|
|
|
|
Re: Safari browser vulnerable to auto hack attack |
|
Webmaster  
Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
Delivering on a promise the company made back in June, Apple on Wednesday released an update to Safari 5 which turns on extensions support akin to what browsers such as Firefox and Internet Explorer have been offering for years.
In addition to the debut of these plugins, Apple also plugged several security issues, including a widely publicized flaw in the AutoFill feature that could open up users to information disclosure.
Posted on: Yesterday 16:03
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Safari browser vulnerable to auto hack attack |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
WhiteHat has disclosed a critical security vulnerability in Apple's Safari browser that could allow hackers to extract personal information from the OS X address book.
"Right at the moment a Safari user visits a malicious website, even if they've never been there before or entered any personal information, [it] can uncover their first name, last name, work place, city, state and email address," WhiteHat CTO Jeremiah Grossman wrote in an official blog post.
"Safari v4 & v5, with a combined market browser share of 4% (~83 million users), has a feature (Preferences > AutoFill > AutoFill web forms) enabled by default. Essentially we are hacking auto-complete functionality."
According to Grossman, malicious websites would likely operate by surreptitiously extracting Address Book card data from Safari and dynamically creating form text fields with matching names.
The site would then simulate A-Z keystroke events using JavaScript.
"When data is populated, that is AutoFill'ed, it can be accessed and sent to the attacker. [Now], this entire process takes mere seconds and represents a major breach in online privacy," explained Grossman.
"The [breach] could be further leveraged in multistage attacks including email spam, (spear) phishing, stalking and even blackmail if a user is de-anonymized while visiting objectionable online material."
However, Grossman emphasized that any AutoFill data beginning with a number would remain off limits to a malicious website.
"For some reason, the data [will] not populate in the text field. Still, such attacks could be easily and cheaply distributed on a mass scale using an advertising network where likely no one would ever notice because it's not exploit code designed to deliver rootkit payload.
"In fact, there is no guarantee this has not already taken place. What is safe to say is that this vulnerability is so brain dead simple that I assumed someone else must have publicly reported it already, but exhaustive searches and asking several colleagues turned up nothing."
Unsurprisingly, Grossman revealed that Apple had yet to seriously address the issue.
"I figured Apple might appreciate a vulnerability disclosure prior to public discussion, which I did on June 17, 2010 complete with technical detail. A gleeful auto-response came shortly after, to which I replied asking if Apple was already aware of the issue.
"I received no response after that, human or robot. I have no idea when or if Apple plans to fix the issue, or even if they are aware, but thankfully Safari users only need to disable AutoFill web forms to protect themselves."
Posted on: 7/22 14:57
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
New Windows Exploit |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
Microsoft Windows Shortcut 'LNK' Files Automatic File Execution Vulnerability To exploit this issue, an attacker must entice an unsuspecting user into viewing an icon of a maliciously crafted shortcut file. This issue is being exploited in the wild as malware W32.Temphid. The following exploit is available: http://www.securityfocus.com/data/vul ... lities/exploits/41732.rarLast Friday, Microsoft confirmed that attackers can use a malicious shortcut file, identified by the ".lnk" extension, to automatically execute their malware by getting users to view the contents of a folder containing such a shortcut. Malware can also automatically execute on many systems when a USB drive is plugged into the PC. All versions of Windows, including the just-released beta of Windows 7 Service Pack 1 (SP1), as well as the recently retired Windows XP SP2 and Windows 2000, contain the bug.
Posted on: 7/19 16:23
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Eric Gales |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
Posted on: 7/17 23:40
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Sony Vaio Laptop Recall |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
Sony Vaio Laptop Recall:
The recall is for Sony Vaio laptops with model numbers beginning in VPCF11 and VPCWW2. The devices were typically purchased between January, 2010 and April, 2010 and sold for prices ranging from 800 to 1500 dollars.
Here's a quick breakdown of everything you need to know to figure out whether you're affected by the recall and how to fix your laptop.
How many Sony Vaio laptops are affected?
Sony says that about 535,000 laptops worldwide and 259,000 laptops in the U.S. are affected by the issue.
Which model numbers are affected?
Sony Vaio laptops with the VPCF11 and VPCCW2 notebook series are affected by the overheating issue. You can find a complete list of specific model numbers within each notebook series on Sony's Website .
