Top Stories for Today
[395] Five Best VPN Tools [386] Building a Linux Incident Response / Forensic Disk [382] 1024-bit RSA encryption cracked by carefully starving CPU of electricity [233] Researchers dissect ZeuS botnet blueprint [199] The Basics of SAN Security [194] Hackers target freshly uncovered Internet Explorer hole [171] Army plans enterprise email system [152] UK still lousy on electronic nosiness [136] Limewire taps AVG for virus free torrents [133] Physicists Find Way to See Through Paint, Paper, and Other Opaque Materials [132] Feds Move to Break Voting-Machine Monopoly [127] Top Five Tips for Securing your Business Reputation [121] Microsoft skips patch for PowerPoint add-on [121] Symantec Offers New Approach to Mobile Security View the Top 50 articles
Top 20 of the Last 2 Weeks
|
20 Latest Articles with Comments
3-D television expected to come to homes in 2010
Posted by l33tdawg on 2009-09-21 00:00:00 (Reads: 833)
| 
Source: CNN
Three-dimensional images are expected jump out of movie theaters and into living rooms by next year. Sony and Panasonic say they will release home 3-D television systems in 2010; Mitsubishi and JVC are reported to be working on similar products.
"TV finally becomes real" in three dimensions, said Robert Perry, an executive vice president at Panasonic. "You're in it. It's the next frontier."
Perry compared the 3-D transition to the switch from black-and-white to color television and the shift from standard- to high-definition images. ESPN is test-recording some sporting events in 3-D, using cameras with two sets of lenses, which would make football players appear to jump out of home television screens during live 3-D broadcasts.
| |
Why Ad Blocking is devastating to the sites you love
Posted by l33tdawg on 2010-03-07 23:59:11 (Reads: 214)
| |
Source: Arstechnica
Did you know that blocking ads truly hurts the websites you visit? We recently learned that many of our readers did not know this, so I'm going to explain why.
There is an oft-stated misconception that if a user never clicks on ads, then blocking them won't hurt a site financially. This is wrong. Most sites, at least sites the size of ours, are paid on a per view basis. If you have an ad blocker running, and you load 10 pages on the site, you consume resources from us (bandwidth being only one of them), but provide us with no revenue. Because we are a technology site, we have a very large base of ad blockers.
Imagine running a restaurant where 40% of the people who came and ate didn't pay. In a way, that's what ad blocking is doing to us. Just like a restaurant, we have to pay to staff, we have to pay for resources, and we have to pay when people consume those resources. The difference, of course, is that our visitors don't pay us directly but indirectly by viewing advertising. (Although a few thousand of you are subscribers, and we thank you all very, very much!)
| |
RIAA Claims File Sharers Are 'Undermining Humanitarian Efforts In Haiti'
Posted by l33tdawg on 2010-03-07 23:45:10 (Reads: 238)
| |
Source: Tech Dirt
Wow. The RIAA is getting seriously desperate these days. In the past, at least, its arguments made a little bit of sense, if you didn't understand the details or have the data. But these days, they're really reaching. We've already covered Mitch Bainwol's bizarre attempt to link Chinese hackers breaking into Google with copyright law -- despite the two being totally unconnected. And, now, the RIAA is claiming that P2P file sharers are "undermining" humanitarian efforts in Haiti. Now that's quite a claim, and you would think the RIAA would have some evidence to back it up, but (of course), it doesn't. It's just making stuff up.
The claim is based on the fact that some musicians quickly put out a "Hope for Haiti Now" digital only album, with the proceeds going to help Haiti. It apparently did quite well, topping the Billboard sales charts. Considering there were tons of ways to donate to Haiti, this was basically a way to get some free music with your donation. Fair enough. But the RIAA noticed that the tracks also appeared on file sharing sites. This is hardly a surprise, nor is it meaningful. But, according to the RIAA's interpretation, this somehow "undermines" humanitarian efforts.
| |
IT hiring jumps in January
Posted by l33tdawg on 2010-02-09 06:18:41 (Reads: 391)
| |
Source: Computer World
U.S. IT employment increased by 12,900 jobs, or 0.3%, in January, one of the best month-to-month gains since the recession hit in late 2008, the TechServe Alliance reported today.
