Secunia CSI7
Advisories
Research
Forums
Create Profile
Our Commitment
PSI
PSI API
CSI
OSI
xSI
Vulnerabilities
Programs
Open Discussions
My Threads
Create Thread
Statistics
About

Forum Thread: Daily CYBERCLIPS December

You are currently viewing a forum thread in the Secunia Community Forum. Please note that opinions expressed here are not of Secunia but solely reflect those of the user who wrote it.

This thread was submitted in the following forum:
Open Discussions

This thread has been marked as locked.
mogs Daily CYBERCLIPS December
Expert Contributor 1st Dec, 2010 08:01
Ranking: 2265
Posts: 6,266
User Since: 22nd Apr, 2009
System Score: 100%
Location: UK



Fifth Edition

Thankyou for your continuing support. As I hope you are already aware, a CYBERCLIPS INDEX thread is now running for reference purposes ! The INDEX will be updated every two days...hopefully....to prevent it becoming "endless"!!
Security is still the emphasis of the thread with some related and varied topics.
Please note....the most recent posts are those at the end of a downward scroll !!
I should reiterate that no entry/post should be taken as a personal recommendation, unless otherwise stated.
Please continue to keep CYBERCLIPS free of junk and unattractive to any contentious individuals; whilst, at the same time feeling disposed towards posting suitable content, and one-off helpful comment, yourself.
* Keep patching : up to date : be Cybersafe ! *

--

mogs CClip 1
Expert Contributor 1st Dec, 2010 08:08
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Free software repository brought down in hack attack

Got root?
By Dan Goodin in San Francisco • Get more from this author
Posted in Security, 1st December 2010 01:55 GMT
The main source-code repository for the Free Software Foundation has been taken down following an attack that compromised some of the website's account passwords and may have gained unfettered administrative access.

The SQL-injection attacks on GNU Savannah exploited holes in Savane, the open-source software hosting application that was spun off from SourceForge, Matt Lee, a campaigns manager for the Free Software Foundation, told The Register. The attackers were then able to obtain the entire database of usernames and hashed passwords, some of which were decrypted using brute-force techniques.

More at :-
http://www.theregister.co.uk/2010/12/01/gnu_savann...

--
Was this reply relevant?
+0
-0
mogs CCip 2
Expert Contributor 1st Dec, 2010 08:24
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Cryptographers crack system for verifying digital images

Have you seen my signing key?
By Dan Goodin in San Francisco • Get more from this author
Posted in Security, 30th November 2010 19:39 GMT
Cryptographers have cracked software used to verify that images taken with Canon cameras haven't been altered.

Russian password-cracking company ElcomSoft said on Tuesday that it's able to extract the original signing key from the Canon Original Data Security Kit and use it to validate fake photos. Canon has billed the service as a way to verify the originality of an image and to confirm that global positioning coordinates, data, time, and other metadata hasn't been changed.

“The entire image verification system is proved useless,” ElcomSoft CEO Vladimir Katalov said in a statement. “If one company was able to produce fake images indistinguishable from originals, how do we know that others haven't been doing this for years?”

More at :-
http://www.theregister.co.uk/2010/11/30/canon_veri...

--
Was this reply relevant?
+0
-0
mogs CClip 3
Expert Contributor 1st Dec, 2010 09:00
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
A curious guide to browsers and the web

On the Chrome team, we’re always looking for new ways to communicate complex concepts about technology. More than two years ago, we launched Chrome with a comic book by Scott McCloud. Since then, a few of our colleagues at Google created a simple explanatory website called WhatBrowser.org when they realized that many of our friends and family weren’t sure what web browsers are.

Today, we’re very excited to release a special project called “20 Things I Learned about Browsers and the Web.” In the spirit of Chrome’s tradition with books and HTML5 experiences, we teamed up with illustrator Christoph Niemann to publish an online guidebook to browsers and the web, written by the Chrome team. If you have questions like “What are plug-ins?,” “What is HTML5?,” or even “Why is it ok for a truck to crush my laptop?,” “20 Things” is a handy guide for anyone who’s curious about the basics of browsers and the web.
More at :-
http://chrome.blogspot.com/?hl=en-GB

--
Was this reply relevant?
+0
-0
mogs CClip 4
Expert Contributor 1st Dec, 2010 10:23
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Internet Explorer 9 (IE9) Tops 15 Million Downloads

December 1st, 2010, 08:16 GMT| By Marius Oiaga

Internet Explorer 9 has certainly gained an impressive level of traction although still being in Beta for the time being, illustrating the strong interest generated by Microsoft’s next major iteration of IE.

According to the latest statistics released by the Redmond company, IE9 Beta has been downloaded in excess of 15 million times since the initial release in mid-September.

There have been an average of 200,000 downloads of IE9 Beta per day since the first public development milestone of the browser was launched, two and a half months ago.

More at :-
http://news.softpedia.com/news/Internet-Explorer-9...

--
Was this reply relevant?
+0
-0
mogs CClip 5
Expert Contributor 1st Dec, 2010 20:52
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
New Scareware Poses as HDD Defragmentation Tools

December 1st, 2010, 14:39 GMT| By Lucian Constantin

Scareware creators have temporarily steered away from the fake antivirus theme they commonly use to put out a new line of rogue programs that pose as defragmentation utilities.

According to security reserarchers from antivirus giant Symantec, these applications started to appear in the later half of October, but have since increased their prevalence and new variants are now detected on a daily basis.

Some of the fake defrag tools observed so far had names like “Ultra Defragger”, “Smart Defragmenter”, “HDD Defragmenter”, “System Defragmenter”, “Disk Defragmenter”, “Quick Defragmenter”, “Check Disk” or “Scan Disk.” However, despite being named differently, all of them have the same interface.

More at :-
http://news.softpedia.com/news/New-Scareware-Poses...

--
Was this reply relevant?
+0
-0
mogs CClip 6
Expert Contributor 1st Dec, 2010 20:57
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last Month to Download Free Windows 7 from Microsoft

December 1st, 2010, 15:54 GMT| By Marius Oiaga



December is the last month that customers will be able to download Windows 7 free of charge from Microsoft.

The Redmond company has been offering the Windows 7 Enterprise 90-day Trial for quite some time now, but the plan is to discontinue downloads at the end of this month.

Read more at :-
http://news.softpedia.com/news/Last-Month-to-Downl...

--
Was this reply relevant?
+0
-0
mogs CClip 7
Expert Contributor 1st Dec, 2010 21:10
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Adobe releases Flash Player 10.2 beta

Out now for Windows, Mac and Linux
By David Neal
Wed Dec 01 2010, 14:40
CREATIVE SOFTWARE HOUSE Adobe has released a beta of Flash Player 10.2 for Windows, Mac and Linux.
The firm said that the Flash Player 10.2 beta adds a number of enhancements and includes hardware acceleration support for Windows Explorer 9.
The beta release also has a native custom mouse cursor API and support for full screen playback on multiple monitors.


Read more: http://www.theinquirer.net/inquirer/news/1929481/a...


--
Was this reply relevant?
+1
-1
mogs CClip 8
Expert Contributor 2nd Dec, 2010 09:01
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Google extends security sandbox to Adobe Flash

Like airbags for Corvairs
By Dan Goodin in San Francisco • Get more from this author
Posted in Security, 1st December 2010 20:05 GMT
Google has released a test version of its Chrome browser that extends its renowned security sandbox to Adobe's heavily abused Flash player.

The enhanced security feature, which was released on the Chrome developer and canary channels, is available only for XP, Vista and 7 versions of Microsoft Windows. It will likely be released for general use in early to mid 2011, Adobe spokeswoman Wiebke Lips said.

More at :-
http://www.theregister.co.uk/2010/12/01/google_chr...

--
Was this reply relevant?
+0
-0
mogs CClip 9
Expert Contributor 2nd Dec, 2010 09:07
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Top 50 free software tools
We list 50 of the best free tools that the Computeractive team uses at work and at home – and some suggested by your fellow readers, too
Written by Paul Allen, Computeractive

For every paid-for application there’s usually a free alternative.

It’s not always a full equivalent but with many applications packing in features that most people don’t need to use the free alternative can sometimes be simpler too.

We've listed 50 free downloads that the people who write for Computeractive have come to rely on. Some of these were suggested by readers, after discussions on our Readers to the Rescue forum and more recently our Facebook page.



Read more: http://www.computeractive.co.uk/computeractive/fea...


--
Was this reply relevant?
+0
-0
mogs CClip 10
Expert Contributor 2nd Dec, 2010 10:45
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Announcements and release notes for the Google Chrome browser.


Dev Channel Update
Wednesday, December 1, 2010 | 15:00
Labels: Dev updates
The Dev channel has been updated to 9.0.597.0 for Windows, Mac, Linux, and Chrome Frame

All
Ongoing work on IndexDB and GPU
Tweaks/Fixes to Google Chrome Instant
Extensions/Apps work
Autofill related fixes
Known Issues
Page becomes unresponsive when trying to play video - Issue 65772
Certain HTML5 sites fail to load due to a compositor issue - Issue 64722
More details about additional changes are available in the svn log of all revision.

You can find out about getting on the Dev channel here: http://dev.chromium.org/getting-involved/dev-chann...

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

Anthony Laforge

http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 11
Expert Contributor 2nd Dec, 2010 16:41
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

More Windows Rogues than Just AV – Fake Defragmenter Check Disk

December 2nd, 2010, 14:47 GMT| By Marius Oiaga

Don’t think for a second that rogues are limited to scareware, because as so-called products such as "System Defragmenter", "Scan Disk" "Check Disk" prove, they’re not.

Essentially, "System Defragmenter", "Scan Disk" and "Check Disk" are all the same, just different labels for a fake defragmenter detected by Microsoft’s security solutions as Trojan:Win32/FakeSysdef.

When the software giant first detected FakeSysdef it was being served to unsuspecting users as a fake Windows Update.

The rogue defragmenter is relatively new, having emerged at the start of October 2010, according to Daniel Radu & Marian Radu, MMPC Dublin.

More at :-
http://news.softpedia.com/news/More-Windows-Rogues...

--
Was this reply relevant?
+0
-0
mogs CClip 12
Expert Contributor 2nd Dec, 2010 16:45
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Upgrade Windows Live Messenger 2011 to Build 15.4.3508.1109

December 2nd, 2010, 12:05 GMT| By Marius Oiaga

Two months after the release of the latest iteration of Microsoft’s instant messaging client, users have the opportunity to upgrade to a new version.

It appears that Windows Live Messenger 2011 Build 15.4.3508.1109 has been made available for download by the Redmond company.

Read more at :-
http://news.softpedia.com/news/Upgrade-Windows-Liv...

--
Was this reply relevant?
+0
-0
mogs CClip 13
Expert Contributor 2nd Dec, 2010 16:48
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Horror AVG update ballsup bricks Windows 7

Even safe mode cannot end devil-spawned reboot loop
By John Leyden • Get more from this author
Posted in Security, 2nd December 2010 15:09 GMT
An update from AVG on Wednesday night rendered 64 bit Windows 7 systems unstable after it was applied.

Several Register readers have been affected by the problem, which leaves machines in a continuous reboot loop.

AVG has pulled the problem update (3292) and published an advisory apologising for the cock-up and providing instructions on how to get hobbled systems back up and running again.

Read more at :-
http://www.theregister.co.uk/2010/12/02/avg_auto_i...

--
Was this reply relevant?
+0
-0
mogs CClip 14
Expert Contributor 2nd Dec, 2010 16:54
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Web bug reveals browsing history

Porn sites are among those hijacking the history files of visitors to their sites.

Porn sites are among the top users of a browser bug that reveals all the places people go online, finds research.

Carried out by computer science researchers at UC San Diego the study found 485 sites exploiting the bug.

The flaw gives sites access to all the other sites that user has visited. Many use it to target ads or see if users are patronising rivals.

More at :-
http://www.bbc.co.uk/news/technology-11899092

--
Was this reply relevant?
+0
-0
mogs CClip 15
Expert Contributor 2nd Dec, 2010 18:04
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
This Online Password Generator allows the creation of multiple random passwords of a given complexity. The combination of lower and upper case letters, numbers and punctuation symbols makes the passwords highly secure and difficult to guess or crack. Behaving randomly is surprisingly difficult for humans, so let a password generator do the job. If you need a shared secret for a limited time, try the random number generator instead.

http://www.techzoom.net/tools/password-generator.e...


Random Number Generator

The number of applications requiring random numbers increases continuously. They are used for example in cryptographic applications, in scientific calculations or to generate passwords. In spite of this, their generation remains a difficult task for humans.

The personal random number is created every time you access this page, every visitor gets another number. It is unique to you.


http://www.techzoom.net/tools/random-number-genera...

--
Was this reply relevant?
+0
-0
mogs CClip 16
Expert Contributor 2nd Dec, 2010 21:06
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Stable, Beta Channel Updates
Thursday, December 2, 2010 | 11:47
Labels: Beta updates, Stable updates
The Chrome team is happy to announce our latest Stable release, 8.0.552.215. In addition to the over 800 bug fixes and stability improvements, Chrome 8 now contains a built in PDF viewer that is secured in Chrome’s sandbox. As always, it also contains our latest security fixes, listed below. This release will also be posted to the Beta Channel.


http://googlechromereleases.blogspot.com/


--
Was this reply relevant?
+0
-0
mogs CClip 17
Expert Contributor 3rd Dec, 2010 09:22
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 3rd Dec, 2010 09:22
Download Google Chrome 8.0 Final Build 8.0.552.215 (Also in Beta)

December 3rd, 2010, 07:52 GMT| By Marius Oiaga

Google Chrome is now just a release away from catching up with Internet Explorer 9, version-wise.

While it took IE 15 years to go from version 1.0 to 9.0, Chrome managed to do so in just a few years.

And fact is that Chrome might just hit 9.0 before the general availability milestone of IE9 which is planned for 2011.

At the start of this month, the Mountain View-based search giant produced a new Stable release of Chrome.

Google Chrome 8.0 Final is now available for download, with work already shifting to the next iteration of the open source browser.

“The Chrome team is happy to announce our latest Stable release, 8.0.552.215. In addition to the over 800 bug fixes and stability improvements, Chrome 8 now contains a built in PDF viewer that is secured in Chrome’s sandbox,” revealed Jason Kersey, from the Google Chrome team.

While Mozilla is decoupling plug-ins from Firefox 4.0, Google has taken the opposite approach, namely to embrace them as close as possible.

The first examples involve Adobe Flash and PDF Viewer which have been integrated closely into the browser, no longer requiring users to download and install the plug-ins manually.

Google turned to sandboxing as a security mitigation designed to ensure that users are protected against attacks targeting vulnerabilities in Chrome (including Flash and PDF flaws), even though the browser’s code might not be exploited.

In addition to releasing Chrome 8.0.552.215 to the Stable Channel, the release was also pushed to the Beta Channel.

However, don’t count for Chrome 8.0.552.215 Beta to be available for very long. Google is already preparing to release Chrome 9.0 to the Beta Channel, a move which should be done any day now.

More at :-
http://news.softpedia.com/news/Download-Google-Chr...

--
Was this reply relevant?
+0
-0
mogs CClip 18
Expert Contributor 3rd Dec, 2010 14:07
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
More Fake Adobe Reader Update Emails

December 3rd, 2010, 09:33 GMT| By Lucian Constantin

Security researchers warn of a new wave of spam emails promoting fake Adobe Reader updates, which direct users to scam sites trying to sell them sub-par software.

The rogue messages bear subjects of “Action Required : Upgrade New Adobe Acrobat Reader 2011 For Windows And Mac.”

For more technical users the subject alone should be a dead giveaway that this is scam, because Adobe doesn’t use years in the versioning scheme of its Reader and Acrobat product line.

More at :-
http://news.softpedia.com/news/More-Fake-Adobe-Rea...

--
Was this reply relevant?
+1
-1
mogs CClip 19
Expert Contributor 3rd Dec, 2010 14:11
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Half of phish marks respond to scams within one 'golden hour'

Evilsite smackdown 'irrelevant' after 5+ hrs - secpros
By John Leyden • Get more from this author
Posted in Crime, 3rd December 2010 12:28 GMT
Half the victims of phishing emails respond to fraudulent emails within an hour of the receipt of scam messages, according to to a study by transaction security firm Trusteer.

Within five hours, more than 80 per cent of the total pool of potential victims have responded, a figure that rises to 90 per cent after the first 10 hours of a phishing attack.

More at :-
http://www.theregister.co.uk/2010/12/03/phishing_r...

--
Was this reply relevant?
+0
-0
mogs CClip 20
Expert Contributor 3rd Dec, 2010 18:21
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Google to Make Pirated Content Harder to Find

December 3rd, 2010, 10:46 GMT| By Lucian Constantin

In the midst of a “war” between pirates and the entertainment industry, Google has sided with legitimate content providers and promises to remove websites hosting copyright infringing material from search results faster, as well as ban certain piracy-related terms from autocomplete.

More at :-
http://news.softpedia.com/news/Google-to-Make-Pira...

--
Was this reply relevant?
+0
-0
mogs CClip 21
Expert Contributor 3rd Dec, 2010 18:25
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Slow Death for Windows Vista - Packaged Software End of Sales Reached in October

December 3rd, 2010, 16:26 GMT| By Marius Oiaga



October 22nd, 2010 was a non-event for Windows Vista, with Microsoft busy celebrating the 1 year anniversary of Windows 7.

But fact is that the date marked an important milestone for the successor of Windows XP, namely Packaged Software End of Sales.

As of October 22, per the new lifecycle changes introduced by the Redmond company, sales of boxed versions of Vista were discontinued, almost three years after the OS hit store shelves.

Nobody noticed, and furthermore, there’s hardly anyone fighting the software giant on the decision to stop selling Vista, as they did for Windows XP.

By comparison, XP was available for purchase from December 31, 2001 to June 30, 2008, almost 7 years, and more than double compared to Vista.

In fact, customers were still able to buy new OEM PCs preinstalled with Windows XP as of October 22nd, 2010.

New computers shipping with Vista will continue to be available to customers until October 22nd, 2011, but Microsoft is noting that the vast majority of OEMs and system builders have embraced Windows 7.

More at :-
http://news.softpedia.com/news/Slow-Death-for-Wind...

--
Was this reply relevant?
+0
-0
mogs CClip 22
Expert Contributor 3rd Dec, 2010 18:30
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Anti-virus skulduggery - upgrade licence clock shock slammed

AV bigs: 'No we never' 'It's a fit-up' etc
By John Leyden • Get more from this author
Posted in Security, 3rd December 2010 14:26 GMT
Anti-virus vendors AVG and Symantec have been criticised for sharp practices in selling consumer antivirus upgrades.

Every year security vendors bring out new versions of their products with improved engines and better technologies (behaviour blocking, improved speed performance and cloud-based-detection, for example). Marketing emails or product pop-ups from Symantec (which markets its Norton line of security software to consumers) and AVG encourage users to upgrade at a discount – but with an allegedly hidden catch.