What's the worst case scenario for laptops that overheat?
The overheating issue has the potential to be a burn hazard for users; however, no injuries have so far been reported. Sony has received 30 reports of deformed keyboards and laptop casings because of the issue. In other words, parts of the laptop melt.
What should I do if my computer overheated already?
You can give Sony a call at (866) 496-7669, and the U.S. Consumer Product Safety Commission would also like to hear about your problem. You can fill out an incident report on the Commission's Website .
How do I fix my computer?
You need to download a BIOS firmware update, but before you do that you need to know your computer's model number and your operating system type.
How do I find my model number?
The easiest way to find your model number is to look for a small label on the frame of your notebook screen or near the hinge between the screen and the keyboard. The label should be the same color as your computer, with contrasting letter colors. You can also look for a white product label on the bottom of your laptop. Sony warns that this label could be placed anywhere on the bottom of your device, so you may have to look closely to find it. The tag should look something like this:
Sony warns you not to use the model information found on the grey product label on the bottom of your notebook. This label does not have the information you're looking for. For more information about finding your product label check out Sony's eSupport page .
If you can't find your label, another option is to let Sony auto-detect your model number. To do this, go to Sony's eSupport Website using Internet Explorer, and click on the "Detect my model" button on the right side of the page. You'll then download a small program that can determine your model number. If all else fails, you can call Sony technical assistance at (866) 496-7669.
32- or 64-bit?
It appears that all the affected computers should be running Windows 7, but if you have a VPCCW2 device you are either running Windows 7 32-bit or 64-bit. You can determine which version you have by either checking the label on the system disks that came with your notebook or click on Start>Control Panel>System and Maintenance>System. This will display a variety of information about your system including your installed memory (RAM), processor and system type.
What's the remedy?
The overheating issue can be fixed with a BIOS firmware update, according to Sony. You can download the update here from Sony's Website , but you need to make sure you pick the correct update for your model number and operating system type. So read carefully.
Precautions before you install
You can download and run the update just like you would any other program download.First of all, make sure your computer is plugged in while you download and install the BIOS update. If you don't plug it in you risk bricking your notebook should your battery power fail in the middle of the update. You should also make sure you backup all your files and folders just in case you run into difficulties.
Posted on: 7/1 7:44
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Re: New Adobe Exploit |
|
Just popping in  
Joined:
3/22 12:27
From SWNY
Group:
Registered Users
|
I have also found the "authply.dll" in my Adobe flash player directory. Which I have denied access for both in my Adobe Reader and Adobe Flash for the system, administrator, and My account. Both The reader and flash still work. I am posting this to let people know to look into their Adobe Flash directory as well if they wish to also if Dante thinks it's a good approach (this is his forum I can not give out advice without his approval) in C:\Programs also maybe in the "User" account folder under the appropriate account names (C:\Documents & Settings\User\Application Data for XP) (C:\Users\your account name\AppData\Local for Vista and maybe for Win7) also the "default" user account. Also under Vista look in the "ProgramData" folder. Also in Vista open any window using the search feature type in "authply.dll to look for that file, if it is in your system it will find the file in all directories if you do not want to rummage through your C: drive. This is just advice :D
Posted on: 6/25 19:22
|
|
_________________
Haha This might hurt!!
|
|
|
Re: New Adobe Exploit |
|
Just popping in Joined:
3/22 12:27
From SWNY
Group:
Registered Users
|
Wow thanks for the heads up Dante I will search my system for that file & my girlfriends! I will also post this on my facebook page to let others know...
Posted on: 6/25 9:57
|
|
_________________
Haha This might hurt!!
|
|
|
Modern Warfare 3 Trailer |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
Posted on: 6/12 9:32
Edited by dante on 2010/6/16 11:10:35
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Re: Ubuntu Gnome Lucid |
|
Just popping in Joined:
3/22 12:27
From SWNY
Group:
Registered Users
|
opps I meant Kubuntu KDE
Posted on: 6/7 10:06
|
|
_________________
Haha This might hurt!!
|
|
|
Ubuntu Gnome Lucid |
|
Just popping in Joined:
3/22 12:27
From SWNY
Group:
Registered Users
|
I am posting this here because I assume this is the best place for the sort of topic.
