Security

Fake FF Update

Fake Firefox Update Email Downloads Trojan Horse Better Business Bureau (blog) – Greg Hudson – ‎Aug 8, 2011‎ Scammers go to great lengths to come up with sophisticated and sneaky methods to trick you into making unwise decisions but this weekend, there was a rather simple scam being spammed out. According to Naked Security, an email was spammed … Google News Go get it.

Read More

EFF promises a safer web with HTTPS Everywhere

The Electronic Frontier Foundation has launched the first official version of HTTPS Everywhere, a Firefox plug-in which it says helps secure web browsing by encrypting connections to more than 1,000 popular web sites…” 05 August, 2011  EFF promises a safer web with HTTPS Everywhere | thinq_ Go get it.

Read More

Comcast locks Mac/Firefox to its own home page

Mac users. …his home page had been changed to comcast.net, and that the Comcast software had modified his Firefox profile so that there was no way to change the home page setting.“I contacted Comcast; they initially blamed the problem on a bug in Firefox. Mozilla denies this, and says it’s Comcast’s doing”, says the security researcher in his latest posting.“This is NOT a Firefox bug or issue”, a Mozilla spokesperson wrote in an email. “It is a Comcast method that applies preference changes to Firefox.”“Comcast has now acknowledged the issue, says Krebs, adding that the problem is limited to Mac…

Read More

Clarification: Firefox 3.6.19/5.0.1

Mozilla did an emergency update for Firefox 3.6 & 5.0 on July 11th. There was an automatic update for Mac user only. While Mozilla did also publish Firefox 3.6.19 and 5.0.1 to the FTP site as well as at getfirefox.com for Windows and Mac users, there is no difference between Firefox 3.6.18/3.6.19 or 5.0/5.0.1 for Linux and Windows users. Therefore, an automatic update was not pushed out for Windows and Linux users. If for whatever reason you would like to update to Firefox 3.6.19 or 5.0.1 and are using Windows or Linux, you will need to so manually via getfirefox.com…

Read More

Cookies: The silent snoop on your PC

This is two paragraphs of a long article. He mentions flash cookies which you can get rid of. Last month, the British advertising giant WPP boasted that it had just created the world’s largest database of individuals’ online behaviour: profiles of 500 million people, covering, it says, almost 100 per cent of the people online in the countries in which it operates, including the UK, the US, Australia and eight others. The firm said it was pooling data from many of the world’s major websites and networks of online advertisers and adding it to information purchased from traditional market-research firms…

Read More

BootMed

I’m downloading this later. Certainly looks like a useful tool.I retrieved some files from a partition I messed up recently using BrowserLinux and that was as simple as moving them from one folder to another but this is much more.I have some family and friends who do not seem to understand the importance of regular maintenance on Windows and I think this will make the job simpler when I get the call.From a review: the idea of using Linux to help teach Windows users how to recover their files has invoked a few chuckles amongst the Linux community as well…

Read More

Why It Is Important to Update

A Public Service Announcement from the Guru. I am not just talking about Firefox, but more importantly your browser plugins (Flash, JAVA, QuickTime, etc) and yes even those Windows Updates too. The below two articles are from a colleague’s blog Grand Stream Dreams and describes what happens when users continue to use out-dated browsers with out-dated plug-ins. A good lesson here too is don’t be fooled by those security alert warnings advertisements aka scareware. Some folks may find these posts a bit technical, but they do show the amount of the time and work that is involved in fixing an…

Read More

Qualys, A Tool to Help Secure Your Browser

Web browsers are top targets for hackers. They’re abused in more than 90 percent of attacks meant to hit random Internet users (versus more targeted strikes), according to Kaspersky Labs. And more than half of those attacks exploit flaws in browser software and seek to install dangerous malware on computers. “Why all the attention? Because browsers are an easy target. Computer users perennially ignore update reminders and run old versions with well-known security holes. They also use ancient browser plug-ins, which aren’t as easy to update and are often rich with known vulnerabilities. As a result, a whopping 80 percent…

Read More

Cross-domain WebGL textures disabled in Firefox 5

Note: This applies more to site developers who have been using the new WebGL textures feature introduced in Gecko 2.0 (Firefox 4, Thunderbird 3.3 and SeaMonkey 2.1). In Firefox 5, it is no longer possible to use cross-domain elements as the source for WebGL textures. We made this change in response to security concerns around the possibility of cross domain information leakage. Unfortunately, that means that some WebGL-using pages are no longer working. We are working with the WebGL WG on a solution to allow such pages to resume working as soon as possible — read on for details. —…

Read More

Malware disguises itself as a microsoft update

…Like a previous attack that produced a fake Firefox security alert, the malware comes up when a user-agent string is detected from a Firefox user browsing a malicious web site. This time though, it comes up with a replica of the real Microsoft Update page, which you only see if you’re using Internet Explorer. “The same malicious web site is also known for hosting a fake Windows XP explorer scanner and Windows 7 scanner, said Chester Wiesniewski, senior security advisor at Sophos…”   Jun 09 2011 More Firefox malware disguises itself as a microsoft update- The Inquirer Go get it.

Read More