The positive news comes after the prolonged recession had reduced overall IT employment by some 200,000 jobs, according to the Alexandria, Va.-based IT services industry group, which tracks monthly changes in IT hiring based on its own analysis of U.S. unemployment data.
The alliance's monthly calculations found that tech employment peaked in November, 2008, with some 4 million jobs. But in the first half of last year, IT employment fell off the cliff. The employment picture began stabilizing last summer. The January report lists a total of 3.823 million IT jobs.
| |
Yahoo open to Microsoft deal under right terms
Posted by l33tdawg on 2009-05-28 04:32:47 (Reads: 3163)
| |
Source: MSNBC
Yahoo Inc.'s chief executive said Wednesday that she is open to joining forces with Microsoft Corp. so both companies can better compete in Internet search, but a deal would need a specific set of terms — including "boatloads of money."
An alliance in Internet search would have to enrich Yahoo, give Yahoo access to the "right data" and bring strong technology, Carol Bartz said at The Wall Street Journal's D: All Things Digital conference. In the past, Yahoo has insisted it needs data culled from search requests to sell the most effective ads and tailor other services to suit its users' interests.
Asked if she would consider selling all of Yahoo, she said, "Oh, they'd have to have BIG boatloads of money."
| |
YouTube to begin broadcasting sport live
Posted by l33tdawg on 2010-01-20 00:15:28 (Reads: 871)
| |
Source: NMA
YouTube is to start broadcasting live sport matches for the first time after agreeing a deal to show Indian Premier League cricket.
The Google-owned site is in talks with agencies regarding a sponsorship package for the coverage and will show 60 matches from the league.
This further moves YouTube into the arena of live coverage. Recent live streaming events broadcast on YouTube include a gig fom U2’s 360 tour from LA, achieving nearly 10m views. The site also broadcast the live premier of James Cameron’s Avatar, sponsored by electronics company LG.
| |
Google Chrome now third most popular browser
Posted by l33tdawg on 2010-01-04 02:07:10 (Reads: 1546)
| |
Source: Pocket Lint
Google's Chrome browser has overtaken Apple's Safari browser to become the world's third most popular browser behind Firefox and Internet Explorer.
The feat, which has been achieved in just 16 months since its launch in 2008, comes as Microsoft's IE browsers continue to lose market share. According to net measurement firm, Net Applications, Apple's Safari browser dropped into fourth place for the first time with 4.46% of usage compared to Chrome's 4.63%.
| |
New anti-virus scanner marketed to virus writers
Posted by l33tdawg on 2010-01-12 10:47:03 (Reads: 819)
| |
Source: MX Logic
A website offers what seems, on the surface, to be a standard, fee-per-file anti-virus scanning service. However, the idea is not to make sure that files are safe, as with most anti-virus programs: it's to make sure that viruses don't get caught.
Av-check.com provides hackers with the opportunity to test their creations against 22 of the top anti-virus programs to find out whether or not they will be detected when released into the wild. A monthly membership costs $40, but the service can be used a la carte for $1 per file scanned.
The error-riddled documentation on the Av-check website aims to placate paranoid hackers, saying that all files are deleted after scanning and that no information is provided to the makers of the anti-virus products during the scan. A competitor has even sprung up, calling itself Virtest.
| |
50 Cent Album Leaked Online
Posted by l33tdawg on 2009-10-31 00:00:00 (Reads: 1647)
| |
Source: Taragana
50 CENT’s hotly anticipated new album has been leaked on to the internet - a month before its release date.
The In Da Club hitmaker was originally set to unveil his upcoming disc Before I Self Destruct in the summer (09), but it was pushed back until 23 November (09). But the record hit the web on Wednesday (28Oct09), and fans of the star - real name Curtis Jackson - have been clamouring to download the tracks, according to MTV News.
| |
Italians threaten suit over Windows pre-install
Posted by l33tdawg on 2010-01-06 00:46:53 (Reads: 1028)
| |
Source: Channel Register
An Italian consumer rights group plans to slap Microsoft with a class-action lawsuit this week seeking compensation on behalf of people forced to buy Windows pre-installed on new computers.
