Top Stories for Today
[77] JustHackIt: It's Like a Dating Site For Hackers [76] Intel Unveils Desktop Motherboard for Nettops [74] Seven online-security blunders to avoid [74] Cyberwar isn't a grand struggle - it's a scary prospect of pure chaos [71] Apple's MobileMe lacks key security feature [70] Adobe Flash ads launching clipboard hijack attack [70] Deep packet inspection testing methodology - Videos and documentation [68] Open source and the ‘fear factor’ mentality [68] One Sleepless Night Increases Dopamine In The Human Brain [67] AMD preps low-powered Atom killer [62] Fake News Bulletin Spreads Malware [59] Scent Of Skin Cancer Discovered [59] FEMA phones hacked; calls made to Mideast, Asia [59] Baidu cache offers more evidence of underage Chinese gymnasts [57] International travellers face computer searches at UK Customs [57] FCC Orders Comcast to Stop Blocking Some Large Files [56] Scientists design shield to prevent deadly pacemaker hijack [55] American Airlines introduces in-flight Internet access View the Top 50 articles
Top 20 of the Last 2 Weeks
|
20 Latest Articles with Comments
Gmail Back in Service after Outage
Posted by l33tdawg on 2008-08-12 02:25:18 (Reads: 524)
| 
Source: Internet News
Google confirmed "many Gmail users" were unable to access the email service since about 2 p.m. Pacific Time after receiving a "502 Error" message which would seem to indicate a system overload of some kind for the popular service.
Whatever the issue, it appears to have been identified and fixed. A Google spokesman said the issue has been fixed and Gmail is functioning normally. Several mail users contacted by InternetNews.com report their service is back and working after being unable to access it. In response to a request for an explanation about the problem, Google sent the following statement to InternetNews.com:
"Since about 2 p.m. Pacific Time today, many Gmail users have been unable to access their email. We are very sorry for this interruption in service. The issue is being caused by a temporary outage in the contacts system used by Gmail, which is preventing Gmail from loading properly. We are starting to roll out a fix now and hope to have the problem resolved as quickly as possible. Even though you may not be able to get to your inbox right now, your mail is safe, including new incoming messages.
| |
Should You Pay Twice as Much for a Mac?
Posted by l33tdawg on 2008-08-08 02:36:25 (Reads: 1342)
| |
Source: eWeek (Blog)
On Saturday, Aug. 2, I got to wondering about Mac versus Windows PC pricing after seeing two HP notebooks on sale at the local Target. One of them, a 14-inch model, the HP DV2946NR, sold for $699.99 and packed 4GB of memory and a 320GB hard drive. Capacity for both features is twice that of the $1,299 MacBook—and shared graphics is 356MB compared with a meager 144MB for the MacBook. I wondered: If Vista notebooks are selling for so little and packing so much, how does this compare with Mac desktops and notebooks?
Today I contacted Stephen Baker, NPD's vice president of industry analysis, about computer average selling prices at retail. That HP notebook is right on mark: ASP for retail Windows notebooks is $700. Mac laptops: $1,515. Yeah, right, they're more than twice as much. But there's more: The ASP for Mac desktops is more than $1,000 greater than for Windows PCs, and Mac desktop ASPs were higher in June than they were two years ago.
| |
Spanish hacker jailed for sending out ex-manager's private emails
Posted by l33tdawg on 2008-08-06 01:47:12 (Reads: 578)
| |
Source: guardian.co.uk
A hacker has been jailed for two years in Spain for revealing hundreds of private emails written by a former colleague. The emails, which were taken from the former manager's work computer, divulged details of his sex life.
The hacker sent them to the manager's ex-wife, to a woman with whom he was having a relationship, and to the mayor of a council where he was working.
The emails were also copied on to other people who knew the victim. A judge in Barcelona yesterday jailed the hacker, who was not named, for two years for an offence of "revealing secrets". He was also order to pay a fine of €3,240 (£2,566) as well as €4,000 in compensation to the victim
| |
Apple moving back to proprietary chipsets?
Posted by l33tdawg on 2008-07-29 02:17:14 (Reads: 1204)
| |
Source: Insanely Great Mac
AppleInsider is reporting whispers that the mothership will move its computer product lines away from Intel-designed chipsets and back to proprietary solutions, like the days of the PPC when Apple deployed custom chipsets specific to the platform and even individual product lines.
As such, people familiar with these plans say an upcoming generation of Macs, lead by a trio of redesigned notebooks, won't adopt the Montevina chipset announced as part of Intel's Centrino 2 mobile platform earlier this month. What's more, those same people suggest the chipset employed by the new wave of Macs may have little or nothing to do with Intel at all.
