Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Daily CYBERCLIPS November

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Open Discussions

This thread has been marked as locked.
mogs Daily CYBERCLIPS November
Expert Contributor 31st Oct, 2010 19:14
Ranking: 2265
Posts: 6,266
User Since: 22nd Apr, 2009
System Score: 100%
Location: UK
Last edited on 31st Oct, 2010 19:22

Please REFRAIN from replying to this post/thread.....thankyou.
Fouth Edition


Thankyou for your continuing support.
Following some feedback: ( Anthony; notably): some minor changes have been made to format/heading etc., which hopefully make the finding/ reading somewhat clearer. As I hope you are aware, a CYBERCLIPS INDEX thread has also been started to help; tho' unfortunately unable to pair/pin together ! The INDEX will be updated every two days...to prevent it becoming "endless"!!
Security is still the emphasis of the thread with some related and varied topics....something to read on a Sunday isn't always easy to find...but I'm not gonna make it a big issue !!
Please note....the most recent posts are those at the end of a downward scroll !!
I should reiterate that no entry/post should be taken as a personal recommendation, unless otherwise stated.
Please continue to keep CYBERCLIPS free of junk and unattractive to any contentious individuals; whilst, at the same time feeling disposed towards posting suitable content, and one-off helpful comment, yourself.
* Keep patching : up to date : be Cybersafe ! *

--

mogs CClip 1
Expert Contributor 31st Oct, 2010 19:39
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

A week in security: Adobe struggles with more flaws
We round up the week's top security news
Phil Muncaster

This week in security has been a fairly quiet one, with Adobe’s latest revelation of a zero day flaw in its Reader, Acrobat and Flash products probably the pick of the stories, while a TechNet conference hosted by the Armed Forces Communications and Electronics Association also provided some outspoken views on cyber crime.

First to Adobe though, and its zero day problems. The firm has not yet released a patch, but has issued a workaround for IT administrators to ward off intruders. Danish security analysts Secunia rated the flaw as extremely critical as it could cause a crash and potentially allow an attacker to take control of the affected system


Elsewhere it emerged that the notorious Koobface social networking malware is now targeting Mac OS X systems. Security firm reported that variants of the malware have been targeting Mac users on social networking sites such as Facebook, Twitter and MySpace.

There was more gloomy news earlier in the week as spam monitoring firm Spam Ratings research found that one in 10 UK web firms is sending unsolicited email to customers, contributing to a spam landscape that is spiralling out of control.

Read more at :-
http://www.v3.co.uk/v3/news/2272480/security-adobe...

--
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS November
Expert Contributor 1st Nov, 2010 19:15
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Amendment
Please disregard the statement at the beginning of the introductory post to this thread ;regarding refraining from posting. I shouldn't have included it. You are welcome to post...as you can see from the statement further along in the introduction. Thankyou.


--
Was this reply relevant?
+0
-0
mogs CClip 2
Expert Contributor 1st Nov, 2010 19:31
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Network hardware failure blamed for PayPal collapse
By Juan Carlos Perez
November 1, 2010 11:37
IDG News Service - A network hardware failure knocked PayPal offline for its users worldwide Friday, and the recovery and failover systems didn't spring into action as quickly as they were supposed to.

That outage, which hit shortly after 11 a.m. Eastern Time, was solved at around 12:30 p.m., but PayPal experienced another "service interruption" at 2:30 p.m. that dragged on for almost another hour.

"We are investigating ways to ensure that this doesn't happen again," wrote PayPal CTO Scott Guilfoyle in a blog posting.

In Guilfoyle's posting and previous ones about the outage, various merchants expressed frustration with the technical problems and the impact they had on sales and customer satisfaction.

PayPal has more than 87 million active accounts in 190 markets and 24 currencies worldwide.

http://www.computerworld.com/s/article/9194219/Net...

--
Was this reply relevant?
+0
-0
mogs CClip 3
Expert Contributor 1st Nov, 2010 19:35
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Microsoft claims IE8, IE9 outgrew Google's Chrome last month
Cherry-picks data -- dismisses Chrome 5's share -- to get to that conclusion

By Gregg Keizer
November 1, 2010 01:37 PM
Computerworld - Microsoft's claim that Internet Explorer 8 (IE8) and IE9 beat the usage share gains posted by Chrome last month don't hold up, according to the data the company cited Monday.

But the matter may be moot: Overall, IE again lost ground to Google's Chrome and Apple's Safari in the battle for browser hearts and minds.

http://www.computerworld.com/s/article/9194240/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 4
Expert Contributor 1st Nov, 2010 20:39
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
First official HTML5 tests topped by...Microsoft

Memo to Redmond: CSS ain't HTML
By Cade Metz in San Francisco • Get more from this author

Posted in Applications, 1st November 2010 18:07 GMT
The Worldwide Web Consortium has released the results of its first HTML5 conformance tests, and according to this initial rundown, the browser that most closely adheres to the latest set of web standards is...Microsoft Internet Explorer 9.

Yes, the HTML5 spec has yet to finalized. And yes, these tests cover only a portion of the spec. But we can still marvel at just how much Microsoft's browser philosophy has changed in recent months.

The W3C tests — available here

http://www.theregister.co.uk/2010/11/01/w3c_html5_...

--
Was this reply relevant?
+0
-0
mogs CClip 5
Expert Contributor 2nd Nov, 2010 07:15
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
New Wave of Windows 7 SP1 RC Downloads Leaked

November 1st, 2010, 19:08 GMT| By Marius Oiaga

A new wave of Windows 7 Service Pack 1 (SP1) Release Candidate (RC) downloads has been leaked and made available for download in the wild.

Build 6.1.7601.17105.100929-1730 was offered by Microsoft officially to the public for testing on October 26th, although some early adopters received access to the bits a tad earlier the past month.


In addition, there are some limitations as far as the public RC of Windows 7 SP1 is concerned. First off, testers can only download the English, French, German, Japanese and Spanish flavors of SP1 RC.

Users running Windows 7 RTM in other languages than the ones mentioned above are not able to test drive the upgrade in their native tongue.
More at :-
http://news.softpedia.com/news/New-Wave-of-Windows...

--
Was this reply relevant?
+0
-0
mogs CClip 6
Expert Contributor 2nd Nov, 2010 07:21
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Windows 7 SP1 Install and Uninstall Update Available

November 1st, 2010, 18:37 GMT| By Marius Oiaga

Concomitantly with the availability of Windows 7 Service Pack 1 (SP1) Release Candidate (RC), Microsoft also released an update designed to streamline certain scenarios such as the deployment and removal of the upgrade.

Just ahead of the 2010 Professional Developers Conference 2010 (PDC 2010), the Redmond company offered early adopters the next milestone of Windows 7 SP1 and Windows Server 2008 R2 SP1, namely the RC Build.


At the same time, the software giant released the Windows 7 and Windows Server 2008 R2 installation software feature update.

KB 976902 will be a requirement for the integration of upgrades into both the last Windows client and server platforms.

More at :-
http://news.softpedia.com/news/Windows-7-SP1-Insta...

--
Was this reply relevant?
+0
-0
mogs CClip 7
Expert Contributor 2nd Nov, 2010 07:27
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 2nd Nov, 2010 07:28
Internet Explorer info leak festers for 2 years

Microsoft's 600-day bug bite
By Dan Goodin in San Francisco • Get more from this author

Posted in Security, 1st November 2010 20:30 GMT

For almost two years, Microsoft's Internet Explorer browser has been vulnerable to attacks that steal digital security tokens and other sensitive data, a security researcher said recently.

Researcher Chris Evans said he alerted Microsoft to the information disclosure vulnerability in IE in December 2008. As of October 21, it remained unfixed, making his disclosure a “600-day” vulnerability, he quipped.

Read more at :-
http://www.theregister.co.uk/2010/11/01/internet_e...

--
Was this reply relevant?
+0
-0
mogs CClip 8
Expert Contributor 2nd Nov, 2010 07:33
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 2nd Nov, 2010 07:34
Google calls bug bounty hunters to YouTube, Blogger

'1337' cash for web flaws
By Dan Goodin in San Francisco • Get more from this author

Posted in Security, 1st November 2010 23:00 GMT

Google has unveiled a pilot program designed to make Blogger, YouTube and other company-run websites more secure by paying significant bounties to researchers who report bugs that threaten users.

The initiative expands on a previous bounty program that rewarded researchers only for bug reports in Chromium, the guts of Google's open-source Chrome browser. Effective immediately, rewards of as much as $3,133.70 (as in “leet,” or elite get it?) are available to people who report serious web-application flaws in Google properties such as its main site, YouTube or Blogger. Client apps such as Android, Picasa or Google desktop aren't eligible

More at :-
http://www.theregister.co.uk/2010/11/01/google_web...

--
Was this reply relevant?
+0
-0
mogs CClip 9
Expert Contributor 2nd Nov, 2010 09:07
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
PC World - Reader LK wants to know if Microsoft Security Essentials (which I've championed in these pages many times) can be installed alongside other anti-virus and/or anti-malware programs.

Short answer: no.

Longer answer: Definitely, definitely, definitely no.

You might think that where security software is concerned, more is better. But you'd be wrong--especially if you're talking about programs that do the same thing, like fight viruses or spyware.

For example, if you were to install MSE on a system that already had Norton Internet Security, the latter might think the former was a kind of spyware--or vice-versa. What's more, one security might not slow down your system that much, but two almost certainly will.

My advice: if you're planning to switch security tools, do exactly that. Uninstall one, reboot, and then install the other.

http://www.computerworld.com/s/article/9194280/Avo...

--
Was this reply relevant?
+0
-0
mogs CClip 10
Expert Contributor 2nd Nov, 2010 12:14
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 2nd Nov, 2010 12:30
Item deleted....publisher could not be verified


--
Was this reply relevant?
+0
-0
mogs CClip 11
Expert Contributor 2nd Nov, 2010 12:53
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Stephen Burns
Rich Skrenta helped found Blekko, which he began working on in 2007, to help users find results from only trustworthy sites.
The latest is Blekko, a search engine that will open to the public on Monday.

Rich Skrenta, Blekko’s co-founder and chief executive, says that since Google started, the Web has been overrun by unhelpful sites full of links and keywords that push them to the top of Google’s search results but offer little relevant information. Blekko aims to show search results from only useful, trustworthy sites.

“The goal is to clean up Web search and get all the spam out of it,” Mr. Skrenta said.

Read more at :-
http://www.nytimes.com/2010/11/01/technology/01sea...

--
Was this reply relevant?
+0
-0
mogs CClip 12
Expert Contributor 2nd Nov, 2010 16:36
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 2nd Nov, 2010 16:37
Sophos Enters the Consumer Market with Free Mac Anti-Virus
November 2nd, 2010, 12:24 GMT| By Lucian Constantin

UK-based security vendor Sophos has launched a full-featured free anti-malware solution for the Mac operating system, tailored to the needs of home consumers.

The new Sophos Anti-Virus for Mac Home Edition leverages the company's business-grade threat intelligence to protect Mac computers from all types of threats.

More at :-
http://news.softpedia.com/news/Sophos-Joins-the-Co...

--
Was this reply relevant?
+0
-0
mogs CClip 13
Expert Contributor 2nd Nov, 2010 21:39
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Web 2.0 sites rated on FireSheep sidejacking risk

Who's wearing the dunces cap?
By John Leyden • Get more from this author

Posted in ID, 2nd November 2010 18:58 GMT
Free whitepaper – When Web 2.0 Becomes Security Risk 2.0
An online services security report card shows the extent to which popular web services are exposing users to account hijacking, especially in open WiFi network environments.

The risk has been understood in security circles for years but remained underreported prior to last week's release of an account hijacking tool called FireSheep. The Firefox plugin allows surfers to sniff and capture login credentials for sites including Facebook and Twitter and to subsequently log into those accounts, all with a few clicks of a button.

More at :-
http://www.theregister.co.uk/2010/11/02/firesheep_...

--
Was this reply relevant?
+0
-0
mogs CClip 14
Expert Contributor 3rd Nov, 2010 08:08
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Chrome Dev Channel Update
Tuesday, November 2, 2010 | 18:03
The Dev channel has been updated to 9.0.570.0 for Windows, Mac, Linux and Chrome Frame

This release fixes several crashes as well as:

More at :-http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 15
Expert Contributor 3rd Nov, 2010 09:33
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Google invites hackers to break in
The online giant kicks off an experimental program that allows security researchers to find bugs in its site

By Robert Lemos | InfoWorld

On Monday, Google expanded its bug bounty program, which the company has used to secure its Google Chrome browser, giving permission to researchers to poke into applications hosted on Google.com, YouTube.com, Blogger.com, and Orkut.com. The invitation is an important acknowledgement that hackers and third-party security researchers are a valuable resource.

"We've seen a sustained increase in the number of high quality reports from researchers and their combined efforts are contributing to a more secure Chromium browser for millions of users," the company says in its blog post.

More at :-
http://www.infoworld.com/t/hacking/google-invites-...

--
Was this reply relevant?
+0
-0
mogs CClip 16
Expert Contributor 3rd Nov, 2010 19:35
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Critical Flash Player Patch Expected Tomorrow
November 3rd, 2010, 07:18 GMT| By Lucian Constantin

Adobe has accelerated the previously announced Flash Player patch schedule and the fix for an actively exploited critical vulnerability is expected to land tomorrow.

Last Thursday, independent security researchers reported that a new Flash Player zero-day flaw might be actively exploited in attacks, which infect users with malware.

Adobe later confirmed the existence of the vulnerability (CVE-2010-3654) and posted a security advisory.


At the time, the company also announced plans to make a patch available during the week of November 9.

More at :-
http://news.softpedia.com/news/Critical-Flash-Play...

--
Was this reply relevant?
+0
-0
mogs CClip 17
Expert Contributor 3rd Nov, 2010 19:42
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Worrying Number of Free Movie Streaming or Downloading Scams

November 3rd, 2010, 09:38 GMT| By Lucian Constantin

Security researchers warn about the increasing prevalence of fake movie download and streaming websites, which scam money from users or trick them into installing spyware on their computers.

People searching for information about new movies online commonly end up on such rogue pages, which are pushed at the top of search results through black hat search engine optimization (BHSEO) techniques.


According to researchers from cloud security provider Zscaler, the most prominent free movie fraud ring operates websites like letmewatchthis.com, letbobwatchthis.com, letbobwatchthis.org, movie-source.org, letswatchsomething.com or hatfilmsite.org.

More at :-
http://news.softpedia.com/news/Worrying-Number-of-...

--
Was this reply relevant?
+0
-0
mogs CClip 18
Expert Contributor 3rd Nov, 2010 19:46
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Firefox 4.0 Beta 7 Available Soon

November 3rd, 2010, 15:30 GMT| By Marius Oiaga

The seventh Beta development milestone of the next iteration of Firefox will be made available for download soon.

It’s been quite a wait for Firefox 4.0 Beta 7, a release initially planned for mid-September 2010, but as early adopters following the development process closely, the delay was more than necessary.


Firefox 4.0 Beta 6 as well as pre-Beta 7 nightly builds weren’t exactly at the top of their game as far as stability and reliability was concerned, with testers reporting a variety of glitches, including severe crashes.

On November 2nd, 2010, Mozilla noted that a single blocker for Firefox 4.0 Beta 7 had remained unfixed. Earlier today there were no more bugs severe enough from preventing Firefox 4.0 to graduate to Beta 7 stage.

More at :-
http://news.softpedia.com/news/Firefox-4-0-Beta-7-...