The ADUC, which specializes in public interests related to TV, internet, and telephone, said it would file the lawsuit at a court in Florence after the Epiphany holiday on Wednesday, according to Reuters. The case will be brought under a new law permitting consumer groups to file class-action lawsuits on behalf of the people they represent.
"As there is a large number of users involved, and with the importance of the free market issue, we have decided to take a collective legal action against Microsoft," ADUC chairman Vincenzo Donvito told Reuters.
| |
Facebook app privacy: It's complicated
Posted by l33tdawg on 2009-12-23 00:00:00 (Reads: 905)
| |
Source: CNet News
Earlier this week I wrote a post about how I didn't like that I couldn't alter the Facebook Connect privacy settings for updates from Foursquare, an iPhone app that shares my location through a GPS-enabled city directory. It didn't make sense to me that Facebook Connect information was automatically visible to anyone who had access to posts on my "wall," whereas privacy settings on a third-party app embedded directly on my profile were much more fine-tuned, allowing me to restrict them to specific subsets of friends.
Not quite. I've been e-mailing back and forth with Facebook, and I've gotten some clarification on how the process exactly works. Privacy controls for embedded apps aren't as simple as I'd thought. I can opt to block the "box" for a third-party game like Mafia Wars or Farmville, as the privacy controls indicate, but activity from those apps--i.e. if I just picked up a new weapon in Mafia Wars--will still show up to anyone who can see what I post on my Facebook wall, like status messages and new friend connections. (You can, however, block individual Platform apps from posting to your wall in the first place.)
| |
Is Backing Up Online Safe?
Posted by l33tdawg on 2009-12-18 00:22:18 (Reads: 709)
| |
Source: Computer World
After reading When the Backup Drive Gets Full, LaTonya Powell asked whether online backup services such as Mozy (which I recommended in that tip) are really secure.
That's a good question. Identity theft is a serious problem, and we should all be concerned about it. I should add that I'm a Mozy user myself, and yes, I pay for it just like everyone else. According to my Mozy contact, that service encrypts the files on your PC before uploading them (over a secure, SSL connection). The files remain encrypted on Mozy's server.
You can choose between your own 256-bit AES encryption key or Mozy's 448-bit Blowfish encryption key. If you choose the former, even government agents at Mozy's door with a subpoena can't access your data--at least until they turn up at your door.
| |
Microsoft's 4 Challenges in 2010
Posted by l33tdawg on 2009-12-14 00:38:12 (Reads: 904)
| |
Source: PC World
When you're a technology mongrel like Microsoft, challenges are constant -- and 2009 was chock full of them. It was a tumultuous year that saw the software giant's first widespread layoffs and its worst quarterly revenue earnings ever.
Yet there were some rays of sunlight flickering through the clouds. Windows 7 survived its many pre-launch milestones and launched successfully in October; search engine Bing debuted with aggressive marketing and innovative features; the launch of Windows Azure pulled Microsoft's cloud computing strategy together; Office, Exchange, and Sharepoint software continue to own the enterprise; and Microsoft's public presence on television improved with the Laptop Hunters, Windows 7 and Bing ad campaigns.
But still, due to its massive size, Microsoft has been more affected by the global economic downturn than tech companies of smaller stature. So 2010 is likely to be a rebuilding year for Redmond as the economy slowly improves, say industry analysts.
| |
Top 10 free Windows tools for IT pros
Posted by l33tdawg on 2009-11-19 07:55:00 (Reads: 4709)
| |
Source: Computer World
They say you can tell a lot about a person by the tools they bring to the job. If you're a professional plumber or a carpenter, people will expect you to carry the right tools for the task at hand. The same holds true for IT pros. Those in the know will judge you by the depth and sophistication of the technical toolkit you bring to a support call.
To help you make a good first impression and to cement your reputation as a seasoned troubleshooting guru, I offer the following list of my top 10 must-have Windows utilities for PC support professionals. Some you probably already know. Others you may have heard of only in passing. But all deserve your consideration for a place in your PC support and diagnostics toolkit.
| |
Can Adobe Beat Back the Hackers?
Posted by l33tdawg on 2009-11-20 00:00:00 (Reads: 1591)
| |
Source: Business Week
For years, Adobe Systems (ADBE) has occupied a quiet corner of the personal-computer industry. Photographers and designers use its software to clean up photos and set up Web sites. Workers everywhere trade electronic documents formatted with Adobe's programs, often without knowing the company behind the software.
