Forum Thread: Daily CYBERCLIPS OCTOBER "Edition".

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Open Discussions

This thread has been marked as locked.
mogs Daily CYBERCLIPS OCTOBER "Edition".
Member 30th Sep, 2010 20:47
Ranking:
Posts: 6,279
User Since: 22nd Apr, 2009
System Score: N/A
Location: UK
Last edited on 30th Sep, 2010 20:49

30/09/2010

This the third edition of the CYBERCLIPS thread !!!

Support/interest appears to be quite constant:" hiccoughs or hiccups" have been few !
Whilst the emphasis in articles continues to be 'pon Security aspects; I also try to "populate"
with other subject/topics that may be of general interest.
The occasional product is also checked against Secunia Advisories.
Headings and tags chosen, found appropriate...I hope.
Please note....the most recent posts are those at the end of a downward scroll !!
I should reiterate that no entry/post should be taken as a personal recommendation, unless otherwise stated.
Please continue to keep CYBERCLIPS free of junk and unattractive to any contentious individuals; whilst, at the same time feeling disposed towards posting suitable content, and one-off helpful comment, yourself.
* Keep patching : up to date : be Cybersafe ! *


--

mogs CClip 1 BETA Chrome UPDATE/INFO
Member 30th Sep, 2010 20:57
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Beta Channel Update
Thursday, September 30, 2010 | 10:00
Labels: Beta updates
The Beta channel has been updated to 7.0.517.24 for Windows, Mac, Linux and Chrome Frame.

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

Anthony Laforge
Google Chrome
5 comments | Links to this post | Email Post


http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 2 Cyber Superweapon INFO
Member 30th Sep, 2010 21:26
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
World's first 'cyber superweapon' attacks China
September 30, 2010

The Stuxnet computer worm has wreaked havoc in China, infecting millions of computers around the country, state media have reported.
A computer virus dubbed the world's "first cyber superweapon" by experts and which may have been designed to attack Iran's nuclear facilities has found a new target -- China.

Read more at :-
http://www.physorg.com/news205050403.html

--
Was this reply relevant?
+0
-0
mogs CClip 3 Chrome TIP/INFO
Member 30th Sep, 2010 21:58
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Tip of the day: Within Google Chrome, press Ctrl+Shift+N (Windows and Linux) or ⌘-Shift-N (Mac) to browse incognito without saving website cookies or recording browsing/download histories. This is great for instances where you wouldn't want others to know what you were browsing. :)

--
Was this reply relevant?
+0
-0
mogs CCip 4 Adobe Patch Early INFO
Member 1st Oct, 2010 19:26
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 5 Caution INFO
Member 1st Oct, 2010 19:31
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 6 UEFI INFO
Member 1st Oct, 2010 21:02
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
1 October 2010 Last updated at 10:11
Change to 'Bios' will make for PCs that boot in seconds
By Mark Ward
Technology correspondent, BBC News

The Bios in modern computers dates from the earliest IBM PCs
Continue reading the main story
Related stories

Mobile chips battle for processing power
Intel bets future on new chipset
New PCs could start in just seconds, thanks to an update to one of the oldest parts of desktop computers.

The upgrade will spell the end for the 25-year-old PC start-up software known as Bios that initialises a machine so its operating system can get going.

The code was not intended to live nearly this long, and adapting it to modern PCs is one reason they take as long as they do to warm up.

Bios' replacement, known as UEFI, will predominate in new PCs by 2011

Read more at :-
http://www.bbc.co.uk/news/technology-11430069

--
Was this reply relevant?
+0
-0
mogs CClip 7 IE 9 News INFO
Member 1st Oct, 2010 21:20
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 1st Oct, 2010 21:22


--
Was this reply relevant?
+0
-0
mogs CClip 8 Who's bug is it ? INFO
Member 2nd Oct, 2010 09:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 9 Yahoo ALERT/INFO
Member 3rd Oct, 2010 00:28
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
New Yahoo Phishing Campaign in Circulation


October 2nd, 2010, 12:03 GMT| By Lucian Constantin





Security researchers from Bkis warn of a wave of phishing emails posing as notifications from Yahoo and asking users to confirm their credentials in order to avoid having their account terminated.

The phishing emails come with spoofed headers to appear as originating from "The Yahoo! Mail Team" <services@cc.yahoo-inc.com> and have a subject of "Update Your Account!!!"


A big banner with the company's logo contained in the email suggests that spammers used a template from a Yahoo customer care satisfaction survey and modified the text of the message.

More at :-
http://news.softpedia.com/news/New-Yahoo-Phishing-...

--
Was this reply relevant?
+0
-0
mogs CClip 10 ZBOT Threat ALERT/INFO
Member 3rd Oct, 2010 00:33
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
ZBot Pushers Attack iTunes Store Users

October 2nd, 2010, 11:00 GMT| By Lucian Constantin


Security researchers warn that a new spam campaign is pumping out emails that mimic iTunes Store receipts and direct users to a website pushing the ZBot trojan.

The rogue messages come with a subject of "Your receipt #[random digits]" and have their header spoofed to appear as originating from a do_not_reply@itunes.com address.

The spammers are abusing the real receipt template used by Apple's iTunes Store and list an allegedly ordered item called "Whatever You Like [Digital 45]".


The price varies from message to message, but it's always in the the order of several hundreds of dollars; usually over 500.

This significant sum is meant to scare recipients into thinking that they were billed for a very expensive item that was never ordered.

Users who fall for the trick are likely to click on the "Report a Problem" link displayed under the item's name.

More at :-
http://news.softpedia.com/news/ZBot-Pushers-Attack...

--
Was this reply relevant?
+0
-0
mogs CCip 11 Windows 7 Tips 'n Tweaks INFO
Member 3rd Oct, 2010 00:43
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
OPERATING SYSTEMS NEWS
85 Windows 7 tips, tricks and secrets
Help and advice for your Windows 7 PC
By Mike Williams

Windows 7 lets you search online repositories as well as your PC
Whether you've just bought a new PC running Windows 7 or you've been using it for a while, there are bound to be things you didn't know you could do.

Whether it's tweaks to get the desktop the way you want it, tips for troubleshooting or ways to squeeze more performance from Windows 7, we've got it covered.

We've updated our popular Windows 7 tips article with a load of new ones, including how to recover locked-up apps, how to extend your jumplists, leave a Windows 7 Homegroup, and more. Read on for 85 tips to help you get the best from Windows 7.



Read more: http://www.techradar.com/news/software/operating-s...

--
Was this reply relevant?
+0
-0
mogs CClip 12 Chrome INFO
Member 3rd Oct, 2010 05:57
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Forget About the Beta, Google Chrome 7.0.536.2 Dev Is Where the Action's At



The first Google Chrome 7 Beta has just been released, but Chrome users should be much more excited about the latest dev channel release instead. Hold up for a few weeks while preparing the beta, Google Chrome 7.0.536.2 has been pushed to the dev channel and it was well worth the wait.


The latest dev channel release comes with quite a few interesting new features, though many are still experimental.

Chrome dev now has much better hardware acceleration enabled by default. Native 3D graphics get a boost as well with WebGL enabled by default. Finally, a number of new Labs goodies have been added as well.

http://news.softpedia.com/news/Forget-About-the-Be...

--
Was this reply relevant?
+0
-0
mogs CClip 13 Live Essentials INFO
Member 3rd Oct, 2010 06:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 3rd Oct, 2010 06:14


--
Was this reply relevant?
+0
-0
mogs CClip 14 Puran Defrag PRODUCT/INFO
Member 3rd Oct, 2010 06:38
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

What Is Puran Defrag? - A Disk Defragmenter
The files saved on your hard disk will become fragmented for various reasons. Because of this, your hard disk is extra busy gathering data from different fragments located at various locations on the hard disk in order to access your files. This process degrades your hard disk performance and overall system speed which gets gradually worse over time. In addition, the read/write speed of your hard disk varies by location and the files on your hard disk are randomly distributed. Therefore, you lose any potential speed gains from other system optimization programs.

Puran Defrag provides the solution! Puran Defrag is a very simple disk defragmenter which will defrag the files and optimize your system, collecting all the fragments of a file and putting them together, as well as moving some frequently used files and all directories to faster disk areas. This process boosts your hard disk performance and thus overall system speed. In addition it reduces wear and tear on your hard disk, thereby increasing its life span.


Main Features
Puran Intelligent Optimizer - PIOZR
Directories Consolidation for speed boost
Optimization by Freeing Space
Automatic Defragmentation for worry free defrag
Boot Time Defragmentation for system files like MFT
Low Priority Defrag for work while defrag experience
Individual File/Folder Defrag for selective defrag
GUI and Console Command Line Defrag Supported
Restart/Shutdown After Boot Time Defragmentation
File/Folder Exclusion or exclusion by wildcard facility
Native support for 64Bit Windows
Supports Windows Xp/2003/Vista/2008/7


Download Details - Puran Defrag Free Edition
Filename: PuranDefragFreeSetup.exe

File Size: 2.39 MB

Description: Now get a professional defragmenter for your computer at no price at all.
This is Puran Defrag Free Edition which is exactly the same as its commercial version
except you do not need to pay for it.

* Free for private and non-commercial use only.

Available at :-
http://www.puransoftware.com/Puran-Defrag-Download...

Already monitored by Secunia


--
Was this reply relevant?
+0
-0
mogs CClip 15 Revouninstaller PRODUCT/INFO
Member 3rd Oct, 2010 12:35
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 3rd Oct, 2010 12:43
Some Features :-
Uninstaller
The Uninstaller tool lists the installed programs and components for all and current user. With a choice of views, as well as a context menu, information on program components is available: program properties, their registry entries and links to manufacturer's web site, for a start. The "Search" option finds installed applications just by typing the first few letters of their name. Revo Uninstaller Pro scans for leftovers with even more advanced algorithms that are so precise, fast and very effective in search for leftovers of Windows Services, Drivers, File associations, Shell Extensions, COM components, Windows Installer components, program settings and more!

Junk Files Cleaner allows you to find and remove various types of junk and unnecessary files from your computer. Junk files are created by many of the Windows applications. Normally, such files are deleted by the application that created them as soon as they do not need them, but they may remain permanently on your hard drive if there is an unexpected termination of the parent application, a system crash, etc. Cleaning junk temporary files will free a lot of hard disk space.

Deleting your files and folders does not mean that they are gone forever. When you empty Windows Recycle Bin your files and folders are just marked as deleted but they are not erased physically. There is a chance to recover deleted data from 10 years or older PC and this data may be very important and confidential. With any recovery tool or un-delete program you can easily get back your important documents and other files that you have deleted. But with Evidence Remove tool they're gone forever.


There are a lot of handy and useful tools and components bundled with every Windows operating system. Unfortunately, some have complex command line options and others are just plain difficult to access. The Revo Uninstaller feature Windows Tools gives fast, one-click access to more than ten Windows utilities used in daily PC management. Available tools are: System Restore, Network Diagnostics, Network Information, Security Center, System Properties, System Information, TCP/IP Netstat Command, On-Screen Keyboard, Disk Defragmenter, Services, Shared Folders, Group Policy.

For the Freeware download, click on the following link and scroll to the bottom of the page :-
http://www.revouninstaller.com/revo_uninstaller_fr...


--
Was this reply relevant?
+0
-0
mogs CClip 16 Browser update Stategy INFO
Member 3rd Oct, 2010 14:34
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Why Silent Updates Boost Security

Thomas Duebendorfer1, Stefan Frei 2

Google Switzerland GmbH, Switzerland
Computer Engineering and Networks Laboratory (CSG), Switzerland


Security fixes and feature improvements don't benefit the end user of software if the update mechanism and strategy is not effective. In this paper we analyze the effectiveness of different Web browsers update mechanisms; from Google Chrome's silent update mechanism to Opera's update requiring a full re-installation. We use anonymized logs from Google's world wide distributed Web servers. An analysis of the logged HTTP user-agent strings that Web browsers report when requesting any Web page is used to measure the daily browser version shares in active use. To the best of our knowledge, this is the first global scale measurement of Web browser update effectiveness comparing four different Web browser update strategies including Google Chrome. Our measurements prove that silent updates and little dependency on the underlying operating system are most effective to get users of Web browsers to surf the Web with the latest browser version. However, there is still room for improvement as we found. Google Chrome's advantageous silent update mechanism has been open sourced in April 2009. We recommend any software vendor to seriously consider deploying silent updates as this benefits both the vendor and the user, especially for widely used attack-exposed applications like Web browsers and browser plug-ins.

More at :-
http://www.techzoom.net/publications/silent-update...

--
Was this reply relevant?
+0
-0
mogs CClip 17 Enfeeblement INFO
Member 3rd Oct, 2010 14:53
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 18 Microsoft Answers INFO
Member 4th Oct, 2010 07:04
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Windows > Windows Forums > Windows 7 Forums > Windows Update >
Ask a question
Search Forums:
I received an update error code 800B0100. I just installed windows 7 from student disc and my computer keeps shutting down. I was tryin to get any updates that might help with the shut downs.


