TechBlog

At first glance, two recent security stories, the Stuxnet attack on Iran’s nuclear industry and the WikiLeaks breach of US State Department communications, don’t seem to have much in common, but they do. They are united by a vector, a method of transmission and that vector is removable media. I am sure that the Iranians felt pretty secure with air-gapped systems, but like a spark from the burning house next door that finds its way into your shingles, the right USB found its way into the right PC and then suddenly all those uranium enrichment centrifuges running at 807-1210 hz started to act funny and fail in unexpected and reportedly fairly energetic ways (you can see some pics of failed centrifuges here http://web.mit.edu/charliew/www/centrifuge.html and here http://www.chem.purdue.edu/chemsafety/NewsAndStories/CentrifugeDamages.htm). ...

Google just released version 8 of its web browser Chrome. It fixes 13 security vulnerabilities of which 4 got rated “high”ly critical – the people reporting these all got rewarded with 1.000 US-$ and 500 US-$, respectively. Additionally to these security fixes, the update to Chrome 8.0.552.215 contains more than 800 bugfixes and stability improvements according to the Google developers. The new version officially includes and uses the built-in, stripped-down PDF reader which is additionally secured with a sandbox. This feature, tied together with Googles sandboxing of the browser processes in general and including and updating the Flash Player automatically makes Chrome one of the most secure, yet full-featured web browsers currently available. ...

Avira TechBlog: We discovered a new ransomware threat which is downloaded by a Trojan of the Oficla family. This downloaded threat replaces the MBR (master boot record) of the hard disk with its own MBR which asks the user for a password and thus blocks the loading of the operating system. Upon starting the Oficla Trojan and successive execution of the downloaded payload the system will be rebooted and the user will be presented the ransom notice. ...

Righard Zwienenberg, Chief Research Officer at Norman posted this on Norman Security Blog, Thanks to Mr.Fagerlid for sharing: I have been a user of PayPal for many years, actually ever since PayPal opened its services for international users. PayPal, originally only for US citizens, is now used worldwide with local offices in many countries. From the Dutch affiliate, I just received the next message from PayPal (the actual message was in Dutch, see picture below): ...

An iPad 2 could hit shelves as early as next year, according to at least one source. An Apple iPad 2 will go into production beginning in December – and hit shelves as soon as Q1 of 2011. That’s the news this week from Economic News Daily, an English-language Taiwanese paper. According to News Daily staff, the new iPad will include FaceTime functionality, fresh display tech, a pair of cameras – one forward-facing – and a USB port. ...

Remember that peppy aftermarket 256GB SSD upgrade from PhotoFast that easily smoked (on paper anyway) the SSD found in Apple’s latest MacBook Air? It’s been halted upon Apple’s request before it ever went on sale, similarly to those HyperMac batteries before it. 9to5Mac first reported the news based on a source close to the company and we just confirmed it directly with the PhotoFast GM2_SFV1_Air product manager. The risk of losing access to Apple’s product licensing program was just too grave a threat to ignore. So, enjoy your 160MBps max SSD transfer rate and 128GB top-end capacity MBA 11 owners, you’ll get your storage and 250MBps sequential read/write speed bumps only when Apple’s good and ready to provide it themselves — possibly sooner, we’re told, if PhotoFast is given the green light to start sales after Toshiba’s SSD modules (Apple’s MBA partner) are available for purchase. ...

Microsoft appears to be preparing themselves to step into the streaming media field alongside Apple, Netflix, Hulu, and other competing providers who have joined their ranks over the past year. According to two anonymous sources quoted by Reuters in a report published on Monday, Microsoft is holding talks with media conglomerates in an attempt to license networks for a new subscription service they are planning to offer via Xbox, PC, and other devices. ...

If you happen to find a YouTube comment that’s really interesting and you want to share it with other people, mouse over the comment, click on the “Share” button and copy the link. Each YouTube comment has a permalink, but it’s not easy to notice that the comment is displayed below the video in a special section titled “Linked Comment”. You could also use this feature to annotate a video before sharing it with your friends. Post a comment, copy the link and use it to highlight your comment. ...

Google Earth 6 doesn’t have too many new features. You can now use Street View just like in Google Maps by dragging the pegman icon. “To view street-level imagery for a specific location, zoom into an area at an altitude of approximately 500km. You will see a pegman icon appear at the top right below the navigation controls. Click and drag the icon across the 3D viewer. A blue border will appear around roads that have street-level imagery available,” explains Google. ...

The Anonymous group takes revenge after legal decision against Pirate Bay founders v3.co.uk: An online collective known as Anonymous has carried out a distributed denial-of-service (DDoS) attack on the International Federation of the Phonographic Industry (IFPI) after the trade body welcomed the new court ruling against the founders of The Pirate Bay. The Swedish appeals court decision saw the jail terms of the men reduced but their fines increased in a move that IFPI chief executive Frances Moore argued should be the end of the debate around the issue. ...