Now Adobe is attracting the unwanted attention of hackers—and security experts are concerned the company isn't doing enough to repel assaults. So far this year, Adobe has released nine security updates for the current version of its Acrobat Reader software, up from four in 2008, says Moscow security firm Kaspersky Lab. Adobe appears to have replaced Microsoft (MSFT) as the primary means by which hackers try to infect or take control of PCs. "Adobe at the moment is the main target," says Roel Schouwenberg, a Kasperky senior antivirus researcher in Woburn, Mass.
| |
Cisco computer game lets you play CEO
Posted by l33tdawg on 2009-11-05 00:36:08 (Reads: 1410)
| |
Source: Network World
If you want to be a CEO but not have any of the real responsibilities of one, you could try to play a new online game being offered by Cisco. The company this week posted myPlanNet, a computer game that lets anyone be a broadband executive making network deployment decisions.
Cisco says of the myPlanNet game: "You manage your business as it evolves from the stone age of dial-up, through the broadband and mobile connected eras, and into the dawning of the medianet age." That means you get to pick and choose everything from routers to networked-applications to help your company grow. The Game even has a Facebook page.
Cisco created the game for the company's network certification site, the Learning Network. That site features a number of computer games such as The Cisco Mind Share Game that let you play and learn the content of the CCENT/ CCNA exam. If that's possible.
| |
Apple tablet: One tech gadget for all
Posted by l33tdawg on 2009-11-17 00:00:00 (Reads: 1121)
| |
Source: CNN
Apple's lips are sealed about its widely rumored tablet computer, but technology experts are giddy about the device, already exclaiming it will be the gadget to end all gadgets.
Executives at Apple (AAPL, Fortune 500) never discuss products that are in the works, so there's no confirmation that the thing even exists. But rumors are circulating that Steve Jobs and Co. have designed a magazine-sized, touch-screen, hand-held, all-in-one device that is half-iPhone, half-Macintosh computer.
It's supposedly going to make its debut in the next few months, and you can have it for the low, low price of $600. Or $800. Maybe $1,000. No one's really sure.
| |
Yahoo, Microsoft Need More Time to Close Search Deal
Posted by l33tdawg on 2009-10-29 02:35:18 (Reads: 867)
| |
Source: Yahoo! Tech
Yahoo and Microsoft have missed a deadline for finalizing their search and advertising deal and have now extended the deadline for an unspecified period.
When the companies announced in July that Microsoft's Bing search engine would power Yahoo's search results, they said that they planned to finalize the deal by Oct. 27 or use an arbitration panel to hammer out their differences. In a filing with the U.S. Securities and Exchange Commission on Wednesday, Yahoo said the companies have agreed to extend the period to negotiate and execute the deal.
"Given the complex nature of the transaction, there remain some details to be finalized," Yahoo said in the filing. "The parties are working diligently on finalizing the agreements, have made good progress to date, and have agreed to execute the agreements as expeditiously as possible."
| |
Apple releases Mac OS X 10.6.2
Posted by l33tdawg on 2009-11-10 00:05:00 (Reads: 2261)
| |
Source: Apple Insider
Apple's second update for Snow Leopard, Mac OS X 10.6.2, was officially released Monday afternoon, fixing a number of issues including a guest account bug that could potentially delete a user's account data.
The guest account bug is triggered by logging in and out of a guest account on a Snow Leopard machine. Upon logging back in to their regular account, users will find that it has been wiped of all data. When it was first publicized in October, Apple acknowledged the issue and said it was working on a fix.
The operating system upgrade also features native support for the new multi-touch Magic Mouse. Those on previous versions of Mac OS X required the Wireless Mouse Software update 1.0.
| |
World of Warcraft Hit by New Phishing Scam
Posted by l33tdawg on 2009-09-30 00:00:00 (Reads: 1313)
| |
Source: Internet News
World of Warcraft players desperate for a new mount to traverse the online role-playing game's fantasy world are getting a reality check from hackers who have devised a clever pop-up phishing scam to spread malware.
Security technicians at F-Secure Security Lab on Tuesday posted a blog entry Tuesday detailing the latest scam making its way through the world's most popular massively multiplayer online role-playing game (MMORPG).
