogs CClip 133
Member 25th May, 2012 12:18
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 134
Member 25th May, 2012 19:19
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 135
Member 25th May, 2012 19:28
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 136
Member 27th May, 2012 22:54
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Opera is Facebook's best browser play
Reports peg No. 5 browser maker as takeover target
By Gregg Keizer
May 27, 2012 03:21 PM ET
Computerworld - Facebook may acquire Norwegian browser maker Opera Software, developer of the Opera and Opera Mini browsers for desktops and mobile phones, according to a report.

The purchase of Opera would give Facebook a way to quickly create a dedicated browser customized for the social networking giant and its estimated 900 million active monthly users.

It would also put Facebook in the middle of a browser battle with Microsoft (Internet Explorer), Mozilla (Firefox), Google (Chrome) and Apple (Safari). Some of those companies -- like Microsoft -- have partnered with Facebook, while others -- such as Google -- compete in the social networking space.

U.K.-based technology website Pocket-lint first reported Friday that Facebook "is looking to buy Opera Software," citing an unnamed source it described only as "trusted." Other sites, including The Next Web, claimed that while their sources could not verify Facebook's interest, they did say Opera's management has been talking to potential suitors.


Read more at :-
http://www.computerworld.com/s/article/9227516/Ope...

--
Was this reply relevant?
+0
-0
mogs CClip 137
Member 27th May, 2012 23:06
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
About Qualys BrowserCheck

Qualys BrowserCheck is a cross-platform and cross-browser SaaS service that scans the user's browser looking for vulnerabilities in the browser itself and its plug-ins. This tool will also help you fix the security issues discovered by the scan.

Qualys BrowserCheck Business Edition is a version of BrowserCheck that allows an IT/network admin to create an account in BrowserCheck and to access a view of the browsers and plugins being used in their networks, with detailed data on vulnerabilities on the user level.

The threat of browser-based data breaches is growing. The number of vulnerabilities in browser plugins is on the rise. Now is the time to be proactive about the security of your web browser.

https://browsercheck.qualys.com/?scan_type=js

--
Was this reply relevant?
+0
-0
mogs CClip 138
Member 28th May, 2012 11:41
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 139
Member 28th May, 2012 11:56
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Thousands of websites in breach of new cookie law Thousands of UK websites are now in breach of a law that dictates what they can log about visitors.

European laws that define what details sites can record in text files called cookies came into force on 26 May.

Cookies are widely used to customise what repeat visitors see on a site and by advertisers to track users online.

The Information Commissioner's Office (ICO) said it would offer help to non-compliant sites rather than take legal action against them.

Action plan
The regulations say websites must get "informed consent" from users before they record any detailed information in the cookies they store on visitors' computers.

Among websites that have complied with the law, getting consent has involved a pop-up box that explains the changes. Users are then asked to click to consent to having information recorded and told what will happen if they refuse.

UK firms have had 12 months to prepare for the change and the ICO has spent much of that time reminding businesses about their obligations.

More at :-
http://www.bbc.co.uk/news/technology-18206810

--
Was this reply relevant?
+0
-0
mogs CClip 140
Member 28th May, 2012 21:21
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 141
Member 29th May, 2012 17:45
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Chrome to take world's top browser spot for May
In first for Google's browser, StatCounter's data shows Chrome ahead of IE for the month
By Gregg Keizer
May 29, 2012 06:09 AM ET
Computerworld - Google's Chrome is about to grab the top browser spot for a full month for the first time from Microsoft's Internet Explorer, data from a Web analytics company showed.

For the month through Monday, Chrome had an average usage share of 32.5%, slightly higher than Internet Explorer's (IE) 32.1%, according to Irish company StatCounter.

If the remaining three days of May play out as did the previous 28, Chrome will take the browser crown from IE for a full month for the first time since Chrome's September 2008 launch.

Previously, Chrome had edged IE on weekends, and then earlier this month topped Microsoft's combined browser usage share for the week ending May 20. That trend continued in the month's fourth week as Chrome beat IE 32.9% to 31.4% for the seven days ending May 27.
The spread between the two browsers for the fourth week of the month was 67% larger than during the third week, hinting that Chrome continues to gain momentum in the share race.