I recently been playing with Ubuntu (Linux) I use it as a dual boot Os with Windows Vista Ultimate on 1 drive partitioned. I am wondering if others here us it, and if so what you us it for, also do you like it more or less than Windows. I like because the the software distributions. The system is more secure than Windows, also the performance is great. I am new to Linux I am a newbie just trying to broaden my knowledge with another OS.
Let me hear your thought on Linux and the Linux distros Ubuntu, Nubuntu, Xubuntu and others. :D
Attach file:
 UbuntuDcube.jpg (85.57 KB)
Posted on: 6/7 9:51
|
|
_________________
Haha This might hurt!!
|
|
|
Re: New Adobe Exploit |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
For the moment, this is the fix recommended: Reader and Acrobat users can protect themselves by deleting or renaming authplay.dll. Doing so, however, means that opening a PDF file containing Flash content will crash the software or produce an error message. Alternately: Flash Player 10.1 Release Candidate, which can be downloaded from Adobe's site, "does not appear to be vulnerable," Adobe said, implicitly urging users to shift to the unfinished software. Download the RC here: http://labs.adobe.com/technologies/flashplayer10/
Posted on: 6/6 8:24
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
New Adobe Exploit |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
Quote: June 5, 2010 11:00 AM
Adobe Security Vulnerability Under Attack
Adobe Systems is warning users about a zero-day bug affecting Adobe Reader, Flash Player and Acrobat that is actively being exploited by attackers.
According to Adobe, the vulnerability exists in Flash Player 10.0.45.2 and earlier versions for Windows, Macintosh, Linux and Solaris, as well as the authplay.dll component that ships with Adobe Reader and Acrobat 9.x for Windows, Mac and UNIX operating systems.
If exploited, the vulnerability (CVE-2010-1297) could cause systems to crash and potentially allow attacker to execute code and take control of the affected system.
Users looking for a quick fix can delete, rename or remove access to the authplay.dll file in Adobe Reader and Acrobat 9.x, but doing so means they will experience a non-exploitable crash or error message when opening a PDF file that contains SWF content. The file is typically located at C:\Program Files\Adobe\Reader 9.0\Reader\authplay.dll for Adobe Reader or C:\Program Files\Adobe\Acrobat 9.0\Acrobat\authplay.dll for Acrobat, according to Adobe.
The Flash Player 10.1 Release Candidate does not appear to be vulnerable, and Adobe Reader and Acrobat 8.x have been confirmed to be unaffected.
The company said it will update the advisory when it has determined a schedule for releasing a patch. The above report calls for everyone to update their adobe installs ASAP. I'll update this when they actually have a patch.
Posted on: 6/5 11:45
Edited by dante on 2010/6/5 14:33:36
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Google 800 Number! |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
Google 800 Number(I just received this from a buddy, and thought I'd share)
Just leave it up to Google to come up with something like this!
Here's a number worth putting in your cell phone, or your home phone speed dial: 1-800-goog411 or 1-800-466-4411.
This is an awesome service from Google, and it's free -- great when you are on the road. Don't waste your money on information calls and don't waste your time manually dialing the number. I am driving along in my car and I need to call the golf course and I don't know the number. I hit the speed dial for information that I have programmed (1-800-goog411). The voice at the other end says, " say the name of the business and the 'City & State.' I say, "Firewheel Golf Course ' Garland , Texas .' He says, 'Connecting' and Firewheel answers the phone. How great is that? This is nationwide and it is absolutely free! Works on cell and landline phones.
Click on the link below and watch the short clip for a quick demo .
http://www.google.com/goog411/
Posted on: 6/5 10:00
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Simple Hosts File Auto-Updater |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
This was created by a Myspace user:Much thanks! "Simple Hosts file updater script" First task: Download the attached file: "hosts-script". You'll need "True-Crypt" to open it as the vbs script sets off alarms on all antivirus programs. (Password is "infernallogic") You'll also need to disable your antivirus program to install this. Don't sweat it, it's perfectly safe. Now follow the instructions in the "readme.txt" file. Double click the schedule.vbs file and enjoy the automatic benefits of updating your hosts file once a month. I have tested this and it works like a charm. *tech info* Hosts file is from HERE! and full information is available on their site, regarding the hosts file itself. I recommend this site to everyone, as it's the best, most comprehensive hosts listing that I've found. Enjoy! Attach file:
 hosts-script.zip Size: 1,024.28 KB; Hits: 3  TrueCrypt Setup 6.2a.exe Size: 3,114.40 KB; Hits: 4
Posted on: 5/14 9:48
Edited by dante on 2010/5/14 10:06:13
Edited by dante on 2010/5/14 10:42:03
Edited by dante on 2010/5/14 10:44:16
Edited by dante on 2010/5/14 10:47:31
Edited by dante on 2010/5/14 11:07:41
Edited by dante on 2010/5/14 13:31:39
Edited by dante on 2010/5/14 13:32:56
Edited by dante on 2010/5/14 13:34:43
Edited by dante on 2010/5/14 13:35:41
Edited by dante on 2010/5/14 13:36:12
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Chit Chat etc. |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
Volcanos and earthquakes, and Obama oh my!
