Top Stories for Today
[23] Hackers hit MacRumors keynote coverage [23] Tech thriller 'Daemon' rises from the underground [22] Apple unveils updates, new MacBook Pro, iTunes changes [21] Hackers hijack Obama's, Britney's Twitter accounts [21] Creator of ZiPhone iPhone unlock hack calls it quits [18] Skype 2.8 Beta for Mac Released [18] Public betas of Windows 7 client and server could hit this week [18] Sanyo to Cut Up to 1,000 Jobs Before Panasonic Takeover [18] A rare peek at Homeland Security's files on travelers [18] Security firm warns against downloading pirated Windows 7 beta [18] Mozilla, Microsoft and VeriSign Tackle MD5 Flaw [17] Apple to sell iTunes songs DRM free [17] California poised for energy-hungry plasma TV crackdown [17] Motorola unveils phone made from recycled bottles [17] Another former Softie joins VMware [17] Comcast starts new year with new network management system [16] The Five Most Dangerous Security Myths [16] Fake celeb LinkedIn profiles lead to malware [15] Chinese Internet portals argue porn crackdown easier said than done [15] Salesforce.com outage exposes cloud's dark linings View the Top 50 articles
Top 20 of the Last 2 Weeks
Past Articles
| Monday, January 05 |
| · | Lenovo planning to cut 200 jobs in China (0) |
| · | How to Succeed in Tech in a Downturn (0) |
| · | PwC wrestles with Satyam dilemma (0) |
| · | Wikipedia reaches $US6m fundraising target (0) |
| · | China jails Microsoft counterfeiters (0) |
| · | Computer forensics - a subject every executive should understand (0) |
| · | Lockheed, Boeing eye huge cybersecurity market (0) |
| · | Hackers Cause a Run on GripShift (0) |
| · | Israeli Student Team Wants Help Hacking Hamas (0) |
| · | Apple 17-inch MacBook Pro to go Unibody, sans removable battery (Silver-Zinc replacement?) (0) |
| · | UK police to be allowed to hack into home PCs without a warrant (0) |
| · | Verbatim’s new quad-interface 500GB/1TB external hard drives (0) |
| · | RIAA dumps its primary evidence collector (0) |
| · | Israeli news site down, blames cyber attack (0) |
| Sunday, January 04 |
| · | iPhone Dev Team on the hunt for Jody Sanders and iphoneunlockuk (0) |
| Friday, January 02 |
| · | Microsoft Virtual Earth gets a 48TB update (0) |
| · | Steve Wozniak to Appear with Axiotron at Macworld (0) |
| · | Terrorists launder cash through online gambling (0) |
| · | If you love Windows XP, you’ll hate Windows 7 (0) |
| · | Longstanding Theory Of Origin Of Species In Oceans Challenged (0) |
| · | 25 Years of Mac: From Boxy Beige to Silver Sleek (0) |
| · | The biggest threat to open source in 2009 (0) |
| · | Yahoo, Intel have high hopes for Internet TV (0) |
| · | Are ID cards in Britain the road to 1984? (0) |
| Thursday, January 01 |
| · | New Mac Mini at Macworld, Will Look Like iMac + Time Capsule (0) |
| · | Georgia Sex Offenders Have to Give Internet Passwords to Authorities (0) |
| · | Sexiest Geeks of 2008 (0) |
| · | Who Leaked Windows 7? (0) |
| · | Dell reorgs amid slumping profits (0) |
| · | Security predictions for 2009 (0) |
| | Older articles |
|
20 Latest Articles with Comments
IT Security's Next Big Threat: Young People
Posted by l33tdawg on 2008-11-21 02:51:01 (Reads: 1026)
| 
Source: Dark Reading
First, it was viruses. Then it was financially motivated hackers, followed by insider threats. And the next big danger? People who can't remember the Bee Gees. During the past two weeks, IT security managers have been getting a new warning that turns the old '60s hippie slogan -- "Never trust anyone over 30" -- upside down. The new message: Twenty-somethings are putting the corporate network at risk.