Other browsers remained steady. Through May 28, Mozilla's Firefox accounted for 25.5% of all browsers used worldwide, while Apple's Safari and Opera Software's Opera logged in at 7.1% and 1.8%, respectively.

More at :-
http://www.computerworld.com/s/article/9227536/Chr...

--
Was this reply relevant?
+0
-0
mogs CClip 142
Member 29th May, 2012 17:50
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Super-powerful Flame worm could take YEARS to dissect
By John Leyden

Posted in Business, 29th May 2012 13:11 GMT


Analysis The exceptionally complex Flame malware, this week found on numerous systems across the Middle East and beyond, is likely to take months if not years to analyse.

Early indications suggest that Flame is a cyber-espionage toolkit that has penetrated computers primarily, but not exclusively, in Iran and Israel. The worm may have been in circulation for at least two years (and perhaps much longer) but only hit the news on Monday following a series of announcements by security groups and antivirus firms.

Iran's National Computer Emergency Response Team published a warning about the data-stealing virus, promising an antidote: so far the malware has completely evaded detection by commercial antivirus scanners. Iranian researchers described the malware as a "close relation" to Stuxnet, the famously well-engineered nasty that sabotaged industrial control systems linked to Iran's controversial nuclear programme.

Kaspersky Lab said the UN International Telecommunication Union had alerted it to Flame and asked for help analysing the malware, which was believed to be wiping information from Middle Eastern computers. Kaspersky said the unusually large virus has been spreading since March 2010.

More at :-
http://www.theregister.co.uk/2012/05/29/flame_cybe...

--
Was this reply relevant?
+0
-0
mogs CClip 143
Member 29th May, 2012 17:57
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
F-Secure warns of Olympic themed emails carrying malicious code

After it found an Olympics PDF affecting Adobe Reader and Acrobat

By Lee Bell

Source: The Inquirer (http://s.tt/1cU9s)

FINNISH SECURITY FIRM F-Secure has warned of the dangers of Olympic themed emails that contain links after it encountered a malicious Olympic Games schedule PDF file that affects older versions of Adobe Reader and Acrobat.

F-Secure researcher Sean Sullivan said in a blog post Monday that the malware was found "while mining our back end for documents which drop executables".

Sullivan told The INQUIRER, "Typically, for a PDF exploit what will happen for the person sitting at the computer screen is that Adobe Reader will launch, it will crash and then it will drop a back door infecting the machine, allowing access remotely. It will then launch a clean decoy as part of an attack."

In this case, the decoy is a copy of the London 2012 Olympic schedule circa October 2010.

He added, "The back door installs the software and connects back to home base. It could be someone out there trying to form his own botnet, turn the exploited machine into a zombie, into a bot."

The Olympic Games PDF exploit attempts to make a network connection with a site registered to "student travel" in Baotoushi, China.

Sullivan said the PDF exploits CVE-2010-2883 in the Cooltype.dll file in Adobe Reader and Acrobat version 9.x before 9.4 and 8.x before 8.2.5, on both Windows and Mac OS X operating systems.

Sullivan said if you don't already have the current version of Adobe Reader, you really should go get it now.

Last month, F-Secure's chief security researcher Mikko Hypponen warned that we are entering into a cyber warfare revolution, and that governments will soon attempt to outdo each other based on their computer weapons' prowess.

http://www.theinquirer.net/inquirer/news/2180482/-...

--
Was this reply relevant?
+0
-0
mogs CClip 144
Member 29th May, 2012 21:04
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Consumer Reports: Free anti-malware software for Windows, Mac is effective
By Ellen Messmer | Network World US | 29 May 12

In what could be regarded as a controversial test of anti-malware effectiveness, the influential Consumer Reports publication in its June issue gives its main recommendation to anti-malware freeware for protecting Windows and Mac computers. With some caveats, Consumer Reports says in its "Security Software" article it regards it as unnecessary to buy commercial anti-malware software.

Consumer Reports says it carried out the testing of 18 separate anti-malware software applications -- four of them free and 14 paid -- in conjunction with International Consumer Research & Testing based on how well the software defended against live exploits from websites.

