TechBlog

Thomas Wegele, Virus Researcher from Avira wrote: In this month’s ITW malware set from the Wildlist organization two new variants of W32/Ramnit appeared. W32/Ramnit is a Worm spreading via infected executable files and infected HTML Files. It is a quite widespread malware – which is why we decided to dig deeper into it. Upon execution the malware creates a new file in the directory where it was started. This file is named “mgr.exe”. It then gets executed and creates a copy of itself in “C:%ProgramDir%\Microsoft\WaterMark.exe” which also gets executed after creation and in turn infects the EXE, DLL and HTML files found on the system and tries to connect to a server. ...

The Swedish Appeals Court upheld the conviction and jail sentences of three co-founders behind the infamous The Pirate Bay service. Peter Sunde, Fredrik Neij and Carl Lundstrom all received one-year jail sentences and $4.2 million in fines from a Swedish lower court earlier in the year. After the court ruling, Neij has been given a 10-month sentence, Sunde received an eight-month sentence, and Lundstrom was given a four-month sentence. A different defendant will be sentenced at a later date because he was unavailable due to illness. ...

Google Chrome has always supported multiple profiles, but you had to use a command-line flag (–user-data-dir=”c:\path\to\the\profile”) to associate a profile with a folder where the browser will save its state. At some point, Google added an option that allowed you to open a new window and use a separate profile, but it was quickly removed. According to a design document from Chromium’s site, this feature be available again. “The multiple profiles feature will allow the user to associate a profile with a specific set of browser windows, rather than with an entire running instance of Chrome. Allowing different windows to run as different Chrome identities means that a user can have different open windows associated with different Google accounts, and correspondingly different sets of preferences, apps, bookmarks, and so on — all those elements which are bound to a specific user’s identity.” ...

For those who missed this update on Nov 18: In the spirit of releasing early and releasing often – Mozilla bring you version 0.2 of Rainbow – an experimental Firefox add-on from Mozilla Labs that exposes audio and video recording capabilities to web pages. What’s new in this release? It now support both audio and video recording on Windows, and audio recording on Linux. They added preliminary support for writing multiplexed media frames to a websocket. JS callers are now able to specify custom video resolutions, encoding quality, audio sampling rates and channels. Numerous bug fixes, such as behaving correctly on Mac OS X 10.5 (Leopard), and generating correctly encoded OGG files (the audio tracks of which were previously unplayable by Firefox). For a full list of changes, check out their commit logs – or even better – contribute on Github! Also, don’t forget to read the README for additional information. ...

Mozilla announced Miramar Alpha 1, an early version of their next Thunderbird. Miramar Alpha 1, available here for download, is for testers, extension developers, and other friends who are curious to follow the development of the next release of Thunderbird. Miramar Alpha 1 is built on top of the next generation of Mozilla’s layout engine, Gecko 2.0 and includes a new Addon Manager and over 190 platform fixes to improve performance and stability. We expect to release further interim releases as we work towards a major new release of Thunderbird. ...

That’s possibly the most unlikely headline I’ve ever had to write in my computer security career, but never mind.. My guess is that regular readers of the Naked Security site might not be ardent fans of Justin Bieber – but chances are that some of you have young daughters or nieces who can’t get enough of the pint-sized pop hamster. If that’s the case then they might be intrigued by a message that is spreading virally across the Facebook social network claiming to be footage of… and how can I put this delicately? I don’t think I can.. Justin Bieber with an erection. ...

Miley Cyrus is eighteen years old since yesterday. I don’t know if her father, legendary “Achy Breaky Heart” singer Billy Ray Cyrus, will be joining in her birthday celebrations, but I imagine he’ll be quietly wiping away a tear as his daughter finally becomes officially an adult (at least as far as the age of consent in her home state of Tennessee is concerned). The pop singer and Hannah Montana star has had her fair share of encounters with the world of cybercrime during her short life. ...

Thousands of Facebook users are warning each other about a Christmas Tree virus said to be spreading in the form of a rogue application on the social network. The only problem with this warning? It’s utterly bogus. Here’s a typical message being shared widely on Facebook: WARNING!!!!!!…..DO NOT USE THE Christmas tree app. on Facebookplease be advised it will crash your computer. Geek squad says its oneof the WORST trojan-viruses there is and it is spreading quickly.Re-post and let your friends know. THANKS PLEASE REPOST! ...

Yesterday, Apple pushed out the much anticipated update to its mobile operating system – iOS 4.2. Although most of the headlines have focused on new functionality Apple has introduced, such as bringing folders and multi-tasking to the iPad, there’s a much more important reason why you should be considering updating your Apple iPhone, iPod Touch or iPad. Security. According to an Apple knowledgebase article, iOS 4.2 includes more than 40 security fixes designed to better protect iPhone, iPod Touch and iPad users. ...

 The Information Commissioner’s Office (ICO) has fined two organizations for serious breaches of the Data Protection Act – the first to be issued under new tougher guidelines in the UK. The security breach at Sheffield-based firm A4e happened in June 2010, after the company issued an unencrypted laptop to an employee in order to do work from home. The laptop was subsequently stolen from the employee’s house. That wouldn’t have mattered too much, of course, if the laptop hadn’t contained sensitive information. Unfortunately it carried personal data relating to 24,000 people who had used community legal advice centers in Hull and Leicester. ...