--
Was this reply relevant?
+0
-0
mogs CClip 19
Expert Contributor 3rd Nov, 2010 19:51
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Unpatched IE bug exploited in targeted attacks

'More than a few organizations' hit
By Dan Goodin in San Francisco • Get more from this author

Posted in Security, 3rd November 2010 18:06 GMT

Unknown attackers have been targeting a previously unknown vulnerability in Internet Explorer to take control of machines running the Microsoft browser, security watchers warned on Wednesday.
More at :-
http://www.theregister.co.uk/2010/11/03/ie_0day_bu...

--
Was this reply relevant?
+0
-0
mogs CClip 20
Expert Contributor 3rd Nov, 2010 20:30
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
How the security firms are fending off viruses
Security companies are constantly battling to keep up against new viruses. We asked them how they’re fighting back against the latest attacks


Lots to read at :-
http://www.v3.co.uk/computeractive/features/227265...


--
Was this reply relevant?
+0
-0
mogs CClip 21
Expert Contributor 4th Nov, 2010 09:26
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
AutoRun-Based Malware Attacks on the Rise

November 3rd, 2010, 18:20 GMT| By Lucian Constantin

Czech antivirus vendor AVAST Software warns of a increasing number of AutoRun infection attempts, a trend that is likely to continue this month.

According to data gathered by the company from its user base, one in eight malware attacks, out of the 700,000 recorded during the last week of October, came from USB devices.


"AutoRun is a really useful tool, but it is also a way to spread more than two-thirds of current malware," says AVAST Virus Lab Analyst Jan Širmer.

"The threat of USB-distributed malware is much more widespread than just the Stuxnet attacks on enterprise computers – which were also spread via infected memory sticks," he adds.

The prevalence of removable storage devices is a contributing factor to the problem. It's not just USB memory sticks or external hard disk drives that can carry malware, but also devices like digital cameras, mobile phones, or MP3 players.

More at :-
http://news.softpedia.com/news/USB-Based-Malware-A...

--
Was this reply relevant?
+0
-0
mogs CClip 22
Expert Contributor 4th Nov, 2010 10:00
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Around the world, around the clock, circles of flickering screens keep aircraft apart in the air, ease them gently down to the ground and guide their precious human cargoes off the runway.



This finely choreographed global ballet of speeding metal, fuel and flesh moved almost five billion passengers in 2009, according to data from Airports Council International.
But what if all those screens went blank?

Read more at :-
http://www.physorg.com/news/2010-11-airliners-cybe...

--
Was this reply relevant?
+0
-0
mogs CClip 23
Expert Contributor 4th Nov, 2010 10:58
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
CCleaner 3.00.1310
Major update to the popular system cleansing & optimisation tool

Written by Chris Wiles/Tim Smith, V3.co.uk
03 Nov 2010
Type: freeware Platform: Windows 2000, Windows XP, Windows Vista, Windows Vista 64-bit Manufacturer:Piriform Ltd Size: 2.8MB
Review Rating:Average User Rating:
Rate this downloadPrice:Free Number of downloads:
152707
Just as regular exercise is good for your health, a regular workout for your hard diskis recommended. Windows has its own tools for doing this, but CCleaner makes a slightly better job of it.

The application is free to use and shows the door to all kinds of temporary files, from temporary internet files to old automatic back-ups from application such as Office XP and file sharing software. It also shakes out old entries from your computer's registry, such as unistallers and invalid shortcuts. The makers guarantee that it contains no apyware or adware.

CCleaner is one of the more popular system cleansing and optimisation tools available. This is the major v3.x release incorporating a number of new enhancements. It ships with a brand new user-interface and is available in a compact version. Of course, there are also a number of other tweaks and improvements as well as added support for applications such as IE9 and AVG AntiVirus 10.



Read more: http://www.computeractive.co.uk/vnunet/downloads/2...


--
Was this reply relevant?
+0
-0
mogs CClip 24
Expert Contributor 4th Nov, 2010 21:33
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Stable Channel Update
| 08:31
Labels: Stable updates
Google Chrome has been updated to 7.0.517.44 for Windows, Mac, Linux and Chrome Frame on the Stable channel. Along with the security fixes below, this build has an updated version of Flash.

Security fixes and rewards:

Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.

[51602] High Use-after-free in text editing. Credit to David Bloom of the Google Security Team, Google Chrome Security Team (Inferno) and Google Chrome Security Team (Cris Neckar).
[$1000] [55257] High Memory corruption with enormous text area. Credit to wushi of team509.
[$1000] [58657] High Bad cast with the SVG use element. Credit to the kuzzcc.
[$1000] [58731] High Invalid memory read in XPath handling. Credit to Bui Quang Minh from Bkis (www.bkis.com).
[$500] [58741] High Use-after-free in text control selections. Credit to “vkouchna”.
[$1000] [Linux only] [59320] High Integer overflows in font handling. Credit to Aki Helin of OUSPG.
[$1000] [60055] High Memory corruption in libvpx. Credit to Christoph Diehl.
[$500] [60238] High Bad use of destroyed frame object. Credit to various developers, including “gundlach”.
[$500] [60327] [60769] [61255] High Type confusions with event objects. Credit to “fam.lam” and Google Chrome Security Team (Inferno).
[$1000] [60688] High Out-of-bounds array access in SVG handling. Credit to wushi of team509.

--
Was this reply relevant?
+0
-0
mogs CClip 25
Expert Contributor 4th Nov, 2010 21:36
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Beta Channel Update
Thursday, November 4, 2010 | 09:05
Labels: Beta updates
The Chrome Beta channel has been updated to 8.0.552.28 for all platforms.

This release contains a number of bug fixes, as well as features like our new bundled PDF viewer, more sync services, and improved plug-in handling. This release also contains a new version of Flash.

Full details about the changes are available in the SVN revision log. If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

http://googlechromereleases.blogspot.com/


--
Was this reply relevant?
+0
-0
mogs CClip 26
Expert Contributor 4th Nov, 2010 21:41
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Adobe Reader and Acrobat Hit by New Zero-Day

November 4th, 2010, 16:57 GMT| By Lucian Constantin

French security research company VUPEN confirmed that an Adobe Reader and Acrobat vulnerability reported as a zero-day earlier today, can be exploited to execute arbitrary code.

According to the reputed vulnerability intelligence vendor, the flaw is caused by a heap corruption error in the EScript.api plugin, which can occur when processing a function called printSeps().


VUPEN writes in its advisory that the vulnerability "could be exploited by attackers to crash an affected application or potentially compromise a vulnerable system by tricking a user into opening a specially crafted PDF file."

The bug affects Adobe Reader and Acrobat 9.4 and successful exploitation was confirmed on both Windows 7 and Windows XP SP3.

More at :-
http://news.softpedia.com/news/New-Zero-Day-Vulner...

--
Was this reply relevant?
+0
-0
mogs CClip 27
Expert Contributor 4th Nov, 2010 23:18
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Microsoft slates first critical fix for Office 2010 next week
But no patch for actively exploited IE bug

By Gregg Keizer
November 4, 2010 03:47 PM
Computerworld - Microsoft today said it will ship three security updates next week to patch 11 vulnerabilities, including the first in Office 2010 pegged "critical."

Read more at :-
http://www.computerworld.com/s/article/9194980/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 28
Expert Contributor 5th Nov, 2010 09:20
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Dev Channel Update
Thursday, November 4, 2010 | 18:13
Labels: Dev updates
The Chrome Dev channel has been updated to 9.0.570.1 for Windows, Linux, and Chrome Frame. This release contains a new version of Flash. The Dev channel for Mac has been updated to 9.0.572.0 which has a new version of Flash and fixes one of the top crashers (Issue: 61446)

If you find new issues, please let us know by filing a bug.

Want to change to another Chrome release channel? Find out how.

Karen Grunberg
Google Chrome

http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 29
Expert Contributor 5th Nov, 2010 09:24
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Sandboxed PDF Viewer Lands in Chrome Beta
November 4th, 2010, 18:23 GMT| By Lucian Constantin

Google has released a new beta version of its Chrome browser, which addresses a serious vulnerability in the Flash Player plug-in and adds a sandboxed PDF viewer.

The new Chrome 8.0.552.28 Beta was expected to land a few days ago, when the Dev channel was updated to Chrome 9.0.570.0.


However, the company most likely waited for a Flash Player update from Adobe, which patches an actively exploited vulnerability announced last week.

More to read at :-
http://news.softpedia.com/news/Sandboxed-PDF-Viewe...

--
Was this reply relevant?
+0
-0
mogs CClip 30
Expert Contributor 5th Nov, 2010 09:28
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
New Flash Player Update Plugs Critical Security Holes

November 5th, 2010, 07:24 GMT| By Lucian Constantin

Adobe has released Flash Player 10.1.102.64, a security update that fixes eighteen vulnerabilities, including one actively exploited in the wild since last week.

In total, fourteen critical memory corruption flaws, which could lead to arbitrary code execution, have been addressed in the newly released version, one of which only affects the ActiveX Flash Player control.


An additional binary planting (DLL hijacking) vulnerability that could result in remote code execution has also been patched.

More at :-
http://news.softpedia.com/news/New-Flash-Player-Up...

--
Was this reply relevant?
+0
-0
mogs CClip 31
Expert Contributor 5th Nov, 2010 09:34
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Europe simulates total cyber war

The cyber war simulation will steadily cut off net links


UK facing cyber security threat
Call to define rules of cyber war
Can governments win a cyber-war?
Essential web services have come under simulated attack as European nations test their cyber defences.

The first-ever cross-European simulation of an all out cyber attack was planned to test how well nations cope as the attacks slow connections.

The simulation steadily reduced access to critical services to gauge how nations react.

More at :-
http://www.bbc.co.uk/news/technology-11696249

--
Was this reply relevant?
+0
-0
mogs CClip 32
Expert Contributor 5th Nov, 2010 09:38
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

IDG News Service - Hackers might crack or steal your password, but can they type like you?

Japan's NTT Communications has developed a computer security system that analyzes the way a computer user types, and then checks it against a profile of authorized users to detect if the person at the keyboard is an imposter.

The system, called Key Touch Pass, records the speed at which a user is typing, the length of time they typically hold down each key and the errors they normally make.

Every few hundred characters it checks this against a profile of the user that is supposedly logged in to the computer. If the two differ by more than a predetermined threshold, the system concludes the computer's user isn't who it should be.

More at :-
http://www.computerworld.com/s/article/9194859/PC_...

--
Was this reply relevant?
+0
-0
mogs CClip 33
Expert Contributor 5th Nov, 2010 10:56
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Adobe Suggests Workaround for New Reader Zero-Day

November 5th, 2010, 08:27 GMT| By Lucian Constantin

Adobe is still investigating reports of a new code execution vulnerability in Adobe Reader and Acrobat, but recommends blacklisting the affected JavaScript function in the meantime.

The flaw was reported as a zero-day on Wednesday, when someone posted a proof-of-concept exploit on the Full Disclosure mailing list.


However, it appears the issue has been known as a Denial of Service (DoS) condition since almost a year ago, when it was disclosed on a Russian-language blog.

More at :-
http://news.softpedia.com/news/Adobe-Recommends-Wo...

--
Was this reply relevant?
+0
-0
mogs CClip 34
Expert Contributor 5th Nov, 2010 20:35
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Upcoming Patch Tuesday Won't Fix IE Zero-Day
November 5th, 2010, 15:55 GMT| By Lucian Constantin

Microsoft is prepping three security bulletins for next Tuesday, that cover vulnerabilities in Microsoft Office and Forefront Unified Access Gateway, but don't address the recently reported zero-day Internet Explorer vulnerability.

More at :-
http://news.softpedia.com/news/Upcoming-Patch-Tues...

--
Was this reply relevant?
+0
-0
mogs CClip 35
Expert Contributor 5th Nov, 2010 20:53
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Botnet operators try to snare security researchers

Step into my parlour
By Lawrence Latif
Fri Nov 05 2010, 13:01
THE HUNTER HAS BECOME THE HUNTED as botnet operators have started to set honeypot traps to lure security researchers.
Researchers investigating a piece of malware that's part of the Zeus botnet managed to gain access a remote server used to control the botnet and found the administrative console on the server was a fake. The console was put in place to monitor the activity of researchers in order to understand ways that botnet operators can avoid having their networks shut down.

More at :-
http://www.theinquirer.net/inquirer/news/1869601/b...

--
Was this reply relevant?
+0
-0
mogs CClip 36
Expert Contributor 5th Nov, 2010 20:59
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK


Earlier today, Internet Explorer 8 started blocking access to completely harmless sites, claiming, "This website has been reported as unsafe."

While some good sites go bad from time to time, typically infected with subverted iFrames and bad advertisements, IE8 was blocking sites that didn't have any ads -- Visa.com, for one, as well as MoneyTreeInc.com and SalesAspects.com. It also looks like many (if not all) sites that use Telerik's RadMenu under Microsoft's ASP.Net were blocked.

More at :-
http://www.infoworld.com/t/browsers/what-happens-w...

--
Was this reply relevant?
+0
-0
mogs CClip 37
Expert Contributor 5th Nov, 2010 22:37
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 5th Nov, 2010 22:40
Where can I get touchpad drivers?
Change the touchpad settings on a Windows 7 laptop by downloading the right drivers
Written by Computeractive staff, Computeractive
05 Nov 2010
Q I have a 2006 Acer Aspire 5630 laptop on which I have installed Windows 7. I want to reduce the sensitivity of the touchpad and disable tap-to-click, but I cannot find the touchpad settings in Control Panel (just a reference to a PS/2 mouse), nor any relevant Device Settings.

Since the laptop is out of warranty, Acer will not help and referred me to the Tech Guys at PC World (where I bought Windows 7). But PC World thinks that this is Acer’s problem and won’t help. Can you?



Read reply at: http://www.computeractive.co.uk/computeractive/q-a...


--
Was this reply relevant?
+0
-0
mogs CClip 38
Expert Contributor 5th Nov, 2010 22:42
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Find out about the latest online threats
Nominet launches educational site for web users

Knowthenet offers advice on scams, security and cyber-bullying
Written by Dinah Greek, Computeractive
05 Nov 2010
Nominet has launched an educational website to help people stay safe online and drive business.

The not-for-profit organisation responsible for the .uk domain names said the Knowthenet.org.uk site will provide “practical” advice, information and video content for consumers and business users.

For example, the site will carry information security scares, scams and news of the latest dangerous software. Nominet said research it had carried out showed online safety in all areas was an area of major concern for many people.

“In September this year, there were 31,000 Google searches for ’Internet safety’, 60,500 searches for ‘cyber bullying’ and 34,000 searches for ‘computer virus’,” Nominet said.

More at:-
http://www.computeractive.co.uk/computeractive/new...

--
Was this reply relevant?
+0
-0
mogs CClip 39
Expert Contributor 6th Nov, 2010 10:49
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Report: 71% of Internet Users Run Latest Version of Their Browsers. Do You?
By FREDERIC LARDINOIS of READWRITEWEB
Published: November 5, 2010

Web apps that rely on features that only modern browsers can offer are becoming a standard feature on the Internet. Sadly, though, the fact that a lot of users don't regularly upgrade their browsers (or that their IT departments don't allow them to upgrade) complicates matters greatly for those developers who want to use the latest and greatest features of modern browser technologies like HTML5. The latest data from Pingdom and StatCounter, however, notes that a surprisingly large number of users (71%) already run the latest official versions of their browser.

Thanks to Chrome's built-in update mechanism, the latest stable version of Google's browser (Chrome 7) now powers 90.6% of all Chrome users' Internet experience. Given Chrome's fast release cycles and the wide availability of beta and developer builds, chances are that a large number of those who don't run Chrome 7 actually run even more up-to-date releases of it.