With more than 11.5 monthly subscribers, Blizzard Entertainment's World of Warcraft is not only the most successful MMORPG in history, but also a very popular environment for hackers, phishers and assorted click-fraud scam artists.
| |
|
HITB Ezine
WANT TO GET PUBLISHED? SEND YOUR ARTICLES TO ZARULSHAHRIN -AT- HACKINTHEBOX.ORG
Issue #1 - #37
Issue #38
Last 15 Postings to HITB Forum
Packet Storm Security Latest
· Botan-1.9.4.tgzBotan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS #10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to most systems and compilers, and includes a substantial tutorial and API reference.
· gnupg-2.0.15.tar.bz2GnuPG (the GNU Privacy Guard or GPG) is GNU's tool for secure communication and data storage. It can be used to encrypt data and to create digital signatures. It includes an advanced key management facility and is compliant with the proposed OpenPGP Internet standard as described in RFC2440. As such, it is meant to be compatible with PGP from NAI, Inc. Because it does not use any patented algorithms, it can be used without any restrictions.
· fwbuilder-4.0.0.tar.gzFirewall Builder consists of a GUI and set of policy compilers for various firewall platforms. It helps users maintain a database of objects and allows policy editing using simple drag-and-drop operations. The GUI and policy compilers are completely independent, which provides for a consistent abstract model and the same GUI for different firewall platforms. It currently supports iptables, ipfilter, ipfw, OpenBSD pf, Cisco PIX and FWSM, and Cisco routers access lists.
· anantasoft-xsrf.txtAnantasoft Gazelle CMS suffers from a cross site request forgery vulnerability.
· secunia-etsdisclose.txtSecunia Research has discovered security issue in Employee Timeclock Software, which can be exploited by malicious, local users to disclose sensitive information. The security issue is caused due to the application passing the database password via the command line to the mysqldump utility, which potentially can be exploited to disclose the password via the process list. Version 0.99 is affected.
· secunia-etssql.txtSecunia Research has discovered some vulnerabilities in Employee Timeclock Software, which can be exploited by malicious people to conduct SQL injection attacks. Input passed to the username and password parameters in auth.php and login_action.php is not properly sanitized before being used in SQL queries. This can be exploited to manipulate SQL queries by injecting arbitrary SQL code. Version 0.99 is affected.
· notepadpoc.zipThe MS HTML Help control activex is prone to a remote CHM help file hijack vulnerability when applications invoke help. Multiple built-in applications are vulnerable to this. The impact of the vulnerability is the loading of the incorrect CHM help file when it resides in the same directory the application invoking help starts in. This proof of concept exploit leverages Notepad to demonstrate the vulnerability.
· tarcpio-overflow.txtGNU Tar and GNU Cpio suffer from a heap-based buffer overflow vulnerability. Tar versions prior to 1.23 and Cpio versions prior to 2.11 are affected.
Topics
· All topics
· AMD News (Feb 23, 2010)
· Apple News (Mar 08, 2010)
· Articles (Mar 03, 2009)
· Ask Us (Feb 01, 2003)
· Audio/Video (Mar 08, 2010)
· Encryption (Mar 10, 2010)
· Games (Mar 09, 2010)
· Hardware (Mar 04, 2010)
· HITB News (Feb 09, 2010)
· Industry News (Mar 10, 2010)
· Intel News (Mar 09, 2010)
· Law and Order (Mar 09, 2010)
· Linux (Feb 25, 2010)
· Microsoft (Mar 10, 2010)
· Networking (Mar 10, 2010)
· PDAs (Feb 09, 2007)
· Privacy (Mar 09, 2010)
· Red Hat (Mar 09, 2010)
· Science (Mar 10, 2010)
· Security (Mar 10, 2010)
· Software & Programming (Mar 10, 2010)
· Spam (Jan 26, 2010)
· Technology (Mar 05, 2010)
· Transmeta (Jul 07, 2007)
· Viruses & Malware (Mar 09, 2010)
· Wireless (Mar 03, 2010)
Follow us
Join our Facebook Group 
Follow us on Twitter 
Follow our RSS feed 
|
Real secure Virtualisation???