We've been telling people for years not to put pictures of your children up online on the Internet. Nobody ever believes us that perfect strangers will not only find those pictures, but do inappropriate things with them. Now here's a real-life example of this happening. In the instant case, Danielle and Jeff Smith are lucky that "all" that was done with the picture of their children is that it was blown up bigger than lifesize and used in an advertisement half-way around the world.
|
Articles on SecurityWe've been telling people for years not to put pictures of your children up online on the Internet. Nobody ever believes us that perfect strangers will not only find those pictures, but do inappropriate things with them. Now here's a real-life example of this happening. In the instant case, Danielle and Jeff Smith are lucky that "all" that was done with the picture of their children is that it was blown up bigger than lifesize and used in an advertisement half-way around the world. How many times have you received email that purports to be from a friend, or from someone with whom you do business, only to find out that you nearly got taken in by a fake? We here at the Internet Patrol, and our parent company, the Institute for Social Internet Public Policy, are offering readers of the Internet Patrol an exciting opportunity to take part in the testing of a new browser add-on that will help to protect you against such spoofing. Isreal Hyman and his wife were no doubt looking forward to their vacation a few weeks ago. Hyman, the proprietor of IzzyVideo.com in Mesa, Arizona, shared his plans with his 2,000+ followers on Twitter. So when he became the victim of a home burglery (which differs from robbery in that the victim is not present), he had to wonder if the burgler had seen his Tweets. A massive Internet outage, loss of telephone service, and even 911 emergency service communications were the result of an intentional act of sabotage against five different fiber optic cables in the Silicon Valley Bay area of California today, according to authorities. Stupid users are the worst problem on the Internet, according to this survey of more than 600 Internet users. Malware pushers have been quick to exploit confusion over a patch that was released yesterday by Norton Security for users of older versions of Norton. The patch was accidentally unsigned, which caused Norton to throw an error referencing the "pifts.exe" file. As a result, hords of Norton users have been searching Google for pifts.exe (or searching in their other favourite search engine for pifs.exe). In its ongoing march towards transparency - at least as it relates to the previous administration - the Obama whitehouse has just released 9 previously secret Bush documents regarding just how far the administration could go in the fight on terrorism. We are very proud to announce that The Internet Patrol is listed as #8 in the Forensic Science Technician's list of the 50 Best Safety and Security sites! If you get an email, supposedly from Microsoft, which says "Security Update for OS Microsoft Windows", ignore it, delete it, and whatever you do, don't install the "patch" which comes with it, which is, of course, really a trojan program just waiting to wreak havoc on your computer. A new hotel network security study by Cornell University entitled "Hotel Network Security: A Study of Computer Networks in U.S. Hotels" has proven that using the wireless Internet - and even cabled Internet - at your hotel is almost always inherently insecure and unsafe. In what is being called the "largest hacking and identity theft case" ever, eleven men have been indicted for allegedly stealing the numbers of more than 40 million U.S. credit cards and debit cards. Let me repeat that: 40 million. The entire population of the United States is only 301 million! That means that for every seven or eight people you see, the odds are good that one of them had their credit card number stolen, and their account drained. A recently released study conducted at the University of Michigan has found that as many as 75% of all bank websites have security flaws which pose a security risk to customers who visit the website. Several industry giants and Internet security firms have been quietly collaborating to roll out an Internet-wide system of patches to block a hole in the Internet's DNS system, which allows for DNS cache poisoning. DNS, which stands for Domain Name System, translates domain names to the actual number-based address on the Internet at which the computer for that domain resides, allowing computers to find each other, such as to visit a website. Hot on the heels of a US Air Force Colonel advocating building a bigger, badder and bolder bot-net (reported here on the Internet Patrol) comes news that seven of the twenty-six current members of NATO, the military alliance of democratic European and North American states, are to establish the Cooperative Cyber Defence Centre Of Excellence, in Tallinn, Estonia, taking further the work of NATO's existing internal computer network defense team. An intriguing and novel eavesdropping technique has been disclosed by a group of German scientists, who describe and demonstrate in their paper "Compromising Reflections, or How to Read LCD Monitors Around the Corner" how your monitor screen can be read from a distance, by pointing a telescope at its content reflected in nearby objects. Teapots, spoons, plastic bottles, glasses and even the surface of the user's eye offer sufficient quality for text on the screen to be intelligible, even at long distance. Google has responded to privacy concerns about people being recognized from Google StreetView map images, and begun deploying new face blurring technology to mask their identity. So those blurred faces you see aren't an accident, or the result of the subjects having drunk too much the night before. A top U.S. Air Force brass has recommended that the U.S. military create their own super bot-net to attack other bot-nets that are attacking U.S. military computer networks. One of the main problems with this idea, among others, is that it will fry thousands of computers belonging to innocent end-users around the world - users who have no idea that their home computer has been controlled remotely as part of a bot-net ring. Paypal has announced that they are going to block the Apple Safari web browser, along with a few other browsers. The online payment service, purchased by eBay for $1.5B back in 2002, in the good old days of rampant Internet mergers and acquisitions, has become a frequent target of phishers and hackers. Anxious to recapture their good name and to offer to sellers and buyers alike a more secure environment, PayPal plans to discontinue support for web browsers that do not include anti-phishing capabilities. If this plan goes through, PayPal will block Safari and older versions of Internet Explorer, Firefox, Opera, and Netscape. The way in which some of the US' largest ISPs handle domain name typos, monetizing them through Barefruit, has opened a vulnerability that if exploited by phishers and hackers could be an open and unfettered conduit for the injection of their malicious payloads onto the Internet. Reported late last week by Dan Kaminsky, this particular security hole has been patched. The fundamental danger, though, remains. It's long been apparent to our readers that we at the Internet Patrol are not exactly blind fans of online gaming. And we don't exactly holding up gambling sites as paragons of Internet virtue, either. So news from last week's e-crime congress in London, bringing to light a case of the bad (a gambling site) being brought to its knees by the worse (a botnet), has us pondering the larger implications. Microsoft has announced this week a security hole in MS Word - well, actually it's in the Jet Database engine, but that creates a vulnerability in MS Word, which attackers can exploit to gain remote access and control of your computer. Nearly all versions of Windows, including XP, 2000 (2K) and many Windows Server editions, are vulnerable. In fact the only versions of Windows not vulnerable to this attack are Vista, and Windows Server 2003 SP2. Reports emerged this week from a Holland-based internet security consultant, Dancho Danchev, of a new technique - known as poison Google links - being used by hackers attempting