Careful connecting to those pub WiFis

Subject: General Tech | May 24, 2013 - 05:53 PM | Jeremy Hellstrom
Tagged: cell phone, security, wifi, PNL

A security expert recently reminded people that the Preferred Networks List Bug which was identified in 2004 has only ever been addressed by Microsoft.  All other mobile OSes, from Apple to BlackBerry can accidentally expose their PNL to an eavesdropper who can then spoof it.  If you like setting up autoconnect on your devices you might want to double check the name of your active connections occasionally; if you are connected to your home WiFi while you are out you might have a problem.  Catch more at The Register.

"Security expert Raul Siles has warned that years after it was first identified, the Preferred Networks List (PNL) Wi-Fi bug remains unaddressed on many an iPhone, Android phone, and Windows or BlackBerry handset."

Here is some more Tech News from around the web:

Tech Talk

• IT bloke publishes comprehensive maps of CALL CENTRE menu HELL @ The Register
• AMD Launches Its 2013 Mobile APU Products @ Kitguru
• AMD Temash, Kabini, Richland: new chance? @ Hardware.info
• Spam and the Byzantine Empire: How Bitcoin tech REALLY works @ The Register
• Canadian regulators welcome US Bitcoin refugees with open arms @ The Register
• Mac malware found with valid developer ID at freedom conference @ The Register
• The Best Activity Trackers for Fitness @ TechReviewSource
• Sumo Lounge Emperor @ Phoronix
• Beginners Guides: Crash Recovery & The Blue Screen of Death @ PCSTATS
• Sitecom Wi-Fi Router X6 N900 (WLR-6100) Review @ Madshrimps
• Netgear XWNB5201 500Mbps Powerline WiFi Access Point @ eTeknix
• SlimPort Summit 2013 Coverage - What is SlimPort? @ Tweaktown
• Sandberg iConheli Bluetooth Helicopter @ NikKTech
• Google Play Music Review @ TechReviewSource
• Jabra Drive Bluetooth In-Car Speakerphone Review @ ModSynergy
• Understanding Email Bounce Messages @ Hardware Secrets
• Intel Linux OpenGL Driver Leading Over Apple OS X @ Phoronix
• HGST packs 1.5TB into 9.5-mm, three-platter Travelstar 5K1500 notebook drive
• A year later: Transformer Prime @ LanOC Reviews
• Balder BD-1P T6 LED Flashlight @ 3DVelocity
• SuperSpeed RamDisk Plus 11 Software @ Tweaktown
• Removing and Wiping Drivers Guide @ OCC
• Gigabyte Shows Off Upcoming Intel Z87 Motherboards @ Legit Reviews
• Xbox One: Entertainment Hub First, Gaming Console Second -- But Could It Disrupt TV? @ TechSpot
• Xbox One - Just what is Microsoft thinking?! @ Tweaktown
• Oregon Scientific ATC9K Action Camera @ NikKTech
• SteelSeries Joint Giveaway - Three 6Gv2 Mechanical Gaming Keyboards Up For Grabs @ NikKTech

McAfee picks up Stonesoft, Intel continues to focus on network security

Subject: General Tech | May 7, 2013 - 03:16 PM | Jeremy Hellstrom
Tagged: stonesoft, security, purchase, mcafee, Intel

A small security firm called Stonesoft was acquired by Intel, or rather McAfee, for just under $400m.  They provide not only software and services but actual network appliances which utilize their proprietary Stonesoft Security Engine to provide secure connectivity.  This makes a lot of sense when you think back on Intel's statements when purchasing McAfee, they are not interested in only providing security at the software level but are interested in moving to the hardware level.  You can find out a bit more at The Inquirer.

"SECURITY VENDOR McAfee has bought software security firm Stonesoft to add to its range of network security products.

McAfee, which is owned by Intel, is one of the biggest security vendors but has so far been focused on end-point products such as anti-virus and firewall software that runs on consumer PCs. Now the firm has made a move to go deeper into the network, buying security software vendor Stonesoft for $389m in cash."

Here is some more Tech News from around the web:

Tech Talk

• Samsung switches on Knox for the Galaxy S4, availability depends on mobile operators @ The Inquirer
• YouTube channels at $1.99 per month could launch this week @ The Register
• Adobe kills Creative Suite – all future features online only @ The Register
• Wolf 15 Piece Watch Box Review @ NikKTech

Java Releases Patch Addressing Vulnerability Used By McRat Trojan

Subject: General Tech | March 5, 2013 - 06:26 AM | Tim Verry
Tagged: security, patch, mcrat trojan, Java, exploit

Java developer Oracle recently released a patch to its Java Platform Standard Edition client to address two exploits used by attackers to install the McRAT trojan onto users machines. Specifically, Oracle is issuing the patch for vulnerabilities CVE-2013-1493 and CVE-2013-0809.