MORE: Free antivirus programs rise in popularity, survey shows

It combined these results with other tests related to "ease of use," as well as a measurement of how the software used memory or other "resources" that might slow computer operation during a scan. The testing also looked at "scan speed" related to how fast large groups of files could be scanned, and "updating" to see how fast each software package would be updated against new malware. Other categories such as "information help," related to how clear and useful instructions are, and "clear warnings" were examined. The effectiveness of any "firewall performance," "spam filter," "parental filter" and "non-boot rescue" were also technically reviewed by Consumer Reports and its testing partner.

In the June issue, Consumer Reports recommends that consumers use free anti-malware tools -- the top choice being Avira Free Antivirus, followed by AVG Anti-Virus Free 2012, Avast Free Antivirus and Microsoft Security Essentials, unless the user should be considered among the "most at-risk Internet users."

Read more: http://www.pcadvisor.co.uk/news/security/3360766/c...

--
Was this reply relevant?
+0
-0
mogs CClip 145
Member 29th May, 2012 21:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft forbids class actions in new Windows licence

You're on your own now
By Gavin Clarke

Posted in Business, 29th May 2012 18:01 GMT
Microsoft will make it harder for customers to club together with lawyers to file lawsuits against its products.

The company is rolling out new End User License Agreements (EULAs) that forbid punters from joining class-action proceedings.

Assistant general counsel Tim Fielden announced the tweak here and said the changes will come into effect as Microsoft releases major hardware or software updates.

The first big product to include the altered licence will be Windows 8: a release candidate is expected in June before it ships for PCs and tablets in late summer or the autumn.

Read more at :-
http://www.theregister.co.uk/2012/05/29/no_microso...

--
Was this reply relevant?
+0
-0
mogs CClip 146
Member 29th May, 2012 23:29
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 147
Member 30th May, 2012 20:52
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
1 in 5 U.S. Windows PCs lack antivirus defenses
Expired trial software accounts for more than a third of the 19.3% of American computers that browse naked

By Gregg Keizer
May 30, 2012 12:48 PM ETAdd a comment. What's this?
Computerworld - Nearly a fifth of Windows PCs in the U.S. lack any active security protection, an antivirus vendor said today, citing numbers from a year-long project.

"The scale of this is unprecedented," argued Gary Davis, the director of global consumer product marketing for McAfee, talking about the scope of his company's sampling of PC security.

McAfee took measurements from scans of more than 280 million PCs over the last 12 months, and found that 19.3% of all U.S. Windows computers browsed the Web sans security software. Owners of those systems downloaded and used McAfee's free Security Scan Plus, a tool that checks for antivirus programs and enabled firewalls.

Globally, the average rate was 17%, putting the U.S. in the top 5 most-unprotected countries of the 24 represented in the scans

More at :-
http://www.computerworld.com/s/article/9227570/1_i...

--
Was this reply relevant?
+0
-0
mogs CClip 148
Member 30th May, 2012 20:58
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Windows 8 Release Preview leaks to Web
Appearance of Chinese 64-bit build may signal milestone release this week

By Gregg Keizer
May 30, 2012 06:39 AM ET
Computerworld - A Chinese edition of Windows 8, reportedly the same build that Microsoft will launch in the next week as the Release Preview, has leaked to file-sharing sites.

On Tuesday, links to Build 8400 of Windows 8 appeared on multiple sites and discussion forums, many of them Chinese-language destinations.

According to multiple reports on the Web, Build 8400 is legitimate and has successfully been installed by some users. "Canouna," the nickname used by an administrator of the WinLeaked forum, vouched for the download.

"100% LEGIT," Canouna tweeted early Tuesday.

Others, however, called the leak "a wild goose chase" because one widely shared link pointed to a corrupted file.

The only edition available Tuesday was the 64-bit version for Chinese users.

Microsoft has not disclosed the debut date of Windows 8 Release Preview -- the name for what the company has called "release candidate" in the past -- but has promised it would make the final public milestone available the first week of June.

More at :-
http://www.computerworld.com/s/article/9227565/Win...