to use legitimate Google searches as a vector to smuggle malware onto the machines of unsuspecting users. So far the poisoned Google links all contain the string "IFRAME SRC=//" followed by an IP address, most recently and commonly 72.232.39.252, but that could change in a heartbeat. According to a tip received by the Internet Patrol, the resident evil behind the throngs of social networking and other sites that are tricking people into logging into their AOL, Yahoo, Hotmail, and Gmail accounts, and scraping their address book, has a name, and that name is Sigma Visual Technologies. Sigma Visual Technologies provides software that allows sites to get their users to import and email all of their contacts in their address books. Put another way, it lets these sites scrape and spam your contacts. In your name! Those Valentine greetings that you are receiving, often in the guise of free e Valentine cards, may be sending you more than "Happy Valentines Day" greetings. In fact, they may contain a virus or two. Phony trojan Valentine greetings include subjects such as "Sent with Love", "Our Love Will Last", "Our Love is Strong", "You're the One", "A Toast My Love", "Falling In Love with You", "Special Romance", "Your Love Has Opened", "Heavenly Love", and "You're In My Thoughts". A Salesforce.com security breach has lead to an untold number of Salesforce.com's customers' data being put at risk. According to sources, "the information in the contact list included individuals' names, company names, email addresses, telephone numbers of Salesforce.com customers," and the like. A former AT&T technician, Mark Klein, has come forward saying that the government has a machine called a NARUS STA installed in a "secret room" at ATT, and is getting a carbon copy of all Internet traffic that goes through AT&T's Internet servers. Not just some as defined in a warrant or as necessary for national security - but an exact duplicate of all traffic. The NARUS STA 6400 is a device designed to monitor, capture, and analyze Internet data and traffic (STA stands for "semantic traffic analyzer"). Internet security company LinkScanner.com has reported that Alicia Keys' MySpace page has fallen victim to malware. When you visit the Alicia Keys page, say, to look at Alicia Keys pictures, the malware attempts to download malicious software onto your computer. Such malicious efforts such as this against MySpace's page for Alicia Keys fall in line with similar attempts againt other musicians on MySpace. In a new twist, web spammers are using images of a stripper named Melissa to dupe naive Windows users into helping them break CAPTCHAs - those "enter this text" images that websites rely on to keep spammers from posting spam on their site. Dubbed the CAPTCHA.a or Captchar.a virus, an infected Windows computer will display a picture of Melissa, who promises to remove an article of clothing for each "puzzle" that the user solves. The mega popular Facebook site has joined the ranks of social networking sites that trick you into providing your password so that they can steal your AOL , Yahoo, MSN, or other address book, and spam all of your contacts. Only this time it's with a twist - they are actually spamming your AIM (AOL Instant Messenger) contacts in your Buddy List! The spam starts out like this: "According to his Facebook status, Friend's Name (their username) is now "Friend's Nickname". Friend invites you to join Facebook and keep up with what he and your other friends are doing." What we want to know is WHY are AOL, Yahoo, and MSN continuing to let this go on? The security folks who call themselves "creative hackers" over at Gnucitizen have announced that they have discovered a security flaw in Adobe Reader which will allow someone to remotely run programs on your Windows PC. "All it takes is to open a PDF document or stumble across a page which embeds one," they explain. When it comes to computer safety and Internet security issues, even the best Internet security and computer Internet security software may be no match for the enemy within. Because it turns out that Microsoft announces an average of two new threats every week to your Microsoft Windows computer safety! And no, automatic Microsoft Windows updates and having Windows service pack 2 isn't going to protect you. A new online free sex offender search tool allows you to search a list of "sex offenders in my area." The free sex offender search cross-references a list for registered sex offenders with an online mapping system, so that you can find any registered sex offender on the sex offenders list anywhere within a 1 to 20 mile radius of any location (such as your home, your child's school, etc.). We all knew it was heading in this direction, but we didn't think it would come from a relative unknown. Zonbu announces the first computer that has everything - except - storage. You store all of your data - all of it - online, on the Zonbu servers. An independent security research outfit has found a gaping security hole in the iPhone. They have found that someone needs only embed the correct malicious code on a web page, and when an iPhone visits the web page, it will essentially cooperate with any instruction given to it through the code. An article this week by the Wall Street Journal blares out that "Hackers Can Now Deliver Viruses via Web Ads". It's not like the WSJ to go the sensationalist route, so we can only assume that the reporter doesn't usually cover the Internet security beat. Regardless, this type of fear mongering is irresponsible at best, unforgivable at worst. A company called Capgemini has been contracted to build an enormous online database of every single child in England, including their address and the telephone numbers. The database, called ContactPoint, is surely the stuff of which the wet dreams of hackers and online paedophiles everywhere is made. Forget plain old mobile phone tracking. FlexiSpy is a cell phone tapping and spying software that, once slipped on to your cell phone, sends all of the data from your cell phone to the person spying on you. It also allows them to turn on your cell phone's microphone so that they can remotely listen in on what you are doing, and on your calls! It currently works with all Nokia 60, Blackberry, and Windows Mobile phones, and, according to FlexiSpy, more phones are being added all the time. A company called WabiSabiLabi (Wabi Sabi Labi - pronounced 'wobby sobby lobby' or 'wobi sobi lobi') has announced that they have created an auction marketplace where security researchers and companies can buy and sell security vulnerabilities and hacks. Here's what that means (we mean what "buying and selling security vulnerabilities means", not what "Wabi Sabi Labi" means - although roughly speaking the Japanese 'wabi sabi' means respecting things which are authentic - from nature - by acknowledging their authentic beauty with the recognition that nothing lasts, nothing is finished, and nothing is perfect). The Geek Squad at Best Buy Electronics stores is supposed to help customers with their computers. But some geeks on the geek squad have instead been helping themselves to porn files found on their customers' hard drives, with one Geek Squad member copying the files to his own thumb drive (issued by employer Best Buy .com). A computer sytem within the Pentagon, in the Office of the Secretary of Defense, was hacked into, and this time You know you should have a data backup solution to ensure that you have a harddrive backup - and in fact you may already have one or more backup solutions in place. But what about portable backup solutions - what about if you are on a trip, and your hard drive fails (as mine did last week?) Consider an iPod video for your portable backup data storage! Need to do a computer backup? If you are looking for a remote backup program to provide secure offsite backup services - and if it offered free online backup services that would be even better - look no further! Here is the perfect offsite data backup solution - a free online data backup service that lets you do an automated offsite backup for free! That's right, you can do a full computer backup online, using this automatic offsite backup service, and it's absolutely free! How many times have you wished that you had remote access to your computer, say remote access to your PC or Mac desktop, over the