Other Answers and more at :-
http://social.answers.microsoft.com/Forums/en-US/v...

--
Was this reply relevant?
+0
-0
mogs CClip 19 Improve performance INFO
Member 4th Oct, 2010 14:39
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Improve performance with a USB memory key
Give your Windows 7 or Vista PC a performance boost
Written by Computeractive staff, Computeractive
04 Oct 2010
Introduction
One of the most reliable ways to give a computer a performance boost is to open up the case and add some more memory. We will be showing how to do just that in the next issue of Computeractive, but the process requires some forethought and will take a little time to complete.

However, a beneficial, and not to mention instant, alternative may be right in front of you. Windows 7 and Vista users that have a USB memory key with some spare storage spacecan make use of a feature called Readyboost.

Though not guaranteed to improve performance, Readyboost is built into Windows, costs nothing to try and is easy to set up. In this Workshop, we will show you how.


Step by step instructions at :-
http://www.computeractive.co.uk/computeractive/wor...

--
Was this reply relevant?
+0
-0
mogs CClip 20 Cybercrime INFO
Member 4th Oct, 2010 14:46
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs Clip 21 Amazon threat Alert/INFO
Member 4th Oct, 2010 14:52
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Persistent XSS Bug Found on Amazon


October 4th, 2010, 10:57 GMT| By Lucian Constantin


A persistent cross-site scripting (XSS) weakness discovered on Amazon, allowed potentially rogue merchants to generate product listings capable of hijacking session cookies.

The vulnerability was discovered and reported to the XSSed Project on September 30 by a security researcher calling himself SeeMe.


The problem is located in the "Title" field of the form used to publish new products in Amazon's catalog. Therefore, exploiting it requires a $39.99 Pro Merchant subscription.

Insufficient validation of data passed through the vulnerable field allows potential attackers to inject malicious code in the resulting product page.

More at :-
http://news.softpedia.com/news/Persistent-XSS-Bug-...

--
Was this reply relevant?
+0
-0
mogs CClip 22 XXS flaws INFO
Member 4th Oct, 2010 16:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 23 WinPatrol 19 PRODUCT/INFO
Member 4th Oct, 2010 16:34
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
WinPatrol 19.0
Proactively protect your system

Written by Chris Wiles, V3.co.uk

04 Oct 2010
Type: freeware Platform: Windows 2000, Windows XP, Windows Vista Manufacturer:BillP Studios Size: 1MB
Review Rating:Average User Rating:
Rate this downloadPrice:Free, Plus edition costs $29.95 Number of downloads:
4738
When we install software onto our computers, most of us don't know what the software is actually doing to our system.

What is the application installing on your PC? Is it adding information to the Registry, and could it be adding spywareto the system which reports back to the software supplier?

WinPatrol enables you to sniff out problematic software that would normally be classed as spyware, adware, a worm or Trojan horse.



Read more: http://www.computeractive.co.uk/vnunet/downloads/2...

http://secunia.com/advisories/product/32485/
If you have information about a new or an existing vulnerability in Winpatrol 19.x then you are more than welcome to contact us.

Vendor, Links, and Unpatched Vulnerabilities

Vendor N/A

Product Link View Here (Link to external site)

Affected By 0 Secunia advisories
0 Vulnerabilities

Monitor Product Receive alerts for this product

Unpatched 0% (0 of 0 Secunia advisories)

Most Critical Unpatched
There are no unpatched Secunia advisories affecting this product, when all vendor patches are applied..

--
Was this reply relevant?
+0
-0
mogs CClip 24 Recover deleted files INFO/PRODUCT
Member 4th Oct, 2010 22:28
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 25 American Express XXS Flaw ALERT/INFO
Member 5th Oct, 2010 17:19
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
XSS Flaw Found on Secure American Express Site


October 5th, 2010, 12:00 GMT| By Lucian Constantin

A cross-site scripting (XSS) vulnerability has been identified on an American Express website secured with EV SSL and can be exploited to enhance phishing attacks.

XSS weaknesses are the result of poor input validation into Web forms and allow attackers to return potentially malicious code to visitors' browsers.


Ensuring proper validation of all inputs in Web applications, in order to prevent cross-site scripting and SQL injection vulnerabilities, is actually a requirement of the Payment Card Industry Data Security Standard (PCI-DSS).

More at :-
http://news.softpedia.com/news/XSS-Flaw-Found-on-S...

--
Was this reply relevant?
+0
-0
mogs CClip 26Chrome XSS Filter INFO
Member 5th Oct, 2010 17:25
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 5th Oct, 2010 17:40
Chrome Gets XSS Filter and Starts Disabling Outdated Plug-Ins

October 5th, 2010, 14:34 GMT| By Lucian Constantin


The highly anticipated feature of automatically disabling outdated plug-ins has been introduced in the latest Google Chrome Canary Build along with WebKit's cross-site scripting filter.

Back in June, Google improved Chrome plug-in security by introducing an integrated Flash Player version, a sandboxed PDF reader, and announced plans to start disabling outdated plug-ins automatically.


"Medium-term, Google Chrome will start refusing to run certain out-of-date plug-ins (and help the user update)," the company said at the time.

It looks like developers moved pretty fast and an initial implementation of the technology was added to the Google Chrome Labs page in the latest Canary Build.
Labs is a new location in the Chrome interface from where advanced features can be turned on without needing to use the traditional command-line flags.

The Labs page is available in Chrome 7 and can be accessed by typing about:labs in the address bar (Omnibox).

The Canary builds are Chrome releases considered even more experimental than Dev channel ones and are pushed out every few days.

The about:labs page on the latest 7.0.542.0 Canary offers the possibility to enable the new "Disable outdated plug-ins" option.

A description of the feature reads: "Automatically disables plug-ins with known security vulnerabilities and offers update links for them."

It's worth noting that Firefox also warns users of oudated plug-ins after a successful update and offers links to download their latest version, however, it doesn't disable them.

The XSS Auditor from Apple's WebKit engine has been integrated as well and can now be enabled from the same page.

The feature offers protection against cross-site scripting attacks, but it might not be compatible with all websites.

Giving Chrome's fast-paced development cycle, we estimate that both features will make it to the stable build in a couple of months.

The latest Google Chrome Canary Build can be downloaded from here.


More at :-
http://news.softpedia.com/news/Chrome-Gets-XSS-Fil...

--
Was this reply relevant?
+0
-0
Anthony Wells RE: Daily CYBERCLIPS OCTOBER "Edition".
Expert Contributor 5th Oct, 2010 19:58
Score: 2500
Posts: 3,387
User Since: 19th Dec 2007
System Score: N/A
Location: N/A

Go Canary !! Bleeding edge it is . 7 really is super quick these days .

Plenty of good stuff this month Mogs , pity there is no indexing available . I visit every so often and skim read to locate the gems , but got your/today's other thread message for Chrome just now . I wonder if the Forum would wear two threads to allow you better locate the content of your input ??

Take care

Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS OCTOBER "Edition".
Member 5th Oct, 2010 21:51
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
It "sounds" as tho' you're "on the edge" Anthony....or teetering on the brink !!

All I'd need is a thread/post to myself......I could just keep editing the initial post with the CYBERCLIP entry nos. and headings ? It would be an easy reference point; and no need to visit the CC thread if nothing of interest ?
Only thing is, someone might hijack it for other things and it would quickly be in disarray ? Any suggestions...Secunia might be able to help, d'ya think ?
Thanks.

--
Was this reply relevant?
+0
-0
mogs CClip 27 Survey INFO
Member 5th Oct, 2010 22:23
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

European cyber criminals are number one

Our survey says, Europe wins cyber crime trophy
By Inquirer staff
Tue Oct 05 2010, 18:35
EUROPE, the continent, not the 1980s rock band, is seeing a rise in the number of cyber crime operations, according to insecurity experts.
Web insecurity company Trend Micro reckons that over the first half of 2010 Europe had surpassed both Asia and the Americas as the top region for producing Internet-based threats.
The insecurity firm thinks the rise in Europe-based threats may down to efforts by the Chinese government. It has forced local internet service providers to curb illegal activities there and these actions have been credited with driving criminals to operators in Eastern Europe.
Trend Micro threat research director Jamz Yaneza is a fan of Chinese government campaigns, which he thinks have made an impact overall, "[its] one of the reasons why the amount of spam coming out of China has lessened."

More at :-
http://www.theinquirer.net/inquirer/news/1740567/e...

--
Was this reply relevant?
+0
-0
mogs CClip 28 Fake Warnibgs ALERT/INFO
Member 5th Oct, 2010 22:40
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Fake Malicious Site Warnings Used to Push Scareware

October 5th, 2010, 15:39 GMT| By Lucian Constantin


Malware distributors have started abusing the security alerts displayed by browsers when encountering malicious websites in order to trick users into downloading and installing fake AV programs.

Browsers like Chrome and Firefox, as well as Google's Web search engine, use the Google Safe Browsing API to check if opened websites are malicious.


The Google Safe Browsing service uses blacklists maintained by the search giant, which aggregates information from various sources.

When encountering a malicious resource the browsers display their own customized alert, giving users the option to close the page or ignore the warning and continue.

According to security researchers from Symantec, attackers have fake versions for each of the browser warning pages.

They even have one for Internet Explorer, even though Microsoft's browser doesn't use the Google Safe Browsing API.

More at :-
http://news.softpedia.com/news/Fake-Malicious-Site...

--
Was this reply relevant?
+0
-0
mogs CClip 29 Critical Adobe Updates UPDATE/INFO
Member 6th Oct, 2010 09:45
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 6th Oct, 2010 09:46


Critical Security Updates Available for Adobe Reader and Acrobat


October 6th, 2010, 06:19 GMT| By Lucian Constantin





Adobe has released Adobe Reader and Acrobat 9.4 to address a total of 23 vulnerabilities, many of which are marked as critical and allow for remote code execution.

This major security update also fixes a zero-day vulnerability, identified as CVE-2010-2883, that has been actively exploited in the wild since early last month.


A second arbitrary code execution bug (CVE-2010-2884), originally discovered and patched in Flash Player, has been resolved.

The flaw, which has already been exploited to infect users with malware, affected Adobe Reader and Acrobat through authplay.dll, a component handling the playback of Flash content embedded in PDFs.

Because of a difference in patch timelines of various Adobe products, users can remain vulnerable to Flash-based vulnerabilities despite the fact that they were fixed in Flash Player.

Three arbitrary code execution flaws patched in this update affect only the Mac platform, one only Windows, while multiple privilege escalation issues affect Linux systems.

In addition, there are sixteen cross-platform memory corruption and input validation errors that can lead to code execution and two denial of service conditions.

For users who are still using the 8.x product versions and can't update, the company has released Adobe Reader and Acrobat 8.2.5. These releases are only available for Windows and Mac.

Since June 2009, Adobe Reader and Acrobat follow a uniform update cycle, where patches are supposed to be released on the second Tuesday of every quarter.

The company intended to have the updates aligned with Microsoft's Patch Tuesday in order make it easier for administrators in corporate environments to plan in advance.

However, actively exploited zero-day vulnerabilities have forced the developer to break out of the cycle and reschedule quarterly updates multiple times until now.

More at :-
http://news.softpedia.com/news/Critical-Security-U...

--
Was this reply relevant?
+0
-0
Anthony Wells RE: Daily CYBERCLIPS OCTOBER "Edition".
Expert Contributor 6th Oct, 2010 16:42
Score: 2500
Posts: 3,387
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Last edited on 6th Oct, 2010 16:45
Hi Mogs ,

Not teetering at all - nor twittering to Canary - but safely ensconced in the arms of Dev 7 - like it :))

Don't see how you would get a thread with only you having access , so blocking would be inevitable .

If you ran the thread for 15 or 20 Clips and then "closed" it - you could restart anew with an index and link to the old thread in your opening post and then run another 15 or 20 ; then close and repeat with another index and link , etc . A bit clumsy but .....

The current threads become much too long to skim and you have to remember where you were etc . Not easy for either your established nor your target market . A little more selectivity might help or a clear demark between stuff for casual home readers/users ; that for the more inquisitive ; that for the power/tech players and maybe a layer for the CSI corporate/admin readers (at work or at home) . I have no idea how many of each are regular users of the forum , but you could set out your stall more specifically .

All time and energy , but the devil is always looking for his "idle hands" .

Now you are "orange" and are into Canaries remember :-

""There is no blue without yellow and without orange.""
Vincent Van Gogh

So add a drop of red and we can reform and play "Smoke on the Water" :)))

http://www.youtube.com/watch?v=6MSyFA84u48

Take care

Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
mogs CClip 30 Quarantine INFO.
Member 6th Oct, 2010 21:34
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
6 October 2010 Last updated at 13:04
Sick PCs should be banned from the net says Microsoft

Botnets can contain millions of machines
Virus-infected computers that pose a risk to other PCs should be blocked from the net, a senior researcher at software giant Microsoft suggests.