Apple will continue to employ Intel CPUs, but the chipsets that manage memory, graphics and I/O will come from a still unknown source, perhaps designed by Apple and fabbed independently.
| |
VoIPshield reveals VoIP vulnerabilities
Posted by l33tdawg on 2008-06-28 02:18:42 (Reads: 750)
| |
Source: SC Magazine (US)
VoIPshield Laboratories has alerted companies that market voice over IP systems of new security vulnerabilities. The VoIP vulnerabilities, if successfully exploited, could affect brand reputation, internal productivity, and competitive advantage, researchers said.
VoIPshield does not reveal specifics about the vulnerabilities to the public, Bogdan Materna, VoIPshield Laboratories chief technology officer, told SCMagazineUS.com on Friday.
“We don't want to give hackers information to work from,” he said. Instead, under its disclosure policy, VoIPshield works with the VoIP vendors to assist them in reproducing the vulnerabilities in their labs.
| |
Bill aimed at small-biz cybersecurity
Posted by l33tdawg on 2008-06-11 00:25:04 (Reads: 724)
| |
Source: FCW
Lawmakers have introduced legislation to help protect small businesses from computer hackers and information security breaches.
On June 9, Sens. John Kerry (D-Mass.) and Olympia Snowe (R-Maine) joined Reps. Michael Michaud (D-Maine) and Donald Manzullo (R-Ill.) in introducing versions of the Small Business Information Security Act of 2008 in both houses of Congress.
The measures would create a Small Business Information Security Task Force at the Small Business Administration. The task force's goal would be to help small firms understand and effectively respond to information security vulnerabilities, said Nick Christiansen, a spokesman for the Senate Small Business and Entrepreneurship Committee.
| |
Ex-Microsoft Employee Takes Lead on XP SP3 Reboot Problem, Offers Free Fix
Posted by l33tdawg on 2008-05-16 02:21:23 (Reads: 2588)
| |
Source: Redmond Mag
A former Microsoft employee appears to be coming to the rescue of those suffering from the XP SP3 endless reboot cycle that can happen on computers with AMD processors -- a problem for which Microsoft has yet to announce a solution.
As first noted by Computerworld, on Wednesday author and Microsoft MVP Jesper Johansson -- who until 2006 was a senior security strategist at Microsoft -- released a home-spun tool that automatically checks for a configuration error that may be the cause of the reboot problem.
"If you have an AMD-based computer, and all you want to do is prevent the problem before installing Service Pack 3, then try the new tool I just wrote," he stated in this blog post yesterday. "It will first check whether you have an AMD-based computer. If you do it will check whether the IntelPPM driver is set to load. If it is it will offer you an option to disable it." Johansson also offers instructions for using the tool on multiple computers simultaneously.
| |
Why you should switch off your Bluetooth
Posted by l33tdawg on 2008-02-06 02:38:18 (Reads: 2470)
| |
Source: Business Daily (Africa)
Your Bluetooth could land you into a lot of problems if left unattended. While a Bluetooth offers a number of interesting features that can simplify our daily lives, savvy blue jackers are always on the look out.
“It is not only dangerous to leave your Bluetooth on, but it can cost you your phone,” said Anail Sharmal of Simba Telecom Ltd.
Sharma says blue jacking allows phone users to obtained data from someone else’s phone at times without their consent. One does not have to be a techie to go into your phone using Bluetooth.
| |
The 20 most useful Microsoft sites for IT professionals
Posted by l33tdawg on 2008-03-13 02:12:00 (Reads: 5178)
| |
Source: Computer World (Australia)
Microsoft professionals have a lot to keep track of, and a lot of market noise to contend with. That's why we've compiled this list of the 20 best places on the Web to help you find what you need. The list includes technology-specific sites, worthy bloggers and safe resources to help you pass your next Microsoft cert or training course. Plus we'll reveal places for trustworthy free Microsoft software and the best sites to help you stay on top of the voluminous amount of news churned out by, and about, the folks in Redmond.
| |
Conference videos from HITBSecConf2007 - Malaysia released!
Posted by l33tdawg on 2007-12-03 07:11:42 (Reads: 1885)
| |
Source: HITB Videos
The videos from Hack In The Box Security Conference 2007 Malaysia is now available for download! The files were created in Quicktime, however if you're having trouble playing them on your platform, please ensure you have the latest 3IVX codec installed.
Time to fire up your favorite Bit Torrent clients and please remember to seed!