Internet, while you were away? Well, with this free remote access software and remote access service, now you can wish no more! Instead you can access your PC or Mac - in fact you can access as many computers as you want - across the Internet, all for free! Talk about the latest detailed news on botnets! The ultimate of an inside look at botnets - it is the real, first-hand account of what happened this week when a zombie botnet woke up, based on some unseen signal triggered or programmed by the botnet owner, and took over hundreds of customer computers at a large US broadband ISP. Microsoft this week issued seven "critical" Microsoft Windows updates and patches, including an Internet Explorer update, and they want to make sure that you update your Windows! Because each of the seven updates and patches are rated as "critical", it really is advised that if you are running a computer with Windows, you pay immediate attention to these. Email was the technology of choice chosen by the Virginia Tech administration to alert students to the gunman, still on the loose, during yesterday's bloodbath at Virginia Tech. Here is the text of that email. Do you think this was the right way to warn students? What about students who didn't check their email? Let us know what you think. Recently I started getting invitations to join Flixster from complete strangers. Obviously, this was spam, but why were these complete strangers sending it to me? And why were they always from AOL and Hotmail? Now people are asking - is Flixstr accessing your AOL and Hotmail contacts list and spamming them in your name? Want to control your car over the Internet? It's possible now, thanks to the Internet-controlled car control system called the "Keplar Security System" just introduced by Inilex! Lock and unlock your car doors, start your car up (great for those cold winter mornings!), disable the engine, and even track your car, all over the Internet! Quite a few people have by now read about AOL's new Skyhook "Near Me" buddys plug-in. That's the plugin for the service which lets you know if any of your buddies are geographically near to you, and puts them in a "Near Me" buddies group. But what far fewer people realize is exactly how it works. How does it know when you are near one of your buddies? The answer may surprise - and concern - you. Does your computer suffer from embarassing data seepage? Does data seep from your wifi-enabled laptop, telling the world a bit more than you'd intended? The folks at Errata Security say "yes", and are offering the code for their Ferret program for free. Ferret tells you just exactly what data is seeping from your computer. Network neutrality, laws requiring dating sites to perform background checks and ISPs to rat out their users, laws banning anonymous posting, and cyber bullying legislation. Is it all part of a move towards a nanny Internet? The Superbowl Trojan, as some are calling it, has been implanted on dozens of Super Bowl related websites, and is installing itself on any Windows computer that happens to visit any of the Super Bowl sites without adequate protection. The Super Bowl Trojan allows the hacker to take full control over any of these infected Windows PCs by connecting the machine to dv521.com, downloading the W1C.exe file, and installing the Wow-PK Trojan. Consumer Reports has released their recommendations for the best anti spam software, the best anti spyware remover, and the best anti virus software. Microsoft has issued alerts and updates this week for both Windows Media Player and Outlook Express, explaining that both are open to serious attack, which could render a user's computer under the control from someone out on the Internet. The Outlook Express update affects Microsoft Outlook Express 5.5 and 6, and the Windows Media Player issue affects both Windows Media Format Series Runtime, and Windows Media Player 6.4 (and even affects people running later versions of Windows Media Player such as Windows Media Player 11). Microsoft has advised that they are working on investigating a vulnerability in Word for Windows and Mac which allows attackers to gain access to a user's home computer. All of the following version of Word are at risk: Microsoft Word 2000, Microsoft Word 2002, Microsoft Office Word 2003, Microsoft Word Viewer 2003, Microsoft Word 2004 for Mac, and Microsoft Word 2004 v. X for Mac, as well as Microsoft Works 2004, 2005, and 2006. The 2B1 "one laptop per child" initiative, also known as the $100 laptop project, is looking for experienced hackers to try to hack the $100 2B1 laptop, so that they can trouble shoot its security issues. But what I want to know is, how many of those laptops will stay with the children, and how many will get sold by their families for food? Remote XT is a new service which causes a stolen cell phone to emit a loud scream noise, and otherwise completely disables the cell phone. It also puts a text message on the screen which says "this phone is stolen". The only way to stop the screaming noise is to remove the battery, at which point, of course, the stolen phone is completely useless. VaporStream is a new product that offers recordless email that disappears after being read. And, it can't be forwarded, can't be printed, and can't be stored. But here's what I want to know: if you have to go through the trouble of logging in to someone else's server - and paying to do it - in order to not send a regular email, why wouldn't you just pick up the phone? A new report out by online security firm Symantec indicates that the fastest and largest growing sector of online security attacks are attacks against home users and their computers. Is Google eavesdropping? Google researchers recently announced a method to allow them to listen in to your life by listening in through your computer's microphone. Is Google listening? Will they? It is perhaps the logical next step to blogs for whistleblowers. Michael De Kort, a Lockheed engineer, has posted a video of himself on You Tube, blowing the whistle on what he says are serious security issues with Coast Guard patrol boats in the Deepwater project. Now this is a fabulous theft and loss insurance for your phone, PDA or laptop! It's called StuffBak (because it helps you get your stuff back, get it?) and it's kind of like those microchipping i.d. services for pets, only it's for your portable electronic devices, such as your laptop, your PDA, and your cell phone! It's basically loss and theft insurance for your portables! And through a partnership with The Internet Patrol and StuffBak, you can get a 10% discount off their already incredibly reasonable pricing! The U.S. Department of Homeland Security (DHS) through its United States Computer Emergency Readiness Team (US-CERT) has warned all Americans running Windows to make haste to apply the MS06-040 patch which was issued by Microsoft this week. The MS06-040 patch corrects a flaw which makes computers running Windows particularly vulnerable. A security hole has hit Microsoft Excel, of all programs. We're used to security holes in our browsers, our instant messenger programs, and even,sometimes, Word. But in our spreadsheet program? In Excel?? A new Yahoo worm being called the "Yamanner worm" is targeting all of Yahoo email; in fact the only version of the Yahoo email program which is at present safe from the Yamanner Yahoo email worm is a not yet fully released beta version of Yahoo mail. Archiveus is the newest of a string of Trojans being dubbed "ransomware" because they lock and hold your files hostage until you either purchase something from the ransomware's author or pay the ransomware's author money outright. Here is the password to unlock your files which have been locked by the ransomware Archiveus. Ginwui.a (also Oscor-B, W32/Ginwui.A.dr, Backdoor.Ginwui, and W32/Ginwui.A) takes advantage of a security hole in Microsoft Word, allowing attackers to infiltrate your computer through email. Check Raised's RBCalc.exe has the Backdoor.Win32.Small.la (Small.la for short) rootkit trojan hiding in it. It contains the following trojan files: utlsrv.exe, comclg32.dll, d3dclsrv.dll and ndsdavsrv.sys. Secure your computer, and take back the net! At least one in every three PCs has been compromised and is being used by spammers and phishers as part of their zombie computer "botnets". And the owners don't even know! Secure your