Setting security for the Internet Zone to High in Internet Explorer pretty much renders it completely useless, the internet equivalent of a brick.
Nonetheless, these are the instructions I distributed to our staff:
More websites are exploiting the latest Internet Explorer vulnerability. Even when there’s a patch for this one, there will be something else. If [...]
Brian Krebs notes on Washingtonpost.com that there are 200 sites exploiting the createTextRange IE flaw. Microsoft recommends avoiding untrusted sites, but Krebs says you can’t trust that advice. Crackers have broken into normally trusted sites and installed traps that, through the flaw, install spyware and bots.
Essentially, you cannot trust ANY site when [...]
Yet another IE vulnerability has hit the streets.
Read the update at the Internet Storm Center.
Microsoft says
Our initial investigation has revealed that if you turn off Active Scripting, that will prevent the attack as this requires script. Customers who use supported versions of Outlook or Outlook Express aren’t at risk from the email vector since [...]
What could someone do with your cellphone? How much of your life is on there?
David Pogue’s New York Times blog has a link to a website that documents how to scrub your cellphone before you sell it, trade it in, or give it away.
Listen to this post Cellphone
Microsoft has released beta 2 of Windows Defender, the successor to Microsoft AntiSpyware (beta 1). It installed well on my machine, although I removed MS AntiSpyware first. Happily, neither the removal nor installation required a reboot.
Now, I’ve got a problem. Windows Defender will not update itself. It fails with an error 0×8024402c. Buzzing [...]
According EFF: Breaking News
Google today announced a new “feature” of its Google Desktop software that greatly increases the risk to consumer privacy. If a consumer chooses to use it, the new “Search Across Computers” feature will store copies of the user’s Word documents, PDFs, spreadsheets and other text-based documents on Google’s own servers, to enable [...]
Continuing with yesterday’s theme –
John Dvorak’s Second Opinion: Conviction of ‘botmaster’ is tip of the iceberg
Few people reading about this guy have a clue as to what any of this means. I thought it would be a good idea to dedicate this column to explaining it since many people, I can assure you, have a [...]
If you’ve ever wanted to be a spammer, you can learn from the indictment (PDF) of Jeason James Acheta. Who? Check this article from the BBC.
“Mr Ancheta was responsible for a particularly insidious string of crimes,” said a spokesman for the US attorney’s office in Los Angeles, Thom Mrozek.
“He hijacked somewhere in the [...]
Steve Gibson created a bit of a web firestorm when he accused Microsoft of deliberately implementing a backdoor into Windows through the WMF vulnerability. Mark Russinovich writes
“given a choice of believing there was malicious intent or poor design behind this implementation, I’ll pick poor design”.
Listen to this post WMF
Mark Russinovich writes
“given a choice of believing there was malicious intent or poor design behind this implementation, I?ll pick poor design”.
Listen to this post