More at :-
http://www.nytimes.com/external/readwriteweb/2010/...

--
Was this reply relevant?
+0
-0
mogs CClip 40
Expert Contributor 6th Nov, 2010 15:47
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Only Five Percent of Users Have Non-Letter Characters in Their Password
November 6th, 2010, 08:18 GMT| By Lucian Constantin

A survey conducted by antivirus vendor BitDefender revealed that only five percent of people use digits or special characters in their passwords and that sixty percent use single-case-only access codes.

The conclusions are the result of a questionnaire taken by 1,000 random individuals, half men, half women, from 16 countries, with an average age of 29.5 years.


The questions attempted to determine passwords strength and habits and were individually explained to respondents in a live interview.

More at :-
http://news.softpedia.com/news/Only-Five-Percent-o...

--
Was this reply relevant?
+0
-0
mogs CClip 41
Expert Contributor 6th Nov, 2010 15:51
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Cross-Platform Boonana Trojan Gets New Version

November 6th, 2010, 11:29 GMT| By Lucian Constantin

A new version of the Boonana trojan, which infects Windows and Mac OS computers alike, has been detected in the wild, suggesting that the malware is being actively developed and improved.

The trojan was discovered last week and functions as a Java applet. It was particularly designed to target Windows and Mac OS X users and gives attackers control over the compromised computers.


Boonana spreads through Facebook, where it uses social engineering to direct users to a fake YouTube page and trick them into running the Java applet.

More at :-
http://news.softpedia.com/news/Cross-Platform-Boon...

--
Was this reply relevant?
+0
-0
mogs CClip 42
Expert Contributor 6th Nov, 2010 21:52
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
IE9 the best browser? Not so fast
by Stephen Shankland


It began innocently enough--a promotional blog post about Microsoft's newest version of Internet Explorer 9. But in less than a week, it became an illustration of just how rapidly misinformation moves through a hot and increasingly important corner of the software market.


Read more: http://news.cnet.com/8301-30685_3-20021606-264.htm...

--
Was this reply relevant?
+0
-0
mogs CClip 43
Expert Contributor 7th Nov, 2010 12:01
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Scientists, politicians take the threat of an electromagnetic pulse very seriously
November 6, 2010 By Dan Vergano
The sky erupts. Cities darken, food spoils and homes fall silent. Civilization collapses. End-of-the-world novel? A video game? Or could such a scenario loom in America's future? There is talk of catastrophe ahead, depending on whom you believe, because of the threat of an electromagnetic pulse triggered by either a supersized solar storm or terrorist A-bomb, both capable of disabling the electric grid that powers modern life.

Electromagnetic pulses, or EMPs, are oversized outbursts of atmospheric electricity. Whether powered by geomagnetic storms or by nuclear blasts, their resultant intense magnetic fields can induce ground currents strong enough to burn out power lines and electrical equipment across state lines.

Read more at :-
http://www.physorg.com/news/2010-11-scientists-pol...

--
Was this reply relevant?
+0
-0
mogs CClip 44
Expert Contributor 7th Nov, 2010 14:38
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Hacker Claims Full Compromise of Royal Navy Website

November 6th, 2010, 10:26 GMT| By Lucian Constantin

A hacker claims to have gained full access to the website of the British Royal Navy and the underlying database through an SQL injection attack.

The public disclosure was made by a Romanian self-confessed security enthusiast who uses the online handle of "TinKode."
The grey hat hacker specializes in finding Web vulnerabilities like SQL injection and cross-site scripting.

More at :-
http://news.softpedia.com/news/Hacker-Claims-Full-...

--
Was this reply relevant?
+0
-0
mogs CClip 45
Expert Contributor 7th Nov, 2010 14:56
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 7th Nov, 2010 15:07
Chrome....Getting Involved;
Early Access Release Channels

Contents
1 Before you change channels
1.1 Back up your data
1.2 Enable anonymous usage statistics
2 Subscribing to a channel
2.1 Windows
2.2 Mac
2.3 Linux
3 Reporting Dev channel problems
4 Going back to a more stable channel
Google Chrome releases updates to different release channels. Subscribing to the Beta or Dev channel means you'll get more frequent (but less stable) updates and you'll get to try new features first. There are three release channels:
Stable channel. Everyone is on the Stable channel when they first install Google Chrome. The Stable channel is updated with features and fixes once they have been thoroughly tested in the Beta channel. If you want a rock solid browser but don't need the latest features, the Stable channel is for you.
Beta channel. People who like to use and help refine the latest features subscribe to the Beta channel. Every month or so, we promote stable and complete features from the Dev channel to the Beta channel. The Beta channel is more stable than Dev, but may lack the polish one expects from a finished product.
Dev channel. This developer preview channel is where ideas get tested (and sometimes fail). The Dev channel can be very unstable at times, and new features usually require some manual configuration to be enabled. Still, simply using Dev channel releases is an easy (practically zero-effort) way for anyone to help improve Google Chrome.
Canary build. This build is for people who want to help test Google Chrome and contribute to its development. The Canary build is updated even more frequently than the Dev channel and is not tested before being released. Because the Canary build may at times be unusable, it cannot be set as your default browser and may be installed in addition to any of the above channels of Google Chrome. By default, it also reports crashes and usage statistics to Google (you can disable this on the download page).
Note: Early access releases (Canary builds and Dev and Beta channels) will be only partly translated into languages other than English. Text related to new features might not get translated into all languages until the feature is released in the Stable channel.

Before you change channels

Note: If you are reverting from a Dev channel build to a Stable or Beta channel, you may experience tab crashes on startup. This crash only affects tabs restored during the first launch due to a change in how tab state is stored. See http://bugs.chromium.org/34688. It's always a good idea to back up your profile before changing channels.

Read more at :-
http://dev.chromium.org/getting-involved/dev-chann...

--
Was this reply relevant?
+0
-0
mogs CClip 46
Expert Contributor 7th Nov, 2010 19:47
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Counterfeit Software By ASHLEE VANCE
AS the sun rose over the mountains circling Los Reyes, a town in the Mexican state of Michoacán, one morning in March 2009, a caravan of more than 300 heavily armed law enforcement agents set out on a raid.

All but the lead vehicle turned off their headlights to evade lookouts, called “falcons,” who work for La Familia Michoacana, the brutal Mexican cartel that controls the drug trade. This time, the police weren’t hunting for a secret stash of drugs, guns or money. Instead, they looked to crack down on La Familia’s growing counterfeit software ring.

Read more at :-
http://www.nytimes.com/2010/11/07/technology/07pir...

--
Was this reply relevant?
+0
-0
mogs CClip 47
Expert Contributor 8th Nov, 2010 10:28
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Google Chrome OS: unlike Android, it's open source

The code's already there. If anyone wants it
By Cade Metz in San Francisco • Get more from this author

Posted in Operating Systems, 8th November 2010 07:13 GMT
Unlike Android, Google Chrome OS is open source.

Whereas Android is coded behind closed doors – one big-name developer says it's no more open than Apple's iOS – Google's imminent browser-based operating system is built – in large part – where everyone can see it. A portion of the project remains closed – Google's boot-time-boosting firmware work – but like the browser it's based on, Chrome OS is a platform that can serve Google's ad-centric purposes even if it's code is set completely free.

More at :-
http://www.theregister.co.uk/2010/11/08/google_chr...


--
Was this reply relevant?
+0
-0
mogs CClip 48
Expert Contributor 8th Nov, 2010 11:18
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
How long will the internet remain an open market?
The fight for control of the internet

We investigate whether net neutrality will continue
Written by Anthony Dhanendran, Computeractive
08 Nov 2010
Net neutrality sounds like a term from a politically minded science fiction film but the reality is a bit more mundane, and more relevant to anyone who uses the internet.

Although it may seem instant, when you visit a website the data has to physically travel from a server somewhere in the world into your computer, via your internet provider’s computers.

At the moment, the internet is neutral in the sense that no website has priority over another. If you want to read news from www.bbc.co.uk and your neighbour wants to watch a video on www.youtube.com, both of those sites will be delivered to your computers at roughly the same speed.

What some companies and politicians are advocating could result in a change to that behaviour, with some sites being delivered quicker than others.

Read more at :-
http://www.computeractive.co.uk/computeractive/fea...

--
Was this reply relevant?
+0
-0
mogs CClip 49
Expert Contributor 8th Nov, 2010 11:45
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Web browser pioneer backs new way to surf Internet (Update 2)
November 7, 2010 By MICHAEL LIEDTKE , AP Technology Writer
(AP) -- The Web has changed a lot since Marc Andreessen revolutionized the Internet with the introduction of his Netscape browser in the mid-1990s. That's why he's betting people are ready to try a different Web-surfing technique on a new browser called RockMelt.

The browser, available for the first time Monday, is built on the premise that most online activity today revolves around socializing on Facebook, searching on Google, tweeting on Twitter and monitoring a handful of favorite websites. It tries to minimize the need to roam from one website to the next by corralling all vital information and favorite services in panes and drop-down windows.
"This is a chance for us to build a browser all over again," Andreessen said. "These are all things we would have done (at Netscape) if we had known how people were going to use the Web."

Read more and find the link to request, at :-
http://www.physorg.com/news/2010-11-web-browser-su...

--
Was this reply relevant?
+0
-0
mogs CClip 50
Expert Contributor 8th Nov, 2010 21:42
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Exploit toolkit latches onto IE flaw

Whorey Eleonore puts it about a bit
By John Leyden • Get more from this author

Posted in Enterprise Security, 8th November 2010 10:12 GMT

Support for an unpatched vulnerability in Internet Explorer has been added to a popular cybercrime toolkit.

The development means that cybercrooks who use the Eleonore Exploit Kit can take advantage of the unpatched flaw to more easily plant banking Trojans and other crud onto the machines of IE users.


Eleonore retails for a few hundred dollars a pop through cybercrime bazaars, which means it's available to script kiddies of modest means who can then use it to tag a huge population of surfers, probably through attacks that rely on tricking victims into visiting booby-trapped websites.

More at :-
http://www.theregister.co.uk/2010/11/08/ie_vuln_ex...

--
Was this reply relevant?
+0
-0
mogs CClip 51
Expert Contributor 8th Nov, 2010 21:45
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Firefox extension detects FireSheep snoop software

Unleash the BlackSheep
By Dan Goodin in San Francisco • Get more from this author

Posted in ID, 8th November 2010 18:37 GMT
Free whitepaper – When Legitimate Sites Threaten Your Network
Researchers from security firm Zscaler have published free software that detects when users' web connections are being monitored by a controversial tool that steals log-in credentials from Facebook, Google and dozens of other websites.

Dubbed BlackSheep, the Firefox extension alerts users when computers on a local area network are using FireSheep to steal unencrypted cookies the websites use to grant users access to their account pages. When BlackSheep detects the snoop software in a hotspot or other open Wi-Fi network, it displays a message that reads “Somebody is using FireSheep on this network.” It then displays the LAN IP address of the offending party.

More at :-
http://www.theregister.co.uk/2010/11/08/firesheep_...

--
Was this reply relevant?
+0
-0
mogs CClip 52
Expert Contributor 9th Nov, 2010 20:50
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Firesheep developer poohpoohs mitigation tools

Woolly thinking on cookie-jacker-slapping
By John Leyden • Get more from this author

Posted in Enterprise Security, 9th November 2010 12:34 GMT

The developer of the Firesheep cookie-jacking plug-in has dismissed supposed easy-fix countermeasures as worse than useless.

Eric Butler released the Firefox extension last month in order to illustrate the risk posed by the failure of many sites to encrypt session cookies used to authenticate their users, even if they might run them through a secure server for the initial logon.

More at :-
http://www.theregister.co.uk/2010/11/09/firesheep_...

--
Was this reply relevant?
+0
-0
mogs CClip 53
Expert Contributor 9th Nov, 2010 20:57
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Security firms blast Microsoft for free antivirus offer
Two security software makers are complaining about Microsoft using its update service to deliver its free antivirus software to Windows users who don't have such protection on their computers.
No, it's not 1998. And we're talking about allowing customers to choose whether they want the software, rather than bundling a particular browser--say Internet Explorer--on Windows.
Microsoft began making its Security Essentials software available to customers through its Microsoft Update service as an optional download on November 1 for U.S. customers and October 19 for U.K. customers. It offers the download only to customers who do not have an antivirus solution that is detectable by Microsoft's Action Center.


Read more: http://news.cnet.com/security/?tag=hdr;snav#ixzz14...

--
Was this reply relevant?
+0
-0
mogs CClip 54
Expert Contributor 9th Nov, 2010 21:06
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Adobe warns of another Reader threat
Another Reader threat has reared its ugly head, although Adobe has issued a workaround.
By Tom Brewster

Adobe has warned of another Reader flaw, which could cause the software to crash and lead to remote code execution.

Despite the dangers of the flaw, which could also leave users open to a denial-of-service attack, Adobe has listed a workaround method on a company notification.

More at :-
http://www.itpro.co.uk/628408/adobe-warns-of-anoth...

--
Was this reply relevant?
+0
-0
mogs CClip 55
Expert Contributor 10th Nov, 2010 08:28
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Chrome Dev Channel Update
Tuesday, November 9, 2010 | 16:34
Labels: Dev updates
The Dev channel has been updated to 9.0.576.0 for Windows and Linux

This release fixes several crashes as well as:

All
Typing on a form with highlighted profile, keeps its highlighted value. (Issue 58774)
Handle selection changes due to AutoFill more carefully. (Issue 58774)
Autofill popup labels should reflect the contents of the HTML form. (Issue 58887)
Linux
Port SSLClientSocketNSS to use Windows CryptoAPI for SSL client authentication. (Issue 37560)

More details about additional changes are available in the log of all revisions.

You can find out about getting on the Dev channel here: http://dev.chromium.org/getting-involved/dev-chann...

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

--
Was this reply relevant?
+0
-0
mogs CClip 56
Expert Contributor 10th Nov, 2010 08:32
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Redmond's answer to Firesheep not ready for prime time
By Dan Goodin in San Francisco • Get more from this author

Posted in Enterprise Security, 10th November 2010 05:00 GMT

For the first time in its 13-year history, Microsoft's Hotmail comes with the ability to protect email sessions with secure sockets layer encryption from start to finish.

It's the same always-on encryption Google Mail has offered for more than two years. And it comes with some pretty extreme limitations – namely the inability to protect email that's downloaded using Microsoft apps including Outlook Hotmail Connector (required to use Outlook with Hotmail) and Windows Live Mail. But to hear Microsoft describe the new feature, you'd think it was a cure for the common cold.

More at :-
http://www.theregister.co.uk/2010/11/10/lame_hotma...

--
Was this reply relevant?
+0
-0
mogs CClip 57
Expert Contributor 10th Nov, 2010 08:51
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Defence minister says UK must win cyber security fight


What signals for security policy?
UK facing cyber security threat
What is cyber crime?
Nick Harvey has emphasised the cyber threat facing the UK, saying it is "a matter of time" before terrorists use it as a method of attack.

In a speech in London, the armed forces minister warned that, in the wrong hands, a laptop could be as effective a weapon as a cruise missile.

He also set out how the government planned to use cyberspace to help the military fight the wars of the future.

More at :-
http://www.bbc.co.uk/news/uk-politics-11715177

--
Was this reply relevant?
+0
-0
mogs CClip 58
Expert Contributor 10th Nov, 2010 21:32
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Gemalto launches credit card with built-in password generator
Similar card was approved for use in Europe; No U.S. banks are signed up yet

By Jaikumar Vijayan
November 10, 2010 03:18 PM ETComments (0)Recommended (0)
Computerworld - Smart card vendor Gemalto introduced a new credit card Wednesday that's capable of generating one-time-passwords (OTP) for electronic banking and payment transactions.