computer for free. We tell you how! The Sprint Family Locator is a new service being offered by Sprint that allows you to track up to four family phones via their GPS coordinates. FireFox security vulnerabilities have been announced this week by parent company Mozilla. Some of them are quite severe, and so should be attended to immediately. Through the unintended publication of some internal notes, Google this week inadvertantly revealed their plans for "infinite storage", a project they call GDrive, and keeping all of your files on their server for you. Microsoft this week, on what has become known as "Patch Tuesday" (the second Tuesday of every month), has issued seven security updates for the Windows operating system, classifying two of them as critical updates. CityWatcher.com is requiring that their employees have RFIDs injected into their arms in order to access CityWatcher's data centers. While the CityWatcher says the RFID implant is not a condition of employment, it is a condition of accessing CityWatcher.com's datacenter. The most recent outbreak of violence connected to the Danish publication of what Muslims consider to be a blasphemus cartoon of the Prophet Mohammed was provoked by rumours spread by SMS text messages. Microsoft has said this week that they are receiving reports of a newly-discovered vulnerability in some versions of Internet Explorer. According to Microsoft, the vulnerability can be exploited in one of four different ways, involving any one of WMF images, email attachments, link poisoning, or getting a user to view an email message in the Outlook Express preview pane. The TeleSpy motion detector phone is like something out of James Bond, only in your home! Haven't you always wanted a motion detecting telephone? People using Yahoo Messenger are receiving Yahoo instant message phishes which are realistic enough to reel in their victims. The phishy Yahoo messenger messages offer up a link to what appears to be a Yahoo Photos website, saying "click on this website." "Bot Herder" Jeanson James Ancheta, the BotNet operator taken down by the Feds, told colleagues of operating the botnet of more than 400,000 infected PCs, "It's immoral, but the money makes it right." The new Nyxem-D worm making the rounds has been dubbed the "Kama Sutra worm", because it arrives in an email offering graphic sex images and videos. Also called Email-Worm.Win32.VB.bi, W32.Blackmal.E@mm worm, or W32/Nyxem-D, the email has such enticing subjects as "Kama Sutra pics!", "Hot Movies", "give me a kiss", Miss Lebanon 2006", "Part 1 of 6 Video clip", "The Best Videoclip Ever", "Arab sex DSC-00465.jpg", "Fw: SeX.mpg", "Fwd: Crazy illegal Sex!", and "School girl fantasies gone bad." Microsoft has released the WMF patch for the Windows Metafile WMF security issue nearly a week early. And you should get the WMF patch right now! The recently discovered Windows Metafile (WMF stands for "Windows Meta File") vulnerability gave rise to not just one 0-day exploit, but several exploits. Also known as a "zero-day exploit", a 0day exploit is an exploit which is already available on the same day, or even before, the vulnerability itself is announced. Sony BMG has settled the first of the lawsuits brought against them over the First4Internet XCP rootkit software and the MediaMax software. Following the Sony rootkit fiasco, some artists, such as My Morning Jacket, are taking matters into their own hands. Microsoft this week issued a critical and cumulative security update for Internet Explorer (IE). They recommend that you apply the security update immediately, and so do I. Sony BMG has just announced that there is a security flaw in the MediaMax software shipped on 5.7 million of their CDs. MediaMax developer SunnComm Technologies Inc. has developed a patch, and Sony BMG urges that you install it. Sony BMG has issued a statement recalling their CDs containing the XCP rootkit software, and offering to exchange any still out there for CDs free of First4Internet's XCP. Following a firestorm of cries of moral and legal outrage, Sony BMG has said that they will pull their DRM software from their music CDs. The DRM software, XCP, behaves like a rootkit when surreptitiously installed on a user's computer by the Sony music CD. Sony BMG has announced that it is temporarily stopping the use of the rootkit technology which has gotten them so much bad press and into so much hot water. Sony BMG has secretly included the First4Internet XCP2 digital rights management (DRM) software on its CDs in order to keep you from using any other media player on your computer with their content. Unfortunately, it has rootkit like properties, and actually exposes your computer to great risk. Hallmark email cards really show that you don't care enough to send the very best. Plus, ecards are bad for the recipient. And ecards are often spoofed and sent as a vector for viruses. A private New Jersey high school has issued a blog ban against its entire student body, and any students not removing their blogs, including at MySpace and Xanga, face suspension. A majority of DNS servers and DNS services are vulnerable to and at risk of DNS pharming, according to a new study. Hotmail, Yahoo, AOL and Gmail access is being denied to military personnel in the Navy and the Marines who are stationed overseas. The military has blocked access from all government-owned computers, citing concerns about computer security and viruses. The machine identification code of your printer may be being embedded on every single page you print, including the date, the time, and your printer's serial number. Is our technology spying on us? The DMA has announced that they are requiring all of their members to adopt an email authentication mechanism. According to them, "there are several interoperable, inexpensive and easy to implement solutions available on the market today." The 0x800a0007 Windows update error has pinched a lot of people. Here's what causes it, and what to do about it. Microsoft Windows Updates for this month include three that are deemed critical by Microsoft itself, along with four that they say are "important", and two which are moderate. Bank of America and other banks' customers are often the victims of identity theft. Now the banks are offering identity theft protection, but they are charging customers for the protection. A form spam blocker has been developed by a service offering secure, hijack-proof web forms. It's guaranteed, it's cheap, and it's secure! What more could you ask for? Internet Explorer, and specifically improperly patched versions of Internet Explorer, are being implicated as the weak link which allows extortionists to lock files on your hard drive and demand $200 to unlock them. Identity theft protection in the form of a new phishing law has come to California. It not only outlaws phishing, but gives individuals who were scammed by phishers the right to sue. Key clicks and other keyboard sounds reveal everything you are typing, all with a simple decoding program which turns keyclicks into their associated letters. In fact, the keyboard clicks allow spies to very accurately determine what you are typing. Researches say that keyboard click spying has a 96% accuracy. Shuki Alburati, a San Francisco State student, has been arrested in connection with the laptop which was stolen from U.C. Berkeley earlier this spring. He in turn had purchased it from the person believed to be the original thief, and had attempted to fence it on eBay. Microsoft Patch Tuesday is the second Tuesday of each month, and the day when, traditionally, Microsoft has released patches and other security updates for the Windows operating system. But while a patch was promised for this Patch Tuesday, none materialized. Here's why. A Firefox flaw which allowed for remote code execution was publicly disclosed yesterday. Today Mozilla, who distributes the Firefox software, released a patch for the Firefox flaw. TeenArriveAlive and CarChip are technologies designed to keep your teen safe behind the wheel by allowing you to remotely monitor their every driving move. Using GPS location in one case, and inviting strangers to report on the child's driving in another, TeenArriveAlive and CarChip are sure to be controversial. The Wherify Wherifone offers a simple pre-programmed cell phone with a built-in GPS locator, so that you can keep track