--
Was this reply relevant?
+0
-0
mogs CClip 149
Member 30th May, 2012 21:01
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Dev Channel Update
Tuesday, May 29, 2012 | 18:07
Labels: Dev updates
The Dev channel has been updated to 21.0.1155.2 for Windows, Mac, Linux, and Chrome Frame. This build contains following updates:

Updated V8 - 3.11.6.2
Gamepad API prototype http://www.w3.org/TR/gamepad/ available by default.
TLS 1.1 is enabled by default.
Mouse Lock (Pointer Lock) no longer requires fullscreen. [r138150][r138944] Native Client applications can use this now, while the JavaScript API still requires enabling in about:flags. Try e.g. http://media.tojicode.com/q3bsp/

Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome

--
Was this reply relevant?
+0
-0
mogs CClip 150
Member 30th May, 2012 21:09
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Kaspersky warns of worldwide implications of evolving Flame malware

Despite F-Secure saying it's not a concern for countries outside Iran
By Lee Bell
Tue May 29 2012, 18:23
SECURITY VENDOR Kaskpersky has warned that the world is not safe from malware like Flame, despite rival security firm F-Secure having said that it's "not a concern" for countries other than Iran.
The comments highlight how the security industry has conflicting opinions on the complex cyber espionage spyware that has targeted Iranian IT systems.
F-Secure researcher Sean Sullivan told The INQUIRER today that Flame is a "limited string, a special edition malware tool that doesn't get spotted in the wild, so if it was to spread... our automation would have picked it up". For this reason, he said, "It's not a concern for UK lands for certain."
However, Kaspersky's chief security expert told The INQUIRER that it's too early to say whether we are safe from the Flame cyber weapon even if it does appear to have been successfully stopped, because a new version could well evolve in the future.
"Flame has a model structure. This means once infected the operators can install additional models. So far we've found 20 different models but there may still be more yet to discover," he said.
"I think the people behind Flame spend every year deploying a new model. It's a huge operation with dozens of people involved - the same level as Stuxnet. I think such a successful cyber operation will create a new version."
Today it was also hinted by Israel's vice prime minister Moshe Ya'alon that it might have been involved in the Flame attack against Iran, according to reports.

Read more at :-
http://www.theinquirer.net/inquirer/news/2180718/k...

--
Was this reply relevant?
+0
-0
mogs CClip 151
Member 30th May, 2012 21:15
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 152
Member 30th May, 2012 21:21
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 153
Member 30th May, 2012 22:45
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Proposed new Internet neighborhoods unveiled June 13

May 30, 2012 by Glenn Chapman
The agency in charge of website addresses has picked June 13 as the day it will reveal proposed new names for online neighborhoods breaking the ".com" mold.

The Internet Corporation for Assigned Names and Numbers (ICANN) said in an online post that it will stop taking applications for Generic Top Level Domains at the end of Wednesday in the GMT time zone and reveal the requests in June.

In January, ICANN began taking applications from those interested in operating Internet domains that replace endings such as .com or .org with nearly any acceptable words, including company, organization or city names.

Outgoing ICANN president Rod Beckstrom has championed the change as a "new domain name system revolution."

The new system will allow Internet names such as .Apple or .IMF or .Paris.

ICANN says the huge expansion of the Internet, with two billion users around the world, half of them in Asia, requires the new names.

Registration costs $185,000 with a $25,000 annual fee after that.

ICANN has taken in more than $352 million in application fees, according to Beckstrom. There are more than 2,000 applications in ICANN's system.

"It is going to be very interesting on reveal day," Beckstrom said.

Read more at :-
http://phys.org/news/2012-05-internet-neighborhood...

--
Was this reply relevant?
+0
-0
mogs CClip 154
Member 31st May, 2012 09:20
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Beta Channel Update
Wednesday, May 30, 2012 | 16:41
Labels: Beta updates

The Beta channel has been updated to 20.0.1132.21 for Windows, Mac, Linux, and Chrome Frame. This build contains updates to v8 (3.10.8.11) and fixes for bugs and stability. Full details about what changes are in this build are available in the SVN revision log. Interested in switching release channels? Find out how. If you find a new issue, please let us know by filing a bug.

