Facebook users cannot block Mark Zuckerberg   by: Nicholas Huber

1:55 am, August 23, 2010

There are just some people who Facebook suggests through the People You May Know tool that you really don’t even want to think about, but if Facebook CEO Mark Zuckerberg is one of them: too bad. You can block whoever you want, but not if it’s Zuckerberg.

zuck Facebook users cannot block Mark Zuckerberg

The website BlockZuck.com used to tell users how to block the Facebook Chief Executive Officer, but the website has now been updated to reflect the new error message that users receive after trying to block Zuckerberg.

The error message? “General Block failed error: Block failed.”

You would think that with all of the privacy concerns over Facebook, that the social media company wouldn’t allow one single account to access all of the website’s 500 million user profiles. But they do.

Regardless if Zuckerberg is the boss or not, he shouldn’t have access. What do you guys think? Is this a big deal, or is it not? Go ahead and give us your opinions in the comments!

Posted by Nicholas Huber in Facebook, Security Comments View Comments

Intel buys McAfee for $7.68 billion   by: Nicholas Huber

12:07 am, August 21, 2010

Intel, the largest semiconductor chip maker in the world, purchased the security company McAfee earlier today for $7.68 billion, or $48 per share, in cash. McAfee will continue to operate on its own, as a subsidiary, and will report to the Software and Services Group of Intel.

intel ronler acres apjpg 91be1d63564423ad large Intel buys McAfee for $7.68 billion

The “acquisition enables a combination of security software and hardware from one company to ultimately better protect consumers, corporations and governments as billions of devices – and the server and cloud networks that manage them – go online,” Intel said in the press release.

Acquiring McAfee is just another step in Intel’s game-plan, as Intel describes the McAfee purchase as the “third pillar of what people demand from all computing experiences.” Intel also recently purchased Texas Instrument’s cable modem line for an undisclosed amount.

Intel’s goal is to provide products that are necessary for consumer electronic devices such as digital televisions, Blu-Ray disc players, and set top boxes like DVRs.

Posted by Nicholas Huber in Business, Security Comments View Comments

S. Korean police raid Google office   by: Nicholas Huber

8:00 pm, August 10, 2010

The South Korean office for Google was raided Tuesday under suspicion that the search giant, who’s motto is “Don’t Be Evil”, has been collecting user’s information from Wi-Fi networks. The vehicles that Google’s Street View service use collect the information as it takes street images.

Google ai2 S. Korean police raid Google office

Earlier this year, it was revealed that Google accidentally collected personal information over different unsecured Wi-Fi networks due to an experimental piece of computer code. The information was collected as vehicles for the Google service traveled across the world to take images of streets to use in its Maps service.

“[The police] have been investigating Google Korea LLC on suspicion of unauthorized collection and storage of data on unspecified Internet users from Wi-Fi networks,” the Korean National Police Agency told Reuters.

The data that Google picked up could contain email messages and passwords, says security experts, but data protection authorities in the United Kingdom say that no “meaningful personal information” was transmitted.

Google Chief Executive Officer Eric Schmidt told reporters at a conference that the data recorded by the Street View vehicles could fit onto a single 500MB flash drive, which is locked in a safe. Schmidt also noted that he has not seen the data on the drive.

Posted by Nicholas Huber in Google, Security Comments View Comments

First SMS Trojan spotted on Android devices   by: Nicholas Huber

2:32 am, August 10, 2010

Kaspersky Lab, one of the top security program developers, has announced that the first malicious threat, a Trojan-SMS, has been found on Android-based mobile phones.The malware, Trojan-SMS.AndroidOS.FakePlayer.a, penetrates Android-based devices by disguising itself as a media player application.

droid x First SMS Trojan spotted on Android devices

When users are given the prompt to install the small file (13KB) with the regular Android extension .APK, the Trojan begins sending text messages to premium rate numbers, without the approval of the owner, to the cybercriminals.

Kaspersky Lab recommends that Android users keep an eye on the services that the Trojan file requests to access during installation. When a user agrees to these functions, including access to premium rate services, the smart-phone will be able to send premium text messages and even calls without user’s knowledge or consent.

This is the first time that the Android operating system has been specifically targeted; however, the first case of spyware on an Android device occurred in 2009. Dennis Maslennikov, the Mobile Research Group Manager at Kaspersky Lab, says that Android-based devices are experiencing the highest growth rate among smart-phone manufacturers, and the result is a “corresponding rise in the amount of malware targeting that platform.”

He also said that his company would be releasing Kaspersky Mobile Security for Android in 2011. This release will be the first anti-malware programs made specifically for Android-based devices. The malware’s signature has also been added to Kaspersky Lab’s database.