Since Nov. 5, three separate studies -- from Accenture, Intel, and ISACA, a major IT users group -- have indicted the youngest generation of employees as one of the enterprise's newest and most serious security risks. People under the age of 28 -- sometimes called Generation Y and sometimes called Millenials, depending on how you define the category -- are engaging in online behavior that could expose their organizations to data leakage and information theft, the studies say.
The Accenture study, published two weeks ago, queried more than 400 students and employees ranging from age 14 to age 27. It found that more than half (60 percent) of young people "are either unaware of their companies' IT policies or are not inclined to follow them."
| |
Ubuntu Linux Vs. Windows Vista: The Battle For Your Desktop
Posted by l33tdawg on 2007-08-06 03:24:30 (Reads: 2810)
| |
Source: Information Week
The prevailing wisdom about Linux on the desktop runs something like this: "I'll believe Linux is ready for the desktop as soon as you can give me a Linux distribution that even my grandmother can run." For some time, the folks at Ubuntu have been trying their best to make Granny -- and most everyone else -- happy. They've attempted to build a Linux distribution that's easy to install, use, configure, and maintain -- one that's at least as easy as Windows, and whenever possible, even easier. As a result, Ubuntu is one of the Linux distributions that has been most directly touted as an alternative to Windows.
In this feature, I'm going to compare the newly-released Ubuntu 7.04 (codenamed "Feisty Fawn") with Microsoft Windows Vista in a number of categories. To keep the playing field as level as possible, I'm looking wherever I can at applications -- not just in the sense of "programs," but in the sense of what the average user is going to do with the OS in a workday. Sometimes the differences between the two OSes are profound, but sometimes the playing field levels itself -- OpenOffice.org, for instance, is installed by default in Ubuntu, but adding it to Vista isn't terribly difficult.
| |
Broad Web Hack Hits Thousands of Servers
Posted by l33tdawg on 2008-11-10 02:37:03 (Reads: 627)
| |
Source: Real Tech News
Kaspersky Labs warned on Friday that hackers have launched a huge Internet hacking effort, posting malicious links on as many as 10,000 servers. The end result of the hack is that surfers may end up at a malicious server located in China, vvexe.com. Exploits are then used to launch an attack on the user’s machine.
Norton Safe Web and StopBadWare.org have reports on that site.
Once again, if you’re patched, and have up-to-date antivirus and security software, you would probably be safe from surfing to one of these sites. One question is: how are the websites being compromised, and Kaspersky hasn’t managed to determine that yet. An earlier attack this year affected 1.5 million servers, so in comparison this is small, but the attack has just begun, Kaspersky warned.
| |
Linux: the girlfriend test
Posted by l33tdawg on 2008-09-22 01:29:59 (Reads: 2018)
| |
Source: Tech Radar
The world has changed in the last 10 years. Humans finally have hover cars, unlimited energy and a cure for cancer. Well, not exactly, but Linux is almost ready for the mainstream desktop. Which is just as exciting. Sort of.
Before we crack open the Canonical-branded champagne, there are one or two things to sort out. Linux still has a reputation for being too finicky, technical and 'just for geeks'. This needs to be killed as quickly as possible. How? By putting the latest distributions through the ultimate in scientific usability studies: the girlfriend test.
See, the old problems of hardware incompatibility that once plagued Linux are fading, especially now that major vendors such as Asus and Dell are starting to cuddle up to Tux. The issues still prevalent are in the process of converting the huddled masses (or 'Windows users') and making the experience as friendly, straightforward and encouraging as possible. This needs to happen before Linux can reach that critical mass of users.
| |
Malicious e-mails target Bit Torrent
Posted by l33tdawg on 2008-09-10 01:24:32 (Reads: 1514)
| |
Source: The Inquirer
BORED SPAMMERS have reportedly disseminated millions of e-mails accusing random surfers of illegally downloading copyrighted files on Bit Torrent.