The card features a small button on its face, which when pressed, produces a one-time, non-reusable code that's digitally generated and displayed on a panel built into the card.

More at :-
http://www.computerworld.com/s/article/9195958/Gem...

--
Was this reply relevant?
+0
-0
mogs CClip 59
Expert Contributor 10th Nov, 2010 21:39
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

'Sidejacking' browser add-on stumps security experts
Sophos offers novel approach to protecting open Wi-Fi hotspots from Firesheep snooping. Two problems: First, it won't work. Second, it won't work

By Woody Leonhard | InfoWorld


Last month security researcher Eric Butler released a simple browser add-on called Firesheep that makes it one-click easy to snoop on unprotected Wi-Fi connections. If you're using Wi-Fi and the router doesn't have a password, anybody with a laptop and Firesheep can watch everything you do. Worse, the person running Firesheep who's eavesdropping on your conversation can step into your shoes and start interacting with websites precisely the same way that you do.

More at :-
http://www.infoworld.com/t/endpoint-security/sidej...

--
Was this reply relevant?
+0
-0
mogs CClip 60
Expert Contributor 10th Nov, 2010 23:26
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Grab Microsoft updates
Where can I get Windows Service Packs?

Go directly to Microsoft's download pages
Written by Computeractive Staff, Computeractive
10 Nov 2010
Q Where can I find the download pages for Windows Service Packs?

Mister Grumpy

A If a Windows installation isn’t up to date with Windows Service Packs (downloads that contain fixes for Windows), they should be automatically downloaded and installed as part of the regular Windows Update check.

Windows Update can also be triggered manually using Internet Explorer.

Alternatively, click the link to download and install Windows XP Service Pack 3 manually.

Or, any Service Pack download can be found by visiting the Microsoft Download Center and using the Search tool.

For full Service Pack downloads, look for results with ‘Network Installation Package for IT Professionals and Developers’ in the name. These indicate complete downloads that can be used on any PC.

http://www.computeractive.co.uk/computeractive/q-a...

--
Was this reply relevant?
+0
-0
Anthony Wells RE: Daily CYBERCLIPS November
Expert Contributor 10th Nov, 2010 23:48
Score: 2434
Posts: 3,317
User Since: 19th Dec 2007
System Score: N/A
Location: N/A

Hey Mogs ,

I think this is the original inspiration for "Firesheep" ; quite exceptional and Welsh to boot :-

http://www.youtube.com/watch?v=D2FX9rviEhw

Take care

Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS November
Expert Contributor 11th Nov, 2010 07:34
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Morning Anthony !
This isn't a Solomon's observation !

A corrupt nation,city or disc darkens with each passing day.
It's not the Winter sun practicing illusions :
Simply emptying the bins and recycling won't cure it :
What was or is British tho'......
the memory may never fade.
The song of a bird on a fence may all of a sudden seem sweet.

Remember Tommy...the deaf, dumb and blind kid ?

--
Was this reply relevant?
+0
-0
Anthony Wells RE: Daily CYBERCLIPS November
Expert Contributor 11th Nov, 2010 13:04
Score: 2434
Posts: 3,317
User Since: 19th Dec 2007
System Score: N/A
Location: N/A

Some memories must never fade ; especially today , Mogs .

""They shall grow not old, as we that are left grow old:
Age shall not weary them, nor the years contemn.
At the going down of the sun and in the morning
We will remember them."

http://www.firstworldwar.com/poetsandprose/binyon....

Take care

Anthony



--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
TiMow RE: Daily CYBERCLIPS November
Dedicated Contributor 11th Nov, 2010 13:51
Score: 737
Posts: 728
User Since: 26th Jun 2009
System Score: N/A
Location: CH
Last edited on 11th Nov, 2010 13:57
http://www.youtube.com/watch?v=O5sX99HODzg

Apologies for the appearance of the inappropriate totty.

--
Computing is not yet a perfect science - it still requires humans.
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS November
Expert Contributor 11th Nov, 2010 18:39
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Evening Anthony and TiMow.
It was always the Last Post put the shivers thro' me.
My grandfather ne'er spoke nor wrote a word 'bout the first.
I just wrote a verse you'll never see.
My father and he often argued....my son I don't hear much from either !
"Living it seems is easier with eyes closed ".
It may be easier writing like a cannon : no :
We can all make some sacrifices for peace.

All said and done; we're only human ?

--
Was this reply relevant?
+0
-0
mogs CClip 61
Expert Contributor 11th Nov, 2010 18:53
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 11th Nov, 2010 18:53
Nasty IE 0day exploit hosted on Amnesty International site

'Protecting human rights worldwide'
By Dan Goodin • Get more from this author

Posted in Malware, 11th November 2010 01:39 GMT

Visitors to Amnesty International's Hong Kong website are being bombarded with a host of lethal exploits, including one that attacks an unpatched vulnerability in Microsoft's Internet Explorer browser, researchers at security firm Websense said.

The injected IE attack code resides directly on the pages of amnesty.org.hk, an indication that the perpetrators were able to penetrate deep into the website's security defenses. The code exploits a vulnerability disclosed last week that gives attackers complete control over machines running default versions of IE 6 and 7. Version 8 isn't vulnerable, thanks to security protections built into the browser.

More at :-
http://www.theregister.co.uk/2010/11/11/amnesty_in...

--
Was this reply relevant?
+0
-0
mogs CClip 62
Expert Contributor 11th Nov, 2010 18:57
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Botnet takedowns curb spam volumes

Spam almost cut in half between August and October
By John Leyden • Get more from this author

Posted in Spam, 11th November 2010 13:16 GMT

Spam volumes almost halved in the three months between August and the end of October, according to Symantec.

More at :-
http://www.theregister.co.uk/2010/11/11/botnet_tak...

--
Was this reply relevant?
+0
-0
mogs CClip 63
Expert Contributor 11th Nov, 2010 19:01
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
11 November 2010 Last updated at 13:56
UK net use grows despite digital inequalities


More Britons than ever have access to the internet, but inequalities remain between those with high and low incomes, official figures show.

In its first ever collation of trends in "e-society", the Office for National Statistics (ONS) reveals that some 19.2 million households now have net access.

More at :-
http://www.bbc.co.uk/news/technology-11734910

--
Was this reply relevant?
+0
-0
mogs CClip 64
Expert Contributor 11th Nov, 2010 19:05
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
November 11, 2010 7:00 AM PST
Get hacked and spill the beans, anonymously
by Elinor Mills


A new Web site could help turn security breach guesswork into science.
Database breaches, social engineering attacks, and hacking incidents happen at companies every day, but very few end up being reported publicly. That's because organizations fear--and rightly so--damage to their reputation, public humiliation, and loss of customer confidence.
But this silent victim syndrome means that others can't learn from the missteps of victims and that the industry as a whole doesn't have a good grasp on the scope of the problem.


Read more: http://news.cnet.com/security/#ixzz14zxFVSfl

--
Was this reply relevant?
+0
-0
mogs CClip 65
Expert Contributor 11th Nov, 2010 19:16
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Malware based on CPU profiles is coming

Deeper than the operating system
By Lawrence Latif
Thu Nov 11 2010, 13:53
AVOIDING Microsoft's Windows OS is a good way to avoid malware attacks, but that might not be the case much longer, with attackers turning their attention from software to CPU chips.
Traditionally malware targets vulnerabilities in the operating system, meaning users either have to put up with frequent patches and having to run and maintain anti-virus software or use alternatives to Microsoft's Windows. Now researchers from Ecole Superiore d'Informatique, Electronique, Automatique have demonstrated how to make malware target a particular processor, ignoring the operating system altogether.

More at :-
http://www.theinquirer.net/inquirer/news/1895641/m...

--
Was this reply relevant?
+0
-0
mogs CClip 66
Expert Contributor 12th Nov, 2010 07:28
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 12th Nov, 2010 07:29
Chrome Beta Channel Update
Thursday, November 11, 2010 | 17:23
Labels: Beta updates
The Chrome Beta channel has been updated to 8.0.552.200 for all platforms.

This release contains a number of stability and UI improvements. Full details about the changes are available in the SVN revision log. If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

Jason Kersey
Google Chrome


http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 67
Expert Contributor 12th Nov, 2010 22:37
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
MS hits back in Security Essentials row

It's all opt-in, so what's the beef?
By John Leyden • Get more from this author

Posted in Enterprise Security, 12th November 2010 11:17 GMT

Microsoft has said its rivals and the media have misunderstood its plans to offer its freebie anti-virus scanner to Windows users without security protection via its Microsoft Update service.

More at :-
http://www.theregister.co.uk/2010/11/12/ms_securit...

--
Was this reply relevant?
+0
-0
mogs CClip 68
Expert Contributor 12th Nov, 2010 23:38
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 12th Nov, 2010 23:39
Registry errors can cause many problems, starting from computer slowdowns to system hanging and crashes. Auslogics is proud to offer one of the most stable and reliable registry cleaners available on the market. It is designed for fixing and repairing the Windows Registry and is absolutely FREE!

Why use Auslogics Registry Cleaner?
Fixing registry errors helps to avoid system crashes.
Registry cleanup will speed up your computer.
Auslogics Registry Cleaner is recommended by industry experts.
It is safe to use as all changes are backed up and can be easily restored.
This is one of the most popular registry cleaners on the Internet.
It is absolutely FREE!

Causes of Registry Errors
Windows Registry is a database that stores crucial settings and options of the Microsoft Windows operating system. Registry entries are created for each application and driver installed on your computer. When running, a program may access the Registry thousands of times per second.
Just like any other database, the Registry becomes a real mess without proper maintenance. When you uninstall programs, invalid entries can be left behind and cause various errors. As a result your computer slows down, starts freezing, and crashing. That's why it's very important to clean the Registry regularly.

Available from here :-
http://www.auslogics.com/en/software/registry-clea...

--
Was this reply relevant?
+0
-0
mogs CClip 69
Expert Contributor 13th Nov, 2010 09:43
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Internet pioneer Vint Cerf warns over address changes


The internet could face years of instability as it moves to a new addressing system, one of the network's original architects has warned.

Vint Cerf, one of the fathers of the internet, spoke as the UK was urged to begin using the new addressing system.

With current addresses due to run out in 2012, nations and businesses must get on with switching, said Mr Cerf.

More at :-
http://www.bbc.co.uk/news/technology-11736394

--
Was this reply relevant?
+0
-0
mogs CClip 70
Expert Contributor 13th Nov, 2010 09:52
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Technology of the future gets closer
We take a look at predictions that are getting ever-closer to becoming reality
Written by Computeractive Staff, Computeractive
12 Nov 2010
There have been many amusing predictions about how we will live our lives in the future. Some 'predictions' had us all living on Moon colonies by now, being looked after by android servants while eating a diet of food pills. Somewhat fortuitously perhaps, this is yet to happen.

But the technology of tomorrow draws ever closer. Controlling a computer with nothing more than a swoop of your arm and no need for a controller - how space-age. Or how very Kinect.

So, in light of Microsoft’s ingenious new piece of technology released this week, we take a look at the top five technology predictions that haven’t quite happened yet but might do at some point in the future.



Read more: http://www.computeractive.co.uk/computeractive/new...


--
Was this reply relevant?
+0
-0
mogs CClip 71
Expert Contributor 13th Nov, 2010 11:43
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Download New Microsoft Security Essentials 2.0.522.0 Beta


November 12th, 2010, 07:45 GMT| By Marius Oiaga





A new development milestone of Microsoft Security Essentials 2.0 has been made available for download, with Microsoft encouraging existing members of the Beta testing program to upgrade to the latest Build.

Read more at :-
http://news.softpedia.com/news/Download-New-Micros...

--
Was this reply relevant?
+0
-0
mogs CClip 72
Expert Contributor 13th Nov, 2010 15:40
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Google Chrome 9 to Get Native Client Support

November 13th, 2010, 12:10 GMT| By Lucian Parfeni

With development for Google Chrome 8 settling down, the stable version is set to launch by the end of the month, Chrome 9 is picking up steam. The Chrome team has been adding quite a lot of experimental features in the past few days which are available in the Chromium builds for now.

One new experiment available in about:flags in Chromium 9 is Snap Start which is described as "an experimental TLS extension which removes a round trip from HTTPS handshakes."


TLS (transport layer security) is the latest protocol for encrypted communications over the web. Start Snap, from the description, shortens the handshake process for secure HTTPS connections. It's unclear if this has security benefits rather than just being faster.

More at :-
http://news.softpedia.com/news/Google-Chrome-9-to-...

--
Was this reply relevant?
+0
-0
mogs CClip 73
Expert Contributor 13th Nov, 2010 16:25
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Top 10 specialty Web browsers you may have missed
These oddly useful alternative browsers offer such advantages as 3-D searching, social networking, easy scriptability, and powerful page manipulation

By Peter Wayner | InfoWorld

In the game of technological one-upmanship, the browser used to be an easy place to win. Most people used Internet Explorer, so it was simple to gain the edge by using Firefox. But now Firefox is common, and even Opera and Google Chrome are losing their cachet. Safari ships standard with every Mac, so everyone, the cool and the uncool, have it by default. They're all excellent browsers, but they're still the status quo. Is there anywhere else to turn for a bit of distinction?

Read more at :-
http://www.infoworld.com/d/applications/top-10-spe...

--
Was this reply relevant?
+0
-0
mogs CClip 74
Expert Contributor 13th Nov, 2010 20:46
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Google Adds Live Sports Results, Emergency Contacts and Instant Previews
November 13th, 2010, 12:31 GMT| By Lucian Parfeni
In another weekly installment, Google has provided an overview of updates and changes to the search engine in the past week. Since Google regularly makes several updates and launches new features, big and small, every week, it sometimes doesn't do a full blog post announcement for all of them, hence the weekly round up.

More at :-
http://news.softpedia.com/news/Google-Adds-Live-Sp...

--
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS November
Expert Contributor 14th Nov, 2010 08:44
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
The Lord beside her

They will not age as we that turn another page;
Of correspondance; scriptures and verse previously written.
They will not see a land free from grief;
As we perceive, how Paradise is being lost;
But the Lord will ever hear and comfort the widow

They will not know, how young love survived the snow;
All things do not continue as before.
Our hopes, our dreams aren't drug induced;
Unseduced, we'll not disturb.
We'll remember all the sacrifices father;
And God help us with our words.

--
Was this reply relevant?
+0
-0
mogs CClip 75
Expert Contributor 14th Nov, 2010 09:25
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Facebook may be poised to launch email service
by Chris Lefkow

Facebook, rumored for some time to be planning its own email service, may finally be on the verge of doing so in a move that would send a shot across the bow of Google, Yahoo! and Microsoft.
TechCrunch, a leading Silicon Valley technology blog, reported Friday that the social network plans to announce a Web-based email service complete with @facebook.com addresses at an event in San Francisco on Monday.

More at :-
http://www.physorg.com/news/2010-11-facebook-poise...

--
Was this reply relevant?
+0
-0
mogs CClip 76
Expert Contributor 14th Nov, 2010 09:42
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Removing and Blocking Ad Cookies, Browser by Browser
By RIVA RICHMOND

Internet Explorer 8

Click “Tools” in the top bar, choose “Internet Options” and within the “General” tab choose to delete all or some of your cookies. Block or limit new cookie installations by selecting “Internet Options” and then “Privacy.” Move the slider to the privacy level you want. Note that if you block all cookies, some sites you visit may not work well.