Day 1 Torrent
Day 2 Torrent
On a related note, the Call for Papers for HITBSecConf2008 - Dubai is still open. If you're interested in speaking at the upcoming event in the UAE, please take a look at the CFP page for details on how to submit. We are especially looking for more submissions from the EMEA region.
| |
Ubuntu Linux Vs. Windows Vista: The Battle For Your Desktop
Posted by l33tdawg on 2007-08-06 03:24:30 (Reads: 2110)
| |
Source: Information Week
The prevailing wisdom about Linux on the desktop runs something like this: "I'll believe Linux is ready for the desktop as soon as you can give me a Linux distribution that even my grandmother can run." For some time, the folks at Ubuntu have been trying their best to make Granny -- and most everyone else -- happy. They've attempted to build a Linux distribution that's easy to install, use, configure, and maintain -- one that's at least as easy as Windows, and whenever possible, even easier. As a result, Ubuntu is one of the Linux distributions that has been most directly touted as an alternative to Windows.
In this feature, I'm going to compare the newly-released Ubuntu 7.04 (codenamed "Feisty Fawn") with Microsoft Windows Vista in a number of categories. To keep the playing field as level as possible, I'm looking wherever I can at applications -- not just in the sense of "programs," but in the sense of what the average user is going to do with the OS in a workday. Sometimes the differences between the two OSes are profound, but sometimes the playing field levels itself -- OpenOffice.org, for instance, is installed by default in Ubuntu, but adding it to Vista isn't terribly difficult.
| |
Hands-On With TrueCrypt 5: Open Source System-Wide Encryption
Posted by l33tdawg on 2008-02-14 00:45:56 (Reads: 2449)
| |
Source: Information Week
Scarcely a week goes by these days without word of the theft of a computer with sensitive personal information on it. It's gotten that much easier to protect such data with whole-drive encryption, but those kinds of solutions have typically been proprietary, like Windows Vista's BitLocker (which isn't available in all versions of Vista, either). Now comes version 5 of the free and open source encryption system TrueCrypt, which features -- you guessed it -- whole-drive encryption. My associate George Hulme touched on TrueCrypt before, but I decided to try encrypting my Windows notebook with it and see how it held up.
TrueCrypt itself has been around for some time now, and runs on all major OSes (Win/Lin/Mac). Instead of encrypting individual files, it lets you create a virtual volume -- either stored in a file or directly on a disk partition -- which is encrypted on the fly as you read from and write to it. The biggest new feature in TrueCrypt 5 is the ability to encrypt a system's boot volume -- exactly the same feature as Windows Vista's BitLocker, but without the premium cost involved. And in this case, it doesn't even require Vista. Windows XP, Windows 2003 Server, and Vista are all supported.
| |
Truecrypt 5.0 is out and it's free
Posted by l33tdawg on 2008-02-07 13:29:24 (Reads: 2196)
| |
Source: The Inquirer
TRUECRYPT - the vendor of free, open source, on-the-fly data encryption - has released version 5.0.
Truecrypt is free and available for Windows Vista or XP, Mac OS/X, and Linux.
What's new in Truecrypt release 5.0 includes a version for Mac OS/X and the capability to encrypt the system hard drive, that is, where Windows Vista or XP is installed, with pre-boot authentication. What that means is that anyone who wants to use the system must first enter the password before the PC will boot.
| |
5 MacBook (Hot) Air Alternatives
Posted by l33tdawg on 2008-01-21 04:37:26 (Reads: 1766)
| |
Source: Information Week
The MacBook (Hot) Air is the usual triumph of wannabe coolness over value. But once we get away from the self-congratulatory Apple polishers, who pat themselves on the back for recognizing how "insanely great" Steve Jobs is -- while conspicuously advertising they've got the dough to purchase another toy, one without a DVD drive, yet -- most of us want a computer we can live with for business and leisure. That means a Windows machine. Fortunately, there are some nice ultra-portables out there.
First up is a product which doesn't quite exist yet. Fans of the ThinkPad -- and count me among that group -- love these machines for their reliability, durability, and performance. No, they're not cheap. But nor are they overpriced; they deliver great value for the money.
| |
Doing without anti-virus software
Posted by l33tdawg on 2008-01-20 06:48:41 (Reads: 2438)
| |
Source: Gulf News
Is it a good idea to run anti-virus software? It may seem like an answer that would require an overwhelming "YES," but as virus attacks are decreasing, some users are uninstalling their old anti-virus software. For those who have decided to digitally "go commando," here are a few tips.