of your child, grandmother, or employee. Free online credit reports are now available as required by a new credit score reporting law, the FACT Act, passed last year. Under the new rules you are entitled to a free credit report online every year from the big three credit reporting agencies, Equifax, Experian, and TransUnion. Rapex is a new anti-rape device which is worn like a diaphragm, only it has sharp teeth which clamp down on any foreign object. A new survey says that women have safer web surfing and Internet security habits than do men. Some question these findings, while others point out that neither is being particularly safe. Bluecasting says that what they do is not spamming, because you asked for it. The Internet security industry is taking notice, and they say that it's dangerous. Scammers have a new scam in which they call you up and tell you that you've missed jury duty, and boy are they ticked. You'd better verify who you are by giving them lots of personal information, because there's a warrant out for your arrest! Don't fall for it! Online game community and security experts are warning about PrsKey.a, a keylogging worm which steals your username and password, and allows those behind it to steal all your game booty. Bluecasting has been accused of Bluetooth spamming, and tries to explain why what they do is different. Adobe is warning that a vulnerability in Adobe Acrobat and Adobe Reader could lead to someone creating a "malicious PDF" file, and when the unsuspecting user opens the PDF file with a vulnerable version of Adobe Reader or Adobe Acrobat, the software could ... Ah, a screw camera. Everyone should have a screw camera. Of course I'm not referring to that which caught Fred Durst in a compromising position, or Paris Hilton clinching with another girl. No, I'm talking about a real, honest to goodness wireless ... Microsoft has announced that they have just updated their Malicious Software Removal Tool (KB890830) to detect and remove the Zotob worm which brought down computer systems across the country this week. The Zotob worm has also been referred to in news reports ... The French Security Incident Response Team (FrSIRT) is reporting a newly discovered flaw in Internet Explorer (IE), and related to the Microsoft Msdds.dll library file. In fact, it's so new, that there isn't even a patch for it at the time of ... Jason Smathers, who pleaded guilty to stealing a list of 92 million email addresses from America Online (AOL), has been sentenced to one year and three months in prison. According to reports, Judge Alvin Hellerstein gave Smathers a sentence on the lenient ... Microsoft has today released a statement regarding the Zotob worm (also reported as Botzor, Botzor.exe, and, incorrectly, as Zobot and rbot.ebq or rbot.cbq), which crashed computer systems across the nation yesterday. The Zotob worm, which takes advantage of a flaw in the Windows Plug ... Sunbelt Software, who last weekend discovered the CoolWebSearch trojan keylogging software which is right now stealing bank account, username, and password information from thousands of Windows users, has just released a free tool to detect and remove the keylogger, it has announced. "This is ... Microsoft has this week released an updated version of its Malicious Software Removal Tool for Windows (KB890830). This free tool is not a replacement for anti-virus, anti-spyware, or anti-spamware. Rather it is a separate, additional tool (and did I mention that it's free?), ... Ever dutiful, Microsoft today released its monthly security updates for Windows for August. There are six of them today, ranging from "moderate" to "important" to "critical", and affecting IE, Microsoft telephony, and RDP, among others, and allowing everything from spoofing to DOSing ... The implications are staggering. Internet security software company Sunbelt Software was investigating CoolWebSearch, a spyware package, when they noticed that stowing away in the CoolWebSearch download were two trojans, a spam zombie engine, and a keystroke logging program. It was the ... Aunty has had several people ask her recently what "Bluejacking" is. Bluejacking is really just another name for Bluespam, or for what the Car Whisperer does. Wikipedia defines "Bluejacking" as "the sending of unsolicited messages over Bluetooth to Bluetooth-enabled devices such as mobile ... The below which came across Aunty's desk today is somewhat dense to read, but the bottom line is that they are suggesting what is being called a "reverse 911" - that mobile communications devices are the next new line of defense for citizens ... Here's a very interesting study having to do with spyware, grey nets, and the corporate infrastucture. A greynet is made up of unauthorized Internet applications on a network. Wikipedia, which says it far more eloquently than can I, explains that "a ... Both ZDNet and IIS Resources are reporting a newly discovered "worm hole" in Windows 2000, one for which they say there is no work-around. According to the reports, the Windows security company eEye discovered the flaw this week, indicating that the flaw ... This is sobering information which came across Aunty's desk today. It pertains to the business traveler (although it could equally apply to those traveling for pleasure), and how with today's ubiquitous USB drives, a trail of confidential corporate data is often left ... Meet the Car Whisperer. Aunty told you it could happen. Remember the BlueSniper "Rifle" which could sniff out and Bluejack Bluetooth devices up to a half-mile away? And the Bluetooth Bluespam being sent to movie-goer's phones? [Oh sure, ... While consumers, and indeed the online security industry, have typically not paid much mind to warnings of nasties being sent to or through a Bluetooh device, experts are warning that this needs to change. Case in point: the newly discovered Doombot.A, ... Netscape has this week released Netscape version 8.0.3.1, which fixes four security holes which Netscape calls "critical". Two of these critical security flaws have already been documented, while two others have not, but are nonetheless addressed with 8.0.3.1. The two security flaws which ... Both Visa and American Express have announced that they are severing business relations with security-beleagured company CardSystems, Inc. You may recall that CardSystems, Inc. was recently sued as a result of a security breach which lead to the compromise of the credit card data ... A Microsoft security advisory issued over the weekend says that a vulnerability in Windows RDP (Remote Desktop Protocol) has been discovered which makes systems running Windows XP, Windows 2K, and Server 2003 susceptabile to DOS (denial of service) attacks. Says the advisory, "Our initial ... Ever since the FCC approved wireless Internet access on U.S. flights, the promise of fly-fi on domestic flights has titillated U.S. passengers. Up until then, fly-fi had eluded domestic U.S. flights, although fly-fi has been available on European and Asian flights for ... Cisco Systems is reporting that there have been several security flaws found in their CallManager VoIP system, the most serious being with their Aupair.exe component. The flaws, which cause vulnerabilities in CallManager in its default settings, can allow someone to eavesdrop on ... The Mozilla Foundation has just released their Firefox 1.0.5 security update for Firefox, coincidentally at the same time as Microsoft released their own monthly security patches for Windows. Firefox 1.0.5 also upgrades and improves the browser's stability itself, but the most important aspect ... Gary McKinnon, the extra-terrestrial-seeking Nasa hacker who was apprehended last month, has explained how he managed to hack into Nasa's computers, along with those of several other government agencies, and what he found there. According to the 39-year old ... Microsoft has released their security bulletins for Windows, for July 2005, and there are only three of them! But before we go into them, let Aunty warn you again, beware of fake Microsoft security bulletins, which will almost assuredly follow today's actual ... Online security company MessageLabs is warning people that there has been a sudden sharp rise in Trojans assailing user inboxes, worldwide. In just one morning this week, MessageLabs says that they blocked 54,000 copies of new Downloader Trojans. The Download