Drupalit weekly

Hopefully, this should be the last clue: “If you’ve found the p(f+) in a fingerprint, you should be able to find the key.”  read more »

Hopefully, this should be the last clue: “If you’ve found the p(f+) in a fingerprint, you should be able to find the key.”  read more »

TippingPoint’s Zero Day Initiative (ZDI) will enforce a six-month deadline for patches on all vulnerabilities bought from the security research community and reported to software vendors.  read more »

Here is the third clue for the Verizon Data Breach Incident Report (DBIR) cryptography challenge.  read more »

This week’s Malware Watch features three currently active malware campaigns - fake Patch Tuesday emails, BREDOLAB-malware serving emails, fake MSRT tool, and the the first (reported) SMS-trojan targeting Android users.  read more »

Hopefully, this should be the last clue: “If you’ve found the p(f+) in a fingerprint, you should be able to find the key.”  read more »

A two-month study by Barracuda Labs, reviewing more than 25,000 trending topics and 5.5 million search results, names Google as the most popular search engine used by malicious attackers relying on poisoned keywords.  read more »

Google has shelled out more than $10,000 in bounties for the latest batch of high-risk security vulnerabilities in its Chrome browser.  read more »

This update will resolve critical security issues in Adobe Reader 9.3.3 for Windows, Macintosh and UNIX, Adobe Acrobat 9.3.3 for Windows and Macintosh, and Adobe Reader 8.2.3 and Acrobat 8.2.3 for Windows and Macintosh.  read more »

Intel announced today that it will acquire McAfee, maker of anti-virus and other security software, for $7.68 billion in cash, or $48 per share.

The per share price is 60 percent more than McAfee’s $29.93 closing price on Wednesday. McAfee shares jumped 58 percent after the deal was made public to $47.42 in pre-market trading, while Intel shares dipped 2.5 percent to $19.11, the AP reports.  read more »

Multiple vendors are reporting on a currently ongoing scareware and client-side exploits serving, spam campaign, impersonating Best Buy, Chase, Macy’s, Target.com and Evite.  read more »

It seems that spammers are now started using well known LinkedIn.com website to spam users. i got a message from a unknown user stating me to connect to his network on linkedin.But then when i carefully looked at the links i found that the links int he email does not points to the linkedin.com but they point to hxxp://lccvnvxx.info/

see the image below:

So if you have receive any such invitation to connect on linked,then double check it!!

Today many PC users are easy to forget Windows passwords they set for their computers. Windows Password Unlocker Standard is designed to help users recover forgotten Windows administrator password and other user password by burning a bootable CD/DVD. If you’ve forgot Windows password, you try this Windows password recovery tool and follow the below instructions to recover your lost password.

Before starting, a bootable CD/DVD and a computer with CD drive are required. (Internal CD drive and external CD drive are both OK.)  read more »

The most popular trend in nowadays Internet scam is fake and rogue antispyware. Such antispyware try to convince users that they have plenty of infections to remove showing basically the same alerts and nag screens as regular software products combating viruses.  read more »

I was reading this story
from the article:
"The BBC has deliberately hacked into 22,000 PCs to prove the power of botnets, and the damage that can be done with a network of compromised computers.

Click – BBC News’ technology programme – with the help of anti-virus company Prevx, took over thousands of computers in order to demonstrate a growing problem in the modern world.  read more »

A two-month study by Barracuda Labs, reviewing more than 25,000 trending topics and 5.5 million search results, names Google as the most popular search engine used by malicious attackers relying on poisoned keywords.  read more »

Apple today warned that its GarageBand software is leaking users’ Web activity to third parties and advertisers.The company shipped GarageBand 5.1 to plug the hole and advise users to tweak their Safari browser preferences to avoid data leakage.  Here’s the relevant information from Apple’s advisory:CVE-2009-2198: When GarageBand is opened, Safari’s preferences are changed to always [...]

I use facebook to connect with my friends. few days back i received an applciation invite named "10 lies girls tell guys.." from a friend of mine. since it was from a trusted person and titile is catchy,i decided to try this app.
but to my surpirse, when i opned the application it gives and window with instruction like : press ctrl + c then press alt+d then press ctrl +v after that press enter.  read more »

A currently spamvertised malware campaign is brand-jacking Amazon.com, in an attempt to trick end users into visiting a client-side exploits serving URL.  read more »