breadtan 's Library tagged no_tag →  View Popular

"Real-time search will clearly be useful for anyone who wants to know what's happening right now, but I couldn't help noticing that one example Google gave when it announced the new functionality was that beyond just helping you find out where you could get an H1N1 flu shot, it could also show you how long the lines were. In other words, it's a perfect mobile application. "

Of course, it helps to know where you are as well. That's where LBS (location-based service) comes in. Today, LBS tends to rely on a mobile device's GPS and compass. Higher-end devices have both, and others will have them soon. With this mapping information, your Google-enabled smartphone not only can tell you where your friend is, based on her real-time social network update; it can also say where you are in relation to her.

Let's take it a step further. Say you don't recognize where you are. No big deal; with your mobile device's camera, Google Goggles "looks" at your surroundings and tells you what's what. Oh, look, Google just displayed on your camera's viewer the name of the Chinese restaurant where your friend is as you passed the lens over it. Welcome to the world of AR (augmented reality).

www.computerworld.com/...Google_All_the_Time_Everywhere - Preview

"Microsoft signed a similar agreement with Twitter, and another with Facebook Inc., to add a real-time feature to Bing. The Bing update hasn't yet launched. "

www.computerworld.com/...ion_Will_Change_Face_of_Search - Preview

"One of those 'services' is Rapid Premium. To log in just use the public/public credential and go to the download section. In the text box paste the URL of the public access rapidshare link to the file you wish to download. Rapid Premium will use the stolen credentials and create an URL for you that will use a 'borrowed' Rapidshare Premium account."

www.shortinfosec.net/...idshare-premium-access-at.html - Preview

"Volume Shadow Copy is a service that creates and maintains snapshots (“shadow copies”) of disk volumes in Windows 7 and Vista. It is the back-end of the System Restore feature, which enables you to restore your system files to a previous state in case of a system failure (e.g. after a failed driver or software installation)."

blog.szynalski.com/...ume-shadow-copy-system-restore - Preview

"The use of Toolbar and FeedBurner as the only way to create Google shortened URLs may also help as currently it means there is limited access to third party applications, which could potentially lock out malicious bots from creating and posting shortened malware links through the Google service. Google does say that it may make the service "available for a wider audience" in the future."

www.h-online.com/...siness-with-goo-gl-886190.html - Preview

"Google recently launched a public DNS service similar to the popular service over at OpenDNS, you can find it on Googlecode here – http://code.google.com/speed/public-dns/.

The first obvious reaction for the infosec crowd (with all the recent DNS flaws), is to question the security of the Google DNS service.

HD Moore has done some good analysis on the service as outlined below."

www.darknet.org.uk/...is-google-public-dns-safe - Preview

"There have been plenty of stories about Facebook in the past and the latest is about their new privacy system. From what I understand they have abandoned the previous concept of “Networks” and now everyone is open to everyone else.

The network system was initially relevant when the site was targeted at only US college students, it easily allowed students from the same college to find each other. But now since it’s become global and the networks had changed into countries or even continents it was rather too open."

www.darknet.org.uk/...ushes-out-new-privacy-settings - Preview

"Hackers have released an application designed to thwart a Microsoft-packaged forensic toolkit used by law enforcement agencies to examine a suspect’s hard drive during a raid.

The hacker tool, dubbed DECAF, is designed to counteract the Computer Online Forensic Evidence Extractor, aka COFEE. The latter is a suite of 150 bundled, off-the-shelf forensic tools that run from a script. Microsoft combined the programs into a portable tool that can be used by law enforcement agents in the field before they bring a computer back to their forensic lab. The script runs on a USB stick that agents plug into the machine."

www.wired.com/...decaf-cofee - Preview

"Security measures such as one-time passwords and phone-based user authentication, considered among the most robust forms of security, are no longer enough to protect online banking transactions against fraud, a new report from research firm Gartner Inc. warns.

Increasingly, such measures are overwhelmed by online criminals looking to pillage bank accounts using valid login credentials stolen from customers, the report said."

www.computerworld.com/..._authentication_Gartner_warns_ - Preview

"Groundspeed is an open-source Firefox extension that manipulates web applications in order to make the life of the security testers easier. It allows security testers to adapt the application’s interface to their own test needs by manipulating the forms and form elements, eliminating annoying limitations and client-side controls. You can find more information about Groundspeed here."

groundspeed.wobot.org - Preview

"The commission reported that attacks, probably from China, against U.S. defense contractors in 2007 and 2008 managed to capture several terabytes of data related to the design and electronic systems of the F35 Lightning II, one of the most advanced American fighter planes.

The Department of Defense reported a sharp increase in cyber attacks over the last several years — a nearly 20 percent increase in 2008 from 43,880 the year prior, and more than 43,000 attacks just in the first half of 2009. The U.S. military figures it spent more than $100 million in the first half of the year in response to attacks on its networks.

Although it is not always possible to identify with certainty the source of cyber attacks, U.S. government investigators believe a high percentage originated with the Chinese government or the People’s Liberation Army (PLA)."

Northrop Grumman, which undertook an investigation for the commission concluded that: “China is likely using its maturing computer network exploitation capability to support intelligence collection against the U.S. government and U.S. defense industries by conducting a long-term, sophisticated, computer network exploitation campaign.”

information-security-resources.com/...-probing-soft-cyber-underbelly - Preview

"This year Adobe applications top the list with four applications identified in the U.S. National Institute of Standards and Technology’s (NIST) official vulnerability database. Adobe Acrobat, Flash Player, Reader and Shockwave had vulnerabilities that were rated “High” including ones that allowed remote attackers to execute arbitrary code, trigger memory corruption, denial of services or application crashing.