The phony e-mails, disguised as a stern message from the anti-piracy company Media Defender, warns the recipient that his or her download activity has been logged. In addition, the message demands an immediate cessation of illegal downloads and threatens criminal prosecution under US federal law.
The malicious e-mail also includes an attached activity 'report' in the form of a nasty Mytob worm. When accessed, the worm installs a trojan that allows hackers remote access to the infected machine.
| |
Malaysia-Today.net 'blackholed' by order of the Malaysian Government
Posted by l33tdawg on 2008-08-28 01:13:16 (Reads: 2656)
| |
Source: Malaysia Kini
L33tdawg: This is really a sad day indeed - the MSC bill of guarantees clearly states that the Internet will not be filtered/censored or otherwise manipulated. Today it might be Malaysia-Today, tomorrow maybe it'll be CNN and BBC. It's the beginning of the end imho and I am truly disappointed with MCMC for 'bowing down' to the pressure of the incumbent government to try and stifle the flow of information merely because it paints the .gov in a negative light - We don't need the govt to tell us what we can and cannot read; what we can and cannot think!
In a rare move, Malaysian Communications and Multimedia Commission (MCMC) has ordered all internet service providers (ISPs) to block controversial online portal Malaysia Today. MCMC chief operating officer Mohamed Sharil Tarmizi, when contacted today, confirmed that the block was ordered by the commission, which is the regulatory body for online content.
"It is being blocked because we found that some of the comments on the website were insensitive, bordering on incitement," he told Malaysiakini.
As at 7pm, a check by Malaysiakini showed users are unable to access Malaysia Today through three major ISPs - TMnet, Maxis and Time. However, users can still access the errant website through Jaring.
| |
Gmail Back in Service after Outage
Posted by l33tdawg on 2008-08-12 02:25:18 (Reads: 1529)
| |
Source: Internet News
Google confirmed "many Gmail users" were unable to access the email service since about 2 p.m. Pacific Time after receiving a "502 Error" message which would seem to indicate a system overload of some kind for the popular service.
Whatever the issue, it appears to have been identified and fixed. A Google spokesman said the issue has been fixed and Gmail is functioning normally. Several mail users contacted by InternetNews.com report their service is back and working after being unable to access it. In response to a request for an explanation about the problem, Google sent the following statement to InternetNews.com:
"Since about 2 p.m. Pacific Time today, many Gmail users have been unable to access their email. We are very sorry for this interruption in service. The issue is being caused by a temporary outage in the contacts system used by Gmail, which is preventing Gmail from loading properly. We are starting to roll out a fix now and hope to have the problem resolved as quickly as possible. Even though you may not be able to get to your inbox right now, your mail is safe, including new incoming messages.
| |
Should You Pay Twice as Much for a Mac?
Posted by l33tdawg on 2008-08-08 02:36:25 (Reads: 2482)
| |
Source: eWeek (Blog)
On Saturday, Aug. 2, I got to wondering about Mac versus Windows PC pricing after seeing two HP notebooks on sale at the local Target. One of them, a 14-inch model, the HP DV2946NR, sold for $699.99 and packed 4GB of memory and a 320GB hard drive. Capacity for both features is twice that of the $1,299 MacBook—and shared graphics is 356MB compared with a meager 144MB for the MacBook. I wondered: If Vista notebooks are selling for so little and packing so much, how does this compare with Mac desktops and notebooks?