Trojans include Trojan ... A survey of nearly 2,000 people by the Chubb Group of Insurance Agencies has found that one in five Americans believe that they have been the victim of identity fraud. According to a press release by Chubb, other findings include: "Twenty-seven percent of respondents reported ... As if people don't have enough to worry about what with social security number and credit card information being compromised and brokered right and left, it turns out that there is a thriving business in selling cell phone records. Your cell phone ... Florida, the state known for not being able to keep pants on their spammers, has become what is believed to be the first state in the nation to prosecute someone for using someone else's open wifi. Mind you, there is no evidence that Benjamin ... Aunty just found out this week that American Express offers this great service called the Credit Card Registry. If you subscribe to the American Express credit card registry, and your wallet or purse (or wherever you keep your credit cards and ... STAMFORD, Conn., June 30 /PRNewswire/ -- Research from a survey conducted in May and June 2005 by Protegrity Corporation, the leader in Data Security Management(TM), shows that 53.9% of IT professionals surveyed believe their companies are still not entirely clear about current data ... Top Internet security companies agree and are warning that at least one virus writer is specifically targeting government computer systems, both in the UK and the United States, and elsewhere. Said Dave Cowings, a Senior Business Intelligence Manager for security company Symantec, "This appears ... Microsoft has confirmed this week that there is a newly discovered security flaw in Windows Internet Explorer (IE). Says the Microsoft website: "Microsoft is investigating a new public report of a vulnerability affecting Internet Explorer. We have not been made aware of any ... Microsoft has announced the release of their updated Microsoft Baseline Security Analyzer (MBSA), version 2.0. For those of you not familiar with this nifty piece of free software, it essentially scans your computer for security risks, including poor or sloppy configuration, security ... Following this year's rash of personal data security breaches, starting with the ChoicePoint and Lexis-Nexis leaks, and culiminating with the CardSystems hack and exposure of the credit card information of more than 40million customers, Democratic Vermont Senator Patrick Leahy has teamed up with ... The newest version of the W32 Kedebe-F worm is playing on the natural curiousity and rubber-necking of the email-reading public, or as it's known in the trade, "social engineering". Masquerading as a variety of news headline stories, Kedebe-F has been seen breaking the news ... Are you one of the people mentioned in this release who are now avoiding Internet banking due to fears of identity theft? DALLAS, June 27 /PRNewswire-FirstCall/ -- Entrust, Inc. (Nasdaq: ENTU) today released the findings of its second Internet Security Survey. Conducted by an ... Some interesting observations about the recent CardSystems hack in this news release: SAN FRANCISCO, June 24 /PRNewswire/ -- A week after CardSystems Solutions, Inc. disclosed that thieves made off with credit-card information affecting up to 40 million cardholders, the company has ... The security flaw in Outlook Express revealed by Microsoft in their June Security Bulletin, and covered by Aunty here, has taken on a new urgency as certain websites have begun sharing samples of the code required to take advantage of the security flaw. While ... Protecting yourself from credit card fraud and identity theft has become even more important with the unrelenting succession of security breaches, such as last week's theft of 40 million credit card numbers. Here are seven specific things you can do now to help ... NEW YORK, June 23 /PRNewswire/ -- Online consumers are expressing growing worries about identity theft, The Conference Board reports today. More than 13 percent of all Internet users say they or a member of their household has already been a victim of ... In case you were listening to the radio or televion news today, yes, you heard it right, and your ears were not deceiving you. The credit card information of 40 million MasterCard and Visa cardholders was compromised when someone hacked into the ... Adobe Systems, the makers of the popular Adobe Acrobat, is warning today of a security hole in both their Adobe Reader and Adobe Acrobat PDF viewer software. Adobe Reader is a widely distributed and used free software program for viewing ... Stamford, CT (PRWEB) June 17, 2005 -- For millions of consumers, the Internet has become the ultimate shopping destination. The hours are great (24/7), you can leave the car in the driveway, and you don’t have to wait in line for a price ... Forget Qchex and other services which let anyone register your checking account and use it. Your monies in your checking account are at risk from a scam far less complicated than even that! That's right, and your old Aunty discovered it, quite by accident. Today Aunty ... Entrust Calls for Renewed Focus on Increased Consumer and Business Adoption of Solutions to Address Identity Theft and Protect Sensitive Information DALLAS, June 15 /PRNewswire-FirstCall/ -- Entrust, Inc., a world leader in securing digital identities and information, today ... A mock trial, in which ISPs were sued for damage done by a zombie network to a few fictitious companies' business and financial interests, found that a jury of IT professionals overwhelmingly held the opinion that the ISPs were not responsible for the ... The second Tuesday of each month heralds Microsoft's monthly Security Updates for Windows. This month's batch includes security updates for Internet Explorer, Outlook Express, Telnet, and HTML Help, to name a few. The update for Outlook Express affects OE primarily when it is ... Gary McKinnon, Nasa's ET hacker, has been arrested in London. Online security company Secunia has said this week that versions of Firefox and Mozilla, as well as the lesser known Camino, are again at risk for a frame injection security flaw which has dogged Mozilla on and off for nearly seven years. The problem, ... In the latest in a rash of incidents in which the personal data of customers of various institutions has been compromised, Citigroup has revealed that the personal account information of 3.9 million customers has gone missing. 3.9 million customers. Wow. In one fell swoop, the ... Not content to just do its normal wormly dirty work, a new variation on the infamous Bagle worm, Win32.Glieder, brings with it two companion Trojans, Win32.Fantibag and Win32.Mitglieder (literally, in German, "with Glieder"). Said Chris Thomas, a security architect with Computer Associates, "We've seen ... Mitglieder.DC Is a Malicious Code Designed to Kill Processes Belonging to IT Security Programs, Leaving Computers Unprotected Against Other Possible Attacks - Detections in ActiveScan Are Increasing Progressively, Because It Is Being Mass-Mailed GLENDALE, Calif., June 1 /PRNewswire/ -- ... BERLIN, May 31 /PRNewswire/ -- The Berlin-based O&O Software is today releasing its freshly updated study, "Data Data Everywhere 2005." This particular study tackles the issues concerning the secure deletion of personal and company data on used storage volumes that have been discarded or resold. In ... Talk about spyware versus spyware. Authorities in Isreal have arrested dozens of people, including high level executives of multinational corporations, in what increasingly is developing into the Internet Trojan spyware custerfluck of the year. Only on the Internet can a Trojan ... "Sure, I could get a Mac, but the time I spend with my daughter removing spyware is very precious." A great line, already being attributed to Intel CEO Paul Otellini, but actually penned by Good Morning Silicon Valley's John Paczkowski on the ... Do you know what a "demand draft" is? If you've ever received an electronically-generated check which had "Your depositor has authorized this payment to payee" on it, or "signature not required" in place of the signature, then you've received a demand draft, ... Competitors of U.S. Companies Captured $133 Billion of Proprietary Information in 2004 MERIDIAN, Idaho, May 23 /PRNewswire/ -- U.S. companies lost sensitive, confidential information to competitors who use deceptive research practices, according to a study released by Provizio. "Employees usually do not know ... In what may be the biggest leak of personal data to date, police are reporting that a whopping 676,000 bank customers have had their personal information stolen from Bank of America, Wachovia, Commerce Bancorp, and PNC Financial Services. B of A has ... In one of the first tests of its new security advisory system, Microsoft has announced a vulnerability in the Windows TCP/IP stack. The security advisories are a supplement to the Microsoft Windows Security Bulletins which are issued on the first Tuesday of ... How many people a day do you suppose go into a mega-electronics store like Circuit City and purchase a new computer? And how many of those people do you suppose have the store like Circuit City transfer their personal data from their ... It's bad enough that military and government computer systems at Patuxent River Naval Air Station in Maryland, the White Sands Missile Range in New Mexico, and NASA's Jet Propulsion Laboratory were hacked and compromised. But to add insult to that injury, it appears that ... Microsoft this week has announced a newly-discovered vulnerability in its Windows Explorer for Windows 2000. When the vulnerability is triggered, someone wishing to exploit the vulnerability would be able to remotely execute code on the user's system, the advisory explained. "A remote code ... That gaping hole in Tiger's Dashboard is no air vent - it's a wide-open, highly exploitable security threat for users of Apple's newest version of OS X for Mac. And we have Stephan.com's Zaptastic and Goatse widgets to thank for showing us ... Firefox, which is by all accounts and measures a superb web-browser, recently celebrated their 25millionth download. Yes, you read that right - Firefox has been downloaded twenty-five million times, and in large part this is due not only to its excellent user ... Even before security became one of the top issues on the Internet, remembering passwords was a hassle, admit it. Far too many of us recycle the same password or few passwords, over and over, knowing that we shouldn't, and hoping that nobody ... Aunty told you about wifi hotspot evil twins, but you didn't quite believe her, did you? Well, attendees of the Wireless LAN Event in England this past week are believers now, after hackers infiltrated the conference, and set up an evil twin hotspot right ... Security firm Secunia has issued a "highly critical" advisory for a security flaw in Netscape. The highly critical flaw was discovered earlier this week, and is known to affect at least Netscape versions 6.2.3 and 7.2. It may also affect other ... There has been a lot about "pharming", which is another term for DNS poisoning, also known as DNS cache poisoning, in the news lately. But what exactly is DNS poisoning? Put simply, DNS cache poisoning is when a DNS server is ... Does your favourite wifi hotspot have an evil twin? How would you know an evil twin wi-fi hotspot if you saw one? Just what is a wifi hotspot evil twin, anyways? Remember the Patty Duke show? When Patty and her identical ... Microsoft today issued nine new security bulletins containing updates and patches. The Microsoft security bulletins include updates and advisories for everything ranging from Microsoft Word to MSN Messenger, from Exchange Server to Internet Explorer, and from TCP/IP to the Windows Shell. Windows ... A fake Microsoft email urges users to install the latest Windows update, and even links and takes them to a site which sure seems to be a real Microsoft website. But it isn't. And the email actually leads to the installation ... The SANS Institute's Internet Storm Center (ISC) has issued a warning about Internet greeting cards or postcards which bear links leading to Trojan Horse programs. Like the original Trojan Horse, these salutations carry a cargo designed to infiltrate, in this case, your ... A security flaw known as the "JavaScript Lambda Replace Heap Memory Disclosure Vulnerability" has been found in the popular Firefox web browser. Firefox is an open source web browser which is available for Windows, OS X, and Linux, and which has experienced ... Although modem hijacking (also known as "modem jacking") is not entirely new, New York State is set to become the first state to outlaw the practice. Modem jacking is when someone hijacks your modem and uses it to make long distance (usually ... Newly discovered flaws in both Outlook and Internet Explorer (IE) were uncovered and announced over the weekend. The security holes are considered to be especially "high risk" in part because they require little to no user interaction in order for a ... A recent security update to Microsoft Windows, MS05-002 KB891711, is causing crashes for a lot of Windows 98 and Windows ME users, leading to issues with IE, blue screens of death and even, some are reporting, a black screen of death. The MS05-002 KB891711 ... Quick, what would you say is the most obvious way for data to end up in the wrong hands? If you said "having the laptop on which it resides stolen", give yourself a pat on the back. Now quick, what ... CNet news is reporting today that a potentially serious security flaw has been found in the Trillian instant messaging client. Trillian is an instant messaging (IM) software which allows users to interact with people using many different IM services, such as ... Apple has released nine new patches today, designed to patch and repair several flaws in the standard OS X operating system and programs. One of the most critical of these is the flaw which allows phishers to take advantage of browsers which ... A new type of attack on Internet Explorer has been discovered this week, and this attack works even if IE is closed! The way that it works is that a user visits an infected site, is given a pop-up window asking them ... Lexis Nexis has been compromised and has hemorrhaged the personal information of tens of thousands of individuals whose data was stored with Lexis Nexis. Identity theft is a real possibilty for these people. Many will remember that this exact same thing ... We all know that a large amount of spam comes through personal computers which are connected to the Internet, and which have been hijacked - turned into "zombies" - by viruses, Trojans and the like. But did you know that, according to SpamHaus, nearly ... Well, Wells Fargo has done it. Back in November we told you about the increase in ATM machines running on Windows (yes, we realize that "ATM machines" is redundant, but many people know them by that name). Now Wells Fargo has ... Remember the man who used his webcam and free webcam software to catch a burgler? In a twist, a peeping Tom has been caught spying on girls using their own webcams, connected to their own computers. He was able to do ... Remember that guy who used his camera phone to make a video of himself having sex with his girlfriend, (and can you imagine the logistics involved?), only to have the video show up in the corner porn shop, and on an Internet auction ... Even the most upstanding of Florida's email citizens can't seem to avoid running afoul of good email practices, if not the law, it seems. It must be something in the tasty Florida water, which of course is not just for breakfast any ... If you use Windows XP Home Edition, you may not realize it but you most likely have a big security hole sitting on your desk. This is because Windows XP Home Edition comes with public file sharing enabled by default. [By the way, ... April 12th is the very last day. That's when the clock runs, and the deadline looms. And here you thought it was April 15th. Nope, it's the twelfth. Because we're not talking about the day your taxes are due. On ... As many as 35,000 Californians may have had their credit card numbers, social security numbers, and other personal information compromised when hackers accessed identification and credential verification service provider ChoicePoint's data servers. Hacks into ChoicePoint's system have already lead to six documented cases of ... The security hole on which Aunty reported last week, in the processing of PNG graphic files by MSN Messenger and other Windows programs, has moved Microsoft to require that users of their MSN Messenger upgrade before being allowed back on to the Messenger ... Panda Software has announced that it has discovered a serious, and seriously exploitable, vulnerability in the way that a certain type of graphics files, PNG files, are processed and displayed by programs including Windows Media Player, Windows Messenger, and MSN Messenger. The vulnerability is ... A serious security flaw has hit several Symantec security products, many of which are in widespread use, says the company. The vulnerability is serious enough to have been been classified as "high risk". According to the Symantec site, the vulnerable component "fails to ... Here's an interesting scenario: Someone somehow manages to get your credit card number (of course you would never fall for a phisher's bait... your virus, spyware and firewall software are all up-to-date... you don't leave your card lying around... and who uses ... Happy V Day to Windows users everywhere from Microsoft! However, despite the timing, the V doesn't stand for "Valentines" as Microsoft introduces this bouquet of a dozen long-stemmed beauties to tackle thorny issues. Yes, that's right! Twelve new security updates in one ... Not content just to install RFIDs into your car or insert RFIDs in your passport, the newest item which is the target of the RFID craze is human cadavers. Troubled by a rash of "now you see it, now you don't" tricks with human ... Channel KOKH 25 out of Oklahoma City is reporting that somehow somebody managed to load computer surveillance software onto three computers at the Oklahoma County Sheriff's office. According to Oklahoma Sheriff John Whetsel, whomever installed the software gained access to some very ... A couple of weeks ago, Aunty reported to you that Microsoft had announced a patch for their ActiveX security flaw. However, today the anti-virus experts at GeCad Net are reporting that the patch distributed by Microsoft does not fully fix the flaw (and try ... A cryptographer at the Singapore-based Institute of Infocomm Research has determined that there are serious security flaws in Microsoft Word and Excel in terms of their encryption for password protection of documents. Hongjun Wu, who has written a paper on the subject, says ... Last week Aunty told you about Internet baddies who are loading spyware, adware, and viruses (oh my!) into media files, using a loophole in Microsoft's Digital Rights Management (DRM) process, and causing the nasties to be installed on the computers of unaware users ... Are you worried about your neighbors tapping in to and using your home wireless computer network? Or, worse, about wardrivers hijacking your wifi and using it to send a run of spam? Well, a Sunnyvale, California company has a suggestion for you: paint your ... A hacker has compromised the personal information and identification of as many as 32,000 users whose details were stored on computers at George Mason University, in Fairfax, Virginia. The computer system which was compromised was that holding all of the information associated with university ... In addition to the critical fix for the Help flaw which implicated Active X, and which Aunty posted about here, Microsoft today announced two additional security patches for Windows users. The first one involves both a cursor and icon handling vulnerability, along with a ... Not a moment too soon, Microsoft has announced a fix for that pesky "help flaw" involving ActiveX which Aunty first reported on here and again here just yesterday. Making this flaw even more devestating than some others is the fact that it affects so ... Security company Secunia, Inc. has raised the security threat warning for recently revealed Internet Explorer 6 security flaws to "extremely critical", their highest threat level. This is the result of yet another "security" site publishing yet another set of instructions for how to exploit ... AuditMyPC.com is a website which offers a host of free services designed to help you to secure your PC. Using readily available diagnostic tools and your Internet connection, the AuditMyPC.com site will tell you exactly what security holes you have open, Windows patches which ... It seems that online baddies are again using a flaw in the Windows help system to help themselves - to access to your computer system. As reported by Aunty last week, a flaw in the help system for certain releases of Windows, along ... Many of you have heard Aunty pile accolades on anti-spam program Cloudmark for their unique and highly effective way of stopping spam for their users: they have a network of several dozens of thousands of "reporters", and when a certain number of ... Aunty had no idea that there was such a distinction to finding the last Windows security hole of the year! But that is the only thing which can explain this last minute rush to post newly discovered flaws in the eleventh hour ... Two new wide-spread and far-reaching security flaws have been identified in Windows. And not content to just identify the flaws, the Chinese "security" (and Aunty uses the term advisedly) firm, VenusTech, has also posted the code necessary to exploit the flaws. ... Information Security Magazine, following extensive review, has published its list of the top security products for 2004. Evaluating products in a baker's dozen of categories, and with a first, second, and third place in each (gold, silver, and bronze, respectively), this is ... You may recall that last week Aunty reported that an advanced computer class at Chicago University had found 44 security holes in Unix. Well, its kissing cousin, Linux, the people who brought you that adorable penguin, Tux, is more secure, even unpatched, than are ... New! Listen to our podcast about securing your new computer! Rob Pegoraro at the Washington Post has a great article which makes tons of sense. It's all about how to shore up your brand new computer's protection against Internet nasties before the nasties have a chance to attack. You know, the old "ounce of prevention is worth a pound of cure". When Aunty reported on the five Windows security updates earlier this week, you didn't actually think that it would be the last update for the week, did you? Oh no. Say "hello" to bouncing baby update #6 for the week. This fine ... Professor D.J. Bernstein of the University of Illinois at Chicago has notified the Unix security community that his students have found no fewer than forty four security vulnerabilities in Unix. Bernstein gave the students for his MCS Computer Science (Unix) course the assignment to ... As Aunty promised, here is the rundown on the five... count 'em... five security updates which Microsoft just released for Windows users and administrators: 1. Vulnerability in WordPad According to the Microsoft site, the vulnerabilty in WordPad allows an attacker to "take complete control ... Lx_CATS is a Lexmark printer file, installed by Lexmark, which spies on your printer usage and reports back to the Lexmark mother ship. Because Windows works so well, and is such a secure product, newer versions of the ATM will be run on Windows, instead of the standard OS/2. And, oh yes, they will be connected to the bank's IP network. Two-factor security key being offered by AOL is just the thing to help thwart phishers and identity theft. |
||||||
About TIP About Anne
Search Categories
KingofthePaupers: Jct: There’s nothing wrong with small denomination California State IOUs if I or anyone else can pay their taxes with them. When Argentina’s government workers read Flexispy Review: @ Martin Curry - Unquestionably the Government have the ability to listen in on your Cell Phone through remote activation - so in theory it read Joe: Since you are dealing with politicians, it is really a combination of arrogance and stupidity. read Piewrre ML: And the answer is SO simple! I really query the adequacy of state legislators to do their jobs! Granted, it would required agreement read bigjohn756: Do we have to choose between arrogance or ignorance? How about plain stupidity? It takes no thinking ability to be congressman or to read MartinCurry: I have a guy who claims he is ex-cia tracking my family phones to find material to use against me and my loved ones. Can read andrew: Hi there lve receaved one of these emails and l got him or her tagging the line at the momment what steps can l take read
Search |
Search
Last 3 Articles
Top Ten Articles
Full List of Categories
Amazon
|