If consumers upgrade early in response to these emails, they lose the remaining licence period for their existing software. A Which? investigation said that although AVG and Symantec reset the clocks when users upgrade, the practice is not uniform across the industry. Other vendors, such as Panda Security, transfer across the remaining licensing period.

More at :-
http://www.theregister.co.uk/2010/12/03/anti_virus...

--
Was this reply relevant?
+0
-0
mogs CClip 23
Expert Contributor 3rd Dec, 2010 18:52
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

“JavaScript is a great thing, it allows things like Gmail and Google Maps and a whole bunch of Web 2.0 applications; but it also opens up a lot of security vulnerabilities. We want to let the broad public know that history sniffing is possible, it actually happens out there, and that there are a lot of people vulnerable to this attack,” said UC San Diego computer science professor Sorin Lerner.
(PhysOrg.com) -- The Web surfing history saved in your Web browser can be accessed without your permission. JavaScript code deployed by real websites and online advertising providers use browser vulnerabilities to determine which sites you have and have not visited, according to new research from computer scientists at the University of California, San Diego.
The researchers documented JavaScript code secretly collecting browsing histories of Web users through “history sniffing” and sending that information across the network. While history sniffing and its potential implications for privacy violation have been discussed and demonstrated, the new work provides the first empirical analysis of history sniffing on the real Web.

More at :-
http://www.physorg.com/news/2010-12-web-surfing-hi...




--
Was this reply relevant?
+0
-0
mogs CClip 24
Expert Contributor 3rd Dec, 2010 22:40
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
New LICAT Variant Doubles the Number of Potential C&C Domains

December 3rd, 2010, 12:34 GMT| By Lucian Constantin

Security researchers from Trend Micro have identified a new variant of LICAT, a file infector associated with the ZeuS trojan, which doubles the daily number of domains the malware contacts to recieve updates.

LICAT is a file infecting virus discovered at the beginning of October, which propagates by adding its malicious code to any EXE or DLL it finds.

More at :-
http://news.softpedia.com/news/New-LICAT-Variant-D...

--
Was this reply relevant?
+0
-0
mogs CClip 25
Expert Contributor 4th Dec, 2010 08:04
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

New Trojan Distributed as Steam Game Hack

By Lucian Constantin

Security researchers warn that a new trojan poses as a hacking tool to get games for free on Steam, which is advertised via rogue YouTube videos.

The attack begins with malware distributors posting videos on YouTube with names like “ALL STEAM GAMES FOR FREE HACK”, “Steam Hack with Download” or “STEAM HACK WORKS 100% + DOWNLOAD.”

By the looks of them, these are most likely legit videos that were stolen from other accounts. They demo several Steam hacking tools which allow users to download and play games for free.

However, the download link advertised in their descriptions leads to a file called hack-mod-v1.9.exe, available from free file hosting websites.

More at :-
http://news.softpedia.com/news/New-Trojan-Distribu...

--
Was this reply relevant?
+0
-0
mogs CClip 26
Expert Contributor 4th Dec, 2010 08:31
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 4th Dec, 2010 08:34
Drive-By Download Attacks Were the Biggest Online Threat Last Month
By Lucian Constantin

Exploits and other malicious scripts associated with drive-by download attacks dominated the threat landscape last month and accounted for most entries in Kaspersky Lab’s top 20 malware applications.

Drive-by download attacks have multiple components. They usually start with cyber criminals exploiting a Web vulnerability to compromise a legitimate website.

Then they inject a rogue iframe or script element into its pages, which calls a redirect script from an external domain.

More at :-
http://news.softpedia.com/news/Drive-By-Download-A...

--
Was this reply relevant?
+0
-0
mogs CClip 27
Expert Contributor 4th Dec, 2010 08:36
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Researchers bypass Internet Explorer Protected Mode

Just add exploit
By Dan Goodin in San Francisco • Get more from this author
Posted in Security, 3rd December 2010 21:52 GMT
Researchers say they have devised a way to carry out stealthy drive-by exploits even when victims are using recent versions of Internet Explorer with a feature known as Protected Mode.

The attack, described in a paper released by Verizon Business, requires the attacker to have an exploit for a vulnerability that's not currently patched. It works only against machines that have the Local Intranet Zone enabled, as is the default for domain-joined workstations.

More at :-
http://www.theregister.co.uk/2010/12/03/protected_...

--
Was this reply relevant?
+0
-0
mogs CClip 28
Expert Contributor 4th Dec, 2010 09:11
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Delays for Google's Chrome questioned by experts

Anticipation was high for Chrome OS devices before the end of the year

Experts have said that Google's Chrome operating system could be redundant before it has even been launched.

It comes amid big delays for the operating system, which was originally scheduled for a 2010 launch.

More at :-
http://www.bbc.co.uk/news/technology-11894463

--
Was this reply relevant?
+0
-0
mogs CClip 29
Expert Contributor 4th Dec, 2010 21:30
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Win a copy of GFI Vipre Lifetime Edition security software
£1,500 worth of security software to be won - with no annual renewal fee

Submit entry
Vipre Antivirus can protect your computer from many different kinds of malicious software on the internet including viruses and spyware.

Computeractive has teamed up with GFI to offer 25 lucky winners a copy of GFI Vipre Lifetime Edition, worth £60 each.



Read more: http://www.computeractive.co.uk/computeractive/com...


--
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS December
Expert Contributor 5th Dec, 2010 09:22
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
We rocked around the new watch or old clock....
No old D Jones nor old bones to awake ?
Twenty four seven, the tide isn't high.
If there's toxicity in the blood or waters....
Love doesn't always lay me down, nor build bridges over it.
We really oughta get some of our songs right ?

Where do all the languages and colours bleed into one ?
Do they know we hear Noddy most years ?
A few carols....some crackers....
a port for all absent ?!
Every day our language isn't a wreck to be salvaged ?
Jason wasn't born in a barn ?!

--
Was this reply relevant?
+0
-0
mogs CClip 30
Expert Contributor 5th Dec, 2010 09:59
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Laptops of Lady Gaga, Timberlake hacked?
by Chris Matyszczyk


We are all ducks, meekly sitting while those who have the hacking skills infiltrate our mind's eyes, aka our laptops.
It seems, sadly, that among the latest victims of boys riding Trojan horses are acclaimed worldwide singing personality Lady Gaga, as well as other notable performing stallions, such as Justin Timberlake.
According to the Telegraph, Lady Gaga and more than 50 other fine icons of our cultured times have suffered hacking at the hands of two Germans lads who desired access to their unreleased songs and their unreleasable intimate photographs.
German prosecutors claim that among the hackers' haul was a picture of the singer Kesha in a state of considerable nudity, and, simultaneously, considerable pleasure.
Indeed, the prosecutors say that instead of attempting to sell this image to an unscrupulously enterprising Web site, the hackers tried to blackmail Kesha. That does seem to be somewhat culturally unaware behavior.


Read more: http://news.cnet.com/security/#ixzz17E4Qc8Nh

--
Was this reply relevant?
+0
-0
mogs CClip 31
Expert Contributor 5th Dec, 2010 12:36
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
As Bullies Go Digital, Parents Play Catch-Up
By JAN HOFFMAN
Published: December 4, 2010

Ninth grade was supposed to be a fresh start for Marie’s son: new school, new children. Yet by last October, he had become withdrawn. Marie prodded. And prodded again. Finally, he told her.
“The kids say I’m saying all these nasty things about them on Facebook,” he said. “They don’t believe me when I tell them I’m not on Facebook.”

But apparently, he was.

Read more at :-
http://www.nytimes.com/2010/12/05/us/05bully.html?...

--
Was this reply relevant?
+0
-0
mogs CClip 32
Expert Contributor 5th Dec, 2010 16:44
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Improve Laptop Security With AlwaysVPN
By Preston Gralla

PC World - You've heard about the Firesheep Firefox add-in that lets someone with virtually no hacking experience steal your identity when you visit a number of Web sites, including Facebook. Here's more bad news: Firesheep is far from the only privacy danger out there. There are plenty of powerful tools that hackers can use to steal private information from you not just specific Web sites, but wherever you are on the Web, or when you use other Internet services, such as client-based e-mail and instant messaging. The for-pay AlwaysVPN (pricing varies with bandwidth) does a great job of keeping you safe no matter what you do and where you go on the Internet.

AlwaysVPN is inexpensive and simple to use, and given how easily information can be stolen these days online, it's the kind of service that literally anyone should consider. An alternative is the free Hotspot Shield VPN software and service. Although Hotspot Shield is free, it delivers ads, and you need to be careful during its installation that it doesn't make changes to your PC that you don't want. So if you don't mind spending a very little bit of money, AlwaysVPN is a great choice for your data's safety and your peace of mind.

More to read at :-
http://www.computerworld.com/s/article/9199618/Imp...

--
Was this reply relevant?
+0
-0

123xcmy

RE: Daily CYBERCLIPS December
[+]
This reply has been minimised due to a negative Relevancy Score.
mogs CClip 33
Expert Contributor 6th Dec, 2010 18:39
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
McAfee's URL Shortener Can Be Used to Help Attacks

December 6th, 2010, 10:36 GMT| By Lucian Constantin

In an example of how a PR idea can turn against the company it was meant to promote, McAfee’s allegedly secure URL shortening service can be used by phishers to bypass URL filters and enhance attacks.

The security giant launched its own URL shortener, called mcaf.ee, back in September, based on an idea from its French PR team, who figured the company has an advantage over the many similar services already out there, namely security.

It’s well known that URL shorteners are commonly abused to spread malicious URLs on social networks, instant messengers, or email, and McAfee does indeed have a good insight into such attacks.

More at :-
http://news.softpedia.com/news/McAfee-s-URL-Shortn...

--
Was this reply relevant?
+0
-0
mogs CClip 34
Expert Contributor 6th Dec, 2010 18:44
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Windows vs. Chrome OS, It’s about to Begin

December 6th, 2010, 16:55 GMT| By Marius Oiaga

Windows vs. Chrome OS, so it begins, or at least it’s about to. At the end of the past week, Google started sending out invitations to a Chrome team event on December 7th, 2010, in San Francisco.

The promise from the Mountain View-based search giant is that some exciting news about Chrome will be made public. No other details were offered, but the general consensus among various third-party sources seems to be that the event is related to Chrome OS.

More at :-
http://news.softpedia.com/news/Windows-vs-Chrome-O...

--
Was this reply relevant?
+0
-0
mogs CClip 35
Expert Contributor 6th Dec, 2010 18:51
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Ad-Aware levels up its detection engines
by Seth Rosenblatt

In its third update of the year, Ad-Aware receives a hefty change to how it protects you. Lavasoft's Ad-Aware 9 Free, available today exclusively on CNET Download.com, debuts two new detection engines as the company fights to keep its well-known freeware competitive.

Visually, not much has changed in Ad-Aware 9 Free. The engines that power the program have, and publisher Lavasoft anticipates that will make all the difference.
(Credit: Lavasoft)
Lavasoft first started changing Ad-Aware's protection engine more than a year ago in version 8.1, when it introduced Genotype. This heuristics-based technology identified identical snippets of code across multiple threat mutations. In version 9, Genotype receives support from what Lavasoft calls "Dedicated Detection". This tech looks inside files, analyzes the code, and creates a loose pattern for finding families of related malware. The company touts that a single dedicated detection signature can detect hundreds of thousands ... Read full post & comments


Read more: http://news.cnet.com/security/#ixzz17M4r54nO

--
Was this reply relevant?
+0
-0
mogs CClip 36
Expert Contributor 6th Dec, 2010 18:55
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Many malware attacks triggered by USB devices
By Antony Savvas
Computerworld UK - One in every eight malware attacks occurs via a USB device, often targeting the Windows AutoRun function, according to Czech security vendor Avast Software.

The company reported that of the 700,000 recorded attacks on computers in the Avast user community during the last week of October, 13.5% came via USB devices such as flash drives.

More at :-
http://www.computerworld.com/s/article/352998/USB_...

--
Was this reply relevant?
+0
-0
mogs CClip 37
Expert Contributor 6th Dec, 2010 19:21
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Type: freeware Platform: Windows 2000, Windows XP Manufacturer:Comodo Size: 2.3MB
Review Rating:Average User Rating:
Rate this downloadPrice:Free Number of downloads:
4933
This is the software publisher's description.

Developed by one of the world’s leading IT security providers, Comodo AntiVirus 2 beta leverages multiple technologies (including on demand & on access scanning, email scanning, process monitoring and worm blocking) to immediately start cleaning or quarantining suspicious files from your hard drives, shared disks, emails, downloads and system memory.

Updated virus definitions are automatically downloaded according to a schedule of your choice or by a single click on the 'updater' button. Once installed, Comodo AntiVirus 2 will unobtrusively sit in your system tray, silently and efficiently defending your system from the latest virus outbreaks.

It's easy to install and configure, will not slow down your PC by hogging system resources and is free for life to the end user.

This free anti-virus client also contains free definition updates for life. There are no catches.



Read more: http://www.v3.co.uk/vnunet/downloads/2160090/comod...

--
Was this reply relevant?
+0
-0
mogs CClip 38
Expert Contributor 6th Dec, 2010 19:30
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Why can't I find the website I want?
Watch what you type - you could end up at a website set up by cybersquatters
Written by Computeractive staff, Computeractive
06 Dec 2010
Q I wanted to try the Invisible Hand website, detailed in a Computeractive Workshop. However, when I type in the published website address I get a different page than the ones shown in the Workshop’s screenshots.

I use Internet Explorer 7 and Windows XP. What am I doing wrong?
Barbara Florance

A You’re typing in the wrong web address. The website text that you sent us showed that you were visiting www.getinvisablehand.com, incorrectly spelled with an ‘a’.

In fact, the correct web address for Invisible Hand is www.getinvisiblehand.com, with a third ‘i’ where you had typed an ‘a’.

Your confusion is understandable because the incorrectly spelled web address does actually work. However, it has nothing to do with the official Invisible Hand tool: it’s a classic ‘cybersquatting’ trick to register domain names that are just one or two letters awry from real ones, to dupe people who inadvertently type the wrong web addresses.

In this instance, the cybersquatter has used the similar domain name to put up a page of generic advertising links. To avoid such pages, check what you’re typing into the web browser’s bar.



Read more: http://www.computeractive.co.uk/computeractive/q-a...


--
Was this reply relevant?
+0
-0
mogs CClip 39
Expert Contributor 7th Dec, 2010 09:22
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Google Chrome Gets Faster SSL Connections

December 6th, 2010, 19:53 GMT| By Lucian Constantin

The latest versions of Google Chrome come with a feature that makes SSL connections faster by simplifying the handshake between browsers and Web servers.

Dubbed False Start, the technique was developed at Google and is described as an optional behavior of TLS implementations.

By default, for a SSL/TLS connection to be established, the client and server authenticate in a process known as a handshake.

More at :-
http://news.softpedia.com/news/Google-Chrome-Gets-...

--
Was this reply relevant?
+0
-0
mogs CClip 40
Expert Contributor 7th Dec, 2010 09:26
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 7th Dec, 2010 09:35
ZeuS-Related Fake Electronic Tax Payment Emails Are Back

December 6th, 2010, 15:26 GMT| By Lucian Constantin

Security researchers warn of a new wave of fake Electronic Federal Tax Payment System (EFTPS) emails directing users to drive-by download websites that distribute the ZeuS banking trojan.

The fake emails claim the recipient’s electronic tax payment was rejected due to a error in the submission form. They read:

“Your Federal Tax Payment ID: ######## has been rejected. [where # is a digit]
Return Reason Code R21 - The identification number used in the Company Identification Field is not valid.

Read more at :-
http://news.softpedia.com/news/ZeuS-Related-Fake-E...

--
Was this reply relevant?
+0
-0
mogs CClip 41
Expert Contributor 7th Dec, 2010 09:40
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Dev Channel Update Chrome
Monday, December 6, 2010 | 17:56
Labels: Dev updates
The Dev channel has been updated to 9.0.597.10 for Windows, Mac, and Chrome Frame

All
Primarily stability fixes and minor UI tweaks, no new features or functionality have been added.
Known Issue:
Regression: Certain sites fail to render the first time. The temporary workaround is to re-load the page. (Issue: 65376)
More details about additional changes are available in the svn log of all revision.

You can find out about getting on the Dev channel here: http://dev.chromium.org/getting-involved/dev-chann...

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

Anthony Laforge
Google Chrome

http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 41
Expert Contributor 7th Dec, 2010 09:40
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 7th Dec, 2010 09:48
Edit....Duplication.

--
Was this reply relevant?
+0
-0
mogs CClip 42
Expert Contributor 7th Dec, 2010 10:41
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

IE9 Hardware Acceleration Embraced by Silverlight 5 and Flash 10.
By Marius Oiaga



The graphics advances that Internet Explorer 9 brings to the table by harnessing the power of the GPU will be leveraged by the next versions of both Silverlight and Flash.

Silverlight 5 and Flash 10.2 are designed to play nice with IE9 hardware acceleration, enabling a new level of graphics performance for content built with the two technologies, and richer web experiences for end users.

More at :-
http://news.softpedia.com/news/IE9-Hardware-Accele...


--
Was this reply relevant?
+0
-0
mogs CClip 43
Expert Contributor 7th Dec, 2010 16:55
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Fake Google and Facebook Joint Prize Campaign Leads to Zbot

By Lucian Constantin

Security researchers warn that spam emails suggesting a joint prizes giveaway campaign from Google and Facebook eventually lead to a variant of the Zbot banking trojan.

The fake emails purport to come from “Google and Facebook team” and bear an uninspired subject of “From the Google and Facebook team.”

The contained message suggests that Google and Facebook, which have pretty much been at each other’s throats, have decided to put their differences aside and join together to give prizes away to users. The emails read:

“Dear subscriber,

As you may know, the holidays are just around the corner, so all of us here at Google and Facebook decided to come together and bring you a new contest with lots of prizes, including, but not limited to, the new Google Chrome OS which will be released in January 2011, Nexus One smartphones, Google Maps GPS for your favourite mobile phone and lots more.

Think of it as our way of saying: ‘Thank you !’ for supporting our work all this time. For a chance to win, all you have to do is go to the attached page and follow the instructions.

Hope you enjoy,
Google & Facebook.”

More at :-
http://news.softpedia.com/news/Fake-Google-and-Fac...

--
Was this reply relevant?
+0
-0
mogs CClip 44
Expert Contributor 7th Dec, 2010 16:59
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Fix Windows 7 Stuck UAC Settings When Office 97 Is Installed

December 7th, 2010, 10:35 GMT| By Marius Oiaga

Installing Office 97 on Windows 7 can cause some unwanted results, such as no longer allowing end users to modify the settings of User Account Control in the operating system.

Microsoft confirmed the problem and worked on a solution which is currently offering to customers.

The Redmond company has put together an automatic fix which is allowing customers to download and apply through KB 978591.