Today I contacted Stephen Baker, NPD's vice president of industry analysis, about computer average selling prices at retail. That HP notebook is right on mark: ASP for retail Windows notebooks is $700. Mac laptops: $1,515. Yeah, right, they're more than twice as much. But there's more: The ASP for Mac desktops is more than $1,000 greater than for Windows PCs, and Mac desktop ASPs were higher in June than they were two years ago.
| |
Spanish hacker jailed for sending out ex-manager's private emails
Posted by l33tdawg on 2008-08-06 01:47:12 (Reads: 2289)
| |
Source: guardian.co.uk
A hacker has been jailed for two years in Spain for revealing hundreds of private emails written by a former colleague. The emails, which were taken from the former manager's work computer, divulged details of his sex life.
The hacker sent them to the manager's ex-wife, to a woman with whom he was having a relationship, and to the mayor of a council where he was working.
The emails were also copied on to other people who knew the victim. A judge in Barcelona yesterday jailed the hacker, who was not named, for two years for an offence of "revealing secrets". He was also order to pay a fine of €3,240 (£2,566) as well as €4,000 in compensation to the victim
| |
Apple moving back to proprietary chipsets?
Posted by l33tdawg on 2008-07-29 02:17:14 (Reads: 2205)
| |
Source: Insanely Great Mac
AppleInsider is reporting whispers that the mothership will move its computer product lines away from Intel-designed chipsets and back to proprietary solutions, like the days of the PPC when Apple deployed custom chipsets specific to the platform and even individual product lines.
As such, people familiar with these plans say an upcoming generation of Macs, lead by a trio of redesigned notebooks, won't adopt the Montevina chipset announced as part of Intel's Centrino 2 mobile platform earlier this month. What's more, those same people suggest the chipset employed by the new wave of Macs may have little or nothing to do with Intel at all.
Apple will continue to employ Intel CPUs, but the chipsets that manage memory, graphics and I/O will come from a still unknown source, perhaps designed by Apple and fabbed independently.
| |
VoIPshield reveals VoIP vulnerabilities
Posted by l33tdawg on 2008-06-28 02:18:42 (Reads: 1734)
| |
Source: SC Magazine (US)
VoIPshield Laboratories has alerted companies that market voice over IP systems of new security vulnerabilities. The VoIP vulnerabilities, if successfully exploited, could affect brand reputation, internal productivity, and competitive advantage, researchers said.
VoIPshield does not reveal specifics about the vulnerabilities to the public, Bogdan Materna, VoIPshield Laboratories chief technology officer, told SCMagazineUS.com on Friday.
“We don't want to give hackers information to work from,” he said. Instead, under its disclosure policy, VoIPshield works with the VoIP vendors to assist them in reproducing the vulnerabilities in their labs.
| |
Bill aimed at small-biz cybersecurity
Posted by l33tdawg on 2008-06-11 00:25:04 (Reads: 1424)
| |
Source: FCW
Lawmakers have introduced legislation to help protect small businesses from computer hackers and information security breaches.
On June 9, Sens. John Kerry (D-Mass.) and Olympia Snowe (R-Maine) joined Reps. Michael Michaud (D-Maine) and Donald Manzullo (R-Ill.) in introducing versions of the Small Business Information Security Act of 2008 in both houses of Congress.
The measures would create a Small Business Information Security Task Force at the Small Business Administration. The task force's goal would be to help small firms understand and effectively respond to information security vulnerabilities, said Nick Christiansen, a spokesman for the Senate Small Business and Entrepreneurship Committee.
| |
Ex-Microsoft Employee Takes Lead on XP SP3 Reboot Problem, Offers Free Fix
Posted by l33tdawg on 2008-05-16 02:21:23 (Reads: 3431)
| |
Source: Redmond Mag
A former Microsoft employee appears to be coming to the rescue of those suffering from the XP SP3 endless reboot cycle that can happen on computers with AMD processors -- a problem for which Microsoft has yet to announce a solution.
As first noted by Computerworld, on Wednesday author and Microsoft MVP Jesper Johansson -- who until 2006 was a senior security strategist at Microsoft -- released a home-spun tool that automatically checks for a configuration error that may be the cause of the reboot problem.