Firefox

Go to “Preferences,” click the “Privacy” tab and then the link to “remove individual cookies,” where you can delete cookies one by one or altogether. To block future cookies, choose “Use custom settings for history” from the drop-down menu within the Privacy tab, and uncheck the box beside “Accept third-party cookies.”

Chrome

Click the wrench icon on your toolbar (some Mac users may need to go to the menu bar and click “Chrome”) and then select “Options” if you have a PC or “Preferences” if you use Mac or Linux. Click “Under the Hood” and then “Content settings” within the Privacy section. Under the “Cookies” tab, delete all or certain cookies. Block new ones by checking off “Block all third-party cookies without exception.”

Safari

Go to “Preferences” and then click the “Security” tab followed by the “Show Cookies” button, where you can delete some or all cookies. Under the Security tab, also choose to not accept cookies from third parties. RIVA RICHMOND

http://www.nytimes.com/2010/11/11/technology/perso...

--
Was this reply relevant?
+0
-0
mogs CClip 77
Expert Contributor 15th Nov, 2010 21:55
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Critical Adobe Reader and Acrobat Updates Scheduled for Tomorrow

November 15th, 2010, 09:03 GMT| By Lucian Constantin

Adobe plans to ship critical security updates for Reader and Acrobat on Tuesday, which will address several publicly known and actively exploited vulnerabilities.

According to a prenotification announcement posted on the Adobe Product Security Incident Response Team (PSIRT) blog, this will be an out-of-band release aimed at fixing vulnerabilities previously disclosed as zero-days.

More at :-
http://news.softpedia.com/news/Critical-Adobe-Read...

--
Was this reply relevant?
+0
-0
mogs CClip 78
Expert Contributor 15th Nov, 2010 21:58
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Chrome to Sandbox Flash Content Soon

November 15th, 2010, 13:57 GMT| By Lucian Constantin



Google is well on its way of delivering on the promise of sandboxed Flash content in Chrome, as the technology has been enabled by default in Chromium over the weekend.

Back in June, Chrome has began bundling a special Flash Player plug-in designed by Adobe to make use of the new Pepper Plugin API (PPAPI).

At the time, Google revealed that in the future the plug-in is expected to run within Chrome's sandbox, meaning that Flash content will have limited and strictly controlled access to the operating system.

More at :-
http://news.softpedia.com/news/Chrome-to-Sandbox-F...

--
Was this reply relevant?
+0
-0
mogs CClip 79
Expert Contributor 15th Nov, 2010 22:07
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Apple to make iTunes announcement on Tuesday
November 15, 2010

Steve Jobs, chief executive officer of Apple Inc., announces the release of new upgrades in the iTunes at a press conference in California, on September 2010. Apple launched the latest version of its online entertainment store, iTunes 10, in September along with a music-centered social network, Ping.
Apple plans to make an iTunes-related announcement on Tuesday.
The California gadget-maker said there would be "an exciting announcement from iTunes" at 7:00 am Pacific time (1500 GMT) on Tuesday but declined to reveal any further details.
"Tomorrow is just another day. That you'll never forget," said an Apple teaser for the announcement on the home page of Apple.com.

More at :-
http://www.physorg.com/news/2010-11-apple-itunes-t...

--
Was this reply relevant?
+0
-0
mogs CClip 80
Expert Contributor 16th Nov, 2010 21:37
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK


Chrome was the application with the most number of high-severity vulnerabilities that impacted end users this year, followed by Safari, Microsoft Office, Adobe Reader and Acrobat, and Firefox, according to a list to be released today.
Chrome had 76 reported serious vulnerabilities, Safari had 60, Office had 57, Acrobat and Reader had 54, and Firefox had 51, according to Bit9's annual "Dirty Dozen" list.
The fact that Chrome is at the top of the list does not necessarily mean it is less secure than other applications, said Harry Sverdlove, chief technology officer at Bit9.
"Chrome is the youngest of the browsers out there and is going through the most changes," he said. "It doesn't mean it's a risky browser."
Rounding out the list were: Sun Java Development Kit (36 reported holes), Adobe Shockwave Player (35), Microsoft Internet Explorer (32), RealNetworks RealPlayer (14), Apple Webkit (9), Adobe Flash ... Read full post as well as user comments


Read more: http://news.cnet.com/security/#ixzz15To0FpWS

--
Was this reply relevant?
+0
-0
mogs CClip 81
Expert Contributor 16th Nov, 2010 21:40
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Help is on the way for Web surfers who run the risk of having their Facebook, Twitter, and other Web accounts hijacked over unsecured Wi-Fi networks and other security issues that result from sites not using encryption.
A Web security mechanism called HTTP Strict Transport Security (HSTS) is making its way through the IETF (Internet Engineering Task Force) standards process, and two of the major browsers are supporting it. Web sites that implement HSTS will prompt the browser to always connect to a secure version of the site, using "https," without the Web surfer having to remember to type that in the URL bar.
It will render useless tools like Firesheep, a Firefox add-on that lets people easily capture HTTP session cookies that sites use to communicate with computers. Firesheep was released at ToorCon last month.
HSTS is used in Google Chrome and the NoScript and Force-TLS Firefox ... Read full post as well as user comments


Read more: http://news.cnet.com/security/#ixzz15ToqunQr

--
Was this reply relevant?
+0
-0
mogs CClip 82
Expert Contributor 16th Nov, 2010 21:46
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Adobe patches under-attack Reader bug
Ships emergency update to plug a hole hackers have exploited for weeks using rigged PDFs

By Gregg Keizer
November 16, 2010 02:39 PM
Computerworld - Adobe today issued an emergency update for its popular Reader PDF software that patched two critical vulnerabilities, including one attackers have exploited for weeks.

The more notable flaw fixed in Reader 9.4.1 for Windows and Mac OS X was a bug that hackers have been leveraging since late October using malicious PDF documents. Those attacks have taken advantage of a flaw in Reader's "authplay" component. Authplay is the interpreter that renders Flash content embedded within PDF files.

More at :-
http://www.computerworld.com/s/article/9196818/Ado...

--
Was this reply relevant?
+0
-0
mogs CClip 83
Expert Contributor 16th Nov, 2010 21:58
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 16th Nov, 2010 21:59
Belarc Advisor 8.1.16.4
Get a free and detailed PC audit
Written by Lee Collins, V3.co.uk
Type: freeware Platform: Windows 2000, Windows XP, Windows Vista Manufacturer:Belarc Size: 2.2MB
Review Rating:Average User Rating:
Rate this downloadPrice:Free for personal use Number of downloads:
41431
Run this software and your PC will be analysed before you are presented with a detailed audit of your PC.

The data is well presented and split into sections, detailing everything from the operating system and any installed Hotfixes from Microsoft, to software licences and processor details.

The analysis is done quickly, and with the information displayed in HTML format it is easy to print or save it for future reference.



Read more: http://www.v3.co.uk/vnunet/downloads/2128769/belar...


--
Was this reply relevant?
+0
-0
mogs CClip 84
Expert Contributor 17th Nov, 2010 09:55
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Critical Updates Released for Adobe Reader and Acrobat

November 17th, 2010, 07:52 GMT| By Lucian Constantin

Adobe has released updates for its Reader and Acrobat products in order to address several vulnerabilities that can be exploited to execute arbitrary code remotely.

The new 9.4.1 versions have only been released for Windows and Mac, the UNIX updates being scheduled to land on November 30.

Patched bugs include CVE-2010-4091, a memory corruption vulnerability disclosed as a zero-day at the beginning of the month.

More at :-
http://news.softpedia.com/news/Critical-Updates-Av...

--
Was this reply relevant?
+0
-0
mogs CClip 85
Expert Contributor 17th Nov, 2010 10:39
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
The first phone to support the hardware is rumoured to be Samsung's Nexus S
Google phone technology could replace credit cards
Eric Schmidt, Google's CEO, announces at the Web 2.0 summit smartphone technology that enables phones to hold and transmit payment details
Written by James Temperton, Computeractive
16 Nov 2010
Google is working on technology for mobile phones that could eventually see them replace credit and debit cards.

Speaking at the Web 2.0 summit in San Francisco on Monday, Google CEO Eric Schmidt said the technology "could replace your credit card".

More at :-
http://www.computeractive.co.uk/computeractive/new...

--
Was this reply relevant?
+0
-0
mogs CClip 86
Expert Contributor 17th Nov, 2010 10:43
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
We explain how to re-install Windows XP from a new disc
Solutions to common Windows XP problems
Windows XP users can have problem when using the operating system. Here are some fixes for six of the most common troubles
Written by Will Stapley, Computeractive
15 Nov 2010
Re-installing XP on a new disk
Q A while ago I bought a working second-hand computer with Windows XP installed on it. The hard disk has since broken so I need to buy a new one. Can I re-install Windows XP by borrowing a friend’s installation CD? I do not have the original CD but the computer has a sticker with my licence number on it.

A When Windows comes preinstalled on a computer without installation discs, it’s known as OEM (original equipment manufacturer) software, which restricts you to only using that copy of Windows on the PC it came with.

Changing the hard disk doesn’t constitute an entirely new computer, so you can use the code from the sticker to re-install Windows onto a new hard disk as long as it is in the original computer. However, you may have to reactivate the software before it will work. If you need help to do this, telephone Microsoft’s support line on 0844 800 2345.

Other Q/A's at :-
http://www.computeractive.co.uk/computeractive/fea...

--
Was this reply relevant?
+0
-0
mogs CClip 87
Expert Contributor 17th Nov, 2010 10:47
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Get Paint Shop Pro 6 to launch in Windows 7
Can I launch older programs in Windows 7?
Some older programs don't work in Windows 7. We explain how to run them
Written by Computeractive staff, Computeractive
16 Nov 2010
Q I recently bought a new PC running Windows 7. My older applications work just fine but Paint Shop Pro 6 simply refuses to work.

It displays a message saying that it ‘Failed to update the system Registry’ and suggests I need to use something called Regedit. What is this and what should I do?
Anon

A Regedit is short name for Windows Registry Editor tool, which provides a way to tweak the operating system at a very low level. As such, it’s not for use by novices.

However, the good news is that we don’t think it matters much here, because there is an easier way to get Paint Shop Pro (and other older refusenik applications) to launch in Windows 7. First, use Windows Explorer to locate the Paint Shop Pro executable file.

This is likely to be in C:\Program Files\Jasc Software Inc\Paint Shop Pro 6\.

Now right-click the executable file (probably called psp.exe) and select Properties from the pop-up menu. On the Properties dialogue box, choose the Compatibility tab and click to place a tick in the ‘Run this program in compatibility mode for:’ box.

Finally, select Windows XP (Service Pack 2) from the dropdown menu and click OK.

Paint Shop Pro 6 should now launch without a problem.

Read more: http://www.computeractive.co.uk/computeractive/q-a...


--
Was this reply relevant?
+0
-0
mogs CClip 88
Expert Contributor 17th Nov, 2010 19:58
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Security Researchers Plead for Out-of-Band IE Patch

November 17th, 2010, 09:50 GMT| By Lucian Constantin

Security researchers feel that Microsoft should release an out-of-band patch to address an actively exploited Internet Explorer vulnerability, after an exploit for it has been added to the Eleonore drive-by download toolkit.

The vulnerability, identified as CVE-2010-3962, was discovered in the wild at the beginning of the month by security researchers from Symantec.

Initially, it was exploited in a limited email-based attack which targeted key people in various organizations by directing them to a rigged Web page.

Microsoft responded by publishing an advisory and providing workaround instructions. According to the company, Internet Explorer 6, 7 and 8 on all Windows versions are affected, but their exploitability index varies.

For example, default installations of Internet Explorer 8, which comes with Data Execution Prevention (DEP) enabled, are unlikely to be exploited successfully.

More at :-
http://news.softpedia.com/news/Security-Researcher...

--
Was this reply relevant?
+0
-0
mogs CClip 89
Expert Contributor 17th Nov, 2010 20:03
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Email Scams Capitalizing on the Adobe Acrobat X Release

November 17th, 2010, 08:34 GMT| By Lucian Constantin

Adobe warns that cyber criminals are piggybacking on the Adobe Acrobat X availability news in order to phish personal information from users.

On Monday Adobe announced the release of Acrobat X solutions, which includes the Acrobat program itself and new Acrobat.com services, like the Adobe SendNow.

Acrobat X provides new collaboration and document publishing features that are sure to interest a lot of people, especially those in corporate environments.

From a security perspective, the most important change is the Protected Mode, a sandboxed environment modeled after the one in Google Chrome.

More at :-
http://news.softpedia.com/news/Email-Scams-Capital...

--
Was this reply relevant?
+0
-0
mogs CClip 90
Expert Contributor 17th Nov, 2010 20:08
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
IE9 Is the Fastest Browser, Overtakes Chrome 8.0, Opera 11, Firefox 4.0

November 17th, 2010, 17:29 GMT| By Marius Oiaga

Long have browser vendors such as Mozilla, Google, Safari and Opera fought over which browser is the fastest in the world with no real contest from Microsoft. This has all changed today, with the latest developer preview, Internet Explorer 9 claims the no. 1 spot in the Webkit Sunspider JavaScript microbenchmark.

The Redmond company just released the seventh Platform Preview of IE9, and the Build is faster that Chrome 8.0 Beta, Opera 11 Alpha, Opera 10.63, Chrome 7.0, Firefox 4.0 Beta 7, Safari 5.0.2 and Firefox 3.6.

But although this is a first for the software giant, Microsoft is not really celebrating. And the reason has been stated time and again by Dean Hachamovitch, Corporate Vice President, Internet Explorer, and other members of the IE team.

No benchmark, and certainly no microbenchmark, Webkit Sunspider included, is capable of reflecting the actual performance of IE9 or rival browsers. Instead, SunSpider is focused on a single aspect, namely JavaScript.

“We’ve been consistent in our point of view that these tests are at best not very useful, and at worst misleading,” Hachamovitch explained.

More at :-
http://news.softpedia.com/news/IE9-Is-the-Fastest-...




--
Was this reply relevant?
+0
-0
mogs CClip 91
Expert Contributor 17th Nov, 2010 20:21
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Microsoft spooks software customers about dangerous pirates

Warning: They look just like the rest of us!
By Kelly Fiveash • Get more from this author
Posted in Software & Security, 17th November 2010 16:17 GMT

One in three people surveyed by Microsoft think that pirated versions of software are as “safe” to use as the legit copy.

More at :-
http://www.channelregister.co.uk/2010/11/17/micros...

--
Was this reply relevant?
+0
-0
mogs CClip 92
Expert Contributor 18th Nov, 2010 08:00
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Number of New Daily Malware Samples Reaches All Time High


November 17th, 2010, 18:48 GMT| By Lucian Constantin



McAfee reports that during the previous quarter, the daily malware growth has averaged at 60,000 new samples, which is the highest value ever recorded.

According to the security giant, the number of threats detected this year (14 million) also exceeds the number analyzed in all previous years.

More at :-
http://news.softpedia.com/news/Number-of-New-Daily...

--
Was this reply relevant?
+0
-0
mogs CClip 93
Expert Contributor 18th Nov, 2010 08:04
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 18th Nov, 2010 08:06
New Worm Aggressively Spreading via Facebook and IM Clients

November 17th, 2010, 17:44 GMT| By Lucian Constantin

Security researchers warn of a new worm spreading on instant messaging applications by luring users to malicious link via spam messages.

Rogue messages posted from compromised computers on Facebook, Yahoo! Messenger and Windows Live read: See article.

According to security researchers from Trend Micro, this malware also functions as a botnet client by connecting to Internet Relay Chat (IRC) servers and awaiting commands.