“In the Windows 7 "System and Security" control panel category, the Action Center lets you change User Account Control (UAC) settings,” the software giant explained.

More at :=
http://news.softpedia.com/news/Fix-Windows-7-Stuck...

--
Was this reply relevant?
+0
-0
mogs CClip 45
Expert Contributor 7th Dec, 2010 21:08
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
IE9 RC with Tracking Protection in Early 2011

December 7th, 2010, 18:59 GMT| By Marius Oiaga

Microsoft has unveiled a surprise Internet Explorer 9 feature which it will offer for testing to the public with the Release Candidate (RC) Build of the browser, planned for delivery in early 2011.

IE9 will be epitome of browser choice and control as far as protecting user privacy goes. Starting with IE9 RC and continuing with the RTW Build, customers will be able to easily block particular or multiple websites from tracking their online activity.

“IE9 will offer consumers a new opt-in mechanism (“Tracking Protection”) to identify and block many forms of undesired tracking,” revealed Dean Hachamovitch, Corporate Vice President, Internet Explorer.

More at :-
http://news.softpedia.com/news/IE9-RC-with-Trackin...

--
Was this reply relevant?
+0
-0
mogs CClip 46
Expert Contributor 7th Dec, 2010 21:26
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
After Chinese Internet traffic hijack, fix due in January
Engineers prep patch for core Internet routing protocol that allowed 15 percent of world's Web traffic to pass through China
By Carolyn Duffy Marsan | Network World
Policymakers disagree about whether the recent Chinese hijacking of Internet traffic was malicious or accidental, but there's no question about the underlying cause of this incident: the lack of built-in security in the Internet's main routing protocol.

Network engineers have been talking about this weakness in the Internet infrastructure for a decade. Now a fix is finally on the way.

Read more at :-
http://www.infoworld.com/d/networking/after-chines...

--
Was this reply relevant?
+0
-0
mogs CClip 47
Expert Contributor 7th Dec, 2010 21:30
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Botnets to ‘hide in plain view’ in 2011
A new report suggests next year’s botnets will hide within files rather than coming through nasty downloads.
By Jennifer Scott, 7 Dec 2010 at 15:32

The way botnets attack our computers is set to change in 2011, with the malicious programmes hiding within files.

Whilst botnets traditionally come in the form of downloads which sneak onto users’ machines by exploiting vulnerabilities, Symantec has claimed next year will see them integrated into files passed over file sharing sites or social networks, making them harder to detect.

More at :-
http://www.itpro.co.uk/629209/botnets-to-hide-in-p...

--
Was this reply relevant?
+0
-0
mogs CClip 48
Expert Contributor 8th Dec, 2010 08:38
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Ad-Aware Free Internet Security by Lavasoft
Version reviewed: Ad-Aware Free Internet Security 9.0.0
Ad-Aware helps you combat the growing threats and latest advancements of malware and malicious spyware.

Features:

Comprehensive malware protection
Ad-Watch Live! Basic real-time protection
Genocode detection technology
Behavior-based heuristics detection
Rootkit removal system
The Scheduler
The Neutralizer
Download Guard for Internet Explorer
Simple Mode/Advanced Mode
External drive scans
Lavasoft SmartSet

Lavasoft has released today an updated line of products which align the company to the latest trend of offering free comprehensive protection against all sorts of malware, not only spyware and adware. The list of changes is quite short this time around, but undoubtedly confirms that users demand new standards for protecting the computer, even in free products.

Antivirus programs are no longer what the regular user wants, since Internet Security suites, heftier software sporting multiple layers of security, have taken their place. Comodo released the first Internet Security suite , then came Agnitum’s turn with their Outpost Security Suite and now Lavasoft issues Ad-Aware Free Internet Security program.

Read more at :-
http://www.softpedia.com/reviews/windows/Ad-Aware-...

--
Was this reply relevant?
+0
-0
mogs CClip 49
Expert Contributor 8th Dec, 2010 08:55
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Researchers punch hole in Internet Explorer protections
Protected Mode can be bypassed by attackers, says Verizon Business
Shaun Nichols in San Francisco
V3.co.uk, 07 Dec 2010
A new report is casting doubts on security protections for Microsoft's Internet Explorer web browser.

The report [PDF] from Verizon Business claims that through the use of certain exploit techniques, an attacker can bypass Internet Explorer's protected mode tool, allowing for users to be remotely infected with malware.

Used in both Windows Vista and Windows 7, protected mode has been billed as a method for helping to mitigate the risk of infection on a system from browser exploits. The component seeks to verify actions before they are run, alerting users to activity.

According to Verizon Business researchers, an attacker could use so-called 'generic' attack techniques which would not only bypass the Protected Mode controls, but also remotely infect the targeted system.



Read more: http://www.v3.co.uk/v3/news/2273749/microsoft-inte...


--
Was this reply relevant?
+0
-0

coach112

RE: Daily CYBERCLIPS December
[+]
This reply has been minimised due to a negative Relevancy Score.
mogs CClip 50
Expert Contributor 8th Dec, 2010 10:23
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Whitehats peer into new botnet's heart of 'Darkness'

DDoSes R Us
By Dan Goodin in San Francisco • Get more from this author
Posted in Security
Whitehat hackers are tracking a new botnet that's quickly become a popular platform for launching web attacks.

Over the past few weeks, members of the Shadowserver group have observed the Darkness botnet unleashing distributed denial of service attacks on more than 100 websites in the financial, insurance and retail industries. They've also uncovered an online campaign advertising DDoS-for-hire services that boast high quality and an average cost of $50 for 24 hours of use (and better deals for “regular customers”).

More at :-
http://www.theregister.co.uk/2010/12/07/darkness_b...

--
Was this reply relevant?
+0
-0
mogs CClip 51
Expert Contributor 8th Dec, 2010 10:28
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Google opens online shop for Chrome applications
December 8, 2010
Google on Tuesday opened an online shop stocked with applications tailored for its increasingly popular Chrome Web browsing software.
Chrome Web Store opened online at chrome.google.com/webstore with categories including games, news, entertainment, productivity, and family.

More at :-
http://www.physorg.com/news/2010-12-google-online-...

--
Was this reply relevant?
+0
-0

coach112

RE: Daily CYBERCLIPS December
[+]
This reply has been minimised due to a negative Relevancy Score.
mogs CClip 52
Expert Contributor 8th Dec, 2010 10:46
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Race is on in browser wars as users' habits shift
December 7, 2010 By Jon Swartz
When Dawn Shrum was in college a few years ago, her one and only Web browser was Microsoft Internet Explorer. Boy, has her browsing changed since then.
The 26-year-old online marketing analyst for Itron, a smart-metering company in Spokane, Wash., now often uses four at once: IE; Google's blur-fast Chrome; non-profit Mozilla Foundation's Firefox; and Apple's Safari, when on her Mac.

Read more at :-
http://www.physorg.com/news/2010-12-browser-wars-u...

--
Was this reply relevant?
+0
-0
mogs CClip 53
Expert Contributor 8th Dec, 2010 14:36
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Critical Security Update Released for QuickTime

December 8th, 2010, 07:31 GMT| By Lucian Constantin

Apple has released version 7.6.9 of its QuicktTime player as a security update, addressing critical vulnerabilities that can potentially be exploited to execute arbitrary code.

Most of the security issues apply to QuickTime 7 on Mac OS X v10.5.8, Mac OS X Server v10.5.8, Windows 7, Vista and XP SP2 or later, but there are also two Windows-only flaws.

A number of fifteen vulnerabilities were patched in total, most of which can be exploited by tricking users into opening maliciously crafted image or movie files

More at :-
http://news.softpedia.com/news/Critical-Security-U...

--
Was this reply relevant?
+0
-0
mogs CClip 54
Expert Contributor 8th Dec, 2010 16:31
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 8th Dec, 2010 16:32
How to become a beta tester for Google's Chrome notebook

Wednesday, 8 December 2010
Google's much talked about Chrome laptop is almost ready to conquer the web and the laps of people everywhere, but before you can run down to your local store and purchase one of the slick, black devices, Google is sending out a call for real users to test drive the machine.

"[W]e're launching a pilot program where we will give test notebooks to qualified users, developers, schools and businesses," says the internet giant in a December 7 blog post. "We're starting with the U.S. and will expand to other countries once we get the necessary certifications."

To sign up to the pilot program and test Google's Cr-48 Chrome notebook, you must be a self-confessed web addict (over the age of 18) as there is no such thing as legacy PC software for the Cr-48 Chrome.

Read more at :-
http://www.independent.co.uk/life-style/gadgets-an...

--
Was this reply relevant?
+0
-0
mogs CClip 55
Expert Contributor 8th Dec, 2010 18:39
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Secunia to Gauge the Security of Popular Apps

December 8th, 2010, 13:19 GMT| By Lucian Constantin

Danish vulnerability research vendor Secunia has launched a new initiative to provide periodic and comprehensive reports about the security of popular applications, which take into account various metrics.

Dubbed Security Factsheets, these reports will be released quarterly and will present data in a standardized format so that interested parties can make informed decisions about vendors and applications.

The factsheets will contain year-on-year comparison of the number of advisories and vulnerabilities, as well as their associated attack vectors, criticality and impact classification.

Other relevant information that is often missing from vulnerability reports, such as patch status at the time of advisory publication and vendor response times to advisories from the past two years, will also be included.

”In the software industry we still lack coherent, standardised, and scheduled reporting of important security parameters for software products,” notes Stefan Frei, research analyst director at Secunia.

Read more at :-
http://news.softpedia.com/news/Secunia-to-Provide-...

--
Was this reply relevant?
+0
-0
mogs CClip 56
Expert Contributor 8th Dec, 2010 18:57
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Third of anti-malware products fail VB Windows 7 test
Virus Bulletin's latest research finds worrying issues with stability under pressure
Phil Muncaster
V3.co.uk, 08 Dec 2010
Around a third of anti-malware products fail to fully protect users of Windows 7 Professional, according to the latest test from Virus Bulletin.

The testing and certification organisation ran the Windows 7 test on 64 products, 20 of which failed to reach the required standard.



Read more: http://www.v3.co.uk/v3/news/2273823/anti-malware-w...


--
Was this reply relevant?
+0
-0
mogs CClip 57
Expert Contributor 9th Dec, 2010 06:57
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Instant Messaging Worm Can Speak Many Languages
December 8th, 2010, 17:51 GMT| By Lucian Constantin

Security researchers from Symantec warn that a new worm spreading via instant messaging applications is capable of targeting users in twenty different languages.

The code of the worm, which is detected as W32.Yimfoca.B, contains a routine that checks for the location of the user and sends spam in the appropriate language.

If the location scan result is not on a hardcoded list of 44 countries, the malware falls back to English messages, which can read “seen this? [link]” or “this is the funniest photo ever! [link].”

In addition to spreading by spam through Google Talk, ICQ, MSN Messenger, Paltalk, Skype, Xfire or Yahoo! Messenger, the worm also infects removable USB drives inserted into the computer.

More at :-
http://news.softpedia.com/news/Instant-Messaging-W...

--
Was this reply relevant?
+0
-0
mogs CClip 58
Expert Contributor 9th Dec, 2010 07:44
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
World is getting more corrupt, says transparency poll

The world is considered a more corrupt place now than it was three years ago, a poll suggests.

Some 56% of people interviewed by Transparency International said their country had become more corrupt.

The organisation put Afghanistan, Nigeria, Iraq and India in the most corrupt category, followed by China, Russia and much of the Middle East.

Meanwhile, a BBC poll suggests that corruption is the world's most talked about problem.

About one in five of those polled by the BBC said they had discussed issues relating to corruption with others in the last month, making it the most talked about concern ahead of climate change, poverty, unemployment and rising food and energy costs.

Read more at :-
http://www.bbc.co.uk/news/world-11954667

--
Was this reply relevant?
+0
-0

tracyk859

RE: Daily CYBERCLIPS December
[+]
This reply has been minimised due to a negative Relevancy Score.
mogs CClip 59
Expert Contributor 9th Dec, 2010 09:30
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Why do the Windows 7 PC updates stall?
Waiting for an hour seems like a long time, but it may not be long enough for the updates to finish installing
Written by Computeractive staff, Computeractive
08 Dec 2010
Q My Windows 7 PC recently downloaded and tried to apply various updates. When it reached 67 per cent of updates installed, it seemed to stall. I waited for over an hour and then turned off the PC, despite it displaying the ‘Configuring Windows updates… Do not turn off your computer’ message.



Read more: http://www.computeractive.co.uk/computeractive/q-a...


--
Was this reply relevant?
+0
-0

tracyk859

RE: Daily CYBERCLIPS December
[+]
This reply has been minimised due to a negative Relevancy Score.
mogs CClip 60
Expert Contributor 9th Dec, 2010 11:47
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

New PayPal Phishing Campaign in Circulation

December 9th, 2010, 07:58 GMT| By Lucian Constantin

A new wave of PayPal phishing emails carrying a fake form allegedly intended for account information update purposes, has been hitting people’s inboxes since yesterday.

The rogue emails purport to come from “PayPal.com” and bear a subject of “Your account has been temporarily limited !”

The body contains the PayPal logo and a message instructing users to fill in and submit the attached form. It reads:

“Hello customer,
Your account has been temporarily limited.

Read more at :-
http://news.softpedia.com/news/New-PayPal-Phishing...

--
Was this reply relevant?
+0
-0
mogs CClip 61
Expert Contributor 9th Dec, 2010 12:06
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Operating Systems
You can turn off some effects to improve your PC's performance
Faster Windows with fewer visual effects
Fine-tuning the way Windows uses visual effects can improve performance in XP, Vista and 7
Written by Computeractive staff, Computeractive
08 Dec 2010
Introduction
Microsoft has transformed the look of Windows over the past decade. The square, two-dimensional windows and dialogue boxes of XP have morphed into glossy 3D interface with drop shadows, full-window animation, transparency effects and all manner of other fancy furniture.

Such beautification has a cost, though; if you have upgraded an older PC to Vista or Windows 7, then all that graphical finesse may have slowed it down considerably. Indeed, even XP’s limited visual effects can cause a computer to slow to a crawl.

But all is not lost, because Windows XP, Vista and 7 enable you to turn off various visual effects, and this may give even an old PC an electronic leg-up. Here’s what to do.


Step by step instructions.
Read more: http://www.computeractive.co.uk/computeractive/wor...


--
Was this reply relevant?
+0
-0
mogs CClip 62
Expert Contributor 9th Dec, 2010 14:32
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Chrome gets boost from faster JavaScript engine
By Stephen Shankland , CNET News, 9 December, 2010 11:05

NEWS
Google's newest test versions of Chrome are equipped with a faster JavaScript engine, an increasingly important browser component for running web-based programs.


Chrome's new JavaScript engine works better on Google's V8 benchmark.
Credit: Stephen Shankland/CNET News
The result is faster-loading pages, more powerful web applications, and another round in the browser performance competition with Microsoft's Internet Explorer, Mozilla's Firefox, Apple's Safari, and Opera.

Chrome's browser engine, called V8, is being upgraded to version 3, called Crankshaft. It uses a technique called adaptive compilation that translates JavaScript into native instructions for a processor and then concentrates more energy on improving the parts of the code used most often, Google said.

"Crankshaft uses adaptive compilation to improve both start-up time and peak performance. The idea is to heavily optimise code that is frequently executed and not waste time optimising code that is not," Google programmers Kevin Millikin and Florian Schneider said yesterday in a company blog post.

For more on this ZDNet UK-selected story, see Google tunes up Chrome's JavaScript engine on CNET News.

More at :-
http://www.zdnet.co.uk/news/desktop-apps/2010/12/0...



--
Was this reply relevant?
+0
-0
mogs CClip 63
Expert Contributor 9th Dec, 2010 16:32
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK






Belarc Products > Belarc Advisor

Belarc Advisor - Free Personal PC Audit (Version 8.1p)

Download Belarc Advisor | Download Tips | Frequently Asked Questions

The Belarc Advisor builds a detailed profile of your installed software and hardware, missing Microsoft hotfixes, anti-virus status, CIS (Center for Internet Security) benchmarks, and displays the results in your Web browser. All of your PC profile information is kept private on your PC and is not sent to any web server.

Read more at :-
http://www.belarc.com/free_download.html




--
Was this reply relevant?
+0
-0
mogs CClip 64
Expert Contributor 10th Dec, 2010 07:42
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 10th Dec, 2010 07:44
IE9 vs Firefox 4: Which is Safer?

By Kenneth van Wyk

It’s that time again. No, not (just) the holiday shopping season. It’s time for some browser security wars.

Over the past few years, I’ve compared the security of Internet Explorer and Firefox here several times. With both products well into their respective beta cycles, it’s time to revisit the question: which browser is a better choice for the security of an average user?

Read more at :-
http://www.esecurityplanet.com/features/article.ph...

--
Was this reply relevant?
+0
-0
mogs CClip 65
Expert Contributor 10th Dec, 2010 07:58
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 10th Dec, 2010 07:59
Critical Security Updates Released for Firefox

December 9th, 2010, 18:39 GMT| By Lucian Constantin



Mozilla has released versions 3.6.13 and 3.5.16 of its popular Firefox browser to address critical vulnerabilities that could be exploited to execute arbitrary code.

There are a total of eleven vulnerabilities affecting the browser’s both 3.6.x and 3.5.x branches and nine of them are rated as having a critical impact.

More at :-
http://news.softpedia.com/news/Security-Updates-Re...

--
Was this reply relevant?
+0
-0
mogs CClip 66
Expert Contributor 10th Dec, 2010 08:04
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Mozilla vows Google 'Crankshaft' riposte

'Nobody puts Monkey in a corner'
By Cade Metz in San Francisco • Get more from this author
Posted in Applications, 10th December 2010 00:26 GMT
Mozilla has vowed not to get "left behind" by Google's latest JavaScript engine, codenamed Crankshaft.

With a blog post on Wednesday, Mozilla's David Mandelin mused on Craftshaft's "adaptive compilation" design and said that the Mozilla JavaScript team and developer community "definitely have the skills and resources to enhance" Firefox's JavaScript engine in ways that match Google's work, and he indicated that this will begin after the release of Firefox 4, due early next year.

More at :-
http://www.theregister.co.uk/2010/12/10/mozilla_on...

--
Was this reply relevant?
+0
-0
mogs CClip 67
Expert Contributor 10th Dec, 2010 08:13
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Microsoft plans massive end of year patch on Tuesday
40 flaws fixed in huge download
Iain Thomson in San Francisco
V3.co.uk, 10 Dec 2010
Microsoft is planning a major end of year patch to fix flaws in Microsoft Windows, Office, Internet Explorer, SharePoint and Exchange.

All but one of the seventeen updates are rated important or critical and the patches make this the busiest year ever for Microsoft’s flaw fixing team. In all 106 software bulletins have been released by the company this year.



Read more: http://www.v3.co.uk/v3/news/2273861/microsoft-patc...