Other vulnerable applications on the list include:


• Apple Quicktime
• Mozilla Firefox
• Opera
• RealPlayer
• Sun Java
• Trillian "

www.bit9.com/...press-release-details.php - Preview

"The ShadowServer Foundation, which is monitoring Autonomous System Numbers -- IP addresses pooled by network operators -- listed the top 500 which contained IP addresses identified as Conficker infected machines. The largest number of Conficker infected PCs are in China and other Asian countries. Russian and Ukrainian domains also accounted for a large number of Conficker IP addresses followed by domains in Brazil and Romania -- locations where software piracy is very high and pirated Microsoft Windows systems fail to receive important security patches. "

searchsecurity.techtarget.com/...89142,sid14_gci1377135,00.html - Preview

"The infamous Conficker worm has disproportionally affected computer systems in the developing world, according to new research.

Despite high profile infection at the UK's Ministry of Defence and a series of British hospitals, to cite just a few examples, Conficker has proportionally affected systems in Africa and south America far more. Developing nations have become "malware ghettos", stats from Shadowserver suggest."

www.theregister.co.uk/...conficker - Preview

"At some time around 10pm on Thursday, users going to Twitter.com were served the page below with a banner reading “This site has been hacked by the Iranian Cyber Army”. Also, mowjcamp.org, a site for supporters of Mir-Hossein Mousavi Khameneh a candidate who ran against Mahmoud Ahmadinejad in the 2009 Iranian presidential election, has been serving a similar defacement since at least December 16th and continues to do so. The motive appears to be activism in support of Iran’s current Islamic regime. The attack vector was a bad actor using an id and password assigned to Twitter to log in to the administrative portal of managed DNS service provider Dyn. "

praetorianprefect.com/...r-struck-by-iranian-cyber-army - Preview

"IPplan is a free (GPL), web based, multilingual, TCP IP address management (IPAM) software and tracking tool written in php 4, simplifying the administration of your IP address space. IPplan goes beyond TCPIP address management including DNS administration, configuration file management, circuit management (customizable via templates) and storing of hardware information (customizable via templates). IPplan can handle a single network or cater for multiple networks and customers with overlapping address space. Makes managing ip addresses and managing ip address space simple and easy! "

iptrack.sourceforge.net - Preview

"The 2009 Cisco Systems Annual Security Report takes a stab at predicting next year's most profitable, least profitable, most promising and most dependable cybercrime investment areas. The Cisco Cybercrime Return on Investment Matrix identifies the innovative and lucrative banking Trojan Zeus, as well as more of the type of successful Web exploits that have dominated cybercrime as "rising stars."

"The idea was to look at things from the criminal perspective," said Scott Olechowski, a security business development manager at San Jose, Calif.-based Cisco Systems Inc., "to analyze our portfolio of services and figure out which ones we are going to continue to invest in; which ones they might look at reducing investment in or divest entirely." "

searchsecurity.techtarget.com/...89142,sid14_gci1376260,00.html - Preview

"How can inSSIDer help me?

* Inspect your WLAN and surrounding networks to troubleshoot competing access points.
* Track the strength of received signal in dBm over time.
* Filter access points in an easy to use format.
* Highlight access points for areas with high Wi-Fi concentration.
* Export Wi-Fi and GPS data to a KML file to view in Google Earth"

www.darknet.org.uk/...fi-network-scanner-for-windows - Preview

"Here are common weaknesses I find in Web servers that can lead to problems such as unauthorized file disclosures, denial of service, or worse, full remote access to the system using an exploit tool such as Metasploit:

1. Outdated versions of Web server software (especially common with Apache). What can happen? Denial of service, remote command prompt access, authentication bypass, and more.

2. Outdated versions of security technologies such as OpenSSL and OpenSSH that have known exploits. What can happen? Denial of service and remote command prompt access.

3. Vulnerable Web server technologies such as PHP, WebDav, and ColdFusion. What can happen? Denial of service, remote command prompt access, authentication bypass, directory enumeration, and local file access.

4. Open ports providing access to services such as DNS, FTP, and Windows Terminal Services. What can happen? System enumeration, password cracking, remote command prompt access, and other unauthorized remote access.

5. Unnecessary HTTP methods enabled such as CONNECT, DELETE, and PUT. What can happen? Web service enumeration, unauthorized HTTP proxying, file addition and deletion, and more.

6. Open HTTP proxies. What can happen? Unauthorized HTTP proxying and system overload leading to denial of service.

7. Web server misconfigurations that divulge the system's internal IP address. What can happen? System enumeration and mapping of the internal network for future exploitation.

8. Weak directory permissions. What can happen? Authentication bypass, directory enumeration, and local file access.

9. Weak encryption configurations such as SSL version 2 and low encryption ciphers. What can happen? Interception and subsequent cracking of the encrypted communications stream.

10. Lack of protection against malware uploaded to the server via Web application forms. What can happen? Malware uploads and subsequent infections. "

searchsoftwarequality.techtarget.com/...89483,sid92_gci1376087,00.html - Preview

"There's nothing new about Windows trojans resorting to a little blackmail, but Computer Associates has now observed a new twist; a trojan which blocks internet access until the user enters an activation code. This is activation code is obtained by sending an SMS containing a particular number to an expensive premium rate phone number – CA does not mention the sum involved.

The malware, dubbed 'Win32/RansomSMS.AH', infects computers by claiming to be the "uFast Download Manager" tool which, when run, accuses users (in Russian) of having breached their licence conditions. CA has kindly provided a free tool (via zip direct download) to enable users to generate the required code for themselves."

www.h-online.com/...or-internet-access-873853.html - Preview