Dharani Govindan
Google Chrome

--
Was this reply relevant?
+0
-0
mogs CClip 155
Member 31st May, 2012 18:15
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 156
Member 31st May, 2012 18:25
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft to ship Windows 8 Release Preview today
Goof leaks word of final public milestone's early launch

By Gregg Keizer
Computerworld - Microsoft will ship Windows 8 Release Preview today, several days earlier than expected, according to a blog briefly posted by the company.

The blog post, written by Chuck Chan, an executive with the Windows development team, went live for a few minutes late Wednesday, long enough for several users to take notice. Neowin first reported the leak of Chan's post and its Thursday date.

Earlier, Microsoft had promised to deliver the Release Preview the first week of June, a timeframe that most, including Computerworld, assumed meant the week of June 4-8. But the company must have thought differently, figuring that Friday, June 1, qualified this week as the month's first.

The late-May debut of Release Preview meshes with a schedule spelled out in March by Michael Cherry, an analyst with Directions on Microsoft, who said that the Redmond, Wash. developer would deliver the build three months after the Consumer Preview, with a "release to manufacturing," or RTM, edition three months later

More at :-
http://www.computerworld.com/s/article/9227597/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 157
Member 31st May, 2012 18:32
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 31st May, 2012 18:32
Complaints over new cookie laws close to 100 following last minute amendments.
Complaints are already heading the way of the Information Commissioner's Office (ICO) regarding the EU's new continent-wide cookie laws, which came into force at the beginning of the week.
To date, 84 people have contacted the organisation, which is the UK's independent authority on data protection and information rights, to protest the new regulations, though the tone of the objections registered is not clear.
It seems most likely that people are upset specifically with the ICO for making last-minute alternations to the legislation enabling companies to assume some website users have given consent to have their details stored.
Some observers have argued that this loophole essentially negates the point of a cookie law in the first place, though it is also possible that Internet surfers are annoyed by the extra pop-ups coming their way as a result of the new requirements.
On 28 May, the rules governing how cookies employed for data capture purposes are flagged by containing websites were altered to reflect ongoing concerns about electronic invasions of privacy.
Companies who use the controversial but widespread technique of obtaining personal information and tracking online behaviour patterns on their sites are now required to inform web users of the practice and receive their consent.
An ICO spokesperson has indicated that the organisation has set up a survey on its website to encourage people to share their feelings about how cookies are managed in the digital world.
Read more: http://www.itproportal.com/2012/05/31/complaints-o...

--
Was this reply relevant?
+0
-0
mogs CClip 158
Member 31st May, 2012 21:59
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 1st Jun, 2012 23:32
US rejects proposal to put Internet under UN control

The world is displayed on a computer screen via Google Earth. US officials, lawmakers and technology leaders offered a resounding "no" Thursday to proposals to bring the Internet under United Nations' control and said they would lead efforts to stop the move.

US officials, lawmakers and technology leaders voiced firm opposition Thursday to efforts to bring the Internet under UN control, saying it could hurt free expression and commerce.

At a congressional hearing, the comments were united in opposition to place the Internet under the jurisdiction of the International Telecommunications Union, a United Nations agency which governs telecom systems.

"There's a strong, bipartisan consensus within the (US) administration and Congress that we must resist efforts from some countries to impose a top-down governance of the Internet," Representative Henry Waxman told the hearing.

Congresswoman Doris Matsui added that "any international authority over the Internet is troublesome, particularly if that effort is being led by countries where censorship is the norm."

A top State Department official, in prepared remarks, reaffirmed the opposition of the Obama administration to UN governance of the Internet.

"In all bilateral encounters and multilateral meetings, the United States consistently opposes the extension of intergovernmental controls over the Internet," said Philip Verveer, deputy assistant secretary of state and coordinator for IT policy, saying this would lead to "very bad outcomes."

"It inevitably would diminish the dynamism of the Internet," he said.

Verveer told lawmakers that UN control would possibly "aid in censorship and repression" in some countries.

The comments come ahead of a meeting in December of the ITU where some nations will be pressing for the agency to formally govern the Internet.

Some nations, including Russia and China, say the Internet is still controlled by the United States and that a UN effort would give a greater voice to the developing world.

More at :-
http://phys.org/news/2012-05-internet.html

This thread is now closed....thankyou for your support

--
Was this reply relevant?
+0
-0

This thread has been marked as locked.