More at :-
http://www.bbc.co.uk/news/technology-11483008

--
Was this reply relevant?
+0
-0
mogs CClip 31 Mozilla upset. INFO
Member 6th Oct, 2010 21:44
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 32 XSS'ed ALERT/INFO
Member 6th Oct, 2010 21:51
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
PayPal and eBay XSSed Again


October 6th, 2010, 17:26 GMT| By Lucian Constantin





New cross-site scripting (XSS) vulnerabilities, that can be leveraged to create very credible phishing attacks, have been identified on PayPal and eBay.

More at :-
http://news.softpedia.com/news/eBay-and-PayPal-XSS...

--
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS OCTOBER "Edition".
Member 6th Oct, 2010 22:39
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Evening Anthony....done a bit of catchup, whilst still thinking your post thro'....had started this morning to put something together......gonna look at it again as soon as I can.....thanks for your ideas....hope it'll materialize in the next day or so.

A little surprised you hadn't tried Canary...I think you'd be pleasantly surprised. If you don't put anything of "value" on it to start with...even if it did crash, it runs side by side tho' independantly....lots to gain and nothing to lose. Haps think of it like having a new picture in the house, and slowly there'd be no learning to live with it ? Zest; a little excitement, but no strokes....the Stable's not the Strad....it's gotta be treated better than many a guitar ?

"Whatsoever the hands find to do ".....Proverbial quote.
Never put corn in the fields....
Zilch for the chicken nor fox !
Both ways 'round " The Highway to Hell "
Today:
"New" axle; new starter; foot did as told: Engine roared but the radio rocked !


Thanks for Deep Purple...gonna listen again..I may have a different way with the notes ?

--
Was this reply relevant?
+0
-0
mogs CClip 33 Chrome dev UPDATE/INFO
Member 7th Oct, 2010 07:41
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 34 Adobe Patch INFO
Member 7th Oct, 2010 07:46
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 35 Fix Vista INFO
Member 7th Oct, 2010 08:59
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 36
Member 7th Oct, 2010 16:01
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft releases an open source package manager for its .Net

Nupack hits the streets
By Edward Berridge
Thu Oct 07 2010, 10:42
PC SOFTWARE FACTORY Microsoft is offering an early version of Nupack, an open source package manager for its .Net software.

Read more at :-
http://www.theinquirer.net/inquirer/news/1741037/m...

--
Was this reply relevant?
+0
-0
mogs CClip 37 Evercookie INFO
Member 7th Oct, 2010 16:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
European Advertising Industry Association Condemns Cookie Re-Spawning

October 7th, 2010, 10:00 GMT| By Lucian Constantin

IAB Europe, the group representing the European advertising industry, warns that cookie re-spawning violates European legislation and calls for companies using behavioral advertising technologies to provide the same level of transparency that HTTP cookies do.

Cookie re-spawning is the practice of using alternative storage locations, such as Flash Local Storage Objects (LSOs), to recreate cookies if they are deleted from the browser, therefore circumventing the consumer's decision.

Read more at :-
http://news.softpedia.com/news/European-Advertisin...

--
Was this reply relevant?
+0
-0
mogs CClip 38 Information-stealing Trojan ALERT
Member 7th Oct, 2010 21:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Trojan Patches Firefox File to Steal Passwords

October 7th, 2010, 16:24 GMT| By Lucian Constantin

Security researchers from antivirus vendor Webroot have identified an information stealing trojan, which modifies a Firefox file, so that the browser is forced to store passwords automatically.

The threat is detected by Webroot as Trojan-PWS-Nslogm and is capable of stealing usernames and passwords stored by both Internet Explorer and Firefox browsers.


Read more at :-
http://news.softpedia.com/news/Trojan-Patches-Fire...

--
Was this reply relevant?
+0
-0
mogs CClip 39 PDF Malware Study
Member 7th Oct, 2010 21:48
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 40 Beta Chrome Update
Member 8th Oct, 2010 08:11
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Beta Channel Update
Thursday, October 7, 2010 | 18:36
Labels: Beta updates
The Beta channel has been updated to 7.0.517.36 for Windows, Mac, Linux and Chrome Frame.

The majority of fixes in this release were related to stability and polish. Of particular note, we also landed fixes for NTLM authentication and restored the ability to hide the most visited sites on the new tab page.

You can find more details about additional changes in this release in the SVN revision log.

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

Anthony Laforge
Google Chrome
6 comments | Links to this post | Email Post

--
Was this reply relevant?
+0
-0
mogs CClip 41 Browser use %'age.
Member 8th Oct, 2010 08:27
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Internet Explorer use plummets

How the mighty have fallen
By Spencer Dalziel

SOFTWARE FLOGGER Microsoft has seen its Internet Explorer use fall below 50 per cent of global marketshare as Chrome has continued to rise.
Research published by Statcounter indicates that the Vole's once ubiquitous web browser, what we like to fondly call Internet Exploder, has taken a massive tumble. The findings suggest that web surfers' use of Microsoft's flagship browser has dropped to 49.87 per cent. Firefox comes in second place with 31.5 per cent, while the use of Google's Chrome web browser has tripled. Chrome has gone from 3.69 per cent this time last year up to 11.54 per cent lately.

More at :-
http://www.theinquirer.net/inquirer/news/1740577/i...

--
Was this reply relevant?
+0
-0
mogs CClip 42 Forthcoming Patch Tuesday....biggest ever !
Member 8th Oct, 2010 22:14
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 43 Variant Worm ALERT.
Member 8th Oct, 2010 22:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
New Worm Propagates via Fake Emails Allegedly Sent by Large Websites


October 8th, 2010, 10:55 GMT| By Lucian Constantin





Security researchers warn than a new variant of a computer worm sends itself attached to fake emails that appear to originate from Google, Facebook, Twitter, hi5, Amazon or Hallmark.

More at :-
http://news.softpedia.com/news/New-Worm-Propagates...

--
Was this reply relevant?
+0
-0
mogs CClip 44 GMail Security
Member 8th Oct, 2010 22:31
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 8th Oct, 2010 23:01
Google Gives Gmail Users Security Advice Through Checklist

October 8th, 2010, 14:09 GMT| By Lucian Constantin


Google is advising Gmail users on how to secure their accounts by having them go through a checklist of tasks that involve following basic security principles and verifying Gmail specific options.

Google has shown an increased concern over the security of Gmail users after a spying attack has targeted its network earlier this year.


Dubbed Aurora by the security industry, the attack also affected two dozen other fortune 500 companies and the search giant said at the time that the email accounts of Chinese human rights activists were accessed.

Following the incident, Google even started warning some users about access attempts on their accounts, that originate from China.

The Gmail security checklist can be accessed by clicking on the Help link from the email account and then the checklist one in the left menu.

--
Was this reply relevant?
+0
-0
mogs CClip 45 Security expert shoots down 10/10/10 virus.
Member 9th Oct, 2010 12:37
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Computer security expert shoots down '10/10/10' fears
October 8, 2010
Computer security firm Sophos has shot down rumors that a "10/10/10" virus will strike computers at 10:00 a.m. on Sunday -- October 10, 2010.
Computer security firm Sophos has shot down rumors that a "10/10/10" virus will strike computers at 10:00 a.m. on Sunday -- October 10, 2010.

"It's just the kind of scare that people love to murmur about, and share with their online friends, but I'm afraid it has no basis in fact," Sophos' Graham Cluley wrote in a blog post.

More at :-
http://www.physorg.com/news205776301.html

--
Was this reply relevant?
+0
-0
mogs CClip 46 MS and Oracle patches...affected products.
Member 9th Oct, 2010 17:48
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft and Oracle Prepare Massive Security Updates for Tuesday

October 9th, 2010, 10:45 GMT| By Lucian Constantin

Following Microsoft's announcement that it is preparing a record number of security fixes for next week, Oracle also revealed plans to release a monster batch of patches.

Three days ago Microsoft announced through its Advance Notification Service that the upcoming "Patch Tuesday" on October 12 will see the release of 16 security bulletins covering a total of 49 vulnerabilities.

This is the largest set of security updates released by Microsoft to date, the previous record being established in August, when the company plugged 34 holes.

The vulnerabilities affect various components in Windows, Internet Explorer, Microsoft Office and Sharepoint Server. Many of them allow for remote code execution and are rated critical or important.


In comparison, Oracle's Critical Patch Update for October, which will land on the same day, will address a whooping 81 security issues.

For affected products....see here:-
http://news.softpedia.com/news/Microsoft-and-Oracl...

--
Was this reply relevant?
+0
-0
mogs CClip 47 New Adobe threat....."Scary" !!
Member 9th Oct, 2010 21:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
News
Newest Adobe zero-day PDF exploit 'scary,' says researcher
Bypasses Windows DEP and ASLR defenses, comes with valid digital certificate

By Gregg Keizer
September 10,

Computerworld - The exploit for a critical unpatched bug in Adobe Reader that's now circulating is "clever" and "impressive," security researchers said this week.

In an exploit first uncovered on Tuesday by Washington-based researcher Mila Parkour, attackers are using rigged PDF documents that include code to exploit a zero-day vulnerability in the widely used Reader PDF viewer as well as in Acrobat, Adobe's PDF creation software.

More at :-
http://www.computerworld.com/s/article/9184700/New...

--
Was this reply relevant?
+0
-0
mogs CClip 48 Belarc Advisor download
Member 9th Oct, 2010 21:58
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Type: freeware Platform: Windows 2000, Windows XP, Windows Vista Manufacturer:Belarc Size: 2.2MB

Rate this downloadPrice:Free for personal use Number of downloads:
41159
Run this software and your PCwill be analysed before you are presented with a detailed audit of your PC.

The data is well presented and split into sections, detailing everything from the operating system and any installed Hotfixes from Microsoft, to software licences and processordetails.

The analysis is done quickly, and with the information displayed in HTML format it is easy to print or save it for future reference.


Reader comments

Excellent system information reporting program
I have used the Belarc Advisor since version 2 (my best recall). I have a non-quenchable thirst for system information. In addition to Belarc, I have more than a dozen similar programs installed on my computer. I use them all because some supply a better description of a selected category than another. Each has a specific use for me.

Some of the programs that I have installed provide bench marks as well as system information. The Belarc Advisor provides system information only.

Belarc reports hardware details with serial numbers when they exist, information on installed programs complete with product numbers and license information for many of them, a complete list of installed Windows XP and IE7 updates, and more.

This program shines by giving detail information in a easy to find and easy to read format. Data is arranged in boarder less chart fashion with subtle changes in fonts including italics.




Read more: http://www.computeractive.co.uk/vnunet/downloads/2...


--
Was this reply relevant?
+0
-0
mogs CClip 49 New tool eliminates drive-by threats.
Member 10th Oct, 2010 09:59
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
BLADE software eliminates 'drive-by downloads' from malicious websites (w/ Video)

Insecure Web browsers and the growing number of complex applets and browser plug-in applications are allowing malicious software to spread faster than ever on the Internet. Some websites are installing malicious code, such as spyware, on computers without the user's knowledge or consent.

Read more at :-
http://www.physorg.com/news205584924.html

--
Was this reply relevant?
+0
-0
mogs
Member 10th Oct, 2010 10:07
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 51 Don't let your fingers run away with you ?
Member 10th Oct, 2010 19:16
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
10 October 2010 Last updated at 10:44"
Japan has fewest digital friends

More people are accessing news via digital means
Malaysians have the most friends on their social networks, while Japanese users have the fewest.

This is one of the findings of a large-scale research project, looking at online behaviour around the globe.

It also found that digital sources are overtaking TV, radio and newspapers as the media channel of choice for 61% of the online population around the world.
More at :-
http://www.bbc.co.uk/news/technology-11501625
"My best friends are those that don't make me prey to illusions ?" Mogs.

--
Was this reply relevant?
+0
-0
mogs CClip 52 Antitrust case over browsers.
Member 10th Oct, 2010 22:19
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 53 Saved passwords in browser vulnerable.
Member 11th Oct, 2010 18:13
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 54 AVG Free download
Member 11th Oct, 2010 18:49
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
AVG Anti-Virus Free 2011 (v10.0.1136)
Major update to the impressive and free antivirus package
Written by Chris Wiles/Tim Smith, V3.co.uk
11 Oct 2010
Type: freeware Platform: Windows 2000, Windows XP, Windows Vista, Windows Vista 64-bit Manufacturer:Grisoft Inc Size: 4.1MB
Review Rating:Average User Rating:
Rate this downloadPrice:Free for personal use Number of downloads:
1916366
AVG continues to be one of the most popular free antivirus programs available on the internet.