More at :-
http://news.softpedia.com/news/New-Worm-Aggressive...

--
Was this reply relevant?
+0
-0
mogs CClip 94
Expert Contributor 18th Nov, 2010 17:27
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

A Lower Number of Vulnerabilities Doesn't Make Internet Explorer Safer

November 18th, 2010, 09:31 GMT| By Lucian Constantin

A report from a company called Bit9, which counted the number of high-risk vulnerabilities reported in popular software, was misinterpreted by many to show that some applications, like Internet Explorer, are more secure than competing products.

Bit9 claims that its "Dirty Dozen" apps list is meant to raise awareness that popular programs are also the most vulnerable ones, a reason for which they require constant monitoring and patching.

The fact that widespread applications have the highest number of publicly reported vulnerabilities is nothing new and is actually to be expected.

More at :-
http://news.softpedia.com/news/A-Lower-Number-of-V...

--
Was this reply relevant?
+0
-0
mogs CClip 95
Expert Contributor 18th Nov, 2010 17:35
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Free Antivirus for Windows 7 from Microsoft and Symantec

November 18th, 2010, 14:02 GMT| By Marius Oiaga

In addition to letting customers download Microsoft Security Essentials free of charge, the Redmond company has partnered with Symantec in order to offer a new free security offering, this time geared at small businesses.

MSE is available not only to home users and home businesses but also to small businesses which can install it on up to 10 PCs in their organization.

In addition, small business customers are now able to also take advantage of a free copy of Symantec Endpoint Protection Small Business Edition for each license of Windows 7 Professional they purchase from PC Mall.

More at :-
http://news.softpedia.com/news/Free-Antivirus-for-...

--
Was this reply relevant?
+0
-0
mogs CClip 96
Expert Contributor 18th Nov, 2010 17:39
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
EMET 2.0.0.3 Fixes Issues with the Update Mechanism of Google and Adobe Apps

November 18th, 2010, 12:36 GMT| By Marius Oiaga

Dave Forstrom, director, response communications, Microsoft confirmed that version 2.0 of the company’s Enhanced Mitigation Experience Toolkit (EMET) had some problems with some update mechanisms associated with third-party applications.

On November 17th, Forstrom told me that an update would be provided to EMET customers addressing any issues they might face with apps that would no longer update after security mitigations were added with the free security tool from the Redmond company.

Subsequently, Microsoft made available for download Enhanced Mitigation Experience Toolkit (EMET) version 2.0.0.3 which resolves glitches related to the update functionality of software from Adobe and Google.

More at :-
http://news.softpedia.com/news/EMET-2-0-0-3-Fixes-...

--
Was this reply relevant?
+0
-0
mogs CClip 97
Expert Contributor 19th Nov, 2010 08:16
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
IE9 Chakra Performance Optimization through Dead Code Elimination

November 18th, 2010, 17:30 GMT| By Marius Oiaga

Internet Explorer 9, the next generation of IE, features a new JavaScript engine, codenamed Chakra, with the work on this area of the browser being responsible for the significant gains in performance associated with JavaScript according to the WebKit SunSpider JS microbenchmark.

Read more at :-
http://news.softpedia.com/news/IE9-Chakra-Performa...

--
Was this reply relevant?
+0
-0
mogs CClip 98
Expert Contributor 19th Nov, 2010 08:22
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Beta and Dev Channel Chrome updates

Beta Channel Update
Thursday, November 18, 2010 | 17:51
Labels: Beta updates
The Chrome Beta channel has been updated to 8.0.552.208 for Mac and Linux.

This release contains a number of stability and UI improvements. Full details about the changes are available in the SVN revision log. If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

Jason Kersey
Google Chrome
1 comments | Links to this post | Email Post

Dev Channel Update
| 16:53
Labels: Dev updates
The Dev channel has been updated to 9.0.587.0 for Windows, Mac, Linux, and Chrome Frame

All
GPU Related Fixes
Crash Fixes
Instant Fixes
[r65953] Move click-to-play to about:flags. (Issue: 62091)
More details about additional changes are available in the svn log of all revision.

You can find out about getting on the Dev channel here: http://dev.chromium.org/getting-involved/dev-chann...

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

Anthony Laforge
Google Chrome
11 comments | Links to this post | Email Post

--
Was this reply relevant?
+0
-0
mogs CClip 99
Expert Contributor 19th Nov, 2010 09:04
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
News
Adobe launches 'sandboxed' Reader X
Technology aims to protect Windows users from PDF-based attacks

By Gregg Keizer
November 18, 2010 07:20 PM ETComments (3)Recommended (7)
Computerworld - Adobe today released Reader X, the next version of its popular software that includes a "sandbox" designed to protect users from PDF attacks.

Reader X on Windows features Protected Mode, a technology that isolates system processes, preventing or at least hindering malware from escaping the application to wreak havoc on the computer.

The new version is also available for Mac OS X and Android, but those editions lack the sandbox.

More at :-
http://www.computerworld.com/s/article/9197230/Ado...

--
Was this reply relevant?
+0
-0
mogs CClip 100
Expert Contributor 19th Nov, 2010 09:10
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Apple posts security update for Safari
27 flaws patched for Apple browser
Shaun Nichols in San Francisco
V3.co.uk, 19 Nov 2010
Apple has released a security update for its Safari web browser.

The company said that the Safari 5.0.3 and 4.1.3 releases would address more than two dozen security vulnerabilities within the browser's WebKit engine.

The update is for current versions of Safari 4 for OS X 10.4 Tiger and Safari 5 for OS X Leopard as well as Windows XP, Vista and Windows 7.

More at :-
http://www.v3.co.uk/v3/news/2273310/apple-safari-s...

--
Was this reply relevant?
+0
-0
mogs CClip 101
Expert Contributor 19th Nov, 2010 19:37
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
MS security tool interferes with Chrome and Adobe updates

Nanny software niggles nixed
By John Leyden • Get more from this author
Posted in Enterprise Security, 19th November 2010 12:49 GMT
Microsoft has updated its security protection tools following a glitch that prevented third-party applications – including Google Chrome and Adobe Reader – from updating properly.

The Enhanced Mitigation Experience Toolkit (EMET) is designed to thwart a range of tricks used by malware writers to infect systems. However a recent update of the tool went awry, which meant users had to restart their systems after applying recent Adobe software patches – a potential nuisance in corporate environments in particular.

Worse still, the misfiring Microsoft tool prevented updates of Google Chrome from installing, at least in cases where multiple users on the same machine have installed the browser and the administrator account is yet to apply a security patch.

More at :-
http://www.theregister.co.uk/2010/11/19/ms_securit...

--
Was this reply relevant?
+0
-0
mogs CClip 102
Expert Contributor 21st Nov, 2010 08:27
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Top 10 best and worst of Windows
Heroes and horrors from the last 25 years
Iain Thomson and Shaun Nichols in San Francisco
V3.co.uk, 20 Nov 2010
Microsoft gets plenty of heat from both the consumer and enterprise IT community for the reliability and security of its products. While the criticism is definitely warranted, there are also plenty of things Microsoft has done right over Windows 25 year history.

As you can see on the site we’ve been taking a long, hard look at Windows over the past 25 years. So, in true Top 10 style this week we count down both the best and worst things we remember about the operating system that has come to define personal computing.



Read more: http://www.v3.co.uk/v3/news/2273353/top-windows-be...


--
Was this reply relevant?
+0
-0
mogs CClip 103
Expert Contributor 21st Nov, 2010 08:36
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Gumblar Successor Kroxxu Steadily Growing Larger

November 20th, 2010, 13:50 GMT| By Lucian Constantin

According to Czech antivirus vendor AVAST, a botnet which grows by compromising websites with rogue code has so far affected over 1 million computers and 100,000 domains.

Dubbed Kroxxu, the botnet appeared in October 2009 and is the successor of Gumblar, once the most prominent threat on the Internet.

Unlike other website infecting worms, Kroxxu does not exploit any vulnerabilities. Instead, it steals FTP credentials from compromised systems and uses them to inject rogue iframes into Web pages.

More at :-
http://news.softpedia.com/news/Gumblar-Successor-K...

--
Was this reply relevant?
+0
-0
mogs CClip 104
Expert Contributor 21st Nov, 2010 14:33
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
November 20, 2010
Ed Vaizey says he wants an open Internet



by Darren Allan

Ed Vaizey has come out in damage control mode after he spoke on the subject of net neutrality earlier this week.

On Wednesday, he seemed to push aside the principles of net neutrality – the fair and equal treatment of all Internet traffic – in the belief that a system of two-tiered net access might be necessary to raise funds to pay for the expansion of mobile networks in particular.

Read more at :-
http://www.techwatch.co.uk/2010/11/20/ed-vaizey-sa...

--
Was this reply relevant?
+0
-0
mogs CClip 105
Expert Contributor 21st Nov, 2010 15:32
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Firefox 4.0 Beta 8 by the End of November
By Marius Oiaga

There are a few more Beta Builds of Firefox 4.0 planned before the next major version of the open source browser hits Release Candidate, and a new development milestone might drop by the end of this month.

Mozilla recently managed to offer early adopters the seventh Beta for the successor of Firefox 3.6 and is pushing onward to wrap up and deliver Firefox 4.0 Beta 8.

According to the open source browser vendor, code freeze for Firefox 4.0 Beta 8 is planned for the week of November 22nd, and this means that it won’t be long until the fully-fledged Beta will also follow.

In fact, chances are that early adopters will get to take Firefox 4.0 Beta 8 out for a spin ahead of December 2010, although Mozilla did not announce officially a release deadline for the upcoming development milestone.

More at :-
http://news.softpedia.com/news/Firefox-4-0-Beta-8-...

--
Was this reply relevant?
+0
-0
mogs CClip 106
Expert Contributor 21st Nov, 2010 21:44
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
By VIRGINIA HEFFERNAN
Published: November 19, 2010

We seem to know a great deal about attention spans, those constituents of character that have become the digital-age equivalent of souls.


Everyone has an attention span. It can be short or long. Long is good. Good scholars, good citizens and good children have long attention spans. Attention spans used to be robust; now they are stunted. Technology — MTV, the Internet, the iPhone — shriveled them. Nicholas Carr, who argued in “The Shallows” that Web use practically causes brain damage, told PBS that technology is “pushing even more distractions and interruptions on us” and thus will never “return to us our attention span.”

Read more at :-
http://www.nytimes.com/2010/11/21/magazine/21FOB-m...

--
Was this reply relevant?
+0
-0
mogs CClip 107
Expert Contributor 22nd Nov, 2010 08:52
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Computerworld - NEW ORLEANS -- The rush to build more powerful supercomputers is part of a larger race to solve some of mankind's biggest problems and threats, and one person on the front line of that effort is Thomas Jordan, the director of the Southern California Earthquake Center.

"We are very concerned about the current state of the faults in Southern California," said Jordan, who described the San Andreas Fault as "locked and loaded and ready to roll" and one day unleash a sizable earthquake.

More at :-
http://www.computerworld.com/s/article/9197339/Cal...

--
Was this reply relevant?
+0
-0
mogs CClip 108
Expert Contributor 22nd Nov, 2010 09:48
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Exploit Code for Fourth Stuxnet Zero-Day Publicly Released

November 22nd, 2010, 07:54 GMT| By Lucian Constantin



Hackers have released proof-of-concept exploit code for an yet unpatched Windows Vista and 7 privilege escalation vulnerability leveraged by the infamous Stuxnet worm.

Read more at :-
http://news.softpedia.com/news/Exploit-Code-for-Fo...

--
Was this reply relevant?
+0
-0
Anthony Wells RE: Daily CYBERCLIPS November
Expert Contributor 22nd Nov, 2010 12:44
Score: 2434
Posts: 3,317
User Since: 19th Dec 2007
System Score: N/A
Location: N/A

Hello Mogs ,

The full article in the NYT referred to in CClip 106 is a most interesting read . Prejudices are so easy to form and too often quickly expanded and promulgated .

Thank you .

Anthony

--


It always seems impossible until its done.
Nelson Mandela
Was this reply relevant?
+0
-0
mogs CClip 108
Expert Contributor 22nd Nov, 2010 23:06
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK


November 22, 2010 12:01 PM PST
Report: Infected Web sites double in 2010
by Elinor Mills


Web-based malware growth Q3 2009 - Q3 2010
(Credit: Dasient)
The number of Web sites infected with malware has doubled from a year ago to more than 1.2 million, according to a study released today by Internet security company Dasient.
Not only are social-media sites getting targeted, but sites of larger government agencies increasingly are hit, including the National Institutes of Health, the U.S. Treasury, and the Environmental Protection Agency, according to the report. In the last two years, the NIH has been infected and reinfected five times, and the state of Alabama's site was infected 37 times.
More than 1.5 million malicious ads are served every day, including drive-by downloads and fake antivirus campaigns. Drive-by downloads on legitimate Web sites have become the most popular method for delivering malicious programs, overtaking the use of spam and e-mail attachments, Dasient said.


Read more: http://news.cnet.com/security/#ixzz163FVZbOr

--
Was this reply relevant?
+0
-0
mogs CClip 109
Expert Contributor 22nd Nov, 2010 23:14
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Kroxxu botnet hits a million web users
Avast Software warns of latest password stealing threat
Phil Muncaster
V3.co.uk, 22 Nov 2010
Security experts have uncovered a dangerous new botnet which has already infected over 100,000 domains and one million systems worldwide, although it is still unclear how the cyber criminals are monetising their efforts.

The Kroxxu botnet has been designed solely to steal FTP passwords but, unlike traditional botnets, it is able to spread through infected web sites alone rather than individual PCs, according to researchers at Avast Software who have been tracking it for over a year.



Read more: http://www.v3.co.uk/v3/news/2273368/kroxxu-avast-b...


--
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS November
Expert Contributor 22nd Nov, 2010 23:29
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Thanks for the comment/feedback Anthony....there was a time haps when we had more time for mooting and promulgating......nowadays as long as they can concentrate on which box to place the X; we may be less distracted by schizophrenic politics, and need not pay so much attention to working coalition ?! Correct spelling may outlast fashions in education in the long run ?!

--
Was this reply relevant?
+0
-0
mogs CClip 110
Expert Contributor 23rd Nov, 2010 18:57
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
IE9 Up to Build 9.0.8027.6000
:
November 23rd, 2010, 16:57 GMT| By Marius Oiaga

There should come as no surprise that the IE team continues to work on Internet Explorer 9, even though it doesn’t share with the public a flood of quasi-useless Builds.

It appears that IE9 is now up to Build 9.0.8027.6000 (according to one source), a development release which supersedes Internet Explorer 9 Platform Preview 7 which was released recently, labeled 9.0.8023.6000.

And as users would expect, IE9 Build 9.0.8027.6000 doesn’t bring anything new to the table, being instead just a refined version of what early adopters can themselves download from Microsoft.

More at :-
http://news.softpedia.com/news/IE9-Up-to-Build-9-0...

--
Was this reply relevant?
+0
-0
mogs CClip 111
Expert Contributor 23rd Nov, 2010 19:02
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Google plays coy on Chrome OS

By year end, you'll get...details
By Cade Metz in San Francisco • Get more from this author
Posted in Operating Systems, 23rd November 2010 06:00 GMT
Google is playing coy over the future of Chrome OS, its still-gestating, browser-based operating system.

When the project was first revealed in July 2009, Google said that systems based on the OS would arrive in the second half of 2010 — and through this past summer, it continued to make similar promises. But last week at the Web 2.0 conference in San Francisco, CEO Eric Schmidt said that a completed OS was still "a few months away," seeming to indicate a delay.