1No cookies Many websites require you to accept cookies. We're not talking about chocolate covered biscuits but about small software files that are downloaded to your computer. Most have a legitimate purpose but some are malicious software that can harm your computer or compromise your personal information. Just because you're visiting a "reliable" website doesn't mean you're safe either, hackers have been known to sneak their own cookies onto popular sites. Your browser will have the option to turn cookies off, but beware, you will need to turn cookies back on to do some things online, like shop.
| |
Microsoft XP Programs Keygen.
Posted by on 2002-06-17 20:13:19 (Reads: 1320398)
| |
Source:
The new Microsoft XP program suite - everyone knows them, no one likes their product activation because it restricts the use of a cd-key to a single installation.
This keygen computes random and virtually unique cd-keys for either Office XP Pro or Windows XP Pro, which can be used to install and *activate* these products on a unlimited number of systems - without risking to invalidate a patched version by a product update ! It says compute and not generate because it takes some time to verify, if a random cd-key can be made valid (use the benchmark mode to check how long that should take on your system). Unfortunately can not every random cd-key be made valid, so it usually needs more than one try to compute a valid cd-key (chances are about 1 to 40). In general it takes about five to ten minutes to come up with a usuable cd-key.
Download it!! - Fileconnect
| |
Footprinting: The Basics of Hacking
Posted by L33tdawg on 2002-02-13 21:04:49 (Reads: 44727)
| |
Source:
By:ManicVelocity (2600 Salt Lake City)
¥ What Is Footprinting?
Footprinting is the first and most convenient way that hackers use to gather information
about computer systems and the companies they belong to. The purpose of footprinting to
learn as much as you can about a system, it's remote access capabilities, its ports and
services, and the aspects of its security.
In order to perform a successful hack on a system, it is best to know as much as you can,
if not everything, about that system. While there is nary a company in the world that
isn't aware of hackers, most companies are now hiring hackers to protect their systems.
And since footprinting can be used to attack a system, it can also be used to protect it.
If you can find anything out about a system, the company that owns that system, with the
right personell, can find out anything they want about you.
In this talk, I will explain what the many functions of footprinting are and what they do.
I'll also footprint everyone's favorite website, just to see how much info we can get on
Grifter.
| |
Photo evidence of the new Apple sub notebook?
Posted by l33tdawg on 2008-01-03 02:00:00 (Reads: 8024)
| |
Source: Crunch Gear
Could this be a photo of the new Apple sub notebook everyone has been talking about? Granted the shot isn't all that clear, but it does look pretty legit. Interestingly the touchpad area is HUGE in comparison to the MBP sitting next to it... Better mark your calendars for the Macworld keynote on the 15th :)
| |
iPod Touch SIP VoIP client released
Posted by l33tdawg on 2008-01-01 04:04:54 (Reads: 2287)
| |
Source: Touchmods
The uber hackers eok, marian and samuel have released version 1.0 of the SIP-VoIP clients for the iPod Touch! You will need to either register for a SIP account (freecall.com is what their using for their testing) or you could also use your own Asterisk server.
To grab a copy of the 1.0 release, you'll need to add the Touchmods repository (http://touchmods.net/rep.xml) to Installer.app. Our mics have not arrived yet so we can't quite test the software just yet, but from the videos and feedback posted on their site, it looks like the solution works quite well indeed!
| |
|
HITBSecConf2008 - Malaysia
The following speakers have confirmed their participation in HITBSecConf2008 - Malaysia; the premier network security event in Asia and the Middle East!
Day 1 Keynote Speakers
1.) Jeremiah Grossman (Founder & Chief Technology Officer, White Hat Security.)
2.) Marcus Ranum (Chief Security Officer, Tenable Network Security)
Day 2 Keynote Speakers
3.) Dr. Anton Chuvakin (Chief Research Officer, Log Logic Inc.)
4.) Peter Sunde [brokep] (Founder, The Pirate Bay - TPB) and Fredrik Neij [TiAMO] (Founder, The Pirate Bay - TPB) 
Conference Speakers (alphabetical order)
1. AR (Independent Network Security Researcher, Securebits)
2. Adrian ‘pagvac’ Pastor (ProCheckUp Ltd. / GNUCITIZEN)
3. Akshay Agrawal (Practice Manager, Microsoft Information Security ACE Team)
4. Andrew ‘Q’ Righter (HacDC)
5. Alexander Tereshkin (Principal Researcher, Invisible Things Lab)
6. Charlie Miller (Principal Analyst, Independent Security Evaluators)
7. Ching Tim Meng (Security Consultant, Cable & Wireless)
8. Dino Covotsos (Managing Director, Telspace Systems)
9. Dino Dai Zovi (Security Researcher)
10. Ero Carrera (Reverse Engineering Automation Researcher, zynamics GmbH)
11. Haroon Meer (Technical Director, Sensepost Information Security)
12. Hernan Ochoa (Senior Security Consultant, Core Security Technologies)
13. Ilfak Guilfanov (Founder/CEO of Hex-Rays SA and creator of IDA Pro)
14. Jamie Butler (Coauthor of Rootkits: Subverting the Windows Kernel)
15. Jim Geovedi (Member of HERT & Security Consultant, PT. Bellua Asia Pacific)
16. Julian Ho (Chief Operating Officer, THINKSecure Pte. Ltd.)
17. King Tuna (Independent Network Security Researcher)
18. Kris Kaspersky (Independent Network Security Researcher)
19. Lee Chin Sheng [geek00l] (Independent Network Security Researcher)
20. Matthew Geiger (Forensics Specialist, CERT)
21. Meling Mudin [spoonfork] (Independent Network Security Researcher)
22. Marc Weber Tobias (Investigative Attorney and Security Specialist)
23. Nitesh Dhanjani (Senior Manager, Ernst & Young)
24. Paul Craig (Principal Security Consultant, Security-Assessment.com)
25. Pedram Amini (Manager, Security Research, TippingPoint)
26. Petko D. Petkov [pdp] (GNUCITIZEN)
27. Shreeraj Shah (Director, BlueInfy)
28. Saumil Shah (Founder, Net-Square)
29. The Grugq (Independent Network Security Researcher)
There are very limited seats and registrants are encouraged to register early!
REGISTER NOW
Last 15 Postings to HITB Forum
Packet Storm Security Latest
· MDVSA-2008-177.txtMandriva Linux Security Advisory - Guido Landi found a stack-based buffer overflow in xine-lib that could allow a remote attacker to cause a denial of service (crash) and potentially execute arbitrary code via a long NSF title. The updated packages have been patched to correct this issue.
· MDVSA-2008-176.txtMandriva Linux Security Advisory - A stack-based buffer overflow was found in mtr prior to version 0.73 that allowed remote attackers to execute arbitrary code via a crafted DNS PTR record, when called with the --split option. The updated packages provide mtr 0.73 which corrects this issue.
· MDVSA-2008-175.txtMandriva Linux Security Advisory - A format string vulnerability was discovered in yelp after version 2.19.90 and before 2.24 that could allow remote attackers to execute arbitrary code via format string specifiers in an invalid URI on the command-line or via URI helpers in Firefox, Evolution, or possibly other programs. The updated packages have been patched to correct this issue.
· surveywizard-sql.txtSurvey Wizard suffers from a remote SQL injection vulnerability.
· dxshopcart-sql.txtDXShopCart version 4.30mc suffers from a remote SQL injection vulnerability.
· faqman-sql.txtFAQ Management suffers from a remote SQL injection vulnerability.
· CORE-2008-0813.txtCore Security Technologies Advisory - vBulletin versions 3.7.2 Patch Level 1 and 3.6.10 Patch Level 3 suffer from a cross site scripting vulnerability.
· CORE-2008-0624.txtCore Security Technologies Advisory - Anzio Web Print Object (WePO) is a Windows ActiveX web page component that suffers from a buffer overflow vulnerability.
Topics
· All topics
· AMD News (Aug 21, 2008)
· Apple News (Aug 21, 2008)
· Articles (Feb 13, 2006)
· Ask Us (Feb 01, 2003)
· Audio/Video (Aug 18, 2008)
· Encryption (Jul 30, 2008)
· Games (Aug 14, 2008)
· Hardware (Aug 19, 2008)
· HITB News (May 18, 2008)
· Industry News (Aug 21, 2008)
· Intel News (Aug 21, 2008)
· Law and Order (Aug 21, 2008)
· Linux (Aug 20, 2008)
· Microsoft (Aug 20, 2008)
· Networking (Aug 20, 2008)
· PDAs (Feb 09, 2007)
· Privacy (Aug 21, 2008)
· Red Hat (May 13, 2008)
· Science (Aug 21, 2008)
· Security (Aug 21, 2008)
· Software & Programming (Aug 17, 2008)
· Spam (Aug 20, 2008)
· Technology (Aug 21, 2008)
· Transmeta (Jul 07, 2007)
· Viruses & Malware (Aug 21, 2008)
· Wireless (Aug 19, 2008)
|
Re: Virtual Tabletop for RPGs