--
Was this reply relevant?
+0
-0

tracyk859

RE: Daily CYBERCLIPS December
[+]
This reply has been minimised due to a negative Relevancy Score.
mogs CClip 68
Expert Contributor 10th Dec, 2010 21:31
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Thunderbird and SeaMonkey Get Security Updates

December 10th, 2010, 12:15 GMT| By Lucian Constantin



Mozilla has released Thunderbird 3.1.7, 3.0.11 and SeaMonkey 2.0.11 as stability and security updates, which fix multiple critical vulnerabilities that can lead to arbitrary code execution.

The new Thunderbird version contains patches for a total of five vulnerabilities rated as critical, which are covered in three advisories.

More at :-
http://news.softpedia.com/news/Thunderbird-and-Sea...




--
Was this reply relevant?
+0
-0
mogs CClip 69
Expert Contributor 10th Dec, 2010 21:38
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Patch for Critical IE 0-Day Vulnerability Coming Next Week

December 10th, 2010, 11:52 GMT| By Marius Oiaga

A Critical zero-day vulnerability affecting all supported versions of Internet Explorer will be patched on December 14th, 2010, as a part of the Microsoft’s monthly patch release cycle.

The 0-day flaw impacting IE6, IE7 and IE8 has been exploited in the wild since November when the first details and proof-of-concept code were also made public.

The security flaw, which involves an invalid flag reference within Internet Explorer, has not received an out-of-band patch from the software giant, although the company monitored the situation closely and confirmed attacks against the vulnerability.

However, Microsoft has always underlined that the attacks were limited and targeted in nature, explaining the move to not rush an update.

More at :-
http://news.softpedia.com/news/Patch-for-Critical-...

--
Was this reply relevant?
+0
-0
mogs CClip 70
Expert Contributor 11th Dec, 2010 16:17
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Drive-By Scareware Malvertizements Served by Large Ad Networks

December 11th, 2010, 10:36 GMT| By Lucian Constantin

Malware distributors have managed to trick two large ad networks into delivering malvertizements that silently infected the visitors of large websites with fake scareware programs.

The attacks started on December 3 and were picked up by a cloud-based malware scanning service called HackAlert and operated by Santa Clara-based security vendor Armorize Technologies.

HackAlert is used by VeriSign Trust Services, now a division of Symantec, for its daily VeriSign Trust Seal malware scans. So when several high profile websites started being tagged as infected, Armorize was asked to check its platform for possible bugs.

However, their investigation revealed that sites like realestate.msn.com, msnbc.com, scout.com or mail.live.com, were indeed inadvertently infecting their visitors with malware.

More at :-
http://news.softpedia.com/news/Drive-By-Scareware-...

--
Was this reply relevant?
+0
-0
mogs CClip 71
Expert Contributor 11th Dec, 2010 16:33
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Google, Microsoft ad networks briefly hit by with malware
By Robert McMillan

IDG News Service - For a brief period this week, cybercriminals managed to infect Google's and Microsoft's online ad networks with malicious advertisements that attacked users' PCs, according to security consultancy Armorize.

The attacks started around Dec. 5 and lasted a few days, sending victims who clicked on the ads to malicious Web pages. Those pages took advantage of known software bugs to install backdoor programs that gave the attackers control of the victims' PCs, or to install software that made it appear as though the PCs were filled with malicious software.

Google acknowleged Friday that it had experienced some issues on its DoubleClick network but said it had put a stop to them quickly.

More at :-
http://www.computerworld.com/s/article/9200899/Goo...

--
Was this reply relevant?
+0
-0
mogs CClip 72
Expert Contributor 11th Dec, 2010 16:48
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Symantec warns of new Cutwail URL tactics
New layers added to separate spam pages from legitimate sites
Shaun Nichols in San Francisco
V3.co.uk, 11 Dec 2010
Retail spammers are using new URL shortening to fool existing security systems say researchers.

Security vendor Symantec has spotted a new round of spam e-mails believed to be connected to the Cutwail botnet.

Researchers say that the messages attempt to thwart security protections by combining a number of free hosting sites with link-shortening services and JavaScript coding tricks.

According to Symantec Hosted Services senior software engineer Nicholas Johnston, the spam operation begins by directing the user to a link which has been concealed by the use of a URL-shortening service.



Read more: http://www.v3.co.uk/v3/news/2273886/symantec-spam-...

--
Was this reply relevant?
+0
-0
mogs CClip 73
Expert Contributor 11th Dec, 2010 19:47
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 11th Dec, 2010 19:54
Mozilla Plugs Firefox 3.6.13 For 11 Flaws
By Sean Michael Kerner

Mozilla is updating its open source Firefox web browser to version 3.6.13, fixing at least 11 security issues, nine of which are rated as critical. In contrast, the Firefox 3.6.12 update issued at the end of October, fixed a single critical flaw.

Among the critical security fixes to Firefox 3.6.13 are multiple memory safety hazards which Mozilla has grouped under a single advisory. One of the memory flaws was reported by famed security researcher 'Nils' who in 2009, demonstrated how he could exploit both IE 8 and Firefox 3.x with a previously unreported zero-day flaw at the PWN2OWN security contest.

Firefox 3.6.13 also provides a critical fix for a buffer overflow security issue that affects Windows users.

More at :-
http://www.esecurityplanet.com/features/article.ph...

--
Was this reply relevant?
+0
-0
mogs CClip 74
Expert Contributor 11th Dec, 2010 21:22
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Windows 7 International Themes – Almost 60 Items Available

By Marius Oiaga

An impressive collection of personalization content was put together for the latest iteration of Windows.

Windows 7 ships by default with its own collection of themes and wallpapers, but there are additional downloads available from the Windows Personalization Gallery.

Read more at :-
http://news.softpedia.com/news/Windows-7-Internati...

--
Was this reply relevant?
+0
-0

shanne

The Availability of Cheap NFL Jerseys
[+]
This reply has been minimised due to a negative Relevancy Score.
mogs CClip 75
Expert Contributor 12th Dec, 2010 08:43
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Spammers Use Free Hosting Providers as Redirectors
By Lucian Constantin

Security researchers warn that spammers are increasingly abusing free hosting services to install redirectors with the purpose of hiding their real spam sites.

This multi-layered approach gives spammers more flexibility and makes their websites harder to detect, block and shut down.

The technique is combined with a similar abuse of URL shorteners. Many pages with unique and random URLs get created via free hosting services and are then shortened before being sent out in spam emails.

These pages use JavaScript redirect scripts and are hosted on URLs of the form http://fipxmdmzp.[censored].com/?iyzdm=yngqsa, where most of the composing parts are random.

The JavaScript code is obfuscated using some unique techniques unseen in previous attacks. This is meant to hide the spam site URL as best as possible.

“Redirecting users in this way shows that spammers are going to considerable lengths to hide the addresses of their actual spam sites, and actively trying to make more difficult detection by anti-spam companies,” writes Nicholas Johnston, senior software engineer at Symantec Hosted Services.

Read more at :-
http://news.softpedia.com/news/Spammers-Use-Free-H...

--
Was this reply relevant?
+0
-0
mogs CClip 76
Expert Contributor 12th Dec, 2010 08:51
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
NUI Evolution in 2011 and Beyond – What Microsoft Should Do Next

December 11th, 2010, 11:54 GMT| By Marius Oiaga

2010 has been a landmark year for Microsoft in terms of the evolution of natural user interfaces and the integration of NUI interaction models in more and more products, establishing the base for widespread, mainstream usage.

NUIs are slowly becoming pervasive, not just because of the Redmond company, of course, but it’s clear that the interaction freedom delivered by touch, gesture and voice far surpasses the limitations of the mouse, keyboards, gaming controllers, etc.

Expect natural user interfaces to become increasingly prominent in 2011 as uptake of NUI-capable products will grow. And in this regard, also expect the impact they have on users to increase.

All the while, bear in mind that the world is only now seeing the debut of NUI human-computer interaction models, and that this will be an extremely interesting journey for the years to come.

More at :-
http://news.softpedia.com/news/NUI-Evolution-in-20...

--
Was this reply relevant?
+0
-0
mogs CClip 77
Expert Contributor 12th Dec, 2010 08:55
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Porn sites closer to getting '.xxx' Web address
December 10, 2010 By JOELLE TESSLER , AP Technology Writer
(AP) -- Porn sites are closer to getting their own address on the Internet.
The online red-light district would be in the form of an ".xxx" domain name suffix alongside longstanding ones such as ".com" and ".org."
Following a decade-long battle, the Internet Corporation for Assigned Names and Numbers, or ICANN, voted Friday to proceed with a contract with ICM Registry LLC to sell domain names ending in ".xxx." ICANN voted in June to start negotiating the contract.
The new suffix still has other hurdles to clear, however. At a meeting in Cartagena, Colombia, ICANN decided to first consult with an advisory committee comprised of government officials worldwide. Some committee members have raised concerns about a suffix dedicated solely to sites with adult content. It's not clear whether and how their objections would affect the suffix.

More at :-
http://www.physorg.com/news/2010-12-porn-sites-clo...

--
Was this reply relevant?
+0
-0
mogs CClip 78
Expert Contributor 12th Dec, 2010 09:03
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Chrome Dev Channel Update

Labels: Dev updates

Update: The Dev channel has been updated to 9.0.597.16 for Windows, Mac and Chrome Frame


The scrolling regression has been fixed (Issue: 66079).

http://googlechromereleases.blogspot.com/


--
Was this reply relevant?
+0
-0
mogs CClip 79
Expert Contributor 12th Dec, 2010 10:21
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Top 5 Security Threats in HTML5
By Aaron Weiss

Somehow technology seems to evolve at a rapid pace, even when the standards bodies that help define it do not. Consider that most of today's websites are built on HTML4, a standard that was introduced in 1997. In the thirteen years since, the way we use the Web has changed dramatically, even if the underlying standard has not.

To bridge the gap, Web developers have adopted and embraced a variety of additional technologies, everything from using client-side JavaScript to build needed features, relying on server-side scripts to process data in ways the browser could not, and using third-party plug-ins, such as Flash, to extend the browser even further. All of these developments reflect the shift from browser as document delivery platform to browser as Web application platform.

Read more at :-
http://www.esecurityplanet.com/features/article.ph...

--
Was this reply relevant?
+0
-0
mogs CClip 80
Expert Contributor 12th Dec, 2010 10:28
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 12th Dec, 2010 10:30
Microsoft to Ship 17 patches on Patch Tuesday

By Stuart J. Johnston

Microsoft notified security managers Thursday to watch out for 17 individual security patches coming on the company's December Patch Tuesday event next week, which may be one of the biggest patch releases yet.

That could mean security managers will be even busier than they were just two months ago, when Microsoft (NASDAQ: MSFT) asked them to install one of the largest patch drops ever.

Microsoft published its advance notification for Patch Tuesday in order to give security managers time to plan the company's monthly patch release.

In October, Microsoft issued 16 patches, four of them rated as critical, that fixed a total of 49 separate security flaws
It's currently unknown how many individual security holes will be fixed in each of the patches when they're released next week. However, only two of the patches, each of which can contain multiple security fixes, are rated "critical" in Microsoft's four-tiered severity rankings.
One of December's patches is rated critical for all versions of Windows and Internet Explorer (IE).

More at :-
http://www.esecurityplanet.com/features/article.ph...



--
Was this reply relevant?
+0
-0
mogs CClip 81
Expert Contributor 12th Dec, 2010 21:04
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 12th Dec, 2010 21:12
Spammers Send Fake Twitter-Themed Emails About WikiLeaks

December 12th, 2010, 13:20 GMT| By Lucian Constantin

Spammers are trying to capitalize on the Twitter WikiLeaks buzz by sending out fake emails that purport to come from the microblogging site and direct users to rogue online pharmacy sites.

“The email is very well crafted, containing a fake version of the headers which Twitter is adding,” warns Sorin Mustaca, a data security expert at German antivirus vendor Avira.

More at :-
http://news.softpedia.com/news/Spammers-Send-Fake-...

--
Was this reply relevant?
+0
-0
mogs CClip 82
Expert Contributor 12th Dec, 2010 21:16
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Chrome OS's Secret Influence
Analysis: How do HTML5, and ChromeOS, work offline?
By Kevin Fogarty, ITworld Dec 12, 2010 4:13 pm

When Google gave the first demos of its ChromeOS-based PC this week, there were only a couple of mentions of the new feature that's going to have the greatest impact on Web-based apps, or Web access of any kind, really, during the next few years: offline storage.

HTTP and HTML, the core protocols of the Web, were designed to not store information between browsing sessions unless the user specifically arranged to do it.

Cookies, browser caches and other performance-enhancers do store more data between sessions than you'd think (not always the embarrassing stuff, but certainly that seems to be the majority).

More at :-
http://www.pcworld.com/article/213352/chrome_oss_s...


--
Was this reply relevant?
+0
-0
mogs CClip 83
Expert Contributor 13th Dec, 2010 18:40
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Download IE9 Beta Diff-IE Add-on to Keep Track of the Evolving Web

December 13th, 2010, 15:04 GMT| By Marius Oiaga

A new Internet Explorer extension is designed to help users keep track of the ever evolving web.

Modern dynamic websites are updated and refreshed extremely often, and customers can turn to Diff-IE Add-on for Internet Explorer in order to have the modifications highlighted to them.

The add-on has been developed my Microsoft Research and is available for download free of charge.

According to the Redmond company, the Diff-IE Add-on for Internet Explorer is set up to play nice with the most recent versions of IE, including the Beta development milestone of Internet Explorer 9 (IE9).

More at :-
http://news.softpedia.com/news/Download-IE9-Beta-D...

--
Was this reply relevant?
+0
-0
mogs CClip 84
Expert Contributor 13th Dec, 2010 18:46
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Google toys with pre-emptive search
By Natasha Lomas , silicon.com, 13 December, 2010 09:55

Google is working on a service that finds information before a user has even started looking for it.


Marissa Mayer, Google's vice president of geographic and local services, announced a pre-emptive form of search at the Le Web conference.
Photo credit: Natasha Lomas/silicon.com
In contrast to Google Instant, this service is about pre-emptively pushing data at users before they know they need it, said Marissa Mayer, Google's vice president of geographic and local services, at the Le Web conference in Paris last week.

More at :-
http://www.zdnet.co.uk/news/application-developmen...

--
Was this reply relevant?
+0
-0
mogs CClip 85
Expert Contributor 13th Dec, 2010 18:54
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
How spammers will poison your social network
Spammers wrecked e-mail, then they ruined search, and soon they'll go after your friends and family
Microsoft Chairman Bill Gates announced in 2004 that the problem of e-mail spam would be "solved" within two years.

Well, it wasn't. And it won't be, at least not anytime soon. The reason is that unscrupulous, shameless marketers who pursue a spam strategy evolve and adapt like a virus. As soon as you build a better spam filter, they figure out how to get around it.

Read more at :-
http://www.infoworld.com/d/security-central/how-sp...

--
Was this reply relevant?
+0
-0
mogs CClip 86
Expert Contributor 13th Dec, 2010 18:58
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Solar storm could knock out power grids and satellites
A huge solar storm is set to hit Earth on Monday with the potential to knock out power grids and interfere with communication satellites.

More at :-
http://www.telegraph.co.uk/science/space/8197576/S...

--
Was this reply relevant?
+0
-0
mogs CClip 87
Expert Contributor 13th Dec, 2010 20:27
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 13th Dec, 2010 20:29
Auslogics Registry Cleaner Update

2.0.6.55 (12/14/2010)
- added new languages
- fixed all known bugs
- corrected localization mistakes
- improved installer


Registry errors can cause many problems, starting from computer slowdowns to system hanging and crashes. Auslogics is proud to offer one of the most stable and reliable registry cleaners available on the market. It is designed for fixing and repairing the Windows Registry and is absolutely FREE!

System Requirements
Windows 7/2008/Vista/2003/XP (32-bit & 64-bit)
10 MB available hard disk space
32 MB RAM

Read more at:-
http://www.auslogics.com/en/software/registry-clea...

Free download at :-
http://www.auslogics.com/en/software/registry-clea...



--
Was this reply relevant?
+0
-0
mogs CClip 88
Expert Contributor 14th Dec, 2010 20:52
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK


Chrome Stable, Beta Channel Updates
| 11:19
Labels: Beta updates, Stable updates
The Chrome Stable and Beta channels have been updated to 8.0.552.224 for all platforms. Chrome OS has also been updated to 8.0.552.343. These releases contain the security fixes listed below, along with stability and other improvements.

Security fixes and rewards:
Please see the Chromium security page for more detail. Note that the referenced bugs may be kept private until a majority of our users are up to date with the fix.
[64-bit Linux only] [56449] High Bad validation for message deserialization on 64-bit builds. Credit to Lei Zhang of the Chromium development community.
[60761] Medium Bad extension can cause browser crash in tab handling. Credit to kuzzcc.
[63529] Low Browser crash with NULL pointer in web worker handling. Credit to Nathan Weizenbaum of Google.
[$1000] [63866] Medium Out-of-bounds read in CSS parsing. Credit to Chris Rohlf.
[$1000] [64959] High Stale pointers in cursor handling. Credit to Sławomir Błażek and Sergey Glazunov.
Full details about the Chrome changes are available in the SVN revision log. If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

Jason Kersey

http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 89
Expert Contributor 14th Dec, 2010 20:55
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Chrome Dev Channel Update
Monday, December 13, 2010 | 17:39
Labels: Dev updates
The Dev channel has been updated to 9.0.597.19 for all platforms.

All
This was primarily a crash fix release, in particular resolving a sync related crash issue (Issue: 57898).
More details about additional changes are available in the svn log of all revision.

You can find out about getting on the Dev channel here: http://dev.chromium.org/getting-involved/dev-chann...

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

Anthony Laforge
Google Chrome

http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 90
Expert Contributor 14th Dec, 2010 20:59
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
New Information Stealing Trojan Hijacks Shortcuts

December 14th, 2010, 09:16 GMT| By Lucian Constantin

Security researchers warn about a new information stealing trojan which hijacks file shortcuts in order to ensure its execution after reboot, instead of adding registry entries.

According to malware analysts from German antivirus vendor Avira, upon execution, the trojan searches for .lnk (shortcut) files on the desktop and in a predefined set of folders.

It reads the target of those shortcuts and renames the files to click_[original_name].exe.

It then creates copies of itself with the original names in the same locations in order to be executed when users click on the shortcuts.

The copies contain instructions to run the renamed files after being executed themselves, in order to cover up the hijacking.

More at :-
http://news.softpedia.com/news/New-Information-Ste...

--
Was this reply relevant?
+0
-0
mogs CClip 91
Expert Contributor 14th Dec, 2010 21:11
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

RealPlayer Gets Security Update
December 14, 2010
By eSecurityPlanet Staff

RealNetworks recently released an update that patches 27 vulnerabilities in Windows RealPlayer 11.1.

