Eye on Security: IE8 Fails, Windows Botnets, Security Products Don't Work
- Dr. Roy Schestowitz
- 2009-11-21 00:16:50 UTC
- Modified: 2009-11-21 00:16:50 UTC
Summary: A variety of new links about security
●
IE8 bug makes 'safe' sites unsafe
The latest version of Microsoft's Internet Explorer browser contains a bug that can enable serious security attacks against websites that are otherwise safe.
●
Two arrested for Zbot Trojan
Officers from the Metropolitan Police's Central e-Crime Unit (PCeU) have made Europe's first arrests in the battle against the ZeuS or Zbot Trojan which threatened to compromise thousands of computers.
Officers from the PCeU, assisted by Greater Manchester Police, arrested a man and woman, both aged 20 years, in Manchester for offenses under the 1990 Computer Misuse Act and the 2006 Fraud Act.
●
RIM security chief sees smartphone attacks on horizon
Hackers could one day turn ordinary smartphones into "rogue" devices to attack major wireless networks, Research In Motion's security chief warned.
Scott Totzke, RIM's vice-president of BlackBerry security, said hackers could use smartphones to target wireless carriers using a technique similar to one used in assaults that slowed Internet traffic in the United States and South Korea in July.
In what's known as a distributed denial of service, or a DDOS attack, criminals use phone signals to order tens of thousands computers to contact a targeted site repeatedly, slowing it or eventually crashing it.
●
Senate Panel: 80 Percent of Cyber Attacks Preventable
If network administrators simply instituted proper configuration policies and conducted good network monitoring, about 80 percent of commonly known cyber attacks could be prevented, a Senate committee heard Tuesday.
●
Web security company warns of 'cyber arms race'
Warning of a "cyber arms race," a leading Web security firm said that China, France, Israel, Russia and the United States were among countries that have developed "cyber weapons."
●
Most security products not up to scratch
For example, anti-virus products often failed to prevent malware infection at the first attempt, while firewalls or IPS (intrusion prevention) products failed to make the grade in blocking attack traffic.
●
Hackers target world's leading climate research unit
E-mails reportedly from the University of East Anglia's Climatic Research Unit (CRU), including personal exchanges, appeared on the internet on Thursday.
A university spokesman confirmed the email system had been hacked and that information was taken and published without permission.
Recent Techrights' Posts
- Hard Evidence Reinforces Suspicion That Mark Shuttleworth May Have Worked Volunteers to Death
- Today we start re-publishing articles that contain unaltered E-mails
- A Discussion About Suicides in Science and Technology (Including Debian and the European Patent Office)
- In Debian, there is a long history of deaths, suicides, and mysterious disappearances
- [Video] Why Microsoft is by Far the Biggest Foe of Computer Security (Clue: It Profits From Security Failings)
- Microsoft is infiltrating policy-making bodies, ensuring real security is never pursued
- Harassment Against My Wife Continues
- Drug addict versus family of Techrights authors
-
- Frans Pop Debian Day suicide, Ubuntu, Google and the DEP-5 machine-readable copyright file
- Reprinted with permission from disguised.work
- Axel Beckert (ETH Zurich), the mentality of sexual violence on campus
- Reprinted with permission from Daniel Pocock
- [Meme] Russian Reversal
- Mark Shuttleworth: In Soviet Russia's spacecraft... Man exploits peasants
- Frans Pop & Debian suicide denial
- Reprinted with permission from disguised.work
- The Real Threats to Society Include Software Patents and the Corporations That Promote Them
- The OIN issue isn't a new one and many recognise this by now
- Links 30/04/2024: OpenBSD and Enterprise Cloaking Device
- Links for the day
- Microsoft Still Owes Over 100 Billion Dollars and It Cannot be Paid Back Using 'Goodwill'
- Meanwhile, Microsoft's cash at hand (in the bank) nearly halved in the past year.
- Workers' Right to Disconnect Won't Matter If Such a Right Isn't Properly Enforced
- I was always "on-call" and my main role or function was being "on-call" in case of incidents
- [Teaser] Ubuntu Cover-up After Death
- Attack the messenger
- The Cyber Show Explains What CCTV is About
- CCTV does not typically resolve crime
- [Video] Ignore Buzzwords and Pay Attention to Attacks on Software Developers
- AI in the Machine Learning sense is nothing new
- Outline of Themes to Cover in the Coming Weeks
- We're accelerating coverage and increasing focus on suppressed topics
- [Video] Not Everyone Claiming to Protect the Vulnerable is Being Honest
- "Diversity" bursaries aren't always what they seem to be
- [Video] Enshittification of the Media, of the Web, and of Computing in General
- It manifests itself in altered conditions and expectations
- [Meme] Write Code 100% of the Time
- IBM: Produce code for us till we buy the community... And never use "bad words" like "master" and "slave" (pioneered by IBM itself in the computing context)
- [Video] How Much Will It Take for Most People to Realise "Open Source" Became Just Openwashing (Proprietary Giants Exploiting Cost-Free or Unpaid 'Human Resources')?
- turning "Open Source" into proprietary software
- Freedom of Speech... Let's Ban All Software Freedom Speeches?
- There's a moral panic over people trying to actually control their computing
- Richard Stallman's Talk in Spain Canceled (at Short Notice)
- So it seems to have been canceled very fast
- Links 29/04/2024: "AI" Hype Deflated, Economies Slow Down Further
- Links for the day
- Gemini Links 29/04/2024: Gopher Experiment and Profectus Alpha 0.9
- Links for the day
- Debian 'Cabal' (via SPI) Tried to Silence or 'Cancel' Daniel Pocock at DNS Level. It Didn't Work. It Backfired as the Material Received Even More Visibility.
- know the truth about modern slavery
- Lucas Nussbaum & Debian attempted exploit of OVH Hosting insider
- Reprinted with permission from disguised.work
- Software in the Public Interest (SPI) is Not a Friend of Freedom
- We'll shortly reproduce two older articles from disguised.work
- Syria, John Lennon & Debian WIPO panel appointed
- Reprinted with permission from disguised.work
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Sunday, April 28, 2024
- IRC logs for Sunday, April 28, 2024
- [Video] GNU and Linux Everywhere (Except by Name)
- In a sense, Linux already has over 50% of the world's "OS" market
- [Video] Canonical Isn't (No Longer) Serious About Making GNU/Linux Succeed in Desktops/Laptops
- Some of the notorious (or "controversial") policies of Canonical have been covered here for years
- [Video] What We've Learned About Debian From Emeritus Debian Developer Daniel Pocock
- pressure had been put on us (by Debian people and their employer/s) and as a result we did not republish Debian material for a number of years
- Bruce Perens & Debian public domain trademark promise
- Reprinted with permission from disguised.work
- Links 28/04/2024: Shareholders Worry "AI" Hype Brings No Income, Money Down the Drain
- Links for the day
- Lawyer won't lie for Molly de Blanc & Chris Lamb (mollamby)
- Reprinted with permission from disguised.work
- Over at Tux Machines...
- GNU/Linux news for the past day
- IRC Proceedings: Saturday, April 27, 2024
- IRC logs for Saturday, April 27, 2024