Archive for March, 2008
Friday, March 28th, 2008
The purpose of this article is to help people without advanced computer knowledge to start white hacking and learn how to write more secure login web pages. When I started to learn about security, even though I searched really hard, I did not manage to find articles that would tell ...
Posted in Coding, Internet, Security, Software | No Comments
Thursday, March 27th, 2008
To search for files on my PCs, I use Windows Search - Windows Vista's desktop search feature. I use Windows Search specifically to find photos that I've tagged in Windows Live Photo Gallery or important emails and Word documents. I also rely on saving specific searches that I can go ...
Posted in Windows | No Comments
Thursday, March 27th, 2008
The Honeynet Project has released a new freebie honeypot client tool that lets security pros and researchers automatically detect and dissect bot infections and other malware attacks on client machines.
Capture-HPC v2.1 is an updated and enhanced version of the Honeynet Project’s high-interaction Capture-HPC client honeypot, which the organization last year ...
Posted in Internet, Networking, Privacy, Security | No Comments
Thursday, March 27th, 2008
A couple of weeks ago, we received a CHM, or Windows Help file, embedded in e-mail as part of a targeted attack campaign against an NGO. Virus detection was near zero. On Virustotal.com, two solutions actually flagged it as malicious.
After decompiling the CHM file, which you can easily do using tools ...
Posted in Coding, Internet, Privacy, Security | No Comments
Thursday, March 27th, 2008
I have a quick update on where we are with Acid3. Since the test was officially announced recently, our Core developers have been hard at work fixing bugs and adding the missing standards support. Today we reached a 100% pass rate for the first time! There are some remaining issues ...
Posted in Coding, Internet, Windows | No Comments
Thursday, March 27th, 2008
While there might not be new malicious threats under the sun, there are plenty of new ways to spin old virus attacks. Trend Micro researchers discovered last weekend a new variation of a MBR rootkit released in the wild, which contains new technology to prevent detection. When combined with Web ...
Posted in Internet, Privacy, Security | No Comments
Wednesday, March 26th, 2008
winlockpwn is a memory analysis tool released by Adam Boileau of storm.net.nz. This utility exploits firewire's direct memory access. The operating system allows firewire devices to directly read/write memory without having to go through the processor. Sounds handy right? I installed winlockpwn on Ubuntu 7.10 and a fully patched Windows ...
Posted in Internet, Linux, Privacy, Security, Windows | No Comments
Wednesday, March 26th, 2008
The Mozilla project is distributing version 2.0.0.13 of its popular open source Firefox browser. This release fixes several critical vulnerabilities which could be exploited by attackers to inject malicious code or fake page content.
The browser's JavaScript engine contains several of the security vulnerabilities. Due to incorrect processing, attackers can execute ...
Posted in Internet, Linux, Privacy, Security, Software, Windows | No Comments
Tuesday, March 25th, 2008
You installed Firefox. How do you make it more secure for daily use? How do the Mozilla developers ensure that they are doing all the right things? How do you safely browse the Internet?
These are not easy questions to answer, and some of the answers will be system/OS-dependent.
Security functionality in ...
Posted in Internet, Linux, Privacy, Security, Software, Windows | No Comments
Tuesday, March 25th, 2008
SP1 may not give your system much more oomph, but there are other ways to speed Vista up. Spending a few minutes (or a few dollars) optimizing your Vista PC can help it get its groove on.
Get flashy: If you have an extra USB flash drive that you don't use ...
Posted in Internet, Windows | No Comments