More at :-
http://www.theregister.co.uk/2010/11/23/google_chr...

--
Was this reply relevant?
+0
-0
mogs CClip 112
Expert Contributor 23rd Nov, 2010 19:08
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Beta Channel Update
Monday, November 22, 2010 | 13:24
Labels: Beta updates
The Chrome Beta channel has been updated to 8.0.552.210 for Windows and Chrome Frame.

This release contains a number of stability and UI improvements. Full details about the changes are available in the SVN revision log. If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

Jason Kersey
Google Chrome
http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 113
Expert Contributor 23rd Nov, 2010 19:12
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Opera releases 11 beta with tab stacking

Stack 'em and rack 'em
By Rob Coppinger
Tue Nov 23 2010, 09:36
WEB BROWSER Opera 11 beta is now available and it allows tab stacking, a way of grouping browser tabs instead of placing them side by side.
To stack tabs the user just drags one tab on top of another. Hovering the mouse over a tab will cause the stack to expand in a visual preview. Clicking the arrow icon expands the current stack across the tab bar.
"Tabs are the most popular feature in browsers today," said Jan Standal, VP of desktop products at Opera. "Because so many of us wrestle with tens or even hundreds of open tabs, we needed a way to simplify tab management. Just like stacking papers for future reference, stacking your tabs is an intuitive way to organize and collect your open Web pages."

More at :-
http://www.theinquirer.net/inquirer/news/1899929/o...

--
Was this reply relevant?
+0
-0
mogs CClip 114
Expert Contributor 24th Nov, 2010 21:32
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Microsoft Fix it Evolves with New UI and Fresh Functionality

November 24th, 2010, 16:55 GMT| By Marius Oiaga

Microsoft Fix it got a boost this week with the introduction of an update designed to make it easier for users to find fixes to their issues with Microsoft software.

Fix it is the Redmond company’s online hub offering a comprehensive collection of automated solutions for problems impacting products such as Windows, Internet Explorer, Windows Media Player, Xbox and Zune, Office, Windows Server etc.

Microsoft Fix it has been steadily growing both in terms of usage (the fixes were used an impressive over 156 million times) and as far as the number of fixes is concerned (in excess of 500), an aspect indicative of the initiative’s success.

The software giant has also put in effort to tailor the Fix it Solution Center to users in no less than 35 countries worldwide, providing help in their native language.

Read more at :-
http://news.softpedia.com/news/Microsoft-Fix-it-Ev...

--
Was this reply relevant?
+0
-0
mogs CClip 115
Expert Contributor 24th Nov, 2010 21:35
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK


Firefox 4.0 Beta 8 Drops in December 2010
:
November 24th, 2010, 17:08 GMT| By Marius Oiaga



The wait for the next major version of Firefox just got a little longer. According to Mozilla, the upcoming Beta development milestone of Firefox won’t be available for download by the end of November 2010 as initially planned, but in December.

More at :-
http://news.softpedia.com/news/Firefox-4-0-Beta-8-...

--
Was this reply relevant?
+0
-0
mogs CClip 116
Expert Contributor 24th Nov, 2010 21:47
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Microsoft updates IE9 beta

Beta bettered
By David Neal
Wed Nov 24 2010, 14:40
SOFTWARE PATCH FACTORY Microsoft has updated its Windows Internet Explorer 9 beta, making it work better.
How long this improved performance will last we don't know, but for now Microsoft has explained that its IE9 tweaks enhance reliability in a range of scenarios. At least the first one does, anyway.
The Vole is keen to point out that although the release is a recommended update it does not constitute a new version. However, it does appear to apply a large sticking plaster to its forerunner.

More at :-
http://www.theinquirer.net/inquirer/news/1900457/m...

--
Was this reply relevant?
+0
-0
mogs CClip 117
Expert Contributor 24th Nov, 2010 21:51
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 24th Nov, 2010 21:53
Thunderbird 3.3 alpha is a go

Open source email client
By Edward Berridge
Wed Nov 24 2010, 08:45
THE OPEN SOURCE email client software Thunderbird is getting a new rendering engine based on Gecko 2.0.
Mozilla Messaging has announced the first details of Thunderbird 3.3 and they appear to move it closer to the technology behind Firefox 4.0.
Thunderchicken is seen as an alternative to Microsoft's Outlook and is doing rather well for something that is free.
Mozilla thinks that Gecko 2.0 will bring improvements in terms of stability, compatibility, performance and security for the display of web content.
Other new features in Thunderbird 3.3 include a revised extension manager, 64-bit support in Mac OS X 10.6 and performance and stability improvements.
Thunderbird 3.3 will fix more than 200 bugs that were found in earlier versions of the software.
You can play with the Thunderbird 3.3 Alpha version by downloading it here. The software is expected to be ready for commercial distribution early next year.

http://www.theinquirer.net/inquirer/news/1900197/t...





--
Was this reply relevant?
+0
-0
mogs CClip 118
Expert Contributor 24th Nov, 2010 22:14
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

The deal runs for one day only and covers two versions of Vipre Antivirus
Vipre cuts price of anti-virus suite by 70 per cent this Friday
Another Black Friday deal for UK shoppers
Written by James Temperton, Computeractive
24 Nov 2010
Anti-virus software Vipre will be available for up to 70 percent less than the normal retail price this Friday.

The deal is part of Black Friday, which until recently was an American affair, but is now becoming popular in the UK.

Available only on Black Friday, which falls on the 26th November, both Vipre Home and Vipre Home Premium will have their prices significantly reduced. Vipre Home will be available for £6.80, 70 percent less than the normal retail price while Vipre Home Premium will cost £16.80, a saving of 50 percent.

The company said that final pricing may vary slightly due to currency conversion. The deal runs on Eastern Standard Time, so in the UK the discount will be available from 5am on the 26th of November and run until 04:59am on November 27th.

While a lot of Black Friday deals are for a limited number of units, manufacturer GFI Software said that there will be unlimited availability during the offer period.

More information is available on the Vipre Black Friday website. The deals go live this Friday.
Read more: http://www.computeractive.co.uk/computeractive/new...


--
Was this reply relevant?
+0
-0
mogs CClip 119
Expert Contributor 25th Nov, 2010 07:07
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Beware of Black Friday and Cyber Monday Scams

November 24th, 2010, 17:51 GMT| By Lucian Constantin

Security researchers warn users to be prepared for all kind of malware attacks, scams, and spam, as they go on a shopping spree on Black Friday and Cyber Monday.

Just two days left until one of the busiest days of the years for retailers, which kickstarts the Christmas shopping season.

Although historically known as the day when everyone rushes to the stores, Black Friday also has a strong presence on the Internet with many online shops offering similarly big discounts.

More at :-
http://news.softpedia.com/news/Beware-of-Black-Fri...

--
Was this reply relevant?
+0
-0
mogs CClip 120
Expert Contributor 25th Nov, 2010 07:11
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Firefox Web Encryption Extension Updated with Better Firesheep Protection

November 24th, 2010, 18:26 GMT| By Lucian Constantin


A Firefox security extension, which forces HTTPS connections on many popular websites, has been updated to better protect users from session hijacking attacks.

More at :-
http://news.softpedia.com/news/Firefox-Web-Encrypt...

--
Was this reply relevant?
+0
-0
mogs CClip 121
Expert Contributor 25th Nov, 2010 07:18
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Windows 0day allows malicious code execution

Potential 'nightmare'
By Dan Goodin in San Francisco • Get more from this author
Posted in Security, 24th November 2010 21:15 GMT
Antimalware provider Prevx has sounded the alarm about a serious vulnerability in fully patched versions of Microsoft Windows. It allows attackers to execute malware, even in versions designed to withstand such exploits.

Technical details have already been published on a Chinese forum, leading to speculation that it won't be long before attackers exploit it in the wild.

“This could potentially become a nightmare due to the nature of the flaw,” Prevx researcher Marco Giuliani wrote here. “We expect to see this exploit being actively used by malwares very soon – it's an opportunity that malware writers surely won't miss.”

The flaw resides in the win32k.sys part of the Windows kernel and results from an API known as NtGdiEnableEUDC that fails to properly vet user input for harmful content. Attackers can exploit the bug to redirect overwritten return memory addresses to malicious code, which is then executed with kernel mode privileges. As a result, the flaw allows even users or processes with limited privileges to execute code will elevated rights.

“Being a privilege escalation exploit, it bypasses by design even the protection given by the User Account Control technology implemented in Windows Vista and Windows 7,” Giuliani said. “All Windows XP/Vista/7 both 32 and 64 bit are vulnerable to this attack.”


http://www.theregister.co.uk/2010/11/24/windows_0d...

--
Was this reply relevant?
+0
-0
mogs CClip 122
Expert Contributor 25th Nov, 2010 21:10
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Vulnerability Research Vendor's Domain Hijacked

November 25th, 2010, 09:42 GMT| By Lucian Constantin

The domain name of vulnerability research company Secunia was redirected earlier today to an unrelated Web page showing a message in Turkish, after its DNS records were altered.

Secunia is one of the world's leading vulnerability intelligence and management vendors. Based in Denmark, the company tracks, rates and catalogs security vulnerabilities in more than 30,000 software applications, operating systems and appliances.

For one hour and ten minutes today, starting with 00:40 AM CET, users who visited secunia.com saw a page displaying a message reading "Is?ms?z Kahramanlar Sunar.. System Get Down Gel Babana..." and a graphic showing a dragon with the text "TurkGivenligi" (Turk Security).



According to the vendor, the attack was the result of the authoritative DNS hosting being redirected. The exact circumstances under which this happened are still being investigated.

More at :-
http://news.softpedia.com/news/Vulnerability-Resea...

--
Was this reply relevant?
+0
-0
mogs CClip 123
Expert Contributor 25th Nov, 2010 21:17
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Zero-Day Windows UAC Bypass Vulnerability Announced

November 25th, 2010, 10:54 GMT| By Lucian Constantin

Various security vendors warned today about the public availability of exploit code for a previously unknown Windows privilege escalation vulnerability that can be used to bypass UAC.

The vulnerability was disclosed on a programming portal called CodeProject, but the page has since been removed by the site's administrators.

The flaw is located in the Windows kernel-mode device driver (win32k.sys) and allows attackers with limited access to execute code as SYSTEM.

According to BitDefender, the vulnerable API is called RtlQueryRegistryValues and can be exploited by creating a malformed registry key.

An important aspect of this vulnerability is that it allows bypassing the User Access Control (UAC), a security feature designed to prevent the execution of unauthorized code in Windows 7 and Vista

More at :-
http://news.softpedia.com/news/Zero-Day-Windows-UA...

--
Was this reply relevant?
+0
-0
mogs CClip 124
Expert Contributor 25th Nov, 2010 21:22
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Internet Explorer 9 (IE9) Turn Off Switch Missing in Windows 7

November 25th, 2010, 16:12 GMT| By Marius Oiaga



One piece of Internet Explorer evolution which was introduced with Windows 7 and IE8 has gone missing now that the first public taste of IE9 is available for download.

Essentially, the IE9 turn off switch is missing from the “Turn Windows features on or off” dialog box in Windows 7 after the installation of Internet Explorer 9 Beta, as you can see in the screenshot accompanying this article.

More at :-
http://news.softpedia.com/news/Internet-Explorer-9...

--
Was this reply relevant?
+0
-0
mogs CClip 125
Expert Contributor 26th Nov, 2010 07:38
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Not the first time online vandal has struck
By John Leyden • Get more from this author
Posted in Enterprise Security, 25th November 2010 10:11 GMT
Visitors to the website of security notification firm Secunia were confronted by a defacement on Thursday morning.


The site was sprayed by digital graffiti by a hacker using the handle TurkGuvenligi in what early indications suggest was the result of a DNS hijack rather than an exploit on Secunia's website itself.

A diary entry by the SANS Institute's Internet Storm Centre reports that Secunia's DNS records have been modified to point towards the defacement.

A quick check on defacement archive Zone-h reports that TurkGuvenligi has carried out multiple defacements in the past, a fair percentage of which used site-redirection techniques.

Mass defacements against sites vulnerable to a particular exploit is also among his stock in trade. Many of the sites he hit are either in Western Europe, Israel or Hungary, but there's no clear pattern to the defacement targets. ®

http://www.theregister.co.uk/2010/11/25/secunia_de...

--
Was this reply relevant?
+0
-0
mogs CClip 126
Expert Contributor 26th Nov, 2010 08:46
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Thursday, November 25, 2010
CCleaner v3.01
With millions of users, small improvements in speed can save a huge amount of time. We're very happy to announce that with this release CCleaner will not only start faster - you'll no longer need to reboot after cleaning Internet Explorer index.dat files!
And to all our users across the pond, a Happy Thanksgiving!
Change log:
Improved application startup time and INI loading speeds.
Removed need to reboot for Index.dat cleaning.
Improved cookie cleaning in Firefox 4.0 Beta 7.
Improved Chromium based browser detection and cleaning.
Added support for Adobe Reader 10 and Acronis True Image.
Improved cleaning for 7-Zip, Adobe Reader 9.0, Microsoft Silverlight Isolated Storage, WinPatrol and Microsoft Management Console.
Added support for local domains in "Cookies to Keep" list.
Improved debugging with log file support using /DEBUG command-line parameter.
Improved detection algorithm for 64-bit and Program Files.
Improved folder drag and drop in Include options.
Fixed bug in Uninstall Tool during cancellation.
Improved drive detection in Drive Wiper screen.
Added support to refresh cleaning rules using F5.
Improved translations.


http://www.piriform.com/blog/2010/11/25/ccleaner-v...

--
Was this reply relevant?
+0
-0
mogs CClip 127
Expert Contributor 26th Nov, 2010 10:24
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
A Third of All Malware Appeared This Year Alone
November 26th, 2010, 07:30 GMT| By Lucian Constantin

According to a report from Panda Security, as much as 34% of all malware ever created was unleashed upon users during the first ten months of this year.

The company's Collective Intelligence threats database, which contains all samples collected by the company, currently has around 134 million separate files.

The security vendor says that 60 million of those are malware and that 20 million new strains, new threats and variants of already existent ones, were created this year.

More at :-
http://news.softpedia.com/news/A-Third-of-All-Malw...

--
Was this reply relevant?
+0
-0
mogs CClip 128
Expert Contributor 26th Nov, 2010 10:28
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 26th Nov, 2010 10:29
Security Essentials 2011 / 2010 - Rogue Microsoft Security Essentials Has Many Faces

November 26th, 2010, 08:52 GMT| By Marius Oiaga

Cybercriminals were bound to take notice of the increase in popularity of Microsoft Security Essentials, and fact is that at just one year since release there are various fake AV masquerading as MSE.

Some users might have already have been unfortunate enough to come across rogue antivirus labeled Security Essentials 2010 or Security Essentials 2011.

Neither Security Essentials 2010 nor Security Essentials 2011 have anything to do with Microsoft Security Essentials 1.0 or Microsoft Security Essentials 2.0.

More at :-
http://news.softpedia.com/news/Security-Essentials...

--
Was this reply relevant?
+0
-0
mogs CClip 129
Expert Contributor 26th Nov, 2010 22:22
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Malicious PDF Documents Install File Encrypting Ransomware

November 26th, 2010, 13:46 GMT| By Lucian Constantin

A new drive-by attack leverages PDF exploits to install an aggressive piece of ransomware on people's computers, which is designed to encrypt their files and ask for money to restore them.

The new threat was discovered by security researchers from Sophos, and is distributed via maliciously crafted PDF documents, which exploit a vulnerability in older versions of Adobe Reader.

