Is it possible, is there such a thing as an attack that can tell a hacker where you live? The BBC has revealed that a specially booby-trapped website can tell a hacker where you are to only a few metres. The attack was dreamt up by security expert Sam Kamkar who demonstrated at the Black [...]
- Author: Mike Halsey MVP
- Comments: 12
Windows XP Help attacks on the rise
An unpatched bug in the Windows XP Help and Support system is being increasingly attacked by virus and malware writers, as reported by the BBC. Microsoft has reported it’s seen more than 10,000 PCs hit by the attack so far and it’s still not been able to find a fix for the problem.
- Author: Martin Brinkmann
- Comments: 4
New Attack: Combine Files With Jar Scripts
A new attack, dubbed Gifar by their creators named after the two file types that they mixed to create the attack (Gif and Jar), was mentioned in a Black Hat Sneak Preview article over at ZDnet. While not everything was revealed in that preview article it mentioned that the developers were able to combine two [...]
- Author: Martin Brinkmann
- Comments: None
User Data Stolen from The Pirate Bay
Two hours ago bkp made an announcement on the official The Pirate Bay blog confirming that some hackers have been able to use a security hole in the blog software to get access to the user database of The Pirate Bay. Information stored in there are the username, the password and the email address of the user who signed up. The password and the email address are encrypted which means that the hacker is most likely unable to receive any valuable information from the data.
- Author: Martin Brinkmann
- Comments: 1
Send Windows to Nirvana with an animated cursor
One of the many disadvantages of every new Windows edition is the fact that the operating system becomes more and more bloated. Microsoft adds new features to Windows which could then be used to exploit the system.Instead of concentrating on fast efficient systems they produce heavy systems that look shiny but have problems under the surface. Recently a vulnerability in Windows Animated Cursor Handling was discovered. In order for this attack to be carried out, a user must either visit a Web site that contains a Web page that is used to exploit the vulnerability or view a specially crafted e-mail message or email attachment sent to them by an attacker.