Read more: http://www.computeractive.co.uk/vnunet/downloads/2...


--
Was this reply relevant?
+0
-0
mogs CCip 55 Scareware ALERT
Member 11th Oct, 2010 21:08
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Scareware Distributed as Update for VLC Web Plugin

October 11th, 2010, 17:31 GMT| By Lucian Constantin

Security researchers from Sunbelt Software have stumbled upon a scareware campaign, which pushes a rogue AV program as an update for the VLC media player Web plugin.

The attack was observed on a site allegedly offering video content and it looks like the Firefox error page normally displayed when a plugin crashes.

The rogue page shows a "The VLC Web plugin has crashed" message, along with a button that reads "Please, Install Update."


The site offers an executable file for download, which according to the Sunbelt experts, is the installer for a fake antivirus program called "Security Essentials."

More at :-
http://news.softpedia.com/news/Scareware-Distribut...

--
Was this reply relevant?
+0
-0
mogs CClip 56. AVG 2011 Bug !!!
Member 12th Oct, 2010 22:03
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

1/10
AVG 2011 Bug Affects Browsing Experience, Could Also Hurt ...
A serious bug in a component of the new AVG 2011 anti-malware products causes computers to flood websites with unnecessary HTTP requests and in many cases prevents users from properly using their browsers. At this time the problem is not very well documented, but reports about it, dating back to the end of last month, can be found on various forums and discussion groups around the Web. It appears that the bug is located in the LinkScanner component, which is found in the entire AVG 2011 product line, including the company's popular free antivirus. LinkScanner has two features. One called Search-Shield, which places safety ratings ne... [read more >>]


http://news.softpedia.com/cat/Security/
"Wish I'd known about it earlier !!!!!" Mogs

--
Was this reply relevant?
+0
-0
mogs CClip 57 Adobe Reader 10 News.
Member 12th Oct, 2010 22:17
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Adobe Systems plans to release a major security upgrade by year's end to its Reader product, which has been under siege from attackers.

Reader 10 will have a sandbox feature that will seal off the application from attacks intended to tamper with, for example, a computer's registry or file system, said Brad Arkin, Adobe's director for product security and privacy, during an interview on Tuesday at the RSA security conference in London.

Read more at :-
http://www.infoworld.com/d/security-central/adobe-...

--
Was this reply relevant?
+0
-0
mogs CClip 58 Freecalc...step by step instructions..
Member 12th Oct, 2010 22:37
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 59 Details of MS updates.
Member 13th Oct, 2010 09:02
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 60 Chrome dev Update
Member 13th Oct, 2010 09:11
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


Dev Channel Update
Tuesday, October 12, 2010 | 17:08
Labels: Dev updates
The Chrome Dev channel has been updated to 8.0.552.0 for all platforms. It contains a number of stability and other improvements. More details about the changes are available in the SVN revision log. If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

http://googlechromereleases.blogspot.com/


--
Was this reply relevant?
+0
-0
mogs CClip 61 2million hijacked PC's.
Member 13th Oct, 2010 21:11
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
13 October 2010 Last updated at 10:56
Two million US PCs recruited to botnets

Hi-tech criminals use botnets to send out spam
The US leads the world in numbers of Windows PCs that are part of botnets, reveals a report.

More than 2.2 million US PCs were found to be part of botnets, networks of hijacked home computers, in the first six months of 2010, it said.

Compiled by Microsoft, the research revealed that Brazil had the second highest level of infections at 550,000.

More at :-
http://www.bbc.co.uk/news/technology-11531657

--
Was this reply relevant?
+0
-0
mogs CClip 62 UK faces cyberthreat.
Member 13th Oct, 2010 21:14
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
13 October 2010 Last updated at 00:00
UK infrastructure faces cyber threat, says GCHQ chief

GCHQ is mostly associated with electronic intelligence-gathering
The UK's critical infrastructure - such as power grids and emergency services - faces a "real and credible" threat of cyber attack, the head of GCHQ says.

The intelligence agency's director Iain Lobban said the country's future economic prosperity rested on ensuring a defence against such assaults.

More at :-
http://www.bbc.co.uk/news/uk-11528371

--
Was this reply relevant?
+0
-0
mogs CClip 63 MS Updates hit malware
Member 13th Oct, 2010 21:21
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 64 Misleading YouTube Links ALERT
Member 13th Oct, 2010 23:11
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

IM Worm Uses URL Encoding to Spam Misleading YouTube Links


October 13th, 2010, 16:40 GMT| By Lucian Constantin

Security researchers warn that a new instant messaging worm uses URL encoding to create misleading links that direct users to fake YouTube pages.

The spam messages are received from friends, who's computers have already been infected, and contain links of the form: http://youtube.com%2Ech[censored]config%2Einfo/?vi...


For a non-technical user the link might appear to lead to youtube.com, but %2E is actually the hexadecimal representation for the "." [dot] character.

As a result, browsers will interpret the URL as http://youtube.com.ch[censored]config.info, where ch[censored]config.info is the destination domain and not youtube.com.

Read more at :-
http://news.softpedia.com/news/IM-Worm-Spams-Fake-...

--
Was this reply relevant?
+0
-0
mogs CClip 65 Beta Chrome Update.
Member 14th Oct, 2010 09:49
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Beta Channel Update
Wednesday, October 13, 2010 | 14:18
Labels: Beta updates
The Beta channel has been updated to 7.0.517.41 for Windows, Mac, Linux and Chrome Frame.

There were only a few minor fixes in this release, specifically around plugin loading and crashes.

You can find more details about additional changes in this release in the SVN revision log.

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

Anthony Laforge

--
Was this reply relevant?
+0
-0
mogs CClip 66 WiFi risks
Member 14th Oct, 2010 09:53
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
'Half of wi-fi networks at risk of hacking in seconds'
Nearly half of homes in Britain with wi-fi internet networks can have their computers hacked into in less than five seconds, a study has discovered.

Published: 7:30AM BST 14 Oct 2010
Comment
An experiment in six cities across the country revealed that nearly 40,000 networks are at high risk of being used by criminals - a fact which could lead to the personal information of thousands of users being exposed.

More at :-
http://www.telegraph.co.uk/technology/internet/806...

--
Was this reply relevant?
+0
-0
mogs CClip 67 Eight solutions to 7 problems
Member 14th Oct, 2010 17:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Eight solutions to common Windows 7 problems
Find out the ways in which Windows 7 can go wrong and discover how to fix them
Written by Jonathan Parkyn, Computeractive
14 Oct 2010
Looking for trouble?
Most computer problems can be split into general categories, such as compatibility issues, hardware faults, security troubles and performance problems.

Precise symptoms can vary from one computer to the next, though, so the first thing to do is gather together all the information you can to try and help build your diagnosis.



Read more: http://www.computeractive.co.uk/computeractive/fea...


--
Was this reply relevant?
+0
-0
mogs CClip 68 Question and Answer.
Member 14th Oct, 2010 17:14
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Programs such as CCleaner can help clean up the Registry
Can programs I install be harmful to my PC?
Keep your PC clear of clutter when you remove unwanted programs
Written by Computeractive staff, Computeractive
14 Oct 2010
Q I regularly install lots of programs on my computer, then remove them quickly if they are no good.

Am I damaging the computer by doing this? It definitely feels slower than when I first installed Windows 7.

John Tooth

A Non-malicious programs will not harm your PC but some may leave entries in the Windows Registry. Even after removing them, these entries may remain in the Registry, so the computer slows down over time.

There are lots of programs that purport to clean up the Registry and remove the leftovers of uninstalled programs. One of these is CCleaner, which can be downloaded here.



Read more: http://www.computeractive.co.uk/computeractive/q-a...


--
Was this reply relevant?
+0
-0
mogs CClip 69 Define rules of cyber war.
Member 14th Oct, 2010 18:48
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
14 October 2010 Last updated at 17:24
Call to define rules of cyber war

Cyber attacks, like nuclear weapons, should force a change in defence policy
Nations need to define the rules of engagement for acts of cyber terror.

The call for clarity was issued by Michael Chertoff, former head of the US Department of Homeland Security, at the RSA security conference in London.

He said the lack of direction was giving the initiative to criminals and hampering co-ordinated responses to the growing number of hi-tech attacks.

Countries should be able to defend themselves, he suggested, if an attack posed imminent danger to human lives.

"It's the least understood threat and the one where our doctrine is least developed," said Mr Chertoff.
More
http://www.bbc.co.uk/news/technology-11545040

--
Was this reply relevant?
+0
-0
mogs CClip 70 Ruby on the Rails Fix
Member 15th Oct, 2010 21:09
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Serious Vulnerability Fixed in Ruby On Rails
October 15th, 2010, 13:08 GMT| By Lucian Constantin

The Ruby on Rails development team has released security updates for the web application framework, which address a serious vulnerability facilitating unauthorized record manipulation.

The issue stems from the way nested attributes were handled in the latest Ruby on Rails versions, 3.0.0 and 2.3.9.


"An attacker could manipulate form parameters and make changes to records other than those the developer intended," the official advisory explains.

The vulnerability is identified as CVE-2010-3933 in the Common Vulnerabilities and Exposures (CVE) database.

Older versions of the framework are not affected because the bug was accidentaly introduced in version 2.3.9.

It's also present in the first stable release from the 3.0.x series, 3.0.0, which was launched at the end of August.

More at :-
http://news.softpedia.com/news/Serious-Vulnerabili...

--
Was this reply relevant?
+0
-0
mogs CClip 71 Safe Browsing notifications
Member 15th Oct, 2010 21:14
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Google Adds Phishing URLs to Network Notifications
October 15th, 2010, 10:17 GMT| By Lucian Constantin


Google announces that Safe Browsing notifications about compromised websites sent to networks administrators, will start to include information about phishing URLs.

Google Safe Browsing is a service, that aggregates data from various URL blacklists, as well as Google's own malware sensors.


The gathered intelligence is offered for free to consumers, webmasters and network administrators alike.

End-user products can tap into this data feed via an open API (application programming interface). For example, Mozilla Firefox and Google Chrome both check URLs through the service and block access to them if they are listed as malicious.

More at :-
http://news.softpedia.com/news/Google-Adds-Phishin...

--
Was this reply relevant?
+0
-0
mogs CClip 72 Sneaky Son of Zeus Trojan
Member 15th Oct, 2010 21:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Son of Zeus can sneak past antivirus controls
The latest Trojan horse proves difficult to rein in.
By Jennifer Scott, 15 Oct 2010 at 15:35

Trend Micro has reported a new variant of the Zeus Trojan will not be detected by conventional antivirus applications. In fact, it has proved to be virtually undetectable.

Zeus has proved to be a persistent threat

More at :-
http://www.itpro.co.uk/627748/son-of-zeus-can-snea...

--
Was this reply relevant?
+0
-0
mogs CClip 73 McAfee warning
Member 15th Oct, 2010 21:33
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
McAfee warned users to beware of how much data they share on sites like Twitter
McAfee director warns of social networking perils
Security firm demonstrates how using Twitter et al greatly simplifies targeted phishing and malware attacks
Stuart Sumner
Computing, 15 Oct 2010
Social networking sites have dramatically increased our vulnerability to cyber-crime, as McAfee demonstrated at its Focus 2010 conference in Las Vegas this week.

Dave Marcus, director of security research and communications at McAfee, explained that typical mass-emailed spam attacks operate at a success rate of around one per cent.


This means that only one in 100 people are expected to click the poisoned links included in their emails. These links could download malware to the user's computer, with the ultimate aim of making money for the cyber-criminal.

Marcus stated that criminals can vastly improve their success rate using open-source intelligence, which is publicly available data from social networking sites.

More at :-
http://www.v3.co.uk/computing/news/2271615/social-...

--
Was this reply relevant?
+0
-0
mogs CClip 74 Opera Tip.
Member 15th Oct, 2010 22:27
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 75 Removal Tool poser.
Member 16th Oct, 2010 11:38
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Destructive Trojan Poses as Microsoft Stuxnet Removal Tool

October 15th, 2010, 17:18 GMT| By Lucian Constantin





Security researchers from Symantec warn that a destructive trojan, which wipes all data from the system partition, poses as a Stuxnet removal tool developed by Microsoft.

The Stuxnet worm is considered the most sophisticated piece of malware ever created and is believed to announce a new paradigm shift in malware development.

More at :-
http://news.softpedia.com/news/Destructive-Trojan-...

--
Was this reply relevant?
+0
-0
mogs CClip 76 Security Myths
Member 16th Oct, 2010 11:50
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 77 ISP's may alert customers..
Member 16th Oct, 2010 20:15
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
US studying Australian Internet security program
October 16, 2010 By LOLITA C. BALDOR , Associated Press Writer
(AP) -- The government is reviewing an Australian program that will allow Internet service providers to alert customers if their computers are taken over by hackers and could limit online access if people don't fix the problem.

More at :-
http://www.physorg.com/news/2010-10-australian-int...