Successful exploitation leads to the ransomware program being dropped and executed on the system with the purpose of extorting money from users.

Ransomware is considered the next step in the evolution of scareware. However, unlike scareware, ransomware does not trick users into making payments; it downright demands it.

More at :-
http://news.softpedia.com/news/Malicious-PDF-Docum...

--
Was this reply relevant?
+0
-0
mogs CClip 130
Expert Contributor 26th Nov, 2010 22:26
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Secunia recovers from DNS redirection hack

Serial scamp strikes again
By John Leyden • Get more from this author
Posted in Enterprise Security, 26th November 2010 12:47 GMT
Security notification firm Secunia has confirmed that a DNS redirection hack was to blame for the redirection of surfers to a hacker site on Thursday.

Secunia's authoritative DNS hosting was redirected for 70 minutes in the early hours of Thursday morning (Central European time). But because of the way DNS caching works, many surfers were still redirected to a defacement site hours after the Danish firm's definitive records were straightened out.

The attack resulted in a temporary redirection of traffic from all customers of registrar DirectNIC, not just Secunia. The hack was carried out by serial defacer TurkGuvenligi, who has used site-redirection techniques in previous attacks and seems to be motivated by bragging rights or pure mischief rather than anything more malign.

More at :-
http://www.theregister.co.uk/2010/11/26/secunia_ba...

--
Was this reply relevant?
+0
-0
mogs CClip 131
Expert Contributor 26th Nov, 2010 23:18
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Don't be foxed by error messages again
Fix common Windows problems quickly
Error messages can be annoying and bewildering, but many can be easily deciphered and quickly removed
Written by Kelvyn Taylor, Computeractive
26 Nov 2010
Error messages always seem to appear when you are in the middle of doing something important. And they are made more annoying by the fact Microsoft seems incapable of writing these messages in plain English – they are often full of incomprehensible instructions.

Even errors that are not very serious can look frightening to the average user, and the advice they contain is often of little help in resolving the problem.

Read more at :-
http://www.computeractive.co.uk/computeractive/fea...

--
Was this reply relevant?
+0
-0
mogs CClip 132
Expert Contributor 26th Nov, 2010 23:22
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Fix the 'Missing or Corrupt' error message
Discover how to fix this Windows XP problem with our step-by-step guide
Written by Computeractive staff, Computeractive
26 Nov 2010
Introduction
Getting the Missing or corrupt HAL.DLL error message can be frustrating, but follow these step-by-step instructions and you'll be back in business in no time.

For more solutions to Windows problems, see our feature Fix Windows problems quickly.

Baffled by jargon? See our free online Jargon Buster.



Read more: http://www.computeractive.co.uk/computeractive/wor...


--
Was this reply relevant?
+0
-0
mogs CClip 133
Expert Contributor 27th Nov, 2010 08:59
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

IE9 Comes with Boosted Security, Says Security Firm Avira

November 26th, 2010, 16:49 GMT| By Marius Oiaga

Internet Explorer 9 features additional security mitigations designed to provide end users with enhanced protection in comparison to its predecessors, as Microsoft already indicated, and as Avira confirmed recently.

Security is after all one of the aspects of IE’s evolution, and the fact is that new security features have been added to Internet Explorer as the browser moved from one version to another.

Internet Explorer 9 continues to feature mitigations built into older versions of IE, including a phishing filter, anti-XSS protection and the InPrivate browsing mode.

More at :-
http://news.softpedia.com/news/IE9-Comes-with-Boos...

--
Was this reply relevant?
+0
-0
mogs CClip 134
Expert Contributor 27th Nov, 2010 22:17
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Kiwi Hacker Demoes Vulnerabilities in Internet Kiosks

November 27th, 2010, 13:13 GMT| By Lucian Constantin

A security researcher has identified vulnerabilities in multiple models of Internet kiosks, suggesting that the use of such devices for anything that involves usernames and passwords is unwise.

Internet kiosks are machines set up in public places like airports, libraries, universities, conference centers and so on, to allow paid Internet for people who need top get online but don't have a laptop or smartphone with them.

The operating system on these devices is usually locked down in order to prevent people from installing unauthorized programs that would compromise the security of future users.

However, during his talk at the Kiwicon hackers conference in New Zealand this week, local security consultant and researcher Paul Craig demonstrated flaws in five different popular kiosks, running both Windows and Linux, that could be exploited to do exactly that.

More at :-
http://news.softpedia.com/news/Kiwi-Hacker-Demoes-...

--
Was this reply relevant?
+0
-0
mogs CClip 135
Expert Contributor 28th Nov, 2010 08:53
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Hylas-1 net-dedicated satellite launches
By Jonathan Amos
Science correspondent, BBC News

The first satellite dedicated to delivering broadband services to Europe has launched on an Ariane 5 rocket.

The Hylas spacecraft is designed to fill so-called "notspots" - remote locations such as rural villages where it is currently not possible to get a fast internet connection.

Lift-off from the Kourou spaceport in French Guiana occurred at 1539 local time (1839 GMT).

The satellite was successfully placed in orbit 34 minutes later.

More at :-
http://www.bbc.co.uk/news/science-environment-1184...

--
Was this reply relevant?
+0
-0
mogs CClip 136
Expert Contributor 28th Nov, 2010 09:00
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Computerworld - Microsoft is investigating reports of an unpatched vulnerability in the Windows kernel that could be used by attackers to sidestep an important operating system security measure.

One security firm dubbed the bug a potential "nightmare," but Microsoft downplayed the threat by reminding users that hackers would need a second exploit to launch remote attacks.

The exploit was disclosed Wednesday -- the same day proof-of-concept code went public -- and lets attackers bypass the User Account Control (UAC) feature in Windows Vista and Windows 7. UAC, which was frequently panned when Vista debuted in 2007, displays prompts that users must read and react to. It was designed to make silent malware installation impossible, or at least more difficult.

"Microsoft is aware of the public posting of details of an elevation of privilege vulnerability that may reside in the Windows kernel," said Jerry Bryant, a group manager with the Microsoft Security Response Center, in an e-mail. "We will continue to investigate the issue and, when done, we will take appropriate action."

More at :-
http://www.computerworld.com/s/article/9198158/_Ni...

--
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS November
Expert Contributor 28th Nov, 2010 11:28
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Mog's spot/log/blog.....riot it's not ? It looks likely I might get by without a crutch !

Some people
create
more of a mess
by fighting/fussing/self opposition and blaming.
Such can be the resultant tangle :
They might find themselves in a jungle ;
Having to work out, what's basically bitter or sweet
again ?
The snake or the Serpent may be closer; a verse remoter:
A helpful book not always at hand ?

Sun, moon or satellite may regularly " pass over" ?
Where are you trying to get to ?
It's not my sixty fourth Winter !
It's not their first ?
I don't do generation gap nor Gulf ?!
What did who put in who's heart ?!

--
Was this reply relevant?
+0
-0
mogs CClip 137
Expert Contributor 28th Nov, 2010 23:37
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 28th Nov, 2010 23:38
Add shortcuts to the right-click menu
Find out how to put program shortcuts in Windows 7’s context menus using free software
Written by Scott Colvey, Computeractive
26 Nov 2010
Introduction
Right-click on any file, folder or a blank part of the Windows Desktop and a small menu will pop up. This is known as a context menu and it provides access to several options such as deleting, renaming or opening files.

It’s a handy time saver but Windows doesn’t provide an easy way to add shortcuts to context menu – you have to get your hands dirty in the Registry in order to tweak what’s there. However, Your Menu is a simple and free tool that makes editing context menus much easier.

The program creates the Registry files necessary for creating or removing context menu items, so even novices can get the job done. Your Menu is designed to be used only with Windows 7 and will not work with older versions of the operating system.


Step by step instructions.....
Read more: http://www.computeractive.co.uk/computeractive/wor...

Note....The software does not appear to be monitored by Secunia, as yet.....Mogs.


--
Was this reply relevant?
+0
-0
mogs CClip 138
Expert Contributor 29th Nov, 2010 08:03
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Windows 8 vs. Chrome OS – Windows Azure vs. Google’s Cloud

By Marius Oiaga

Microsoft’s next iteration of the Windows client will come in a world a tad different from today, in the sense that there will be a new rival to take into account beyond Linux and Mac OS X.

Google is putting the finishing touches on Chrome OS, its Chrome browser-based open source operating system, designed with netbooks in mind.

Chrome OS changes the concept of what a computer platform is. Unlike Windows, which acts as the foundation for applications, Chrome OS is a platform for services.

What this means is that Chrome OS, anchored as it might be on an actual device, will put users into the Cloud from the get go.

More at :
http://news.softpedia.com/news/Windows-8-vs-Chrome...


--
Was this reply relevant?
+0
-0
mogs CClip 139
Expert Contributor 29th Nov, 2010 08:07
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Windows 8 Feature Wish List Item: MUI Packs and LIPs for Everybody

By Marius Oiaga

Users running the high end editions of Windows also get the premiere language treatment from Microsoft.

The Enterprise and Ultimate SKUs of Windows allow them to access the complete collection of linguistic resources that the Redmond company offers, enabling their OS to be translated in a wide range of languages.

Just head over to the “Download languages for Windows” webpage that the software giant set up to get an idea of the languages that are available for Windows 7 and Windows Vista either as Windows Multilingual User Interface (MUI) Packs or Language Interface Packs (LIPs).

More at :-
http://news.softpedia.com/news/Windows-8-Feature-W...

--
Was this reply relevant?
+0
-0
mogs CClip 140
Expert Contributor 29th Nov, 2010 20:05
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Download Firefox 3.6.13 and Firefox 3.5.16 Beta Releases

November 29th, 2010, 15:09 GMT| By Marius Oiaga

It looks like the first half of December is going to be quite busy for Mozilla, with the open source browser vendor planning a range of releases.

Beta testers can now get a taste of the upcoming refreshes for Firefox 3.6.x and Firefox 3.5.x. The company recently made available for download the Candidate builds for Firefox 3.6.13 and Firefox 3.5.16, allowing early adopters to take the two updates out for a spin.

Read more at :-
http://news.softpedia.com/news/Download-Firefox-3-...

--
Was this reply relevant?
+0
-0
mogs CClip 141
Expert Contributor 29th Nov, 2010 20:12
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Mozilla rages at MS, Apple and Google's 'trojan horse' tactics

Shove your plug-ins where the sun don't shine
By Kelly Fiveash • Get more from this author
Posted in Applications, 29th November 2010 12:36 GMT
A well-respected Mozilla man has attacked Apple, Google and Microsoft for installing plug-ins without first asking for a web surfer’s permission.

Open web advocate Asa Dotzler, who co-founded the Spread Firefox project for the open source browser outfit in 2004, slammed the three tech titans for making sneaky installs of plug-ins into the popular surfing tool.

He complained that Microsoft, Google and Apple were all guilty of adding stealth plug-ins to Firefox when he installed various bits of their software.

More at :-
http://www.theregister.co.uk/2010/11/29/asa_dotzle...

--
Was this reply relevant?
+0
-0
mogs CClip 142
Expert Contributor 29th Nov, 2010 20:30
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK


Security firm gets punk'd: Could it happen to you?
Over Thanksgiving the Secunia.com site was defaced using a DNS hijacking technique that's simple and effective
By Woody Leonhard | InfoWorld


When a security software vendor's site gets hijacked, you have to wonder who is safe -- and how it happened.

Read more at :-
http://www.infoworld.com/t/hacking/security-firm-g...

--
Was this reply relevant?
+0
-0
mogs CClip 143
Expert Contributor 29th Nov, 2010 20:46
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
What does my computer's Bios do?
Without a Bios, your PC wouldn’t be able to start. Discover how it works
Written by Nick Peers, Computeractive
29 Nov 2010
When a PC is first switched on there’s a short delay before the familiar Windows loading screen appears.

During this time, the PC may display a manufacturer’s logo or a series of messages but what exactly is happening behind the scenes?



Read more: http://www.computeractive.co.uk/computeractive/fea...


--
Was this reply relevant?
+0
-0
mogs CClip 144
Expert Contributor 29th Nov, 2010 20:49
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Back up and restore the Windows Registry
The Windows Registry is a vital part of the operating system. We explain how to back it up
Written by Computeractive staff, Computeractive
29 Nov 2010
Introduction
The Windows Registry is an extremely important part of Windows. But it is also one that regularly gets changed by applications, either by dint of their installation or activities carried out during their continued use.

That’s why we regularly recommend backing up the Registry. That way, if a program installation causes problems, or something otherwise goes awry in everyday use, the Registry can be easily restored.

We should point out that the Registry is not something that novices should experiment with. Making a mistake while exploring the Registry could cause serious problems with your PC, so proceed with caution.



Read more: http://www.computeractive.co.uk/computeractive/wor...


--
Was this reply relevant?
+0
-0
mogs CClip 145
Expert Contributor 30th Nov, 2010 20:02
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

New Rootkit Functions as Adware Distribution Platform

November 30th, 2010, 08:58 GMT| By Lucian Constantin

Security researchers from BitDefender have come across a new rootkit, which seems designed to drop a lot of adware programs on the infected systems.

Detected as Rootkit.Woor.A, the malware installs itself as a randomly named service and runs as a system driver. This allows it to perform actions with kernel privileges.

The rootkit overwrites the legit explorer.exe with a malicious version, which is subsequently called during the normal system boot process.

When started, the rogue explorer.exe makes sure every component of this threat is running properly and that the unauthorized registry keys it needs are in place.

It then proceeds to load the legit Windows Explorer from the system's dll cache, making it appear to the victim as if everything is functioning properly.

More at :-
http://news.softpedia.com/news/New-Rootkit-Functio...

--
Was this reply relevant?
+0
-0
mogs CClip 146
Expert Contributor 30th Nov, 2010 20:06
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Aggressive ThinkPoint Scareware Poses as Trojan Removal Kit

November 30th, 2010, 14:09 GMT| By Lucian Constantin



Security researchers warn that a version of the desktop locking ThinkPoint fake antivirus application is being distributed as a trojan removal tool.

The program is advertised under the name of "Windows Trojan Removal Kit" and is served from scareware websites that display antivirus-like scans.

According to researchers from GFI Software (formerly Sunbelt), the rogue domain used in this case was microsoftwindowssecurity152(dot)com, but similarly-named hosts (with different numbers) distributed the threat in the past.

"Installing the executable can potentially give you a bit of a headache, with what would appear to the average user to be fake 'Blue Screens of Death' and payment nag screens," Christopher Boyd, a GFI senior researcher, warns.

More at :-
http://news.softpedia.com/news/Aggressive-ThinkPoi...

--
Was this reply relevant?
+0
-0
mogs CClip 147
Expert Contributor 30th Nov, 2010 20:25
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
AP) -- China's government announced a new crackdown Tuesday on rampant illegal copying of products from software to music that is adding to tensions with Washington and other governments over trade and currency complaints.
Trade groups say Chinese piracy of software and some other goods is growing despite repeated promises to stamp it out. The World Trade Organization sided with Washington in January in a complaint that Beijing was failing to enforce patents, copyrights and trademarks aggressively enough.
The latest six-month campaign will target illegally copied or phony goods as varied as software, Internet materials, medicines and corn that is falsely labeled as organic, a deputy commerce minister, Jiang Zengwei, said at a news conference. He promised closer cooperation with the United States, Japan and Europe.

More at :-
http://www.physorg.com/news/2010-11-china-crackdow...

--
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS November
Expert Contributor 1st Dec, 2010 07:57
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
This thread is now closed and will shortly be locked.
Thankyou for your support....look out for the new December edition which will begin today.


--
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability