Ryan Naraine: Apple today warned that its GarageBand software is leaking users’ Web activity to third parties and advertisers. The company shipped GarageBand 5.1 to plug the hole and advise users to tweak their Safari browser preferences to avoid data leakage.? Here’s the relevant information from Apple’s advisory: CVE-2009-2198: When GarageBand is opened, Safari’s preferences are changed to always [...]
Dancho Danchev: Today, researchers from F-Secure stumbled upon a long anticipated feature in Twitter’s fight against malicious abuse of its service - a malware URL filter preventing automatically registered or compromised legitimate accounts from tweeting known malicious links. Whenever a Twitter user is attempting to post a link to a known malware/phishing URL, a “Oops! Your tweet contained [...]
Ryan Naraine: As it scrambles to cope with a noticeable surge in malware attacks targeting its users, Twitter has found a friend in Google. The popular micro-blogging service has quietly started using the Google Safe Browsing API to block links to known malicious Web sites. [ SEE: Guy Kawasaki's Twitter account hijacked, pushes Windows and Mac malware ] The Safe [...]
Ryan Naraine: In this podcast, I chat with Threatpost.com co-editor Dennis Fisher about the big news coming out of the Black Hat security conference.? We discuss the attacks using SMS and MMS, rootkits in keyboards and BIOSes, vulnerabilities in SSL and the response from vendors to these problems. Listen here [mp3].
Dancho Danchev: Connectivity is addictive, and in my line of work it’s a prerequisite for timely assessing the latest cybercrime incidents as they emerge in order to properly respond to them. Next to connectivity, I put mobility as the second most important success factor, in particular my ability to increase the average working time for my power-hungry [...]
Ryan Naraine: Mozilla has released two advisories to patch serious security flaws in its flagship Firefox Web browser. The vulnerabilities are rated “critical,” meaning they can be exploited by malicious hackers to run harmful code and install software, requiring no user interaction beyond normal browsing.?? These issues were separately discussed at last week’s Black [...]
This is a world you have never seen before, a world normally hidden under miles of water...the landscape of the ocean bed. Click to learn more www.natgeotv.com/draintheocean
Ryan Naraine: Apple’s sleek $49 Mac keyboards can be hacked and infected with keystroke loggers and impossible-to-detect rootkits, according to a security researcher presenting at this year’s Black Hat/DEFCON conferences. The researcher, known only as “K. Chen,” found a way to reverse engineer and tamper with the keyboard’s firmware upgrade. With the firmware under control, an attacker can [...]
Ryan Naraine: A Google security researcher attending the Black Hat/DEFCON conferences in Las Vegas was victimized by a skimming device placed in an ATM at the Rio All-Suite Hotel and Casino. Chris Paget, an RFID security expert who now works on Google’s security team, said he lost $200 to a rigged ATM that also claimed several other victims.?? [...]
Ryan Naraine: On the heels of a Black Hat conference demo of an iPhone hijack via text messages, Apple has shipped an iPhone update with patches for the security flaw. The iPhone OS 3.0.1 update, available only via iTunes, addresses a memory corruption issue in the way the device decodes SMS (text) messages.?? Apple warned that a maliciously [...]
Sign up for more free newsletters from ZDNet! | To manage your account settings or to remove yourself from all ZDNet communications, please visit our Subscription Center.
This is a world you have never seen before, a world normally hidden under miles of water...the landscape of the ocean bed. Click to learn more 
No comments:
Post a Comment