--
Was this reply relevant?
+0
-0
mogs CClip 78 IE9 and Windows 7
Member 17th Oct, 2010 09:29
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 79 ZUM App. Launcher
Member 17th Oct, 2010 09:34
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 17th Oct, 2010 09:35


--
Was this reply relevant?
+0
-0
mogs CClip 80 Auslogics Registry Cleaner
Member 17th Oct, 2010 20:18
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Registry errors can cause many problems, starting from computer slowdowns to system hanging and crashes. Auslogics is proud to offer one of the most stable and reliable registry cleaners available on the market. It is designed for fixing and repairing the Windows Registry and is absolutely FREE!

Why use Auslogics Registry Cleaner?
Fixing registry errors helps to avoid system crashes.
Registry cleanup will speed up your computer.
Auslogics Registry Cleaner is recommended by industry experts.
It is safe to use as all changes are backed up and can be easily restored.
This is one of the most popular registry cleaners on the Internet.
It is absolutely FREE!

Causes of Registry Errors
Windows Registry is a database that stores crucial settings and options of the Microsoft Windows operating system. Registry entries are created for each application and driver installed on your computer. When running, a program may access the Registry thousands of times per second.
Just like any other database, the Registry becomes a real mess without proper maintenance. When you uninstall programs, invalid entries can be left behind and cause various errors. As a result your computer slows down, starts freezing, and crashing. That's why it's very important to clean the Registry regularly.



Latest Version:2.0.4.45 (version history)
File size:4.39 MB
Support Version:7/2008/Vista/2003/XP (32-bit & 64-bit)
Release Date:September 06, 2010

More at :-
http://www.auslogics.com/en/software/registry-clea...

--
Was this reply relevant?
+0
-0
mogs CClip 81 Sandboxed Reader out next month.
Member 18th Oct, 2010 12:50
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Sandboxed Adobe Reader to Ship Next Month

October 18th, 2010, 10:05 GMT| By Lucian Constantin

Adobe announced that the next major version of its PDF products, which includes the much awaited sandboxed Adobe Reader, will be released next month.

Dubbed Acrobat X, the new product family will include Adobe Reader X, Acrobat X Suite, Acrobat X Pro, and Acrobat X Standard.


From a security perspective the release will be very important, because of the new sandboxing technology enabled by default in the products.

Read more at :-
http://news.softpedia.com/news/Sandboxed-Adobe-Rea...

--
Was this reply relevant?
+0
-0
mogs CClip 82 Germany slams Facebook
Member 18th Oct, 2010 12:59
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Germany cracks down on Facebook

Social notworker has dubious practices, shockingly
By Nick Farrell
Mon Oct 18 2010, 09:47
GERMAN MINISTERS have slammed the social notworking website Facebook for failing to respect privacy.
The attack followed a report of a serious flaw that allowed non-subscribers access to private data.
Germany's consumer affairs minister Ilse Aigner criticised the company for a "series of dubious practices".

More at :-
http://www.theinquirer.net/inquirer/news/1790570/g...

--
Was this reply relevant?
+0
-0
mogs CClip 83 One step closer to "bootless".
Member 18th Oct, 2010 13:11
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 18th Oct, 2010 13:11
Researchers one step closer to 'bootless' computer
Lead scientist describes the technology as totally new concept that 'will essentially give memory some brains'

By Lucas Mearian
October 18, 2010 06:00 AM ETComments (0)Recommended (0)

Computerworld - Physicists at the University of California at Riverside have made a breakthrough in developing a "spin computer," which would combine logic with nonvolatile memory, bypassing the need for computers to boot up.

The new transistor technology, which one lead scientist believes could become a reality in about five years, would reduce power consumption to the point where eventually computers, mobile phones and other electronic devices could remain on all the time.

Read more at :-
http://www.computerworld.com/s/article/9191460/Res...

--
Was this reply relevant?
+0
-0
mogs CClip 84 Fake Reader Upgrade
Member 19th Oct, 2010 18:51
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 85 Spike in Java exploitation
Member 19th Oct, 2010 18:56
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 86 Keep it clean.
Member 19th Oct, 2010 19:02
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 19th Oct, 2010 19:03


--
Was this reply relevant?
+0
-0
mogs CClip 87 Chrome Stable Update
Member 19th Oct, 2010 19:07
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


Stable Channel Update
Tuesday, October 19, 2010 | 10:00
Labels: Stable updates

Google Chrome 7.0.517.41 has been released to the stable and beta channels for Windows, Mac, and Linux. Updates from the previous stable release include:

Hundreds of bug fixes
An updated HTML5 parser
File API
Directory upload via input tag
More information on these and other changes in Chrome 7 can be found on the Google Chrome blog. Download Chrome today!

Security fixes and rewards:
Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

[48225] [51727] Medium Possible autofill / autocomplete profile spamming. Credit to Google Chrome Security Team (Inferno).
[48857] High Crash with forms. Credit to the Chromium development community.
[50428] Critical Browser crash with form autofill. Credit to the Chromium development community.
[$500] [51680] High Possible URL spoofing on page unload. Credit to kuzzcc; plus independent discovery by Jordi Chancel.
[53002] Low Pop-up block bypass. Credit to kuzzcc.
[53985] Medium Crash on shutdown with Web Sockets. Credit to the Chromium development community.
[Linux only] [54132] Low Bad construction of PATH variable. Credit to Dan Rosenberg, Virtual Security Research.
[$500] [54500] High Possible memory corruption with animated GIF. Credit to Simon Schaak.
[Linux only] [54794] High Failure to sandbox worker processes on Linux. Credit to Google Chrome Security Team (Chris Evans).
[56451] High Stale elements in an element map. Credit to Michal Zalewski of the Google Security Team.
In addition, we would like to credit Aki Helin of OUSPG and kuzzcc for finding bugs during the development cycle such that they never reached a stable build.

--
Was this reply relevant?
+0
-0
mogs CClip 88 RealPlayer Update
Member 19th Oct, 2010 19:20
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
RealPlayer receives critical security update
Real Networks issues fixes for remote code execution flaws
Shaun Nichols in San Francisco
V3.co.uk, 19 Oct 2010
Real Networks has issued a security update for RealPlayer, addressing flaws in versions 1.1.4 and earlier of the application.

The company said that RealPlayer 1.1.5 and later for Windows is not believed to be vulnerable to attack, neither is the Mac RealPlayer 12.0.0.144 and later release or the latest RealPlayer Enterprise and RealPlayer for 11.0.2.1744 for Linux release.


The update patches seven vulnerabilities ranging from buffer overflow and injection flaws to issues which could allow an attacker to remotely execute code on a targeted system.

Real Networks is advising administrators to upgrade RealPlayer installations to the most current stable version. No active exploitations of the flaw have been reported in the wild.

The update comes after one of the busiest patching weeks in recent memory. Microsoft released its largest monthly patch ever, while Oracle posted an update addressing dozens of flaws.



Read more: http://www.v3.co.uk/v3/news/2271764/realplayer-rec...


--
Was this reply relevant?
+0
-0
mogs CClip 89 Internet users to exceed 2 billion.
Member 19th Oct, 2010 20:39
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Internet users to exceed 2 billion by the end of 2010

The developed world still outstrips the developing world in terms of connections
One third of the world's population will be online by the end of the year, according to United Nations statistics.

The number of people online has doubled to two billion in the last five years, the International Telecommunications Union (ITU) said.

Of the 226m new net users that have come online this year, more than two thirds are from developing countries.

However, the data show that connections in the developed world still outstrip those in the developing world.

The report suggests that 71% of people in western countries will be online by the end of 2010, compared to just 21% in developing countries.

More at :-
http://www.bbc.co.uk/news/technology-11576486

--
Was this reply relevant?
+0
-0
mogs CClip 90 Firefox vulnerabilities patched.
Member 20th Oct, 2010 09:03
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
ws
Mozilla quashes 12 Firefox bugs
Plugs another 'binary planting' hole in Windows

By Gregg Keizer
October 19, 2010 09:00 PM ETComments (0)Recommended (6)

Computerworld - Mozilla on Tuesday patched 12 vulnerabilities in Firefox, including a second patch for a "binary planting" problem in Windows that researchers publicized last year.

Two-thirds of the vulnerabilities patched Tuesday were rated "critical," the threat ranking that represents bugs hackers could use to hijack a system or infect it with malware. Of the remaining vulnerabilities, two were labeled "high" and one each was judged "moderate" and "low."

Among the flaws was Firefox's second "binary planting" vulnerability. Some have dubbed the problem "DLL load hijacking."

Regardless of the term, the flaw existed in Windows applications that do not call DLLs (dynamic linked libraries) or executable files using a full path name. Instead, they rely on the filename alone.

The latter can be exploited by attackers, who can trick the program into loading a malicious file with the same title as a required DLL or executable. If attackers can con users into visiting malicious Web sites or remote shared folders, or get them to plug in a USB drive, they can compromise a computer and infect it with malware.

http://www.computerworld.com/s/article/9191958/Moz...

--
Was this reply relevant?
+0
-0
mogs CClip 91 Kaspersky Lab compromised.
Member 20th Oct, 2010 09:08
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Hacked Kaspersky Website Infected Users with Scareware

October 19th, 2010, 16:48 GMT| By Lucian Constantin

Malware pushers have managed to compromise a Kaspersky Lab website on Sunday and direct users looking to download the vendor's applications to scareware.

According to various reports, including on Kaspersky's own support forums, the compromise occurred on the USA download website.


When visitors attempted to download the company's security products they got redirected to an external page, which mimicked an antivirus scan and served a fake AV program.

More at :-
http://news.softpedia.com/news/Hacked-Kaspersky-We...

--
Was this reply relevant?
+0
-0
mogs CClip 92 System Restore..use less space.
Member 20th Oct, 2010 11:05
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 93 Revouninstaller
Member 20th Oct, 2010 11:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Type: freeware Platform: Windows 2000, Windows XP, Windows Vista Manufacturer:VS Revo Group Size: 2.3MB
Review Rating: n/a Average User Rating:
Rate this downloadPrice:Free Number of downloads:
21073
This is a software publisher's description.

Revo Uninstaller helps you to remove any unwanted application installed on your computer.

With its advanced and fast algorithm, Revo Uninstaller scans before and after you uninstall an application. After the program's regular uninstaller runs, you can remove additional unnecessary files, folders and registry keys that are usually left over on your computer. Even if you have a broken installation, Revo Uninstaller scans for an application's data on your hard disk drives and in the Windows registry and shows all found files, folders and registry items so you can delete them.


With its unique "Hunter mode", Revo Uninstaller offers you some simple, easy to use, but effective and powerful approaches to manage (uninstall, stop, delete, disable from auto starting) and to get information about your installed and/or running applications.



Read more: http://www.computeractive.co.uk/vnunet/downloads/2...

--
Was this reply relevant?
+0
-0
mogs CClip 94
Member 20th Oct, 2010 22:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Fake Firefox and Chrome Warning Pages Distribute Malware

October 20th, 2010, 13:42 GMT| By Lucian Constantin

Security researchers warn that a new malware distribution campaign uses fake versions of the malicious site warnings commonly displayed by Firefox and Google Chrome.

Both Chrome and Firefox tap into Google's Safe Browsing service in order to check if the accessed URLs are known attack sites.


If such malicious pages are detected, both browsers block them and display warning messages.

In such circumstances users are normally given the option to either leave the site or override the block and continue to load the page.

Even if Google's blacklist-based approach does not provide the same level of protection as an antivirus product's real-time Web shield, it is still better than nothing and a good way to limit long time exposure to attacks.

Security researchers from F-Secure now warn that malware pushers are increasingly abusing the trust users associate with these browser warnings, in order to infect them.

More at :-
http://news.softpedia.com/news/Fake-Firefox-and-Ch...

--
Was this reply relevant?
+0
-0
mogs CClip 95 Google Chrome 9 on the horizon
Member 20th Oct, 2010 22:54
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Google Chrome 9.0 on the Horizon

October 20th, 2010, 18:18 GMT| By Marius Oiaga

Forget Google Chrome 7.0 and 8.0, soon enough you will be able to test the ninth release of the open source browser.

Google is gearing up to deliver yet another major version of kits open source browser this year, namely Chrome 9.0, or at least to get early adopters a taste.


After all, the Mountain View-based search giant aims to keep its promise of launching a new Stable version of Chrome every six weeks, per the new accelerated release model, designed to bring fresh features to users as fast and as frequently as possible.

In this regard, Google Chrome 9.0 is already on the horizon, with testers getting the first bits next month.

More at :-
http://news.softpedia.com/news/Google-Chrome-9-0-o...