RUN!!! hehehehehehe
Posted on: 4/20 23:08
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Advertising on InfernalLogic |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
$20.00 For 1 Year! Multiple banner placements, in file areas, top banners, and on all public areas of the site. Hit the donation button and pay $20.00 then send me the 468 x 60 banner or any code with alt and title descriptions linking to your image and site. And you'll get a full years' worth of advertisement on most pages here at Infernal Logic. $10.00 For 6 Months! Same deal, different rate. Click the feedback button for further information. FREE ad rotation on the top banner for registered users! Thousands of unique visitors visit this site every month. Your ad will get great exposure for a very economical price. Don't miss out on this opportunity!
Posted on: 4/16 15:21
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Well.... |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
Well so far the user drive and advertisement promotion have failed miserably. hahahahahahaha
We'll give it some more time.
Hurry up.
Posted on: 4/2 12:07
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Re: Private Files II Additions |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
I also just put up a bunch of C=64 songs remixed to mp3 format in the music directory, as well as a complete freeware collection of SID format files with an emulator to listen to them..
Amazing things can be done with an 8 bit computer and a SID chip for sound....
Enjoy!
(I attached a sample in mp3 format)
Attach file:
 JPH - Black Hornet (2nd Strike).mp3 Size: 4,246.24 KB; Hits: 7
Posted on: 3/28 23:57
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
Private Files II Additions |
|
Webmaster Joined:
1/8 21:05
From Dayton, Ohio
Group:
Webmasters
Registered Users
Moderator
Vets
Plus+User
|
Lotsa goodies not found in the public area are available to registered users..
Music videos, and music files, NSFW videos, Silverlight instruction videos, program files, and more..
Register and check em out..
Much more to come.
Posted on: 3/28 17:33
|
|
_________________
The more I know, the more I know that I didn't wanna know.
|
|
|
People you try to help not following simple instructions |
|
Just popping in Joined:
3/22 12:27
From SWNY
Group:
Registered Users
|
I tired to help some one with viruses, malware, trojans or what not that they have on their system. I told them to use "Malwarebytes" They siad it found tons of items (thats good) now they said their system is running better.
I told them we are not done yet I told them to go to my Google group and download HijackThis do a system scan save a logfile so they can copy & paste the information to me via my forum blah blah don't remove anything until I tell them what to remove blah blah (Us virus removal gurus know this all to well).
They understood that they could not remove anything until I told them what to remove that doing so could make their OS system useless.
What they couldn't understand is how to start a scan using HJT save a log file and how to copy and paste the info to a forum. I explained it plain English in the simplest way I could also maked snapshots to show how to use HJT saving the logfile copying & pasting the info also how to post it to my forum.
What the noobs don't understand is is how to follow instructions to the letter, if they are not going to follow instruction they are wasting my (our time) time the help we offer people is free at least they could do is follow our instructions to the letter they have no clue following our instructions is the only way to go to guarantee that their system will be cured.
They have no clue the things we learned or know about viruses, computer tweaks, tricks, and troubleshooting isn't easy we weren't born with this knowledge we had to learn it, read tons of material, hours of trial and error, also some of us went to school for this whom might of paid tons of money at least they can do (the noobs) is pay attention.
Anyone else experience this who try to help others?
Attach file:
Capture-1.jpg (41.92 KB)
Posted on: 3/24 10:52
|
|
|
|
Who's Online 6 user(s) are online ( 2 user(s) are browsing User Profile)
Members: 0
Guests: 6
more...
|
All Posts
Transfer