Posted by Nicholas Huber in Mobile, Security Comments View Comments

San Francisco network admin gets 4 years in prison   by: Nicholas Huber

11:36 pm, August 08, 2010

Terry Childs, the network administrator who was arrested in 2008 for not handing over his administrative passwords, has been sentenced to four years in prison reports ComputerWorld.

sanfrancisco San Francisco network admin gets 4 years in prison

Childs, who worked for the City of San Francisco, was arrested in July 2008 after he refused to hand over his network passwords to his supervisor, whom he felt was unqualified. Childs resisted for 12 days, in which the city’s FiberWAN network kept running unharmed, and because of that, he was found guilty on Friday.

He defended himself throughout the trial by saying that he was “only doing his job”. Childs eventually gave up his administrative passwords to Mayor Gavin Newsom. Prosecutors repeatedly emphasized that Childs was a “power-hungry control freak”.

Childs has already spent close to 1,000 days behind bars, and will possibly see parole in the next four to six months. Even though Childs was not physically hacking, he still violated California’s hacking laws by not giving the City of San Francisco access to its own network.

He still may have to fork over $900,000 in restitution, as that is the cost that it took for San Francisco to gain access back to its network.

Posted by Nicholas Huber in Security Comments View Comments

Verizon changing its users’ router passwords   by: Nicholas Huber

11:41 pm, August 01, 2010

Possibly in response to Craig Heffner’s presentation at Black Hat 2010, Verizon is apparently changing its users’ router passwords if the password, itself, is still set as the default given by Verizon.

Verizon changing its users router passwords

A Slashdot user wrote, “I received an email from Verizon that said ‘we have identified that your router still had a password of either password1 or admin1 and we have changed it to your serial number’.” The user also noted that he had a mysterious 4567 port connected to his router, labeled ‘Verizon FIOS Service’, which could possibly be the port Verizon uses when accessing its customer’s routers.

In July, Craig Heffner, a Maryland-based security researcher, presented a software exploit that could be used on most home routers. The exploit, which is a variation of the term known as “DNS rebinding”, creates a website that lists a visitor’s own IP address instead of the phishing scheme’s IP address. According to Forbes, a script on the website then converts the website’s IP address to the visitor’s own IP address, and gains access to that user’s router settings and other information.

A representative for Verizon could not be immediately reached for comment.

Posted by Nicholas Huber in Security Comments View Comments

Researcher detained at U.S. border, questioned about Wikileaks   by: Nicholas Huber

4:43 am, August 01, 2010

One of Wikileaks’s security researchers was detained by U.S. agents at the border, coming back from Europe and questioned about the whistleblower website, as he came into the country to attend a hacker conference called Defcon. Jacob Appelbaum, a Seattle-based programmer, was also questioned by FBI agents after his presentation for his involvement with the Tor Project, an online privacy protection project.

WL Hour Glass small Researcher detained at U.S. border, questioned about Wikileaks

On Monday, Wikileaks posted 75,000 reports about the current U.S. war in Afghanistan in cooperation of The New York Times, the Guardian, and Der Spiegel. Appelbaum appeared as a represntative of Wikileaks at the 2010 HOPE conference, replacing Wikileaks founder Julian Assange. Assange was told not to travel to the United States by his lawyer, and has rarely been seen since, appearing only on video.

Yesterday, a dump file appeared on the whistleblower website, simply called “insurance.” The document contained 1.4 gigabytes of encrypted files that are rumored to be exactly what the filename is called — insurance. Wikileaks posted the file as insurance in case an attack from the Department of Defense or other governmental agencies and departments.

Posted by Nicholas Huber in Security Comments View Comments

Report: Google has twice amount of malware than Bing, Yahoo, and Twitter combined   by: Nicholas Huber

9:08 am, July 30, 2010

In the Barracuda Labs 2010 midyear security report, Google was shown to give twice as much malware than Microsoft’s Bing, Google.com, and Yahoo! combined.

Security Report: Google has twice amount of malware than Bing, Yahoo, and Twitter combined

The report was taken during a two month period with analysis reviews over 5.5 million search results and 25,000 trending topics on Twitter. The purpose, as reported Net-Security, was to “analyze trending topics on popular search engines to understand the scope of the problem and to identify the types of topics used by malware distributors.”

In the report, which you can view here, Google distributes the most malware with 69 percent over Yahoo!’s 18 percent, Bing’s 12 percent, and Twitter’s 1 percent.

More than 25 million Twitter accounts were analyzed to measure account behavior on Twitter to model normal user behavior and find features that are strong indicators of malicious account use. The three key areas for Barracuda Labs review are:  Twitter Crime Rate, True Twitter Users, and Tweet Number.

The report found that as Twitter activity increases, the more tweets that are being written, and casual users are being more active. As the casual users increases, so does the malicious activity. Half of Twitter users tweet less than once a day, with one and then users tweeting five or more times daily, with 30 percent of Twitter accounts being deserted accounts. Almost half of Twitter users only follow five or less accounts, and only one of ten are following over 100 people.

Posted by Nicholas Huber in Security Comments View Comments