2010
02.01
After more than 2 years of loyal service of my 2G iphone, was about time to get a new mobile. Of course 3Gs was the one I looked at first being an old school Apple user. First Apple product used was more than 25 years. I assumed I can call myself an advanced Apple user.
If you want a “smart” device you have 4 choices: Iphone, Windows mobiles (smart), Blackberry and Android. Most of the phones on the market have very similar features: quad-band, 3G, GPS, smart media, camera. Major difference are based on graphic interface and the software to link to your computer.
Read More >>
2010
01.28
An error-checking algorithm found in software used to attack Google and other large companies circulated for years on English-speakinglanguage books and websites, casting doubt on claims it provided strong evidence that the malware was written by someone inside the People’s Republic of China.
The smoking gun said to tie Chinese-speaking programmers to the Hydraq trojan that penetrated Google’s defenses was a cyclic redundancy check routine that used a table of only 16 constants. Security researcher Joe Stewart said the algorithm “seems to be virtually unknown outside of China,” a finding he used to conclude that the code behind the attacks dubbed Aurora “originated with someone who is comfortable reading simplified Chinese.”
“In my opinion, the use of this unique CRC implementation in Hydraq is evidence that someone from within the PRC authored the Aurora codebase,” Stewart wrote here.
In fact, the implementation is common among English-speaking programmers of microcontrollers and other devices where memory is limited. In 2007, hardware designer Michael Karas discussed an almost identical algorithm here. Undated source code published here also bears more than a striking resemblance.
2010
01.21
Traffic jerked to a standstill as rubbernecking motorists ogled a pornographic clip posted by hackers on big-screen video billboards in Moscow, Russian news agencies reported on Friday.
The company that operates the billboards, Panno.ru, said hackers were behind a graphic sex video broadcast late Thursday night on two roadside screens along Moscow’s Garden Ring Road, one of the city’s busiest arteries.
Read More >>
2010
01.14
Hackers apparently were able to access a system used to help Google comply with search warrants by providing data on Google users, said a source familiar with the situation, who spoke on condition of anonymity because he was not authorized to speak with the press. “Right before Christmas, it was, ‘Holy s***, this malware is accessing the internal intercept [systems],’.
Google was already hosting a spy system that provided the Chinese government, and any other government with user data. They merely had to request that data through a warrant. That internal spy system became the weak spot in Google’s security technology.
Read More >>
2009
12.24
Airlines, beware! With the Bangalore International Airport leaving the wi-fi hotspots unsecured at the airport, a hacker can break into the servers containing your databases and tamper with sensitive information pertaining to flight schedules and passenger details.
Not only that. The e-mail ID of a passeger surfing the net while waiting for his flight can be hacked to send a terror mail, and he could end up under the scanner of security agencies while the real culprit remains undetected.
Shockingly, the wi-fi access points in a sensitive area like BIA are still vulnerable to hacking, even after the danger facing open and weak wi-fi networks was exposed by Bangalore Mirror three months ago (‘Wi-fi Way to Terror’, Sept 2).
Read More >>
2009
12.15
First the iPhone, now the Droid: A hacker has unleashed an exploit that lets a user wrest administrative root control of his or her Motorola Droid smartphone.
The code, which was posted on the AllDroid online forum, lets a user gain root privileges to either Motorola Droid Android 2.0 or Android 2.0.1 version phones. That basically means a user can run whatever themes, gadgets, and applications he or she wants — akin to a jailbroken iPhone. The Droid, which is based on Google’s Android operating system, runs on Verizon’s network.
Read More >>
2009
12.08
After a year of unprecedented proliferation of spyware, malware and cyber attacks of all types, security software vendor Symantec warns there’s plenty more where that came from in its just-released 2010 Security Trends to Watch report.
Kevin Haley, Symantec Security Response group product manager, this week posted an ironic blog entry titled “Don’t Read This Blog” to draw attention to the company’s latest report and to illustrate how Internet users have been conditioned to click any compelling link without regard to the possible—and often probable — security consequences of their actions.
“We love to click,” he wrote. “Clicking on links and attachments that are accompanied by just the slightest bit of social engineering appears to be a basic human need.”
2009
12.02
The Disney Company is always so good at accessing one’s inner child. The hope, the joy, the glory of absolute love, family goodness, and everything that sails in it.
So I am thrown a little off course when I hear that Disney may have falsely accused an 11-year-old boy of hacking the Pirates of the Caribbean video game and disabled his account.
Read More >>
2009
11.18
Facebook architecture allows 3rd parties to install bunch of applications that will let you play, make some quiz and other. Basically the will suck your profile informations and parse the result in facebook pages.
The major problem is that Facebook doesn’t control the apps and some code are really bad. Here is an exemple of sql injection allowing to dump all info from a database: email, login, password and more.
Read More >>
2009
11.17
Press up, up, down, down, left, right, left, right, b, a, enter key then press up and down then magic circles will appear. Just reload the page to remove it.
Facebook dev have much time to loose to make heavy dirty code…
What’s scary is that any javascript can be included in the page based on keystrokes.
