Microsoft: Hole exploit endangers all IE versions
admin @ December 13, 2008 # No Comment Yet
An unpatched security hole in Internet Explorer that is being exploited affects all versions of the browser, making it more serious than originally believed
The company recommends setting the Internet zone security setting to “high” and using access control lists to disable Ole32db.dll to provide the most effective protection against an attack.
http://news.cnet.com/8301-1009_3-10122203-83.html?part=rss&subj=news&tag=2547-1_3-0-20
More on page 355
Microsoft cleans fake antivirus tool from 994,061 PCs
admin @ November 24, 2008 # No Comment Yet
The Malicious Software Removal Tool (MSRT) is a small program Microsoft pushes out to computers on Patch Tuesday to clean out a list of malware.
The Microsoft Malware Protection Center recently released some data on how the removal tool performed this month: FakeSecSen was removed from 994,061 machines. That number isn’t the highest Microsoft has recorded […]
More on page 345
Federal Reserve spam attack emerges
admin @ November 15, 2008 # No Comment Yet
The message contains a fake Federal Reserve letterhead and warns users in typically broken English that a “large-scales phishing attack started and has been still lasting”.
In addition to the shoddy grammar, the messages are identifiable in their attempt to lure victims to an outside URL.
On clicking the link, the user is briefly sent to a […]
More on page 343
Google releases first patches for Chrome
admin @ September 10, 2008 # No Comment Yet
Google has issued an update for its newly released Chrome, following a critical vulnerability in the beta browser found by Vietnamese security researchers.
The flaw can be triggered when the user saves a web page - using Chrome’s “Save page as” command - with a very long name. That, in turn, creates a stack-based buffer […]
More on page 323
Black Hat a sure bet to be big, bold in Vegas
admin @ August 11, 2008 # No Comment Yet
This year marks my ninth year of attending Black Hat in Las Vegas. From a small gathering of security professionals in 2000 to an uberconference in 2008, Black Hat has scaled well. And the transition from private company to corporate-owned also appears smooth. But hardly anyone’s here yet.On Tuesday, there are only a thousand or […]
More on page 306
33,000 Clear Travelers Information Compromised
admin @ August 5, 2008 # No Comment Yet
A TSA Laptop containing names, social security numbers, passport numbers, and a host of other personal information has been stolen out of a locked cabinet at the San Francisco Airport, and no the hard drive was not encrypted.
There is no notification of the breach at the flyclear.com site, nor has anything been reported on the […]
More on page 296
Firefox 3 Release Candidate 1 is available
admin @ May 17, 2008 # No Comment Yet
Firefox web browser | International versions: Get Firefox in your language
More on page 284
New Kraken worm evading harpoons of antivirus programs
admin @ April 9, 2008 # No Comment Yet
Researchers at Damballa Solutions have uncovered evidence of a powerful new botnet they’ve nicknamed Kracken. The company estimates that Kraken has infected 400,000 systems, which would make it twice the size of Storm during that botnet’s hayday. (The final size of Storm’s botnet is disputed; Damballa estimates Storm infected up to 200,000 machines).
Specific details […]
More on page 263
Blu-Ray Disc’s BD+ Copyright Protection Technology Defeated Completely
admin @ March 24, 2008 # No Comment Yet
BD+ is one of the copyright protection layers for Blu-ray discs that compliments AACS, HDCP, BD-ROM Mark and so on. BD+ is a small program recorded on a Blu-ray disc that is executed by player and examines whether the players security keys were changed as well as decodes part of the content encrypted with BD+ […]
More on page 259
Student Claims to Have Cracked Smartcard Encryption
admin @ March 19, 2008 # No Comment Yet
A University of Virginia graduate student and two fellow hackers say they have cracked the encryption code used to protect millions of wireless “smartcards” in use across the globe.
With the cryptographic formula in hand, the hackers were then able to run it through a computer program that tried out every possible key. It broke the […]
More on page 258
Attack On Computer Memory Reveals Vulnerability Of Widely-used Security Systems
admin @ March 16, 2008 # No Comment Yet
The attacks overcome a broad set of security measures called “disk encryption,” which are meant to secure information stored in a computer’s permanent memory. The researchers cracked several widely used technologies, including Microsoft’s BitLocker, Apple’s FileVault and Linux’s dm-crypt, and described the attacks in a paper and video published on the Web Feb. 21.
The team […]
More on page 257
Software Lets You Send Secret Messages
admin @ March 12, 2008 # No Comment Yet
Using Ace Zip’s software, Encrypt Text in Picture, couldn’t be easier. On the left side of the interface window, browse for the picture you wish to use. On the right side, type or paste text you wish you embed, from a few words to a lengthy letter. Then click a button to embed the text […]
More on page 256
Britain makes camera that “sees” under clothes
admin @ March 9, 2008 # No Comment Yet
A British company has developed a camera that can detect weapons, drugs or explosives hidden under people’s clothes from up to 25 meters away in what could be a breakthrough for the security industry.The T5000 camera, created by a company called ThruVision, uses what it calls “passive imaging technology” to identify objects by the natural […]
More on page 255
Scientists have discovered that laptops can be tricked into giving up encrypted data, including the encryption keys
admin @ March 6, 2008 # No Comment Yet
Think the data on your laptop is fairly secure? You might want to think again. Scientists have discovered a way to trick the machine into giving up its data, even encrypted data, with the encryption key.
It’s all to do with what’s know as volatile memory. It’s part of the random access memory (RAM), and until […]
More on page 253
Swedish officials’ passwords revealed by hacker
admin @ March 3, 2008 # No Comment Yet
Passwords used by many of Sweden’s cyber elite are now available on the internet following a hack against the Swedish Computer Society, an organisation of IT professionals. Among the victims are a former security officer at Microsoft, a Symantec security expert and the director of Sweden’s largest internet bank.
The list of logins for more than […]
More on page 252