--
Was this reply relevant?
+0
-0
mogs CClip 96 Thunderbird fixed
Member 21st Oct, 2010 09:02
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Eleven Vulnerabilities Fixed in Mozilla Thunderbird

October 20th, 2010, 17:49 GMT| By Lucian Constantin

The newly released 3.1.5 and 3.0.9 versions of Mozilla Thunderbird, address a total of eleven vulnerabilities affecting the popular open source email client, including eight that are rated critical.

Three memory corruption vulnerabilities (CVE-2010-3176, CVE-2010-3175, CVE-2010-3174) that could potentially be exploited to execute arbitrary code, were identified by the Mozilla developers.

More at :-
http://news.softpedia.com/news/Eleven-Vulnerabilit...

--
Was this reply relevant?
+0
-0
mogs CClip 97 Chrome grumbles.
Member 21st Oct, 2010 09:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 97 Chrome grumbles.
Member 21st Oct, 2010 09:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 98 Auslogics Freeware/Updates
Member 21st Oct, 2010 21:58
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 21st Oct, 2010 22:31
Auslogics Registry Cleaner FREE
2.0.5.50
- added new languages
- improved speed of all program components
- improved stability
- fixed all known bugs

Version 2.0.5.50 4.5MB Now available.
http://www.auslogics.com/en/software/registry-clea...

.................................................. .................................................. ...
Auslogics Disc Defrag FREE
Optimizes file system
Consolidates free space
Can defrag automatically
Provides flexible scheduler
Can defrag a single file or folder
Supports multi-terabyte volumes


Version 3.1.9.160 4.4MB Now available
http://www.auslogics.com/en/software/disk-defrag/d...

Multiple Languages
Auslogics Disk Defrag is available in German, English, Spanish, French, Hungarian, Italian, Japanese, Korean, Polish, Portuguese and Russian. Help us translate Disk Defrag into your native language!


--
Was this reply relevant?
+0
-0
mogs CClip 99 Chrome Dev Update
Member 22nd Oct, 2010 08:29
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Dev Channel Update
Thursday, October 21, 2010 | 16:26
Labels: Dev updates
The Chrome Dev channel has been updated to 8.0.552.11 for all platforms. It contains a number of stability and other improvements including:
about:labs moved to about:flags
New Tab Page cleanup
Various Chrome Frame fixes for non-en-US locales
Full details about the changes are available in the SVN revision log. If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

Jason Kersey
Google Chrome

http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 100 Adobe Shockwave bug
Member 22nd Oct, 2010 08:34
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 22nd Oct, 2010 08:35


--
Was this reply relevant?
+0
-0
mogs CClip 101New Alpha Opera
Member 22nd Oct, 2010 08:39
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 102 1,000 times faster Internet
Member 22nd Oct, 2010 10:12
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Tomorrow's Internet: 1,000 times faster
October 21, 2010
Imagine if all the data traversing the world right now -- on long distance networks and between and within computers and other hardware -- could be sent through a single fiber the width of a human hair.

Read more at :-
http://www.physorg.com/news/2010-10-tomorrow-inter...

--
Was this reply relevant?
+0
-0
mogs CClip 103 Adobe Zero-day Flaw.
Member 22nd Oct, 2010 23:56
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Exploit Code Available for Shockwave Player Zero-Day Flaw

October 22nd, 2010, 06:30 GMT| By Lucian Constantin

Adobe has confirmed the existence of an unpatched critical remote code execution vulnerability in Shockwave Player, which was publicly disclosed yesterday.

The issue was identified by an outfit called Abyssec Security Research, which notes that it can be exploited by opening a specially crafted DIR or DCR file.


"A critical vulnerability exists in Adobe Shockwave Player 11.5.8.612 and earlier versions on the Windows and Macintosh operating systems.

"This vulnerability (CVE-2010-3653) could cause a crash and potentially allow an attacker to take control of the affected system," Adobe writes in a newly published advisory.

More at :-
http://news.softpedia.com/news/Exploit-Code-Availa...

--
Was this reply relevant?
+0
-0
mogs CClip 104 New Banking Trojan
Member 23rd Oct, 2010 00:01
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
New Banking Trojan Targets Over a Dozen Financial Institutions

October 22nd, 2010, 10:48 GMT| By Lucian Constantin

Security researchers from FireEye have identified a new banking trojan, which is capable of launching man-in-the-browser (MITB) attacks and targets an unusually high number of financial institutions.

Dubbed Feodo by the security vendor, the malware is similar in concept and features to other banking trojans like ZeuS, SpyEye, Bugat or Carberp.


The threat steals online banking credentials and other sensitive information by intercepting data inputted into Web forms, as well as injecting rogue HTML elements into pages.

"I can see that the bot herders are instructing its zombies to target over a dozen banks. This is a huge list, I rarely see even bot herders behind Zbot targeting so many banks," Atif Mushtaq, a security research engineer at FireEye, says.

The expert also notes, that unlike Zbot or SpyEye, Feodo is not the result of a crimeware toolkit sold on the underground market and that it most likely belongs to a single gang.

More at :-
http://news.softpedia.com/news/New-Banking-Trojan-...

--
Was this reply relevant?
+0
-0
mogs CClip 105 Windows 8
Member 23rd Oct, 2010 00:06
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Windows 8 (Windows vNext) Riskiest Product Bet for Microsoft

October 22nd, 2010, 17:15 GMT| By Marius Oiaga

Microsoft Chief Executive Officer Steve Ballmer is considering the next version of Windows as the riskiest product bet by the Redmond company, according to a Mary-Jo Foley report.

Windows 8, or Windows vNext as Microsoft would prefer it, is for the most part a great unknown.


In the post-Longhorn/Vista era, the software giant is extremely careful with the details it shares about Windows operating systems still in planning or in development.

More at :-
http://news.softpedia.com/news/Windows-8-Windows-v...

--
Was this reply relevant?
+0
-0
mogs CClip 106 Firefox 4 Delay
Member 23rd Oct, 2010 00:23
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Firefox 4.0 Delayed

October 22nd, 2010, 16:21 GMT| By Marius Oiaga

With each passing day, it looks less and less likely that Mozilla will be able to pull off a new major iteration of its open source browser by the end of 2010.

Not counting the days left in October, there are now just two months until 2011, and the final milestone of Firefox 4.0 is nowhere in sight.


Mozilla has yet to announce officially that it postponed Firefox 4.0, but it is also bound to change the roadmap for the remaining development releases of the browser.

No telling yet just how the browser maker will handle delay, but chances are that Firefox 4.0 will slip in 2011, considering the amount of work that Mozilla still needs to get done before it will be able to wrap up the release.

More at :-
http://news.softpedia.com/news/Firefox-4-0-Delayed...

--
Was this reply relevant?
+0
-0
mogs CClip 107 12yr old find critical flaw.
Member 23rd Oct, 2010 17:42
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Twelve-Year-Old Awarded $3,000 for Finding Critical Firefox Flaw

October 23rd, 2010, 07:40 GMT| By Lucian Constantin

One of the arbitrary code execution vulnerabilities patched in Firefox earlier this week, was discovered by a 12-year-old bug hunter, who earned $3,000 from Mozilla for the find.

The flaw is identified as CVE-2010-3179 and is described as a buffer overflow and memory corruption issue, which can occur using the document.write() function

More at :-
http://news.softpedia.com/news/Twelve-Year-Old-Awa...

--
Was this reply relevant?
+0
-0
mogs CClip 108 British Spam levels....dangerous.
Member 23rd Oct, 2010 17:52
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 109 Windows 7 Funfacts
Member 24th Oct, 2010 08:49
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Windows 7 Fun Facts

October 22nd, 2010, 12:08 GMT| By Marius Oiaga

Just ahead of October 22nd, 2010, Microsoft revealed that Windows 7 sales topped 240 million units in just the first year on the market.

This means that the uptake rate for the fastest selling operating system in history continues to be as high as earlier this year when the company reported that no less than 7 copies of the platform were flying off of store shelves each second.


240 million per year means that Microsoft sold 657,534 Windows 7 copies per day, 27,397 copies per hour, and 7.6 copies each second.

No less than 7 copies of Windows 7 were sold per second in the first year since the operating system hit general availability.

The successor of Windows Vista currently accounts for a usage share of 17.10%, and surpassed its predecessor in terms of audience in July 2010, one year after it was released to manufacturing.

93% of all new computers from OEMs (original equipment manufacturers) ship with Windows 7 preinstalled.

More at :-
http://news.softpedia.com/news/Windows-7-Fun-Facts...

--
Was this reply relevant?
+0
-0
mogs CClip 110 Zombie Computer
Member 24th Oct, 2010 08:53
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

1 in 3 Infected PCs Is a Zombie Computer

October 22nd, 2010, 10:21 GMT| By Marius Oiaga

One in every three PCs infected with malware is a zombie computer, namely a machine that is part of a botnet and controlled by a remote attacker with as much if not even more privileges than the user sitting in front of the screen.

Data from the Microsoft Security Intelligence Report (SIR) volume 9 delivers insight on the global botnet problem and the cybercriminals controlling networks of zombie computers.

More at :-
http://news.softpedia.com/news/1-in-3-Infected-PCs...

--
Was this reply relevant?
+0
-0
mogs CClip 111 Outside Secunia !
Member 24th Oct, 2010 19:14
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Users neglect Java patches, leave attack door wide open
Security expert suggests Oracle distribute Java fixes on Microsoft's update service

By Gregg Keizer

Computerworld - Oracle should piggyback on Microsoft's update service to boost users' chances of running a patched version of Java, a security expert said today.

"The solution would be to get rid of all these different update engines, and instead for companies like Oracle to collaborate with Microsoft to use Windows Update or WSUS to distribute fixes for Java," said Wolfgang Kandek, CTO at Qualys.

More at :-
http://www.computerworld.com/s/article/9192098/Use...

--
Was this reply relevant?
+0
-0
mogs CClip 112 Patching procedure
Member 24th Oct, 2010 19:54
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
News
Google fixes 11 Chrome flaws, debuts stable version 7
Patches autofill crash that hacker's could exploit

By Gregg Keizer

Computerworld - Google patched 11 vulnerabilities in Chrome on Thursday as it updated the browser to version 7.

The security update was the fourth since Sept. 2., when Google first boosted Chrome 6 to the "stable" release, the browser's most polished version.

Only one of the bugs patched in Chrome 7.0.517.43 was rated "critical" in Google's four-step threat scoring system, with five tagged as "high." Three others received the "medium" label, while two were pegged as "low."

Google paid out only $1,000 in bounties to two researchers who reported a pair of bugs, the least it's awarded since last June.

As usual, Google locked down its bug tracking database to hide technical details of the vulnerabilities. The company usually unlocks access to a flaw several weeks after a patch ships, to give users time to update before the information goes public.

Other browser makers, including Mozilla, do the same.

--
Was this reply relevant?
+0
-0
mogs CClip 113 e-voting comes of age..
Member 24th Oct, 2010 20:02
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
As e-voting comes of age, security fears mount
October 24, 2010 by Rob Lever
New technologies allowing voters to cast ballots via the Internet or other electronic means are catching on in the United States and elsewhere, even as fears mount about security of the systems.

A total of 33 US states are allowing some email, fax or online ballots in 2010, according to the Verified Voting Foundation, a group that monitors security of election systems.
These systems, which are also used in several other countries, can potentially increase voter participation but security remains a question mark, especially following one spectacular attack on an Internet vote pilot project.
The startling security breach came in September, when a pilot Internet vote system for the city of Washington, DC, was put online for a test.
A team of computer scientists from the University of Michigan had little trouble infiltrating the system, modifying ballots, changing the password and directing the system to play the university fight song.
More at :-
http://www.physorg.com/news/2010-10-e-voting-age-m...

--
Was this reply relevant?
+0
-0
mogs CClip 114 Direct-gov link
Member 25th Oct, 2010 03:19
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Young people
Staying safe online


It's important to know how to stay safe when you're using the internet. You should never give out any personal information when you're online, no matter who you think you're talking to

Read more at :-
http://www.direct.gov.uk/en/YoungPeople/CrimeAndJu...

--
Was this reply relevant?
+0
-0
mogs CClip 115 Black Viper Service configurations
Member 25th Oct, 2010 08:31
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

> Home > Articles > OS Guides > Windows 7 > Service Configurations
Introduction
To continue my fine tradition of optimizing MS's latest OS, I have here my findings to date.

Before adjusting your service settings, ensure that your system has already installed all updates by "checking now" for any available updates via Windows Update. At this time, it is best for you to ensure that all services are set to the default values before updating your system.

Breakdown of all changes to date: Windows 7 Information Changelog.

I cannot possibly test all configurations extensively (meaning, each persons specific computer needs), but what I can offer is what "works for me" and the obstacles I have came across so you do not have to discover them on your own. If information on this page needs a revision or expanded, please check out the forums.

An * (asterisk) indicates changes from the default

Two ** (asterisks) indicates you can add or remove this service by:

Head to Start
Select Control Panel
Select Programs
Select Programs and Features
Select Turn Windows Features on or off
Three *** (asterisks) indicates they are installed with Windows Live Essentials


Windows Services ~ Includes complete explanations of each service and advice on which services you can safely disable.

Windows 7 Service Configurations ~ Updated: August 5, 2010
Windows Server 2008 R2 Service Configurations ~ Updated: August 5, 2010
Windows Vista Service Pack 2 Service Configurations ~ Updated: June 24, 2010
Windows XP x64 (64-bit) Service Pack 2 Service Configurations ~ August 5, 2010
Windows XP x86 (32-bit) Service Pack 3 Service Configurations ~ Updated: June 24, 2010
Windows 2000 Service Pack 4 Service Configurations ~ Updated: February 26, 2009
Articles

Read more at :-
http://www.blackviper.com/

--
Was this reply relevant?
+0
-0
mogs CClip 116
Member 25th Oct, 2010 10:49
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Windows 8 Drops in 2012, Says Microsoft

October 25th, 2010, 06:56 GMT| By Marius Oiaga

Windows 8 (also Windows vNext) will be made available to customers in 2012, with Microsoft offering official confirmation of this deadline.

Albeit inadvertently, the confirmation from the Redmond company gives customers the first tangible date for the next iteration of Windows, along with a reiteration of the fact that the successor of Windows 7 is in fact Windows 8, at least for the time being.

More at :-
http://news.softpedia.com/news/Windows-8-Drops-in-...

--
Was this reply relevant?
+0
-0
mogs CClip 117 Firefox Extension threat
Member 25th Oct, 2010 17:39
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 25th Oct, 2010 17:41

Firefox Extension Allows Anyone to Steal Logins over Insecure Wireless Networks
:
October 25th, 2010, 13:29 GMT| By Lucian Constantin

A newly released Firefox extension, allows virtually anyone to hijack other people's accounts on popular websites like Facebook or Twitter, when connected over open wireless networks and not using HTTPS.

The extension is called Firesheep and was released as an open source project by a software developer named Eric Butler, at the Toorcon 12 hacking conference this weekend.


Firesheep performs a type of attack known as a session hijacking, which involves intercepting and stealing session cookies when they get transmitted over the air.

More at :-
http://news.softpedia.com/news/Firefox-Extension-A...

--
Was this reply relevant?
+0
-0
mogs CClip 118 Live Essentials controversy
Member 25th Oct, 2010 17:45
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Microsoft's New Windows Live Essentials Update Policy Sparks Controversy
October 25th, 2010, 08:12 GMT| By Lucian Constantin

Microsoft's decision to deliver Windows Live Essentials 2011 as an important update to some users, didn't fall well with some security researchers, who liken the practice to adware and spyware behavior.

Windows Live Essentials is a suite of Microsoft programs related to the company's Live services platform. It is comprised of applications used for emailing, instant messaging, Web content publishing, photo sharing and other tasks.

On October 20, the software giant announced that the newly released Windows Live Essentials 2011 will be delivered as a "recommended update" to users who have at least one of its components installed.

Lots more at :-
http://news.softpedia.com/news/Microsoft-s-New-Win...

--
Was this reply relevant?
+0
-0
mogs CClip 119 NuCaptcha runs CAPTCHA text as a streaming banner
Member 25th Oct, 2010 17:59
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Security company strengthens CAPTCHAs with video
NuCaptcha runs CAPTCHA text as a streaming banner within a video to throw off automated CAPTCHA-solving software

By Jeremy Kirk | IDG News Service
Print|1 comment
A security company called NuCaptcha is incorporating advertising into a video CAPTCHA system that is much harder for computers to break.

More at :-
http://www.infoworld.com/d/security-central/securi...

--
Was this reply relevant?
+0
-0
mogs CClip 120 New anti-spam Chrome extension
Member 25th Oct, 2010 20:17
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Google Launches Chrome Extension for Reporting Spam Websites

October 25th, 2010, 16:57 GMT| By Lucian Constantin

Google has created an extension for Chrome, which lets users easily report spam search results by adding a special link next to them.

Google Chrome is the fastest growing browser at the moment and according to Net Applications it had an 8% market share in September.


Because of it's sandbox model and other features, Chrome has seen a lot of adoption from security conscious people, if not as their main browser, at least a secondary one.

With the new Chrome extension, dubbed "Google Webspam Report," the search giant hopes to some of this security-aware user base will help it better the search experience for everyone.




--
Was this reply relevant?
+0
-0
mogs CClip 121 Mozilla Sunspider scores
Member 26th Oct, 2010 09:44
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 122 Winamp vulnerabilities.
Member 26th Oct, 2010 12:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Winamp Critical Vulnerabilities Exploited in the Wild
October 26th, 2010, 08:38 GMT| By Lucian Constantin

Security researchers from BitDefender warn that exploits for several zero-day Winamp vulnerabilities disclosed two weeks ago, have been spotted in the wild.

On October 13, security researcher Luigi Auriemma published details about four unpatched vulnerabilities in Winamp 5.581 and older versions, along with proof-of-concept attack code.


Vulnerability research vendor Secunia has confirmed that two can be exploited by attackers to execute arbitrary code remotely, and rates them as highly critical.

More to read at :-
http://news.softpedia.com/news/Winamp-Critical-Vul...

--
Was this reply relevant?
+0
-0
mogs CClip 123 Rogue MS Essentials
Member 26th Oct, 2010 12:39
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 124 Firefox 4 Beta just around the corner.
Member 26th Oct, 2010 17:57
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Firefox 4.0 Beta 7 Just Around the Corner

October 26th, 2010, 15:12 GMT| By Marius Oiaga





The wait, and it has been quite a wait, is almost over for the seventh Beta release of Firefox 4.0. However, early adopters will need to exercise their patience a tad longer, as Mozilla refines the release.

More at :-
http://news.softpedia.com/news/Firefox-4-0-Beta-7-...

--
Was this reply relevant?
+0
-0
mogs CClip 125 Awful week for Kaspersky
Member 26th Oct, 2010 18:02
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 126 Botnet Hosts
Member 26th Oct, 2010 18:09
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 127 Dangerous domains
Member 26th Oct, 2010 18:20
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Vietnam is a malware quagmire

VN is the dodgiest domain
By David Neal
Tue Oct 26 2010, 14:43
INSECURITY VENDOR McAfee has produced a list of the most dangerous domains in the world and found that the Vietnamese .vn domain is the worst of all.
The firm has produced a report (PDF) about online malware and analysed where and where it is coming from. Although the .com domain is the worst top level bounder, the Vietnamese domain is the most poisonous country domain for malware incidence, with a risk rating of just under 30 per cent.
By contrast, the least dangerous country websites are those located in Japan with the .jp domain, which has a risk rating of only about one per cent.

Read more at :-
http://www.theinquirer.net/inquirer/news/1811157/v...

--
Was this reply relevant?
+0
-0
mogs CClip 128 Make a Windows 7 Rescue Disk.
Member 26th Oct, 2010 19:42
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 128 Zero-day Firefox vulnerability
Member 27th Oct, 2010 07:45
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Zero-Day Firefox Vulnerability Exploited to Distribute Trojan

October 26th, 2010, 15:53 GMT| By Lucian Constantin

Security researchers from Norman have come accross a drive-by download attack exploiting an unpatched Firefox vulnerability in order to infect users with a new trojan.

The attack was launched from the Nobel Peace Prize website, which appears to have been compromised and had rogue code injected into its pages.


According to Norman, the exploit used targeted a previously unknown vulnerability affecting versions 3.5 and 3.6 of the Mozilla Firefox browser.

More at ;-
http://news.softpedia.com/news/Zero-Day-Firefox-Vu...

--
Was this reply relevant?
+0
-0
mogs CClip 129 Chrome Dev update
Member 27th Oct, 2010 13:06
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Dev Channel Update
Tuesday, October 26, 2010 | 18:02
Labels: Dev updates
The Chrome Dev channel has been updated to 8.0.552.18 for all platforms. This release addresses a number of stability and polish issues found in the previous release.

--
Was this reply relevant?
+0
-0
mogs CClip 130 Cross platform attack
Member 27th Oct, 2010 13:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Cross-Platform Attack Installs Trojan on Windows and Mac

October 27th, 2010, 08:51 GMT| By Lucian Constantin

SecureMac warns of a Java-based drive-by download attack capable of infecting both Windows and Mac OS X operating systems with a trojan.

Security researchers from the Mac-focused anti-malware vendor, have spotted the attack on social networking websites, including Facebook, where it spreads via links to fake videos.


The rogue messages read "Is it you in this video?" and direct unsuspecting users to a malicious page that tries to exploit a vulnerability in outdated versions of Java.

Successful exploitation results in a trojan being installed on the visitor's system, regardless if it is Mac OS X or Windows.

More at :-
http://news.softpedia.com/news/Cross-Platform-Atta...

--
Was this reply relevant?
+0
-0
mogs CClip 131 Mozilla confirms Zero-day attack.
Member 27th Oct, 2010 18:41
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Mozilla Confirms Firefox Zero-Day and Recommends NoScript

October 27th, 2010, 13:38 GMT| By Lucian Constantin

Mozilla confirmed the existence of an actively targeted critical vulnerability in Firefox 3.5 and 3.6 and recommends the NoScript add-on as mitigation until a permanent fix is ready.

The vulnerability was exploited in a drive-by download attack launched from the Nobel Peace Prize website, which was reported yesterday by Norwegian antivirus vendor Norman.

More at :-
http://news.softpedia.com/news/Mozilla-Confirms-Fi...

--
Was this reply relevant?
+0
-0
mogs CClip 132 Dutch police use unusual tactics
Member 27th Oct, 2010 18:48
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
27 October 2010 Last updated at 15:55
Dutch police use unusual tactics in botnet battle

The message was sent to around 100,000 computer users
Dutch police have taken the unusual step of tapping into hijacked computers to tell users that their machines had been taken over.

It is the culmination of an operation to close 143 servers commanding an army of 30 million hijacked computers around the globe.

The infected machines formed a huge botnet, giving criminals access to sensitive information.

Experts have questioned whether it puts the Dutch police in breach of the law.

See at :-
http://www.bbc.co.uk/news/technology-11635317

--
Was this reply relevant?
+0
-0
mogs CClip 133 Windows 7 SP1
Member 27th Oct, 2010 18:55
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 27th Oct, 2010 18:57
Microsoft quietly delivers Windows 7 SP1 release candidate
'No additional new features,' says Microsoft as it slates Q1 2011 ship window

By Gregg Keizer
October 27, 2010 06:43 AM
Computerworld - With little fanfare, Microsoft on Tuesday promoted Windows 7 Service Pack 1 to release candidate status, hitting the last major milestone before the code is finalized and begins shipping early next year.

The company posted Windows 7 SP1 RC on its site early Tuesday in a combined download for the client operating system and Windows Server 2008 R2 SP1.

The release candidate, or RC, is the first edition aimed at the general public, a Microsoft spokesman said in a entry on the company's blog. It will also be the last, as the company will move directly from SP1 RC to RTM, or "release to manufacturing," a term that describes code that's been given the green light for duplication and distribution to computer makers.

More at :-
http://www.computerworld.com/s/article/9193280/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 134 Norton Removal Tool 2011.0.1.8
Member 27th Oct, 2010 21:36
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 135 Canary build Chrome 9
Member 27th Oct, 2010 23:29
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Canary build. This build is for people who want to help test Google Chrome and contribute to its development. The Canary build is updated even more frequently than the Dev channel and is not tested before being released. Because the Canary build may at times be unusable, it cannot be set as your default browser and may be installed in addition to any of the above channels of Google Chrome. By default, it also reports crashes and usage statistics to Google (you can disable this on the download page).
Note: Early access releases (Canary builds and Dev and Beta channels) will be only partly translated into languages other than English. Text related to new features might not get translated into all languages until the feature is released in the Stable channel.

Version 9.0.565.0
http://dev.chromium.org/getting-involved/dev-chann...

--
Was this reply relevant?
+0
-0
mogs CClip 136 Halloween searches often poisoned.
Member 28th Oct, 2010 08:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Halloween-Related Web Searches Can Lead to Malware

October 27th, 2010, 17:49 GMT| By Lucian Constantin

Security researchers from Panda Security warn that malware pushers have poisoned the search results for numerous Halloween-related keywords with malicious links.

Halloween is only a few days away and, as we estimated a week ago, the attacks targeting this holiday are intensifying.

Read more at:-
http://news.softpedia.com/news/Halloween-Related-W...

--
Was this reply relevant?
+0
-0
mogs CClip 137 Emergency update for Firefox
Member 28th Oct, 2010 08:38
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
October 27, 2010 08:10 PM
Computerworld - Less than 48 hours after receiving a report of a critical flaw in Firefox, Mozilla issued an emergency update on Wednesday that patched the problem.

Around mid-day Pacific time today, Mozilla released Firefox 3.6.12 and Firefox 3.5.15 to patch the vulnerability, which had been exploited by malware secretly planted on the Nobel Peace Prize Web site.

Mozilla acknowledged the bug Tuesday and said it was at work on a patch, but provided few details. Today, the company said the vulnerability existed in the Windows, Mac OS X and Linux versions of Firefox 3.6 and the older Firefox 3.5.

The currently-stalled Firefox 4 was not at risk, Daniel Veditz, a Firefox security engineer, said in comments appended to the Mozilla blog post that confirmed the flaw.

More at :-
http://www.computerworld.com/s/article/9193518/Moz...

--
Was this reply relevant?
+0
-0
mogs CClip 138
Member 28th Oct, 2010 11:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Unpatched Critical Flash Player Vulnerability Possibly Exploited in the Wild.
October 28th, 2010, 08:16 GMT| By Lucian Constantin

According to the preliminary findings of some security researchers, a new zero-day vulnerability in Adobe Flash Player might be exploited in the wild to infect users with a trojan.

The alert comes from independent security researcher Mila Parkour, who maintains the Contagio Malware Dump blog. Ms. Parkour was also credited back in September with reporting an actively exploited Adobe Reader zero-day vulnerability.

More at :-
http://news.softpedia.com/news/Unpatched-Critical-...

--
Was this reply relevant?
+0
-0
mogs CClip 139 Critical updates
Member 28th Oct, 2010 11:28
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0

M-------------->I-G-N.-...

RE: Daily CYBERCLIPS OCTOBER "Edition".
[+]
This reply has been minimised due to a negative Relevancy Score.
mogs CClip 140 Secure disk erasure.
Member 28th Oct, 2010 11:54
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 141 Adobe patch schedule
Member 28th Oct, 2010 18:30
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

Adobe Confirms New Flash 0-Day and Reveals Patch Schedule
October 28th, 2010, 14:54 GMT| By Lucian Constantin
Adobe has confirmed that a new critical vulnerability affects Flash Player, Adobe Reader and Acrobat, and plans to release patches in the second and third week of November, respectively.

Rumors of the zero-day vulnerability emerged earlier today, with researcher Mila Parkour revealing some details about an attack that exploited it.


The researcher said at the time that Adobe was notified and is investigating the issue. The company has now finished its analysis and has published an advisory.

More at :-
http://news.softpedia.com/news/Adobe-Confirms-New-...

--
Was this reply relevant?
+0
-0
mogs CClip 142 Major CCleaner Update
Member 28th Oct, 2010 18:42
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
CCleaner 3.00.1303
Major update to the popular system cleansing & optimisation tool
Written by Chris Wiles/Tim Smith, V3.co.uk
28 Oct 2010
Type: freeware Platform: Windows 2000, Windows XP, Windows Vista, Windows Vista 64-bit Manufacturer:Piriform Ltd Size: 2.7MB
Review Rating:Average User Rating:
Rate this downloadPrice:Free Number of downloads:
151929
Just as regular exercise is good for your health, a regular workout for your hard diskis recommended. Windows has its own tools for doing this, but CCleaner makes a slightly better job of it.

The application is free to use and shows the door to all kinds of temporary files, from temporary internet files to old automatic back-ups from application such as Office XP and file sharing software. It also shakes out old entries from your computer's registry, such as unistallers and invalid shortcuts. The makers guarantee that it contains no apyware or adware.

CCleaner is one of the more popular system cleansing and optimisation tools available. This is the major v3.x release incorporating a number of new enhancements. It ships with a brand new user-interface and is available in a compact version. Of course, there are also a number of other tweaks and improvements as well as added support for applications such as IE9 and AVG AntiVirus 10.



Read more: http://www.computeractive.co.uk/vnunet/downloads/2...


--
Was this reply relevant?
+0
-0
mogs CClip 143 Sophos launches Blog
Member 28th Oct, 2010 20:26
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 144 Malware Report Option for Chrome
Member 29th Oct, 2010 09:48
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Google Chrome to Get Malware Report Option
October 28th, 2010, 16:45 GMT| By Lucian Constantin

A design document submitted to the Chromium developers for review, outlines plans to add a malware report option, that will help Google improve its Safe Browsing service.

At the moment, when users try to access a malicious URL listed in Google's Safe Browsing blacklist, the browser displays a warning page.


In addition, if users have opted to share "usage statistics and crash reports" during installation, the browser will send Google the referer header for that page.

This allows the Safe Browsing service to make connections between compromised websites and the final landing pages loading the attack code.

However, the company is interested in even more attack-related data and plans to ask users for it via a new opt-in report feature.

More at :-
http://news.softpedia.com/news/Google-Chrome-to-Ge...

--
Was this reply relevant?
+0
-0
mogs CClip 145 Shockwave Player update
Member 29th Oct, 2010 11:41
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Adobe Patches Critical Vulnerabilities in Shockwave Player
October 29th, 2010, 06:45 GMT| By Lucian Constantin

Adobe has released an update for its Shockwave Player application addressing critical vulnerabilities, including a zero-day one, which is actively exploited in the wild.

The new Shockwave Player 11.5.9.615 version contains fixes for a total of eleven vulnerabilities that could lead to arbitrary code execution.


Six of the flaws are located in the dirapi.dll module and another two in IML32.dll. The rest of the bugs affect unspecified components.

More at :-
http://news.softpedia.com/news/Adobe-Patches-Criti...

--
Was this reply relevant?
+0
-0
mogs CClip 146 Internet kill-switch
Member 29th Oct, 2010 11:50
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Americans want the President to have an Internet kill switch

Sod the rest of the world
By Nick Farrell
Thu Oct 28 2010, 10:38
MOST PEOPLE IN AMERICA think that their President should have the right to switch off the rest of the world's Internet.
According to a poll, the former British colonies want their President to have an Internet kill switch.

More at :-
http://www.theinquirer.net/inquirer/news/1811722/a...

--
Was this reply relevant?
+0
-0
mogs CClip 147 IE9 versus.......
Member 29th Oct, 2010 21:17
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 148 Undermining Security
Member 29th Oct, 2010 21:26
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Adobe security flaw undermines nearly every OS

Almost scores a perfect 10
By Lawrence Latif
Fri Oct 29 2010, 13:41
UNDERMINING SECURITY seems to be a particular strength of Adobe as shown by the latest security bulletin put out by the firm.
In it, the firm delivers the shocking news that its Flash Player, Reader and Acrobat software have a vulnerability that could potentially allow hackers to gain complete control over computers. At this point, most will be thinking that only Microsoft Windows users are affected but no, this particular vulnerability does a number on Windows, Mac OS X, Linux, Android and even Solaris users.
The vulnerability affects Adobe Flash Player 10.1.85.3 for Windows, Mac OS X, Linux and Solaris and on Android, Adobe Flash Player 10.1.95.2 and earlier versions are affected. All versions of Adobe Reader 9.x are affected on Windows, OS X and UNIX systems while all versions of Adobe Acrobat 9.x are affected on Windows and Macintosh machines.
Or, to put it another way, if you run any version of Adobe Flash, Reader or Acrobat put out in the last few years, you are in trouble. But never fear, the bulletin cites that "Adobe categorizes this as a critical issue." Well, that's certainly comforting. Not.

More at :-
http://www.theinquirer.net/inquirer/news/1863177/a...

--
Was this reply relevant?
+0
-0
Anthony Wells RE: Daily CYBERCLIPS OCTOBER "Edition".
Expert Contributor 29th Oct, 2010 23:27
Score: 2500
Posts: 3,387
User Since: 19th Dec 2007
System Score: N/A
Location: N/A

Hi Mogs ,

Before you close this month's thread , thought I'd say that the latest format seems to be working well .

My personal comments would be :-

The "expanded" titles are much more communicative and tagging the thread and the index is most useful .

The selection of "stuff" is mostly very good and informative .

The index thread is getting a bit long and I would prefer to see it update/tag when there are five/six or more posts to index , even if they "dislocate" for a day or so .

Keep on truckin'.

Anthony



--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS OCTOBER "Edition".
Member 30th Oct, 2010 11:49
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Thanks for your feedback Anthony....it gets a bit lonely on this outpost at times !!! Ha!
Yeah, the format seems okay....I'm gonna make a minor change next month, as often my heading duplicates that of the original article.....I'm gonna just embolden that.....it might be preferred.
I'm trying to encompass the great array of Security subject matter as much as possible....too much of an especially serious topic might be off-putting tho'. But obviously it is dictated to a large extent by those stories etc., finding prominence on any day.
I agree entirely with the comments regarding the length of the Index thread....even if I were to leave off updating it to, perhaps every two days....I don't think it would be too inconvenient.....it would half the number of posts to it....reduce it considerably....and yet the CClips posts themselves as yet not indexed, would probably still be easily gravitated to ?
I'll give it a try starting next month......tomorrow night in fact.

Yeah, still holding down the day job ! Ha !

--
Was this reply relevant?
+0
-0
mogs CClip 149
Member 30th Oct, 2010 12:10
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 150
Member 30th Oct, 2010 12:14
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 151
Member 30th Oct, 2010 12:23
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK

OCTOBER 29, 2010
We're from Microsoft -- you can trust us
The Keystone Kops strike again: Microsoft released, then quickly withdrew KB 976902, leaving Automatic Update users with a 'Black Hole Update' that can't be removed

By Woody Leonhard | InfoWorld
Print|Add a comment

If any of your Windows 7 users have Windows Automatic Update turned on, they probably didn't notice a little patch that slipped into their machines on Tuesday.

More at :-
http://www.infoworld.com/t/windows/were-microsoft-...

--
Was this reply relevant?
+0
-0
mogs CClip 152.
Member 30th Oct, 2010 12:28
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
They're watching you: Methods to block nosy Web advertisers
October 29, 2010 By Mike Swift
Virtually everything you do online is scrutinized by search engines and advertising networks that evaluate you as a potential customer based on what you search for, the sites you visit and the ads you see -- whether you click on those ads or not

More at :-
http://www.physorg.com/news/2010-10-theyre-methods...

--
Was this reply relevant?
+0
-0
Anthony Wells RE: Daily CYBERCLIPS OCTOBER "Edition".
Expert Contributor 30th Oct, 2010 12:56
Score: 2500
Posts: 3,387
User Since: 19th Dec 2007
System Score: N/A
Location: N/A
Last edited on 30th Oct, 2010 13:09


--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
mogs CClip 153
Member 30th Oct, 2010 21:36
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
New Rogueware Blocks Windows Explorer From Loading
October 30th, 2010, 10:33 GMT| By Lucian Constantin





A new and aggressive rogue antivirus program, which gets installed through a fake Microsoft Security Essentials (MSE) alert, forces computers to reboot and prevents the Desktop from loading.

Called ThinkPoint, the program is dropped by a downloader-type application mimicking Microsoft Security Essentials.

More at :-
http://news.softpedia.com/news/New-Rogueware-Block...

--
Was this reply relevant?
+0
-0
mogs CClip 154
Member 30th Oct, 2010 21:41
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
China claims supercomputer crown

The Tianhe-1A supercomputer is about 50% faster than its closest rival.
China has claimed the top spot on the list of the world's supercomputers.

The title has gone to China's Tianhe-1A supercomputer that is capable of carrying out more than 2.5 thousand trillion calculations a second.

To reach such high speeds the machine draws on more than 7,000 graphics processors and 14,000 Intel chips.

The claim to be the fastest machine on the planet has been ratified by the Top 500 Organisation which maintains a list of the most powerful machines.

http://www.bbc.co.uk/news/technology-11644252

--
Was this reply relevant?
+0
-0
mogs CClip 155
Member 31st Oct, 2010 08:24
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK


--
Was this reply relevant?
+0
-0
mogs CClip 156
Member 31st Oct, 2010 10:11
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Flash Drive 101: Copying Files, Removing Viruses
By Rick Broida

PC World - The other day, my wife asked me how to copy a PowerPoint presentation to a flash drive so she could take it with her to school. I was a little shocked. My very own wife doesn't know how to do this? I've failed as a husband!

To make sure I don't fail you, dear readers, allow me to explain the process of copying files to flash drives. Most of you probably know how, but I'll wager it's a mystery to at least some users.

Read more at :-
http://www.computerworld.com/s/article/9193218/Fla...

--
Was this reply relevant?
+0
-0
mogs CClip 157
Member 31st Oct, 2010 10:34
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 31st Oct, 2010 10:35


--
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS OCTOBER "Edition".
Member 31st Oct, 2010 18:59
Score:
Posts: 6,279
User Since: 22nd Apr 2009
System Score: N/A
Location: UK
Last edited on 31st Oct, 2010 19:20
This thread will shortly close.
Thankyou for your support.
Please refer to the November Edition which will open very soon.
http://secunia.com/community/forum/thread/show/620...

--
Was this reply relevant?
+0
-0

This thread has been marked as locked.