"If you have an AMD-based computer, and all you want to do is prevent the problem before installing Service Pack 3, then try the new tool I just wrote," he stated in this blog post yesterday. "It will first check whether you have an AMD-based computer. If you do it will check whether the IntelPPM driver is set to load. If it is it will offer you an option to disable it." Johansson also offers instructions for using the tool on multiple computers simultaneously.
| |
Why you should switch off your Bluetooth
Posted by l33tdawg on 2008-02-06 02:38:18 (Reads: 3403)
| |
Source: Business Daily (Africa)
Your Bluetooth could land you into a lot of problems if left unattended. While a Bluetooth offers a number of interesting features that can simplify our daily lives, savvy blue jackers are always on the look out.
“It is not only dangerous to leave your Bluetooth on, but it can cost you your phone,” said Anail Sharmal of Simba Telecom Ltd.
Sharma says blue jacking allows phone users to obtained data from someone else’s phone at times without their consent. One does not have to be a techie to go into your phone using Bluetooth.
| |
The 20 most useful Microsoft sites for IT professionals
Posted by l33tdawg on 2008-03-13 02:12:00 (Reads: 6050)
| |
Source: Computer World (Australia)
Microsoft professionals have a lot to keep track of, and a lot of market noise to contend with. That's why we've compiled this list of the 20 best places on the Web to help you find what you need. The list includes technology-specific sites, worthy bloggers and safe resources to help you pass your next Microsoft cert or training course. Plus we'll reveal places for trustworthy free Microsoft software and the best sites to help you stay on top of the voluminous amount of news churned out by, and about, the folks in Redmond.
| |
Conference videos from HITBSecConf2007 - Malaysia released!
Posted by l33tdawg on 2007-12-03 07:11:42 (Reads: 2935)
| |
Source: HITB Videos
The videos from Hack In The Box Security Conference 2007 Malaysia is now available for download! The files were created in Quicktime, however if you're having trouble playing them on your platform, please ensure you have the latest 3IVX codec installed.
Time to fire up your favorite Bit Torrent clients and please remember to seed!
Day 1 Torrent
Day 2 Torrent
On a related note, the Call for Papers for HITBSecConf2008 - Dubai is still open. If you're interested in speaking at the upcoming event in the UAE, please take a look at the CFP page for details on how to submit. We are especially looking for more submissions from the EMEA region.
| |
Hands-On With TrueCrypt 5: Open Source System-Wide Encryption
Posted by l33tdawg on 2008-02-14 00:45:56 (Reads: 3508)
| |
Source: Information Week
Scarcely a week goes by these days without word of the theft of a computer with sensitive personal information on it. It's gotten that much easier to protect such data with whole-drive encryption, but those kinds of solutions have typically been proprietary, like Windows Vista's BitLocker (which isn't available in all versions of Vista, either). Now comes version 5 of the free and open source encryption system TrueCrypt, which features -- you guessed it -- whole-drive encryption. My associate George Hulme touched on TrueCrypt before, but I decided to try encrypting my Windows notebook with it and see how it held up.
TrueCrypt itself has been around for some time now, and runs on all major OSes (Win/Lin/Mac). Instead of encrypting individual files, it lets you create a virtual volume -- either stored in a file or directly on a disk partition -- which is encrypted on the fly as you read from and write to it. The biggest new feature in TrueCrypt 5 is the ability to encrypt a system's boot volume -- exactly the same feature as Windows Vista's BitLocker, but without the premium cost involved. And in this case, it doesn't even require Vista. Windows XP, Windows 2003 Server, and Vista are all supported.
| |
Truecrypt 5.0 is out and it's free
Posted by l33tdawg on 2008-02-07 13:29:24 (Reads: 3011)
| |
Source: The Inquirer
TRUECRYPT - the vendor of free, open source, on-the-fly data encryption - has released version 5.0.
Truecrypt is free and available for Windows Vista or XP, Mac OS/X, and Linux.
What's new in Truecrypt release 5.0 includes a version for Mac OS/X and the capability to encrypt the system hard drive, that is, where Windows Vista or XP is installed, with pre-boot authentication. What that means is that anyone who wants to use the system must first enter the password before the PC will boot.
| |
5 MacBook (Hot) Air Alternatives
Posted by l33tdawg on 2008-01-21 04:37:26 (Reads: 2361)
| |
Source: Information Week
The MacBook (Hot) Air is the usual triumph of wannabe coolness over value. But once we get away from the self-congratulatory Apple polishers, who pat themselves on the back for recognizing how "insanely great" Steve Jobs is -- while conspicuously advertising they've got the dough to purchase another toy, one without a DVD drive, yet -- most of us want a computer we can live with for business and leisure. That means a Windows machine. Fortunately, there are some nice ultra-portables out there.
First up is a product which doesn't quite exist yet. Fans of the ThinkPad -- and count me among that group -- love these machines for their reliability, durability, and performance. No, they're not cheap. But nor are they overpriced; they deliver great value for the money.
| |
|
Last 15 Postings to HITB Forum
Packet Storm Security Latest
· USN-703-1.txtUbuntu Security Notice USN-703-1 - Paul Szabo discovered that the DECRQSS escape sequences were not handled correctly by xterm. Additionally, window title operations were also not safely handled. If a user were tricked into viewing a specially crafted series of characters while in xterm, a remote attacker could execute arbitrary commands with user privileges.
· USN-702-1.txtUbuntu Security Notice USN-702-1 - Gunter Hockel discovered that Samba with registry shares enabled did not properly validate share names. An authenticated user could gain access to the root filesystem by using an older version of smbclient and specifying an empty string as a share name. This is only an issue if registry shares are enabled on the server by setting registry shares = yes , include = registry , or config backend = registry , which is not the default.
· phpauctionsystem-insecure.txtPHP Auction System suffers from an insecure cookie handling vulnerability.
· phpauctionsystem-sqlxss.txtPHP Auction System suffers from cross site scripting and remote SQL injection vulnerabilities.
· joomlaphoca-sql.txtJoomla Phoca Documentation remote SQL injection exploit that makes use of index.php.
· lfi-rfi2.txtLocal / Remote file inclusion scanner that attempts to make use of a c99 shell on a vulnerable host.
· theratcms-sql.txtThe Rat CMS Alpha 2 remote blind SQL injection exploit that leverages viewarticle.php.
· walusoft-traversal.txtWalusoft TFTPServer2000 version 3.6.1 suffers from a directory traversal vulnerability.
Topics
· All topics
· AMD News (Oct 07, 2008)
· Apple News (Jan 07, 2009)
· Articles (Feb 13, 2006)
· Ask Us (Feb 01, 2003)
· Audio/Video (Dec 29, 2008)
· Encryption (Dec 29, 2008)
· Games (Jan 05, 2009)
· Hardware (Jan 07, 2009)
· HITB News (Sep 25, 2008)
· Industry News (Jan 07, 2009)
· Intel News (Dec 23, 2008)
· Law and Order (Jan 07, 2009)
· Linux (Dec 31, 2008)
· Microsoft (Jan 07, 2009)
· Networking (Dec 22, 2008)
· PDAs (Feb 09, 2007)
· Privacy (Jan 07, 2009)
· Red Hat (Sep 29, 2008)
· Science (Jan 02, 2009)
· Security (Jan 07, 2009)
· Software & Programming (Jan 07, 2009)
· Spam (Dec 31, 2008)
· Technology (Dec 29, 2008)
· Transmeta (Jul 07, 2007)
· Viruses & Malware (Jan 07, 2009)
· Wireless (Dec 22, 2008)
HITB on Facebook
Join our Facebook Group 
|
Re: first flight tests of 'multiple kill vehicle'