"Other versions, such as RealPlayer SP, RealPlayer Enterprise and the Mac / Linux versions are also partially affected," according to The H Security. "Apparently the current RealPlayer 14.0 does not exhibit any of the vulnerabilities."

"Most of the holes are related to flaws in the handling of certain multimedia formats, which cause buffer overflows and other memory management problems," the article states.


http://www.esecurityplanet.com/headlines/article.p...

--
Was this reply relevant?
+0
-0
mogs CClip 92
Expert Contributor 15th Dec, 2010 07:48
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Hacked Websites Used to Create Counterfeit Software Stores

December 14th, 2010, 16:50 GMT| By Lucian Constantin

Security researchers have observed new attacks using compromised websites to create rogue online stores that sell counterfeit software and are promoted in Google.

Compromised websites are a common component in many attacks, but are generally used as doorways to drive-by downloads, scareware pages or spam sites.

Users landing on an infected page are normally taken through a series of redirects that perform various checks, until they arrive at the final attack page.

In case of black hat search engine optimization (BHSEO) campaigns, legit compromised websites are used to poison the results for popular search keywords or topics.

When the search engine crawlers arrive at such webites, they are served with content pertaining to the targeted search keywords and will index them accordingly.

However, when users find the links on Google and click on them, they are automatically taken to a external page under the attackers' control.

"[...] There is a new development in this area. Instead of placing just doorway pages on compromised sites, hackers now create whole online stores there," Denis Sinegubko, the creator of the Unmask Parasites Web scanner, warns.

More at :-
http://news.softpedia.com/news/Hacked-Websites-Use...


--
Was this reply relevant?
+0
-0
mogs CClip 93
Expert Contributor 15th Dec, 2010 07:51
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 15th Dec, 2010 07:53
New Scareware Distribution Emails Link to Malicious Files Hosted at RapidShare

December 14th, 2010, 18:41 GMT| By Lucian Constantin



Security researchers from Belgian email security vendor MX Lab warn about a new wave of malicious emails that direct users to download scareware hosted at RapidShare.

According to MX Lab, the emails are sent from randomly spoofed addresses and their message is brief. The body only contains a link of the form http://rapidshare.com/files/[censored]/surprise.ex...

The file currently has a fairly low AV detection rate on Virus Total with 16 out of the 43 antivirus engines blocking it.

Some of the products detect it as a fake antivirus program, also known as scareware or rogueware, while others as a trojan downloader.

More at :-
http://news.softpedia.com/news/New-Scareware-Distr...

--
Was this reply relevant?
+0
-0
mogs CClip 94
Expert Contributor 15th Dec, 2010 08:31
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Computerworld - Microsoft today patched 40 vulnerabilities in Windows, Internet Explorer (IE), Office, SharePoint and Exchange, including nine pegged "critical."

Five of the 17 security updates -- Microsoft calls them "bulletins" -- fixed long-standing flaws that could be used by attackers to plant malware on a PC by tricking Windows into thinking a malicious DLL (dynamic link library) was actually a legitimate part of the OS.

Only two of the 17 updates were judged critical, Microsoft's top-most threat ranking in its four-step scoring system. Another 14 were marked "important," the second-highest rating, while the remaining update was labeled "moderate."

More at :-
http://www.computerworld.com/s/article/9201194/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 95
Expert Contributor 15th Dec, 2010 08:35
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Beware of this fake disk defragger program.
(Credit: GFI Labs)
We've all heard about fake antivirus programs, also known as scareware. These programs falsely claim that your computer is infected with malware and prompt you to buy a product that will do nothing for you, except put your credit card number into the hands of criminals.
Well now there are fake disk defraggers that masquerade as applications that fix disk errors on a computer. In a post today the GFI Labs (formerly Sunbelt Software) blog Dubbed the programs FakeAV-Defrag rogues and said they had names like HDDDiagnostic, HDDRepair, HDDRescue, and HDDPlus.
It would appear that the scammers are trying out the new programs to see which might best confuse potential victims and evade detection by legitimate antivirus software. The defragger clones emerged last month with names like UltraDefragger, ScanDisk and WinHDD and which pretended to find "HDD read/write ... Read full post & comments


Read more: http://news.cnet.com/security/#ixzz18ACZNUEx

--
Was this reply relevant?
+0
-0
mogs CClip 96
Expert Contributor 15th Dec, 2010 09:12
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Stallman slams Chrome OS as “careless computing”
Open source guru warns of cloud computing
Iain Thomson in San Francisco
V3.co.uk, 14 Dec 2010
Richard Stallman, founder of the Free Software Federation, has slammed Google’s new operating system as ‘careless computing.”

In an interview with The Guardian Stallman said that the new operating system would be a hindrance, not a help to many users since its reason d’être was to promote cloud computing and remove users from having control of their own data.

"In the US, you even lose legal rights if you store your data in a company's machines instead of your own,” he said.

“The police need to present you with a search warrant to get your data from you; but if they are stored in a company's server, the police can get it without showing you anything. They may not even have to give the company a search warrant."

He said that the term cloud computing was essentially a meaningless marketing slogan designed to distract people from the reality of handing data over to third parties.



Read more: http://www.v3.co.uk/v3/news/2273935/stallman-chrom...


--
Was this reply relevant?
+0
-0
mogs CClip 97
Expert Contributor 15th Dec, 2010 10:54
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Google Cr-48: Inside the Chrome OS 'unstable isotope'

Mountain View goes to extremes
By Cade Metz in San Francisco • Get more from this author
Posted in Operating Systems, 14th December 2010 21:55 GMT
Review Microsoft gives you the Windows Explorer. Apple gives you the Mac OS X Finder. And Google gives you, well, nothing. With Google's Chrome OS – the browser-based operating system that reached a handful of outside beta testers late last week – there's no ready means of browsing files on your own machine.

In their lightning reviews of Google's beta machine – the Cr-48 – many technorati testers decried this inability to browse local files. One called it a "major oversight," hunting for workarounds that give him at least a partial glimpse of his own hard drive, and many seem to believe Google will tack on some sort of file explorer before the first official machines ship next year. But this, shall we say, misses the mark. It's bit like arguing that Microsoft will soon open source its Windows code.

With Chrome OS, Google's fundamental aim is to shift all your files and applications onto the web. There's no local file explorer because Google wants you to forget about your local file system. Completely.


http://www.theregister.co.uk/2010/12/14/google_chr...

--
Was this reply relevant?
+0
-0
mogs CClip 98
Expert Contributor 15th Dec, 2010 22:31
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Mozilla Extends Bug Bounty Program to Its Websites

December 15th, 2010, 15:46 GMT| By Lucian Constantin

Mozilla has extended its security bug bounty program to also reward the discovery of Web vulnerabilities like cross-site scripting (XSS), SQL injection (SQLi) or cross-site request forgery (CSRF), in its websites.

Mozilla's vulnerability reward program, one of the first of its kind, was originally limited to only critical vulnerabilities found in Firefox and Thunderbird, for which it paid $500.

The company raised the bounty this summer at $3,000 to better reflect the economic times and extended the program's reach to vulnerabilities in Firefox Mobile and other services that could impact its products.

"Many people are not aware that we have paid a bounty in the past on web application security vulnerabilities which impact client security," says Chris Lyon, Mozzila's director of infrastructure security.

More at :-
http://news.softpedia.com/news/Mozilla-Extends-Bug...

--
Was this reply relevant?
+0
-0
mogs CClip 99
Expert Contributor 15th Dec, 2010 22:40
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Microsoft Offers H.264 Support to Firefox on Windows via Add-On

December 15th, 2010, 16:34 GMT| By Marius Oiaga

Microsoft’s interoperability work related to modern web standards is in no way limited to Internet Explorer 9.

An illustrative example in this regard is the fact that the Redmond company worked to make Firefox a tad friendlier to a video codec that IE9 supports by default in the context of HTML5, but Mozilla ignores completely for Firefox 4.0.

Essentially, the new HTML5 Extension for Windows Media Player Firefox Plug-in add-on from the software giant offers users that are running Firefox on Windows H.264 support for HTML5 video playback.

More at :-
http://news.softpedia.com/news/Microsoft-Offers-H-...

--
Was this reply relevant?
+0
-0
mogs CClip 100
Expert Contributor 15th Dec, 2010 22:44
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Internet Explorer? Is that thing still around?
By John Leyden • Get more from this author
Posted in Enterprise Security, 15th December 2010 11:36 GMT
Microsoft released a bumper total of 17 bulletins on Tuesday - collectively addressing a total of 40 software security vulnerabilities - as part of its largest ever Patch Tuesday update.

Only two of the patch batch earn the dread rating of critical. One critical fix (MS10-090) addresses five critical flaws in Internet Explorer, some of which have been used in anger in hacking attacks. All currently supported versions of IE will need patching.

A new CSS vulnerability in IE, reported on a full disclosure mailing list last week, remains unpatched.

More at :-
http://www.theregister.co.uk/2010/12/15/dec_patch_...

--
Was this reply relevant?
+0
-0
mogs CClip 101
Expert Contributor 16th Dec, 2010 12:42
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Chrome Stable Channel Update
Wednesday, December 15, 2010 | 16:45
Labels: Stable updates

The Chrome Stable channel has been updated to 8.0.552.231 for Mac. This release contains a stability fix for web forms.

If you find new issues, please let us know by filing a bug. Want to change to another Chrome release channel? Find out how.

Jason Kersey
Google Chrome

http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 102
Expert Contributor 16th Dec, 2010 12:52
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Opera 11 is out

Smaller and faster
By Edward Berridge
Thu Dec 16 2010, 09:48
ALTERNATIVE BROWSER OUTFIT Opera has released the latest incarnation of its web browser, Opera 11, which is 30 per cent lighter than the previous version.
Opera 11 allows tab stacking, which means you can drag one tab on top of another to create a stack.
Extensions help you personalize the look of your browser. More than two million extensions have already been downloaded from https://addons.opera.com, so there are a few to play with.
The browser also uses mouse gestures let you navigate back and forwards, open new pages, close tabs and so much more.
There have been changes to the address bar, so you can make better sense of the security levels of the sites you visit. Opera 11 now displays a clear badge indicating the security level and allowing immediate, one-click access to security and trust information about the site.
Opera 11 is available at Opera's website. It is 30 per cent smaller than Opera 10.60, so it downloads even faster.
Although Opera's performance on PCs has been about as good as it ever has been, the outfit has been doing better on mobiles where its lightweight, fast browser is becoming popular on smartphones.


Read more: http://www.theinquirer.net/inquirer/news/1932994/o...


--
Was this reply relevant?
+0
-0
mogs CClip 103
Expert Contributor 16th Dec, 2010 17:31
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Chrome Beta Channel Update
Thursday, December 16, 2010 | 07:02
Labels: Beta updates

The Beta channel has been updated to 9.0.597.19 for Windows, Mac, Linux and Chrome Frame.

If you find new issues, please let us know by filing a bug at http://code.google.com/p/chromium/issues/entry

Anthony Laforge
Google Chrome

http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 104
Expert Contributor 16th Dec, 2010 18:00
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Computerworld - Microsoft's Internet Explorer 9 (IE9) blocks more malicious sites and malware than any other browser, including its predecessor IE8, according to a report released Tuesday.

The still-in-beta browser was five times more effective at warning users of potential danger than its closest rival, Mozilla's Firefox, said NSS Labs, which conducted a Microsoft-commissioned study of browser anti-malware tactics and technologies. IE9 also beat Microsoft's current production browser, IE8, by nine percentage points.

Microsoft claimed that IE9's improved score was due to the addition of SmartScreen Application Reputation, a new feature that uses a complex algorithm to rank the probability that a download is legitimate software.

More at :-
http://www.computerworld.com/s/article/9201282/IE9...

--
Was this reply relevant?
+0
-0
mogs CClip 105
Expert Contributor 17th Dec, 2010 07:35
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Sandboxed Flash Player Arrives in Chrome Beta

December 16th, 2010, 16:55 GMT| By Lucian Constantin

Google has released the beta version of Google Chrome 9 for early adopters, whose Windows version features a sandboxed Flash Player plugin.

The plan to add Flash Player under Chrome's sandbox was announced back in March and the effort began by creating a Flash plugin version ships with the browser by default.

Since July, Flash Player comes integrated in Chrome as a file called gcswf32.dll. Since then, Adobe and Google developers have focused on sandboxing the plugin.

In secure software development sandboxing refers to the practice of isolating processes from the underlying operating system in order to restrict the impact of vulnerabilities.

More at :-
http://news.softpedia.com/news/Sandboxed-Flash-Pla...

--
Was this reply relevant?
+0
-0
mogs CClip 106
Expert Contributor 17th Dec, 2010 07:45
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Chrome Dev Channel Update
Thursday, December 16, 2010 | 15:14
Labels: Dev updates
The Dev channel has been updated to 10.0.612.1 for Mac, Windows and Linux

This release fixes several crashes as well as:

All
Updated V8 - 3.0.2.1
Updated WebKit - 534.15
Windows
Google Cloud Print sign-in interface is now out from behind a flag and can be found in Under the Hood (Issue 60092)

http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0

justcanoes12

RE: Daily CYBERCLIPS December
[+]
This reply has been minimised due to a negative Relevancy Score.
mogs CClip 107
Expert Contributor 17th Dec, 2010 16:25
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

By Josh Lowensohn , CNET News, 17 December, 2010 13:01

Hotmail is rolling out a new platform called Active Views that lets users surf through certain websites from inside email messages.
A look at Microsoft's new Hotmail
Microsoft has partnered with specific companies as part of the launch to give users a way to do common tasks like searching and account management. Some of the first partners on that list are Orbitz and Monster.com, with Netflix and LinkedIn soon to follow.

When a Hotmail user gets an email from one of these companies, they will be able to use parts of that site from inside the message. For a site like Orbitz, it means that users who get a travel sale alert could then do a search for a trip, and have the results page load up within the message frame. Previously this would have jettisoned users out of Hotmail and into another tab or window.

More at :-
http://www.zdnet.co.uk/news/application-developmen...

--
Was this reply relevant?
+0
-0
mogs CClip 108
Expert Contributor 17th Dec, 2010 22:25
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK


December 17, 2010 10:00 AM PST
Google search results warn of compromised sites
by Elinor Mills

Google's new warning in search results lets you click on the warning label to get more information about the risk associated with the site, or ignore the warning and click the result to go straight to the site.
(Credit: Google)
Google has been warning Web surfers about sites that appear to be hosting malware in search results for years. Now, the company is adding a warning in search results when the site appears to be compromised but may not be actually downloading malware to visitors' computers.
Starting today, Google search users should start seeing a new hyperlink warning that says "This site may be compromised," adjacent to some results if Google's system has detected something on the site that would indicate that it has been hacked or otherwise compromised. Clicking on the warning link leads to a Help Center article with more information.
"If a site has ... Read full post & comments


Read more: http://news.cnet.com/security/#ixzz18PGQYkd2

--
Was this reply relevant?
+0
-0
mogs CClip 109
Expert Contributor 18th Dec, 2010 11:01
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
New Wave of Fake Amazon Emails Spreads Malware
December 17th, 2010, 18:01 GMT| By Lucian Constantin

Security researchers from Sophos warn that a new wave of fake emails posing as shipment updates from Amazon are distributing an autorun worm.

The rogue emails bear a subject of "Shipping update for your Amazon.com order" and their header is spoofed to appear as if they originate from an order-update@amazon.com address.

The contained message consists of the same text as the subject plus an alleged order number and instructions to "check the attachment and confirm your shipping details."

In addition, the body also contains an Amazon advertising banner and an image of an opened box, which were probably copied from a legit email sent by the company.

More at :-
http://news.softpedia.com/news/New-Wave-of-Fake-Am...

--
Was this reply relevant?
+0
-0
mogs CClip 110
Expert Contributor 18th Dec, 2010 20:38
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Microsoft has launched the latest version of its free Security Essentials.
(Credit: Microsoft)
Microsoft yesterday quietly released the latest version of its Security Essentials anti-malware software.
Security Essentials 2.0 is available as a free download with several changes over its predecessor. A Microsoft representative today confirmed the release.
Microsoft said the updated anti-malware engine makes the software faster and smarter at detecting security hazards. The software also now ties in with Windows Firewall, giving you the option of turning the firewall on or off. When I installed the 2.0 edition, it detected that Windows Firewall was not running and asked if I wanted to enable it.
The new version integrates with Internet Explorer to detect Web-based threats and can watch out for malware coming in through a network, though only for those running Windows Vista or Windows 7.
The successor to Live OneCare, Security Essentials 1.0 debuted in September 2009 ... Read full post & comments


Read more: http://news.cnet.com/security/#ixzz18Ug4qSDg

--
Was this reply relevant?
+0
-0
mogs CClip 111
Expert Contributor 19th Dec, 2010 09:52
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
7 Scams to Avoid from Cyber-Scrooges
By Joan Goodchild, CSO Dec 18, 2010 12:53 PM

The holiday scam season is upon us.

For Beth Jones, a senior threat researcher with Sophos, this time of year means an upswing in fraudulent activity online. Between malware authors looking to infect machines, and identity thieves hoping to con consumers out of credit card information, this is the prime month for behavior that qualifies for the naughty list.

"The two-week mark before Christmas is when things start to ramp up out of control," said Jones. "Spammers and malware authors focus on when the attention is going to be there. That's generally two weeks before a holiday."

Read about other common social engineering scams and how to detect them

And you don't need to be shopping online to get caught in one of their traps. Even checking out email or spending time on Facebook and Twitter has its risks for the unaware. Here are seven holiday humbugs to avoid.

More at :-
http://www.pcworld.com/article/214184/7_scams_to_a...

--
Was this reply relevant?
+0
-0
mogs CClip 112
Expert Contributor 19th Dec, 2010 12:17
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Black Viper
Site Updates

News ~ Quick notes on what has been happening with the domain, my life or the computer industry.

What is New? ~ Updated: December 16, 2010
Popular Content
Windows Services ~ Includes complete explanations of each service and advice on which services you can safely disable.

Windows 7 Service Pack 1 Service Configurations ~ Updated: December 16, 2010
Windows Server 2008 R2 Service Configurations ~ Updated: August 5, 2010
Windows Vista Service Pack 2 Service Configurations ~ Updated: June 24, 2010
Windows XP x64 (64-bit) Service Pack 2 Service Configurations ~ August 5, 2010
Windows XP x86 (32-bit) Service Pack 3 Service Configurations ~ Updated: June 24, 2010
Windows 2000 Service Pack 4 Service Configurations ~ Updated: February 26, 2009

Lots more at :-
http://www.blackviper.com/



--
Was this reply relevant?
+0
-0
mogs CClip 113
Expert Contributor 19th Dec, 2010 14:47
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Softpedia Holiday Discounts and Givaways By Ionut Ilascu

Paying 63.99 EUR (around $84) for software packs that can regularly be bought for 159.99 EUR (about $210) is not an offer one stumbles across on a daily basis. But since Christmas is almost around the corner, and customers are pickier than ever this time of the year, Softpedia is bringing an avalanche of discounts.

Lots more at :-
http://news.softpedia.com/news/Softpedia-Holiday-D...


--
Was this reply relevant?
+0
-0
mogs CClip 114
Expert Contributor 19th Dec, 2010 15:06
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
This Online Password Generator allows the creation of multiple random passwords of a given complexity. The combination of lower and upper case letters, numbers and punctuation symbols makes the passwords highly secure and difficult to guess or crack. Behaving randomly is surprisingly difficult for humans, so let a password generator do the job. If you need a shared secret for a limited time, try the random number generator instead.

http://www.techzoom.net/tools/password-generator.e...

--
Was this reply relevant?
+0
-0
mogs CClip 115
Expert Contributor 19th Dec, 2010 20:17
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
New Malware Distribution Crimeware Kit Surfaces on the Underground Market

December 19th, 2010, 18:05 GMT| By Lucian Constantin

Security researchers from Symantec have spotted a new crimeware toolkit being sold on the underground market, which generates a trojan that is exclusively used to distribute malware.

Crimeware toolkits are programs that can be used to create customized versions of trojans along with their command and control (C&C) software.

ZeuS or SpyEye are some of the most well known examples of crimeware toolkits, but compared to this new one, which is called "Dream Loader," they are significantly more complex.

"The pack, version 0.3, is relatively new and seems to be originating from Russia; it was first found in November and is designed to be modular and load plugins," notes Symantec security researcher Andrea Lelli.

Read more at :-
http://news.softpedia.com/news/New-Malware-Distrib...

--
Was this reply relevant?
+0
-0
mogs CClip 116
Expert Contributor 19th Dec, 2010 20:49
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
As concern about online privacy grows, Mozilla is promising to let people cloak Internet activity in free Firefox Web browsing software being released early next year.
"Technology that supports something like a 'Do Not Track' button is needed and we will deliver in the first part of next year," Mozilla chief executive Gary Kovacs said while providing a glimpse at Firefox 4 at the Mozilla's headquarters in Mountain View, California.
"The user needs to be in control," he added.
There is a disturbing imbalance between what websites need to know about visitors to personalize advertisements or services and the amount of data collected, according to Kovacs.
"It is not that ads are bad," he said. "It is what they do with my tracked behavior.

Read more at :-
http://www.physorg.com/news/2010-12-firefox-track-...

--
Was this reply relevant?
+0
-0

shanne

RE: Daily CYBERCLIPS December
[+]
This reply has been minimised due to a negative Relevancy Score.
mogs CClip 117
Expert Contributor 20th Dec, 2010 07:38
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Computerworld - Microsoft last week pulled an update for Outlook 2007 issued just two days earlier, citing connection and performance problems for the unusual move.

The update was issued mid-day on Dec. 14 as part of the monthly Patch Tuesday. Within hours, users reported trouble with retrieving e-mail and major delays when switching folders.

"This latest update results in Outlook 2007 being very slow in changing folders and the archiving functionality appears to have been removed," said someone identified as "alspar" on a Microsoft support forum early Wednesday morning. "Is this an error or by design?"

Others said they couldn't send or receive e-mail, including Gmail messages, through Outlook after installing the update.

Ironically, Microsoft had billed the update, which didn't patch any security vulnerabilities, as one that contained "stability and performance improvements."

More at :-
http://www.computerworld.com/s/article/9201638/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 118
Expert Contributor 20th Dec, 2010 10:37
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Defrag Scareware Distributed Through Compromised OpenX Servers

December 20th, 2010, 07:22 GMT| By Lucian Constantin

Scammers behind the new family of scareware programs that pose as hard disk drive defragmentation utilities are using vulnerable OpenX servers to launch drive-by downloads and infect users.

This new attack was spotted by security researchers from Web application security solutions vendor Armorize Technologies, who last week revealed that the same cyber criminals managed to get malicious ads onto Google's and Microsoft's advertising networks.

More at :-
http://news.softpedia.com/news/Defrag-Scareware-Di...

--
Was this reply relevant?
+0
-0
mogs CClip 119
Expert Contributor 20th Dec, 2010 10:41
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Microsoft Kills Office Anti-Piracy Mechanism

December 20th, 2010, 07:41 GMT| By Marius Oiaga

Microsoft has killed off the anti-piracy mechanism designed to validate whether customers were running genuine copies of Office or not.

And the Redmond company has been as quiet about the death of Office Genuine Advantage as it was about the recent release of Microsoft Security Essentials 2.0.

However, the move was indeed confirmed officially by the software giant, which published a Knowledge Base article containing a tad of information of the discontinuing of the Office anti-piracy watchdog.

“The Office Genuine Advantage (“OGA”) program has been retired. For more information about the benefits of genuine Office, please visit the following website: Benefits of genuine Office,” Microsoft revealed (via Ed Bott).

More at :-
http://news.softpedia.com/news/Microsoft-Kills-Off...

--
Was this reply relevant?
+0
-0
mogs CClip 120
Expert Contributor 20th Dec, 2010 12:10
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

One in four switch off resource hogs
By John Leyden • 20th December 2010 10:32 GMT
One in four users turned off their anti-virus protection in response to performance problems after they installed security software, according to a survey by security software firm Avira.

The poll of users of the German anti-virus outfit, which like AVG and Avast offers free security software to consumers, also found that more than three in five (62.8 per cent) users had tried multiple anti-virus products over the last year.

More than 9,000 users responded to the survey, which Avira argues illustrates that users will no longer tolerate security software that acts as a resource hog, slowing down their machines to a crawl.

More at :-
http://www.theregister.co.uk/2010/12/20/anti_virus...

--
Was this reply relevant?
+0
-0
mogs CClip 121
Expert Contributor 20th Dec, 2010 12:20
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
For the last couple weeks I've been focusing on Windows basics ("Windows Explorer Explained: Tips for Newbies" and "Windows Explorer Tips: Select Files Fast, Show Extensions, Rename Setup Files"). This week let's move on to a new topic: getting Mozilla Firefox to run more efficiently. Read on if you've ever been frustrated by slow performance in Firefox.

Improve Firefox Performance by Clearing the Downloads List
Recently I noticed that whenever I downloaded a file in Firefox, the program turned into molasses--especially just after the download finished. The browser would literally freeze up for seconds at a time for about a minute after.

On a whim, I opened up the Downloads list (accessible by pressing Ctrl-J). It was pretty lengthy; I hadn't cleared it in as long as I could remember. Admittedly, I just never bothered, as I didn't think it necessary. Also on a whim, I clicked Clear List, which wiped the slate clean, so to speak. (This doesn't delete your downloads, but merely Firefox's record of them.)

You know what? The next time I downloaded a file, Firefox hummed along like its regular speedy self. No hangs, no delays. I'm not sure why this made the difference, but it definitely did. If you're encountering a similar issue, I recommend trying the same procedure.

Read more at :-
http://www.pcworld.com/article/213622/quick_tips_f...

--
Was this reply relevant?
+0
-0
mogs CClip 122
Expert Contributor 20th Dec, 2010 15:13
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Google Unwilling to Share Gmail Encryption Keys with Indian Government

December 20th, 2010, 08:30 GMT| By Lucian Constantin

Google does not plan to provide the Indian government with the encryption keys necessary to intercept Gmail traffic in a readable format, but will comply with lawful access requests.

The Indian government's department of telecommunications considers mandating that all companies offering secure communication services in the country hand over the encryption keys in order to allow national security agencies to intercept data when needed.

Vinay Goel, Google India's head of products, told the Economic Times that the company has not yet been asked to provide the encryption keys Gmail, but noted that such a request would almost certainly be declined.

"When users entrust their data with us, we are expected to protect it, which is why, user privacy is very important for Google," Mr. Goel said.

The Mountain View-based Web search giant has enabled SSL encryption by default for its Gmail service since the beginning of this year.

In fact, Gmail is currently the only large free email service which provides default full-session HTTPS, a feature protecting communications from being intercepted by cyber criminals or governments.

More at :-
http://news.softpedia.com/news/Google-Refuses-to-S...

--
Was this reply relevant?
+0
-0
mogs CClip 123
Expert Contributor 20th Dec, 2010 17:14
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
MSE releases revamped freebie malware scanner

Lock and load
By John Leyden • Get more from this author
Posted in Malware, 20th December 2010 11:45 GMT
Microsoft has released a new version of its freebie security scanner tool last week, following the conclusion of a five-month beta testing program.

Microsoft Security Essentials (MSE) 2.0 features a revamped heuristic (automatic malware detection) engine as well as the addition of network intrusion detection technology. Less significantly, the slightly redesigned dashboard allows users to manage Microsoft's firewall from inside MSE. MSE 2.0 also features tighter integration with Internet Explorer as a mechanism for protecting against web-based threats.

The software comes at no extra charge to users of Windows XP SP2 and higher, Windows Vista, and Windows 7. Small businesses with up to 10 PCs can also use the software as a defence against spyware, viruses, worms and Trojans.

Read more at :-
http://www.theregister.co.uk/2010/12/20/ms_freebie...

--
Was this reply relevant?
+0
-0
mogs CClip 124
Expert Contributor 21st Dec, 2010 08:38
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Survey Scammers Exploit Plans to Give People Facebook.com Email Addresses

December 20th, 2010, 18:41 GMT| By Lucian Constantin

Security researchers warn that survey scammers are trying to capitalize on Facebook's legit intention of offering all of its users @facebook.com email addresses.

An ongoing scam produces spam messages reading "Just got my own email @facebook.com! Quickly get one before someone takes your name [link]"

In November Facebook announced a new unified messaging system, which will allow people to send and receive email, SMS and instant messages, all in a single place.

Part of this new feature, which will be slowly rolled out to users in upcoming months, is to give them all @facebook.com email addresses.

More at :-
http://news.softpedia.com/news/Survey-Scammers-Exp...

--
Was this reply relevant?
+0
-0
mogs CClip 125
Expert Contributor 21st Dec, 2010 09:43
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Researchers create botnet to learn how it works
By Joan Goodchild
December 20, 2010 03:04 PM
CSO - A team of researchers in Canada recently released results of a study in which they created a botnet strictly for experimental purposes. The simulation allowed the researchers at Ecole Polytechnique de Montreal, with collaborators at Nancy University in France, and Carlton University in Ottawa, to observe the botnet's behavior while keeping it from infecting other machines.

Botnets are complex and large distributed systems consisting of several thousands, and in some cases, millions of computers often exploited by criminals for nefarious activity such as sending out spam, launching denial-of-service attacks, or installing spyware (Also see Zeus botnet targets holiday shoppers).

"Practically all internet users have experienced the ill effects of botnets, whether by receiving large volumes of spams daily, having their confidential information stolen, lost access to critical Internet services," the researchers state in a summary of the results.

More at :-
http://www.computerworld.com/s/article/9201802/Res...

--
Was this reply relevant?
+0
-0
mogs CClip 126
Expert Contributor 21st Dec, 2010 21:24
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Hotmail Phishers Impersonate Microsoft Employees

December 21st, 2010, 12:50 GMT| By Lucian Constantin

Security researchers from ESET warn of a phishing campaign targeting Hotmail users, which produces emails signed in the name of a Microsoft program manager.

The rogue emails bear a subject of "Alert - Reset your Windows Live password" and appear as if they were sent to a members-services43@live.com address.

The message is poorly formulated and does not direct users to an external phishing website, like most attacks of this type do.

Instead it asks recipients to fill in their username, password, date of birth and country in a static form and send it back. It reads:

See more at :-
http://news.softpedia.com/news/Hotmail-Phishers-Im...

--
Was this reply relevant?
+0
-0
mogs CClip 127
Expert Contributor 22nd Dec, 2010 09:04
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Fake iTunes Email Alerts Lead Users to Drive-By Download

December 21st, 2010, 16:56 GMT| By Lucian Constantin

A wave of fake iTunes emails falsely alerting recipients about their accounts facing suspension directs them to a Web page that tries to install malware on their computers.

The rogue emails are crafted to appear as if they originate from a contact@itunes.com address and bear a subject of "iTunes account may be suspended."

"Dear iTunes Customer, it is possible that your account password has been stolen. 4 different IP addresses have been used to login to your account within the last 24 hours. Please visit the bellow link and read what to do and how to contact support department," the message reads.

This sounds very much like a phishing scam, but Alex Eckleberry, general manager of the security software division at GFI, points out that the intention of the attackers is to silently infect users.

More at :-
http://news.softpedia.com/news/Fake-iTunes-Email-A...

--
Was this reply relevant?
+0
-0
mogs CClip 128
Expert Contributor 22nd Dec, 2010 09:08
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Mozilla to unload Firefox 4 spit and polish beta

Open source shine treatment
By Cade Metz in San Francisco • Get more from this author
Posted in Developer, 22nd December 2010 01:14 GMT
Firefox is due to release an eighth Firefox 4 beta. Not to be confused with a fourth Firefox 8 beta.

The latest test version of Firefox 4 – due for an official debut next year – was scheduled to go live on Tuesday. Mozilla hasn't added any new tools, but according to the release notes, the open sourcers have polished a few things, including the browser's Sync service, which synchronizes bookmarks, history, and other setting across multiple devices; its WebGL 3D rendering tech; and its add-ons manager.

The beta also fixes hundreds of bugs. You can eventually download it here for Windows, Mac, and Linux. As of Tuesday evening Pacific time, the download button had not yet been switched from beta 7 to beta 8.

More at :-
http://www.theregister.co.uk/2010/12/22/eighth_fir...

--
Was this reply relevant?
+0
-0
mogs CClip 129
Expert Contributor 22nd Dec, 2010 12:33
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
ChromeDev Channel Update
Thursday, December 16, 2010 | 15:14
Labels: Dev updates
Update: The Dev channel has been updated to 10.0.612.3 for Windows and Mac to correct a RegEx regression.

http://googlechromereleases.blogspot.com/

--
Was this reply relevant?
+0
-0
mogs CClip 130
Expert Contributor 22nd Dec, 2010 13:20
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
You know when you're watching a pirated film downloaded from the Internet -- there's no mistaking the fuzzy footage, or the guy in the front row getting up for popcorn. Despite the poor quality, pirated video is a serious problem around the world. Criminal copyright infringement occurs on a massive scale over the Internet, costing the film industry -- and the U.S. economy -- billions of dollars annually.
Now Dr. Alex Bronstein of Tel Aviv University's Department of Electrical Engineering has a new way to stop video pirates. With his twin brother Michael and Israeli researcher Prof. Ron Kimmel, he has developed the ultimate solution: treating video footage like DNA.
Sequencing the video genome
"It's not only members of the animal and plant kingdom that can have DNA," says Dr. Bronstein, who was inspired by DNA sequencing tools used in bioinformatics laboratories. "If a DNA test can identify and catch criminals, we thought that a similar code might be applicable to video. If the code were copied and changed, we'd catch it."
Of course, video does not have a real genetic code like members of the animal kingdom, so Dr. Bronstein and his team created a DNA analogue, like a unique fingerprint, that can be applied to video files. The result is a unique DNA fingerprint for each individual movie anywhere on the planet.

Read more at :-
http://www.physorg.com/news/2010-12-avatar-dna.htm...

--
Was this reply relevant?
+0
-0
mogs CClip 131
Expert Contributor 22nd Dec, 2010 22:45
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Firefox 4.0 Beta 9 in Early 2011

December 22nd, 2010, 16:48 GMT| By Marius Oiaga

The next development milestone of Firefox 4.0 will be shipped in early 2011, with Beta 8 currently available for testing.

The fact that Mozilla will only be able to deliver Beta 9 no earlier than January 2011 is a true measure of the delays that hit the project.

Some users might remember that the initial plan was to have Firefox 4.0 wrapped up and ready to go by the end of November 2010.

But in November 2010, Mozilla still had three Beta Builds of Firefox 4.0 to deliver, and it only managed to offer Beta 8 to early adopters on December 11th.

And the final version of Firefox 4.0 is not really just around the corner. Not by any standards.

More at :-
http://news.softpedia.com/news/Firefox-4-0-Beta-9-...

--
Was this reply relevant?
+0
-0
mogs CClip 132
Expert Contributor 22nd Dec, 2010 22:49
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Computerworld - Security researchers have released attack code that exploits an unpatched bug in Microsoft's Internet Explorer (IE) and sidesteps defenses baked into Windows 7.

Microsoft said it was looking into the vulnerability.

"Microsoft is investigating new public claims of a possible vulnerability in Internet Explorer," said Dave Forstrom, the director of Microsoft's Trustworthy Computing group, in statement. "We're currently unaware of any attacks trying to use the claimed vulnerability or of customer impact."

The bug first surfaced earlier this month when French security firm Vupen announced it had uncovered a flaw in IE's HTML engine that could be exploited when the browser processed a CSS (Cascading Style Sheets) file that included "@import" rules. The @import rules let Web designers add external style sheets to an existing HTML document.

Read more at :-
http://www.computerworld.com/s/article/9202001/Res...

--
Was this reply relevant?
+0
-0
mogs CClip 133
Expert Contributor 23rd Dec, 2010 07:12
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Exploit Code Released for New IE 0Day Vulnerability

December 22nd, 2010, 17:18 GMT| By Lucian Constantin

Exploit code for an unpatched remote code execution vulnerability in Internet Explorer has been added to the popular Metasploit open source penetration testing framework.

The flaw was originally reported as a denial of service condition on the Full Disclosure mailing list on December 8.

However, vulnerability research companies like Secunia and VUPEN Security warned that it could also be exploited to execute arbitrary code.

"This issue is caused by a use-after-free error within the "mshtml.dll" library when processing a web page referencing a CSS (Cascading Style Sheets) file that includes various '@import' rule," VUPEN explains.

Microsoft has confirmed in a newly published advisory that Internet Explorer 6, 7 and 8, running on all supported Windows versions, are affected.

Read more at :-
http://news.softpedia.com/news/Exploit-Code-Releas...

--
Was this reply relevant?
+0
-0
mogs CClip 134
Expert Contributor 23rd Dec, 2010 21:13
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
New IE9 Holiday HTML5 Experiences on GPU Steroids Ahead of Christmas

December 23rd, 2010, 08:20 GMT| By Marius Oiaga

With Christmas just around the corner, the IE team made sure Santa packed some Internet Explorer 9 goodies in his bag this year.

A couple of new experiences built to highlight IE9’s full hardware acceleration are now available through the IE Test Drive center.

Just make sure you have the IE9 Beta installed, or grab the last Platform Preview and head over to the site to check out Santa’s Workshop and HTML5 Blizzard.

Read more at :-
http://news.softpedia.com/news/New-IE9-Holiday-HTM...

--
Was this reply relevant?
+0
-0
mogs CClip 135
Expert Contributor 23rd Dec, 2010 21:26
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Windows Automatic Update settings
If you have Windows check for updates but not install, latest version of MSE may change your setting without permission
By Woody Leonhard | InfoWorld

Microsoft released version 2.0 of Microsoft Security Essentials last week.

Microsoft Security Essentials, you may recall, is the antimalware product that Microsoft offers free to individuals and organizations with 10 or fewer users. It's the consumer- and small-business-oriented version of the engine that drives Microsoft Forefront Endpoint Protection. The new version of FEP is due next month.

At this moment, Microsoft Security Essentials 2.0 is not installed automatically. You can only get it by venturing to the MSE site, then manually downloading and installing it. Note that the Microsoft Security Essentials site doesn't even mention version 2.0. But if you click the Download Now button, that's what you'll get.

More at :-
http://www.infoworld.com/t/anti-virus/microsoft-se...

--
Was this reply relevant?
+0
-0
mogs CClip 136
Expert Contributor 24th Dec, 2010 08:14
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

BitDefender Releases BitTorrent Scanner
December 22nd, 2010, 18:26 GMT| By Lucian Constantin



Romanian antivirus vendor BitDefender has released a stand-alone malware scanner which integrates with µTorrent and can be used to check downloaded torrents for threats.

µTorrent, intended to be called "micro torrent," but commonly referred to as utorrent, is the most popular BitTorrent client after Xunlei, which is almost exclusively used in China.

Since version 2.2, µTorrent offers a software development kit (SDK) for third-party developers to extend the functionality of the client with their own apps.

Dubbed "Virus Guard," BitDefender's newly released µTorrent app is most likely at the core a rebranded version of the company's BitDefender free malware scanner.

More at :-
http://news.softpedia.com/news/BitDefender-Release...

--
Was this reply relevant?
+0
-0
mogs CClip 137
Expert Contributor 24th Dec, 2010 08:18
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
The First Taste of Windows 8 and a New Windows OS for Tablet PCs Coming Right Up

December 23rd, 2010, 20:54 GMT| By Marius Oiaga



2011 is just around the corner, and expectations of Microsoft could not be higher for next year, especially those related to its flagship product, the Windows platform.

The Redmond company has yet to confirm any details officially, but speculation indicates that it is gearing up to serve the first taste of Windows 8 and a new flavor of Windows tailored to slates in early 2011.

More at :-
http://news.softpedia.com/news/The-First-Taste-of-...

--
Was this reply relevant?
+0
-0
mogs CClip 138
Expert Contributor 24th Dec, 2010 08:48
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
GFI Warns of Malware Masquerading as Disk Utilities
December 22, 2010
By eSecurityPlanet Staff

Security researchers at GFI Software are warning of an increase in the amount of malware posing as disk utilities.

"The rogue products initially looked like a generic security product, addressing a range of system issues with names such as HDDDDiagnostic, PCoptomizer and Privacy Corrector, according to GFI," writes eWeek's Fahmida Y. Rashid.

"Since then, there’ve been a series of 'defragger clones' with names like UltraDefragger and ScanDisk that claim to find read/write errors on the hard disk drive," Rashid writes.

http://www.esecurityplanet.com/headlines/article.p...

--
Was this reply relevant?
+0
-0
mogs CClip 139
Expert Contributor 24th Dec, 2010 14:15
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Mozilla takes on web data miners with privacy icon release

Now, how to convince websites to adopt the damn things?
By Kelly Fiveash •
Posted in Applications, 24th December 2010 12:55 GMT
Mozilla has pushed out a series of privacy icons that tell web surfers how their online data might be used depending on what site they've visited.

The open source browser maker's user interface design guru, Aza Raskin, who announced just last week that he was leaving Mozilla in January, released an alpha version of the icons yesterday.

"Think about the large number of sites which vehemently promise to never share your email address when you sign up for their service or mailing list. Those are the kinds of sites, which make up a significant fraction of the web, that would adopt Privacy Icons," explained Raskin on his blog.

He wants the Firefox icons to work as a "bolt on" to existing privacy policies held on individual websites.

More at :-
http://www.theregister.co.uk/2010/12/24/mozilla_pr...

--
Was this reply relevant?
+0
-0
mogs CClip 140
Expert Contributor 24th Dec, 2010 14:18
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK


The fall months may be the season for colder weather and dying leaves, but in the software world it means major updates for security suites. We've reviewed and benchmarked 11 suites, organized them along the traditional line of cost, and picked one in each category that we highly recommend.
We looked at four updated free security options: AVG Anti-Virus Free 2011, Panda Cloud Antivirus 1.3, Microsoft Security Essentials 2, and Ad-Aware Free Internet Security 9. Other well-known free security programs, such as Avast and Avira, generally update in late winter or spring, so they were not included.


Read more: http://news.cnet.com/security/#ixzz192DZUWBk

--
Was this reply relevant?
+0
-0
mogs CClip 141
Expert Contributor 24th Dec, 2010 17:46
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Skype makes wobbly return, offers compo to paying punters

It wasn't malicious, just a total FAIL
By Kelly Fiveash • Get more from this author
Posted in Servers, 24th December 2010 10:53 GMT
Skype is slowly coming back to life after suffering a major outage over the past few days and, in an effort to say sorry, the firm is offering to compensate its paying customers.

Users of the VoIP service were unable to log into Skype on Wednesday, and the trouble has continued for many over the past 48 hours.

More at :-
http://www.theregister.co.uk/2010/12/24/skype_retu...

--
Was this reply relevant?
+0
-0
mogs CClip 142
Expert Contributor 24th Dec, 2010 21:38
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Microsoft Advisory Tackles Unpatched IE Vulnerability

By: Larry Seltzer
12.24.2010 0 Comments

Microsoft has issued an advisory for an unpatched vulnerability affecting all versions of Internet Explorer on all platforms. The vulnerability could allow a malicious Web page to trigger a denial of service or remote code execution in the context of the IE user. Exploit code for the vulnerability has been published, but there are no reports yet of active exploits in the wild.
The vulnerability is of a type known as "use-after-free" and is in the CSharedStyleSheet::Notify function in the CSS parser in mshtml.dll. Multiple @import calls in the attack document trigger the vulnerability. It was first reported by wooyun.org.
The exploit bypasses Address Space Layout Randomization (ASLR) and Data Execution Prevention (DEP) by taking advantage of a library it loads (mscorie.dll). This was not compiled with the /DYNAMICBASE option that enables ASLR and therefore loads predictably at the same address. Microsoft doesn't say why this, and apparently other libraries, weren't compiled with this option, but suggests that you use its Enhanced Mitigation Experience Toolkit to force all loaded DLLs to dynamically rebase. This change should make the exploits highly unlikely to succeed. A video on the Microsoft Web site demonstrates the process.

More at :-
http://www.pcmag.com/article2/0,2817,2374710,00.as...

--
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS December
Expert Contributor 24th Dec, 2010 22:18
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
If it's peaceful don't correct it :
for one day at least.
Peace on Earth...goodwill to all men:
Who'll feed the camel ? Who'll water the beast ?!
No warnings from Cyberclips tomorrow !
Happy Christmas and a better year everybody!

--
Was this reply relevant?
+0
-0
mogs CClip 143
Expert Contributor 25th Dec, 2010 23:08
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

What Is Puran Defrag? - A Disk Defragmenter
The files saved on your hard disk will become fragmented for various reasons. Because of this, your hard disk is extra busy gathering data from different fragments located at various locations on the hard disk in order to access your files. This process degrades your hard disk performance and overall system speed which gets gradually worse over time. In addition, the read/write speed of your hard disk varies by location and the files on your hard disk are randomly distributed. Therefore, you lose any potential speed gains from other system optimization programs.

Puran Defrag provides the solution! Puran Defrag is a very simple disk defragmenter which will defrag the files and optimize your system, collecting all the fragments of a file and putting them together, as well as moving some frequently used files and all directories to faster disk areas. This process boosts your hard disk performance and thus overall system speed. In addition it reduces wear and tear on your hard disk, thereby increasing its life span.


Main Features
Puran Intelligent Optimizer - PIOZR
Directories Consolidation for speed boost
Optimization by Freeing Space
Automatic Defragmentation for worry free defrag
Boot Time Defragmentation for system files like MFT
Low Priority Defrag for work while defrag experience
Individual File/Folder Defrag for selective defrag
GUI and Console Command Line Defrag Supported
Restart/Shutdown After Boot Time Defragmentation
File/Folder Exclusion or exclusion by wildcard facility
Native support for 64Bit Windows
Supports Windows Xp/2003/Vista/2008/7



Puran Intelligent Optimizer - PIOZR
PIOZR is a revolutionary technology which makes your computer faster than ever before. It works on the simple principle that "Things most needed should be placed at the most accessible places in order." This principle applies to your PC's hard disk as well; The outer edge is the fastest, and as we go inside reading and writing speed slows. PIOZR places frequently used files in order at faster disk areas, boosting the overall system speed.

Directories Consolidation and Optimization by Freeing Space
Directories are generally accessed the most in any system, so it's a good idea to move these directories to contiguous and faster areas of the disk for better system performance. Puran Defrag will do this for you if you select this option. Directories Consolidation works only with NTFS partitions.

Optimization by Freeing Space will free certain space on the faster disk area which can be used by Windows for creating its temporary files. This enhances Windows performance and thus overall system speed. This will free space only on the volume having Windows installed, the only place it's needed.

Automatic Defragmentation
Puran Defrag provides two Automatic Defragmentation types - One is a simple Automatic Defragmentation and the other is Automatic Boot Time Defragmentation. Automatic Defragmentation gives you different options like defrag at every startup, defrag after every some min/hrs, at specific time on any day of the week or on any day of the month.

Automatic Boot Time Defragmentation runs Boot Time Defrag at every boot, at first boot of the day only, at first boot on any day of the week or day of the month, giving you a wide range of options.

Boot Time Defragmentation
Some of the files like MFT, Registry, Pagefile etc cannot be defragmented or are not safe to defrag when Windows is running. This is when Boot Time Defragmentation displays its benefits, defragmenting these files at Windows Boot Time and getting optimal results.

Puran Defrag provides a very powerful Boot Time Defrag that defragments not only the system files but the entire drive, giving you the maximum benefits.

Low Priority Defrag
Low Priority Defrag allows you to use your computer at full capacity even when defragmentation is running. As its name suggests, it keeps itself in Low Priority Mode which means that Puran Defrag will use a resource only if it is not being used by any other process which avoids interruption of your work.

Free download at :( go to base of page ):-
http://www.puransoftware.com/Puran-Defrag-Download...

--
Was this reply relevant?
+0
-0
mogs CClip 144
Expert Contributor 26th Dec, 2010 09:10
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
The First Taste of Windows 8 and a New Windows OS for Tablet PCs Coming Right Up
By Marius Oiaga

2011 is just around the corner, and expectations of Microsoft could not be higher for next year, especially those related to its flagship product, the Windows platform.

The Redmond company has yet to confirm any details officially, but speculation indicates that it is gearing up to serve the first taste of Windows 8 and a new flavor of Windows tailored to slates in early 2011.

Of course, as far as the technology world is concerned each January brings with it a new edition of the Consumer Electronics Show, an event in which various companies, Microsoft included, traditionally deliver sneak peeks at their plans for the future.

There is already talk of an entirely new version of Windows, one adapted to ARM chipsets.

More at :-
http://news.softpedia.com/news/The-First-Taste-of-...

--
Was this reply relevant?
+0
-0
mogs CClip 145
Expert Contributor 26th Dec, 2010 09:19
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK


By Gregg Keizer
December 25, 2010 02:37 PM
Computerworld - Sales of Microsoft's three-license Windows 7 Family Pack will end next week, according to online retailer Amazon.

The Family Pack gives consumers three upgrade licenses from Windows XP or Vista to Windows 7 Home Premium. When it started selling the $150 package in early October, Microsoft said it would offer the deal for a limited time, but did not set an end date.

On Friday, Amazon's page for the Family Pack told customers that the product would be "available to purchase until December 31, or while supplies last."

http://www.computerworld.com/s/article/9202418/Mic...

--
Was this reply relevant?
+0
-0
mogs CClip 146
Expert Contributor 26th Dec, 2010 09:27
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Police in China are offering cash and other rewards to encourage the country's millions of Internet users to help solve criminal investigations, state media said Saturday.
Authorities in the far-western region of Xinjiang this month posted a photo of a crime scene on the Internet alongside a reward of 500 to 5,000 yuan (75 to 750 dollars) in cash or so-called QQ coin for information about the case, the China Daily said.
QQ coin is a form of currency that registered users of the popular instant messaging service QQ use to pay for virtual products such as games.
While the reward scheme has yet to yield any useful clues, authorities said it was a good way to tap the country's vast online population -- the world's biggest at more than 420 million.

Read more at :-
http://www.physorg.com/news/2010-12-police-china-i...

--
Was this reply relevant?
+0
-0
mogs CClip 147
Expert Contributor 26th Dec, 2010 11:25
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Registry errors can cause many problems, starting from computer slowdowns to system hanging and crashes. Auslogics is proud to offer one of the most stable and reliable registry cleaners available on the market. It is designed for fixing and repairing the Windows Registry and is absolutely FREE!

Why use Auslogics Registry Cleaner?
Fixing registry errors helps to avoid system crashes.
Registry cleanup will speed up your computer.
Auslogics Registry Cleaner is recommended by industry experts.
It is safe to use as all changes are backed up and can be easily restored.
This is one of the most popular registry cleaners on the Internet.
It is absolutely FREE!

Causes of Registry Errors
Windows Registry is a database that stores crucial settings and options of the Microsoft Windows operating system. Registry entries are created for each application and driver installed on your computer. When running, a program may access the Registry thousands of times per second.
Just like any other database, the Registry becomes a real mess without proper maintenance. When you uninstall programs, invalid entries can be left behind and cause various errors. As a result your computer slows down, starts freezing, and crashing. That's why it's very important to clean the Registry regularly.

System Requirements
Windows 7/2008/Vista/2003/XP (32-bit & 64-bit)
10 MB available hard disk space
32 MB RAM

Free download at :-
http://www.auslogics.com/en/software/registry-clea...


--
Was this reply relevant?
+0
-0
mogs CClip 148
Expert Contributor 26th Dec, 2010 13:32
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
25 December 2010 Last updated at 17:31
Ka-Sat net-dedicated spacecraft ready for launch
By Jonathan Amos
Science correspondent, BBC News
Europe is about to get a second satellite dedicated to delivering broadband internet connections.

The six-tonne Ka-Sat will be launched atop a Proton rocket from Baikonur in Kazakhstan in a flight expected to last nine hours and 12 minutes.

The Eutelsat-operated spacecraft will concentrate its services on customers in the so-called "not-spots" of Europe.

It is estimated that tens of millions of households in these areas cannot get a decent terrestrial connection.

More at :-
http://www.bbc.co.uk/news/science-environment-1206...

--
Was this reply relevant?
+0
-0
mogs CClip 149
Expert Contributor 26th Dec, 2010 13:54
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Thomas Duebendorfer1, Stefan Frei 2
Silent Updates
Google Switzerland GmbH, Switzerland
Computer Engineering and Networks Laboratory (CSG), Switzerland

Security fixes and feature improvements don't benefit the end user of software if the update mechanism and strategy is not effective. In this paper we analyze the effectiveness of different Web browsers update mechanisms; from Google Chrome's silent update mechanism to Opera's update requiring a full re-installation. We use anonymized logs from Google's world wide distributed Web servers. An analysis of the logged HTTP user-agent strings that Web browsers report when requesting any Web page is used to measure the daily browser version shares in active use. To the best of our knowledge, this is the first global scale measurement of Web browser update effectiveness comparing four different Web browser update strategies including Google Chrome. Our measurements prove that silent updates and little dependency on the underlying operating system are most effective to get users of Web browsers to surf the Web with the latest browser version. However, there is still room for improvement as we found. Google Chrome's advantageous silent update mechanism has been open sourced in April 2009. We recommend any software vendor to seriously consider deploying silent updates as this benefits both the vendor and the user, especially for widely used attack-exposed applications like Web browsers and browser plug-ins.

Read more at :-
http://www.techzoom.net/publications/silent-update...

--
Was this reply relevant?
+0
-0
mogs CClip 150
Expert Contributor 27th Dec, 2010 08:13
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 27th Dec, 2010 08:14
Ready for one last sweet freebie before the year runs out? It might be something you already have (especially if you're a regular Cheapskate reader), but I can't not write about it.
From now until Dec. 27, iSkysoft's iMedia Converter (Win) is available free of charge, no strings attached. It normally sells for $49.
Update: To get the software, you must have a Facebook account.
The program offers two core functions. First, it rips DVDs (even protected ones) to just about any format: iPod, iPhone, Zune, etc. It can also rip just the audio from, say, a concert DVD.
Second, iMedia Converter can convert videos from one format to another--great for downloaded stuff that won't play properly on your PC or mobile device. The software even lets you perform rudimentary video edits like trimming and cropping.
In other words, it's a pretty robust utility; you can review the full roster of features here. The only hitch is that you don't get tech support or upgrades.


Read more: http://news.cnet.com/8301-13845_3-20026495-58.html...

--
Was this reply relevant?
+0
-0
mogs CClip 151
Expert Contributor 27th Dec, 2010 11:32
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Carding Forum, Exploits Database and Others Hacked on Christmas Eve

December 27th, 2010, 08:34 GMT| By Lucian Constantin



A group of hackers calling themselves Ninja have compromised several websites, including the carders.cc underground marketplace, the exploit-db.com tracker, the free-hack.com community, the ettercap project, the BackTrack Linux distribution and a milw0rm clone run by a crew known as Inj3ct0r.

The compromises were disclosed in the second edition of the "Owned and Exposed" hacking ezine (online magazine). The first issue was released back in May and covered the first compromise of carders.cc.

"We owned carders.cc (AGAIN) because they are unable to learn from their mistakes and keep spreading garbage around the underground," the Ninja hackers write.

The carders.cc forum is a marketplace for stolen credit card details and personal information. People there also deal in equipment used to create counterfeit cards.

More at :-
http://news.softpedia.com/news/Carding-Forum-Explo...

--
Was this reply relevant?
+0
-0
mogs CClip 152
Expert Contributor 27th Dec, 2010 14:25
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Windows 7 SP1 Close to RTM, Build 7601.17514.101119-1850 Signed Off

December 27th, 2010, 12:13 GMT| By Marius Oiaga

Windows 7 Service Pack 1 is quite close to being released to manufacturing, reportedly. This piece of information comes from a third-party source, and was not confirmed by Microsoft in any way.

In fact, while it’s not 100% certain, it appears that Windows 7 SP1 could have already hit the RTM development milestone.

The Redmond company has been extremely quiet on the progress of the Windows 7 SP1 development process, and the evolution from Release Candidate to RC makes no exception to this rule.

More at :-
http://news.softpedia.com/news/Windows-7-SP1-Close...

--
Was this reply relevant?
+0
-0

wynsue

RE: Daily CYBERCLIPS December
[+]
This reply has been deleted
mogs CClip 153
Expert Contributor 27th Dec, 2010 17:35
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Click Fraud Trojan Spread from RapidShare

December 27th, 2010, 13:58 GMT| By Lucian Constantin

Security researchers from Kaspersky Lab warn of a click fraud trojan distributed via spam emails that advertise links to exe files hosted at RapidShare.

The malware is a variant from the Trojan-Dropper.Win32.Drooptroop family and is in circulation since the beginning of of December. The spammed links are of the form http://rapidshare.com/files/[removed]/gift.exe.

Kaspersky Lab experter Vicente Diaz points out that even if the rogue emails take a rather direct approach in spreading the malicious URLs, many spam filters fail to detect them.

That's because they don't contain any malicious attachments and because rapidshare.com is not a bad domain by itself. Neither are .exe files hosted there.

We have seen the same technique used two tweeks ago in a wave of spam emails distributing a piece of scareware known as Security Shield. In that case, the RapidShare links pointed to a file called surprise.exe.

More at :-
http://news.softpedia.com/news/Click-Fraud-Trojan-...

--
Was this reply relevant?
+0
-0
mogs CClip 154
Expert Contributor 28th Dec, 2010 09:52
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Top 10 2010 Microsoft Products

December 28th, 2010, 08:12 GMT| By Marius Oiaga

Seeing as 2011 is just four days away, I thought I’d have a look back at 2010 and make a selection of the most important products that Microsoft launched over the past year.

You’ll be able to find the list below, but I just want to say a few words before you start reading.

The product enumeration is not designed to necessarily be a reflection of importance. Don’t take the position of a release in the list as a measure of its relevance. Instead, think that each product is relevant in its own way and go with that.

And by all means, feel free to add to this list by using the comments section below. Don’t think that a product deserves to be nominated here? Say so.

Read more at :-
http://news.softpedia.com/news/Top-10-2010-Microso...


--
Was this reply relevant?
+0
-0
mogs CClip 155
Expert Contributor 28th Dec, 2010 11:03
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Poorer pupils to be given free laptops


The scheme is intended to bridge the divide between rich and poor pupils
A scheme to give free laptops to pupils from poor backgrounds is being rolled out to 270,000 families in England.
The £300m Home Access scheme, first announced by Prime Minister Gordon Brown in 2008, has been piloted in two local areas.
It will allow some of the most in need children, those in care and from the poorest homes, to apply for a grant for a free laptop and broadband connection.

Read more at :-
http://news.bbc.co.uk/1/hi/education/8449485.stm

--
Was this reply relevant?
+0
-0
mogs CClip 156
Expert Contributor 28th Dec, 2010 12:21
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

'Shocking Revenge' Scam Circulating on Facebook

December 28th, 2010, 08:44 GMT| By Lucian Constantin

A new scam is making the rounds on Facebook and lures users with a shocking video allegedly showing a jealous guy taking revenge on his girlfriend.

The spam messages spreading this scam read: "[BREAKING NEWS] - Shocking Revenge over Facebook Status!" and go on to claim that "jealous Boyfriend did this to his girlfriend after he seen what she posted on her STATUS."

Scammers hope to peak the interest of overly curious users and determine them to click on the link that leads to a blogspot-hosted page.

The external site mimics Facebook's look and displays the picture of an attractive girl with the text "Prepare to be SHOCKED!

More at :-
http://news.softpedia.com/news/Shocking-Revenge-Sc...

--
Was this reply relevant?
+0
-0
mogs CClip 157
Expert Contributor 28th Dec, 2010 19:31
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Trojan Distributed in New Mass Injection Attack via Java Downloader
December 28th, 2010, 10:56 GMT| By Lucian Constantin

Security researchers warn that a new mass injection attack is underway directing the visitors of hundreds of websites to a malicious Java applet which downloads a trojan.

According to Denis Sinegubko, the creator of the Unmask Parasites Web scanner, the malicious code is added at the end of HTML pages on compromised websites and takes the form of an obfuscated JavaScript function.

When parsed by the browser, this function adds a rogue IFrame to the HTML document, which loads a new.htm page from aubreyserr.com, medien-verlag.de or yennicq.be.

According to statistics from Google's Safe Browsing service, around 2,000 websites link to these domains, giving a rough estimation of the attack's impact so far.

More at :-
http://news.softpedia.com/news/Trojan-Distributed-...

--
Was this reply relevant?
+0
-0
mogs CClip 158
Expert Contributor 28th Dec, 2010 19:37
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Mozilla Leaks User Account Info from Official Add-Ons Site
December 28th, 2010, 13:23 GMT| By Lucian Constantin

Mozilla has alerted 44,000 addons.mozilla.org (AMO) users that their account information might have been exposed after a sensitive file was left in a publicly accessible location on one of its servers.

In its notification letter, Mozilla explained that the file in question was a partial representation of the AMO user database and said that it learned of its presence from a third-party individual.

The data contained in the file included email addresses, full names and MD5 password hashes, which are considered insecure.

Because of this, all affected passwords have been removed and users will have to use the password recovery function on the website to regain access to their accounts.

More at :-
http://news.softpedia.com/news/Mozilla-Leaks-User-...

--
Was this reply relevant?
+0
-0
mogs CClip 159
Expert Contributor 28th Dec, 2010 19:41
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Putin to put Russian government on Linux by 2015
By Grant Gross
December 28, 2010 11:03 AM ETComments (0)Recommended (2)
IDG News Service - Russian Prime Minister Vladimir Putin has ordered government agencies there to open-source software by 2015, according to translated documents.

Putin's order, signed this month, follows news reports from October saying the Russian government was planning to drop Microsoft products in favor of a national open-source operating system based on Linux.

More at :-
http://www.computerworld.com/s/article/9202638/Put...

--
Was this reply relevant?
+0
-0
mogs CClip 160
Expert Contributor 29th Dec, 2010 08:14
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Germany to Create Cyber-Warfare Centre Next Year
:
December 28th, 2010, 17:53 GMT| By Lucian Constantin

Germany has announced plans to open a national cyber-warfare center, outlining the increased attention governments give to such threats.

During a press conference on Monday, a spokesperson for the German Interior Ministry revealed that a new "National Cyber-Defense Center" will be created next year.

According to CBC News, it's primary purpose will be to protect the country's critical Internet infrastructure from foreign cyber attacks that have increased in number recently.

According to statistics, in 2009 the German government recorded around 900 attacks against its systems, while this year the number of such incidents reached 1,600 in the first half alone.

The government official pointed out that there are also many cases which remain unreported and said that the vast majority of these cyber attacks originate from China.

More at :-
http://news.softpedia.com/news/Germany-to-Create-C...

--
Was this reply relevant?
+0
-0
mogs CClip 161
Expert Contributor 29th Dec, 2010 08:18
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Last edited on 29th Dec, 2010 08:21
Security Expert Claims Vast Majority of Indian Government Websites Are Insecure

December 28th, 2010, 17:08 GMT| By Lucian Constantin

An Indian security expert and whitehat hacker claims that as much as 90% of websites operated by the Indian government are vulnerable to various types of attacks.

More at :-
http://news.softpedia.com/news/Security-Expert-Cla...

--
Was this reply relevant?
+0
-0
mogs CClip 162
Expert Contributor 29th Dec, 2010 08:24
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK


Pre-SP1 Windows 7 Stability and Reliability Refresh Available

December 28th, 2010, 15:16 GMT| By Marius Oiaga

With Service Packs for the Windows client regarded as minor, standard upgrades more than anything else, Microsoft is focusing more and more on improving the operating system with Windows Update releases.

It was the case for Windows Vista and it is the case for Windows 7, which received a range of updates designed to kick it up a notch.

Illustrative examples in this regard are the stability and reliability refreshes made available for Windows 7 following the general availability of the platform, back in October 2009.

In the same month as the GA of Window 7, the software giant also released an update designed to boost the sturdiness of the operating system.

On December 28th, 2010, the Redmond company released a revision of the old October 2009 stability and reliability update for Windows 7 and Windows Server 2008 R2.

Provided that users are running the two platforms mentioned above, they will be able to download and install the refresh (download links at the bottom of this article.)

“This update improves the stability and reliability of Windows 7 and of Windows Server 2008 R2,” Microsoft informed.

Read more at :-
http://news.softpedia.com/news/Pre-SP1-Windows-7-S...

--
Was this reply relevant?
+0
-0
mogs CClip 163
Expert Contributor 29th Dec, 2010 09:39
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Q How do I remove unwanted start-up programs from Windows Vista?
Chalespaul, Computeractive forum
A There are several methods. Some use Microsoft’s System Configuration utility (msconfig) to do this. To launch it, click Start followed by Run, type msconfig.exe into the box and hit Enter.
Now select the Startup tab and remove ticks from unwanted programs. However, do make sure you know what you are unticking. There is also a section in Windows Defender that allows you to manage start-up programs.
Alternatively, try an excellent free program called Winpatrol.
Anne R, Computeractive forum


Read more: http://www.computeractive.co.uk/ca/pc-help/1931282...


--
Was this reply relevant?
+0
-0
mogs CClip 164
Expert Contributor 29th Dec, 2010 20:35
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
New Drive-By Download Attack Exploits Recently Patched IE Flaw

December 29th, 2010, 09:22 GMT| By Lucian Constantin

Security Researchers from Trend Micro have intercepted a new drive-by download attack which exploits a critical Internet Explorer vulnerability in order to install multiple malware components on targeted systems.

Drive-by download attacks are a common and effective malware propagation method and are usually launched from legitimate websites that have been compromised.

They involve exploiting vulnerabilities in outdated versions of popular applications like Adobe Reader, Flash Player, Java, Internet Explorer, Firefox or the operating system itself, in order to silently infect computers.

The exploit used in this case is detected as JS_SHELLCOD.SMGU by Trend Micro products and targets an IE vulnerability patched in Microsoft's MS10-090 security bulletin released on December 14.

More at :-
http://news.softpedia.com/news/New-Drive-By-Downlo...

--
Was this reply relevant?
+0
-0
mogs CClip 165
Expert Contributor 29th Dec, 2010 20:40
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Microsoft Released 106 Security Bulletins in 2010
December 29th, 2010, 15:16 GMT| By Marius Oiaga

Provided that Microsoft won’t offer an out-of-band patch for a zero-day vulnerability impacting supported versions of Internet Explorer in the next three days or so, the company’s security bulletin count for 2010 will stop at 106.

If you want to check out each security updated provided by the Redmond company this past year, make sure to head over to the Microsoft Security Bulletin Search site and select the ‘within the last year’ option in the search tool provided by the software giant.

A list featuring all 106 security bulletins will be provided, and you can get insight into any of the patch packages that made it out to users in 2010.

More at :-
http://news.softpedia.com/news/Microsoft-Released-...

--
Was this reply relevant?
+0
-0
mogs CClip 166
Expert Contributor 29th Dec, 2010 20:52
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Online Incognito: Protecting Your Identity on the Web

By Aaron Weiss

When we think of someone hiding their online activity, the image that first comes to mind is a malicious hacker sneaking their bad deeds past the innocent. But anonymity cuts both ways – the same tools that can be used as weapons by some can be used for self-defense by the innocent, protecting their online activity from malice.

Whether you need to protect business activity from competitive threats, political activity from state eyes, or personal activity from…other persons, there are several good strategies for going incognito online without needing to be an expert hacker.

Browser Built-Ins

Today, the latest versions of all major browsers including Internet Explorer 8, Firefox, Safari, Chrome, and Opera, support so-called "private browsing". When you enable private browsing mode, the browser will stop recording items like site history, cookies, file download history, web cache, and form data like usernames and passwords. This prevents information that is otherwise normally stored for browser sessions from being easily tapped by hackers such as through malicious websites.

While private browsing mode is relatively effective for casual browser security, it is not foolproof. Knowledgeable users with administrative access to your machine may still be able to sniff out elements of your online activity even if you used private browsing mode. Plus, plugin technologies like Flash can create their own cookies which fall outside the browser's private mode, meaning that they are not eliminated when a private browsing session ends.

Read more at :-
http://www.esecurityplanet.com/features/article.ph...

--
Was this reply relevant?
+0
-0
mogs CClip 167
Expert Contributor 29th Dec, 2010 22:03
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Why have my shortcuts stopped working?
A reader comes up with a way to keep shortcuts working properly
Computeractive staff PC help Utilities 29/12/2010


I was having problems with shortcuts that stopped working and discovered that this was because Windows had given the drive letter to a different USB memory key. As it does not always give the same letter to the same drive, shortcuts can stop working properly.
My solution is to assign a drive letter by hand that is further down the alphabet, and so less likely to be used for another drive.
Click on the Start button, right-click on Computer and then click on Manage. Click on OK if the User Account Control message appears. Click on Disk Management in the left-hand column.
Right-click on the device (it’ll be shown in the bottom section, even if the drive letter has been used by another device). Select Change drive letter and Paths…, then click on Change and select a different drive letter from the dropdown menu. Click OK to save the changes. Now only letters not in use will be shown.


Read more: http://www.computeractive.co.uk/ca/pc-help/1931297...


--
Was this reply relevant?
+0
-0
mogs CClip 168
Expert Contributor 30th Dec, 2010 18:31
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Critical Security Update Released for WordPress

December 30th, 2010, 07:48 GMT| By Lucian Constantin
WordPress 3.0.4 has been released as a critical security update for the popular blogging platform to address several cross-site scripting issues.

WordPress developers recommend deploying the update as soon as possible, because the weaknesses are located in a core component.

"I would rate this release as 'critical'," Matt Mullenweg, the WordPress founder and lead developer writes.

More at :-
http://news.softpedia.com/news/Critical-Security-U...

--
Was this reply relevant?
+0
-0
mogs CClip 169
Expert Contributor 30th Dec, 2010 19:05
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
2010 tech snapshot: IT security
We round up the key trends in the security space this year
Phil Muncaster
V3.co.uk, 24 Dec 2010
This year has seen an almost unparalleled buzz of activity in the security space, from big name mergers and acquisitions activity to allegations of state-sponsored attacks and most recently, the rise of the hacktivist. Alongside this are the continued threat of spam, the growing sophistication of malware and changing trends among the workforce such as mobile working and the use of social networking, which are exposing the enterprise to new and dangerous threats.

State-sponsored attacks



Read more: http://www.v3.co.uk/v3/analysis/2274035/security-i...


--
Was this reply relevant?
+0
-0
mogs CClip 170
Expert Contributor 30th Dec, 2010 19:10
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
How can I find out why my hard disk is so full?
Use WinDirStat to get information on your hard disk

I’d been wondering why my hard disk appeared to be so full, so I downloaded WinDirStat to see where it had gone.
There’s no installation required; simply run the Compressed Folders wizard on the downloaded file to extract the folder and double-click on the windirstat program. You can either check all the drives connected to the computer or select individual ones.
It displays a text list of folders, along with their sizes and a graphical representation.
I discovered there were several hidden folders on my PC that didn’t show up when I looked in the Folder properties window. I was able to delete them and recover the disk space I wanted.
Jay Vee


Read more: http://www.computeractive.co.uk/ca/pc-help/1931276...


--
Was this reply relevant?
+0
-0
mogs CClip 171
Expert Contributor 31st Dec, 2010 18:09
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK

Celebrate 2011 with New Free Windows 7 Fireworks Theme

December 30th, 2010, 17:30 GMT| By Marius Oiaga

Microsoft is helping users running Windows 7, celebrate New Year’s Eve with a bang on their desktops.

The Redmond company has released a new theme packaging some amazing fireworks imagery to the Windows Personalization Gallery.

The Windows 7 Fireworks theme pack is the latest to be added to the gallery of personalization content this December, after the software giant introduced a number of themes designed to celebrate the season.

Ahead of Christmas this year, Jennifer Shepherd, site manager for the Windows Personalization Gallery promised that Windows 7 customers would get even more themes before 2011.

“Check back during the last few days of December for a theme designed to help you end 2010 with a bang!” she stated at the time.

More at :-
http://news.softpedia.com/news/Celebrate-2011-with...

--
Was this reply relevant?
+0
-0
mogs CClip 172
Expert Contributor 31st Dec, 2010 18:14
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
December 30, 2010 3:59 PM PST
Future-proof your data archive
by Dennis O'Reilly

It's easier than ever to make sure copies of your most important records, documents, photos, videos, and other personal data will be readable/viewable/playable long after the hardware and software used to create the files have bitten the dust.
The four keys to safe data archiving are to choose file formats that won't become obsolete, use storage media that won't deteriorate or become inaccessible, make multiple copies stored apart, and check your archived data regularly to ensure it's still readable.
Don't get stuck with outdated data formats
Most of the files you want to archive are likely in proprietary formats, such as Microsoft Office's .doc, .xls, and .ppt for Word, Excel, and PowerPoint, respectively. Despite the ubiquity of software and services that let you read and edit Office files without the Office app used to create them, these formats will become obsolete one ... Read full post & comments


Read more: http://news.cnet.com/security/#ixzz19i6c8WAy

--
Was this reply relevant?
+0
-0
mogs CClip 173
Expert Contributor 31st Dec, 2010 18:17
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
Computerworld - Hackers are exploiting a vulnerability in Microsoft Word to plant malware on Windows PCs, Microsoft said Tuesday.

The bug in Microsoft Word 2002, 2003, 2007 and 2010 was patched Nov. 9 as part of Microsoft's monthly security update.

Word 2008 and 2011 for the Mac have also been patched, but Microsoft has not yet issued a fix for the same flaw in the older Word 2004. The circulating attacks affect only Windows versions of the suite, however.

According to the Microsoft Malware Protection Center (MMPC), the group that investigates attack code and issues signature updates for the company's antivirus software, the first in-the-wild exploits were detected last week.

More at :-
http://www.computerworld.com/s/article/9202819/Mic...

--
Was this reply relevant?
+0
-0
mogs RE: Daily CYBERCLIPS December
Expert Contributor 1st Jan, 2011 08:04
Score: 2265
Posts: 6,266
User Since: 22nd Apr 2009
System Score: 100%
Location: UK
This thread will shortly be closed/locked.
Thankyou for your continued support.

The new January CYBERCLIPS is available to veiw at :-

http://secunia.com/community/forum/thread/show/707...

Happy New Year everybody !

--
Was this reply relevant?
+0
-0

This thread has been marked as locked.


 Products Solutions Customers Partner Resources Company
 
 Corporate
Vulnerability Intelligence Manager (VIM)
Corporate Software Inspector (CSI)
Consumer
Personal Software Inspector (PSI)
Online Software Inspector (OSI)
 Industry
Compliance
Technology
Integration
 Customers
Testimonials
 VARS
MSSP
Technology Partners
References
 Reports
Webinars
Events
 About us
Careers
Memberships
Newsroom


 
© 2002-2014 Secunia ApS - Rued Langgaards Vej 8, 4th floor, DK-2300 Copenhagen, Denmark - +45 7020 5144
Terms & Conditions and Copyright - Privacy - Report Vulnerability - Disclaimer