The vulnerabilities were related to Java running in a web browser. When users visit a malicious web site with vulnerable versions of Java installed, attackers are able to remote execute the McRAT trojan. That trojan was subsequently used to download additional malware to further compromise the machines in question. According to Oracle, the vulnerability was first discovered on February 1st, 2013 but did not make it in time to be rolled into that month’s scheduled update. As a result, Oracle slated it for inclusion in the Java platform update on April 16, 2013, but reconsidered after seeing exploits using these vulnerabilities in the wild. While servers and standalone Java installations are not affected, consumers will need to apply the patch via Java SE’s automatic updater or by manually installing the patch from this page. Currently, all Java SE versions prior to this patch are affected, including JDK and JRE 7 Update 15, 6 Update 41, and 5.0 Update 40 (or earlier).

Oracle states that the patch is a critically important update, and users should update as soon as possible. If you have not already applied the update (or given up on Java and uninstalled it completely--heh), start up Java and check for updates to grab the patch.

McAfee always checks the sandbox for feline footprints

Subject: General Tech | February 26, 2013 - 01:45 PM | Jeremy Hellstrom
Tagged: mcafee, security, RSA 2013, sandbox

McAfee has been showing off their stuff at RSA 2013 specifically the new heuristic malware detection capabilities which they will be using instead of their current malware signature database which has over 113 million core samples.  That signifies a huge change for the antivirus company as it moves to real time monitoring of all the processes on your machine for suspicious activity instead of matching patterns directly.  While this could lead to some interesting side effects for verification software such as you find in some games, McAfee claims 100% effectiveness against current rootkits on Intel hardware compatible with Deep Defender, though they did not give many specifics about that test to The Register.

That is not all they are up to, McAfee just purchased Validedge's sandboxing technology to allow them to watch malware as it arrives and infects a machine to allow them to study its patterns.  Strangely, The Inquirer mentions that they will be recording the signature so it is possible that it is an exaggeration that they are completely abandoning their signature database altogether and will be using a hybrid database and heuristic monitoring.  The first software using this new option will be available in the second half of this year.  Also briefly mentioned in the story is a suggestion that McAfee will be able to repair infected computers automatically via the ePO Agent.

"Signature-based malware identification has been around since the dawn of the computer security industry, but McAfee has said it's dumping the system – or rather, adapting it – in an upgraded security suite which will (it claims) virtually eliminate susceptibility to botnets."

Here is some more Tech News from around the web:

Tech Talk

• Altera signs up to use Intel's upcoming 14nm process node @ The Inquirer
• HP offloads WebOS to LG for use in televisions @ The Inquirer
• Internet Explorer 10 for Windows 7 @ [H]ard|OCP
• Samsung, Visa in pay-by-bonk tie up @ The Register
• Not so fast, BlackBerry. Now Samsung wants your tasty biz mobe pie @ The Register
• Hacking the International Space Station with a toothbrush @ Hack a Day
• Super single-photon source for quantum computers @ nanotechweb

Want some Raspberry Pi with a side of hashes?

Subject: General Tech | February 15, 2013 - 01:27 PM | Jeremy Hellstrom
Tagged: WPAD, security, Raspberry Pi, fud

On this weeks Podcast, Ryan wondered what he could do with his new Raspberry Pi and Hack a Day has an idea for him, though it is a wee bit nefarious.  It seems that Travis over at MADSEC is using a Raspberry Pi in penetration testing, using the NetBIOS Name Service to get responses from the Web Proxy Auto-Discovery Protocol (WPAD); responses which can include LM hashes from Windows machines.  With the use of Rainbow tables you can crack those hashes and take control of existing accounts on the PCs.  This type of attack is well know, but automating the attack on something as small and easily modifiable as a Raspberry Pi adds a new layer.  Whether you use it for good or evil, you can read more about it at Hack a Day.

"Plug in the power and Ethernet and this Raspberry Pi board will automatically collect Windows hashes from computers on the network. With a couple of RPi boards on hand [Travis] was searching for more hacks to try with them. This made a great little test to see how the board performs with the well established attack."

Here is some more Tech News from around the web:

Tech Talk

• Traceroute reveals Star Wars Episode IV 'crawl' text @ The Register
• Your own head-mounted display for under two bills @ Hack a Day
• Apple: iOS 6.1 network overload caused by our Exchange SYNC OF DOOM @ The Register
• Doped nanotubes boost lithium battery power three-fold @ The Register
• SSDs at the Office – Trials, Tribulations and Still Worth It @ Techgage
• Nvidia revenues fight the PC tide, but annual profits pinched @ The Register
• Valve releases its Steam client for Linux @ The Inquirer

Bad day for cellphone security

Subject: General Tech | February 14, 2013 - 01:47 PM | Jeremy Hellstrom
Tagged: Android, iOS 6, apple, security, FROST

Two different mobile phone security concerns were revealed today, one for devices using iOS 6.1 and one for Androids.  DailyTech has posted text instructions as well as linking to a video which shows how an iPhone 5's password protection can be completely bypassed and allow anyone with physical access to your phone to log into the phone with full access.  The second vulnerability, tested with Android 4.0 but possibly wide spread, was discovered by a team at the Friedrich-Alexander University in Germany, and it allows you to recover  information from a phone which has used the Android disk encryption.  They used both a freezer to drop the temperature of the phone and a trick with the battery which puts the phone into 'fastboot' mode and allows the loading of a custom image via a Linux PC which installs their Forensic Recovery Of Scrambled Telephones tool, aka FROST.  As you can see from the images below, that gives you the ability to get the encryption key or even brute force some passwords. 

"First part:
-Go to emergency call, push down the power button and tap cancel.
-Dial 112 and tap green and inmediately red.
-Go to lock screen.

Ok...ready for second part:
-Go to passcode screen.
-Keep pushing down the power button ...1...2...3...seconds and before showing the slider "turn off"...tap the emergency call button and ...voilá!
-Then without releasing the power button press the home button and ready..."

Here is some more Tech News from around the web:

Tech Talk

• Intel's new TV box to point creepy spy camera at YOUR FACE @ The Register
• Toshiba announces a noise cancelling chip @ The Inquirer
• 555-timer charges lead acid batteries @ Hack a Day
• Micron glues DDR4 RAM to flash, animates the 256GB franken-DIMM @ The Register
• Futuremark 3DMark Review @ Neoseeker
• Hacking a Coffee Machine for a Better Brew @ Hack a Day
• Cern shuts down LHC after three years of operations @ The Inquirer
• NVIDIA/AMD OpenGL Benchmarks Of Unigine Valley @ Phoronix
• Win an AverMedia RECentral Live Gamer HD Capture Card @ eTeknix
• Funky Kit Presents: Mod-my-Box™ Spring 2013 - Official Launch

That safe and secure Foxit plugin you use?

Subject: General Tech | January 14, 2013 - 02:00 PM | Jeremy Hellstrom
Tagged: pdf, foxit, security, fud

The Register has some bad news about that PDF reader you prefer to Adobe's software, a new vulnerability which does not even stem from booby-trapped document but from a long link name.  It seems that you can cause a buffer overflow in Foxit simply by copying the entire URL into a fixed-sized buffer when the user clicks on a PDF which "pretty much lets you write to a memory location of your choice".  5.4.4.1128 and older version are vulnerable and we have yet to hear from the creators of Foxit.  Looks like no PDF reader is safe at this point.

"A new security bug in the popular Foxit PDF reader plugin for web browsers allows miscreants to compromise computers and install malware. There's no patch for this zero-day vulnerability.

Italian security researcher Andrea Micalizzi discovered that the latest version of the software crashes if users are tricked into clicking on an overly long web link. The plugin is kicked into action by the browser to handle the file and promptly bombs."

Here is some more Tech News from around the web:

Tech Talk

• Weekend Project: Linux For Beginners @ Linux.com
• HP Photosmart 5520 Review @ TechReviewSource
• Tech Reports's big CES 2013 digest
• We drop a Corsair Survivor 16GB pen drive from 10th floor hotel room at CES on video - does it survive? @ Tweaktown
• TechwareLabs CES 2013 Coverage: Part 2
• Bjorn3D CES 2013 Coverage
• CES 2013: Kingston HyperX 10-Year Anniversary Party & Starcraft II Tournament @ Legit Reviews
• CES 2013 Report @ Neoseeker
• Ten stars of CES 2013: Who made the biggest splash? @ The Register

A light in the quantum cryptography tunnel

Subject: General Tech, Networking | November 21, 2012 - 02:15 PM | Jeremy Hellstrom
Tagged: quantum encryption, security

One of the biggest hurdles to implementing quantum cryptography has been vaulted, with researchers finding a way to transmit the key over a non-dedicated connection.  Previously because of the inherent noise in a fibre channel transmitting general data the key would be lost and so a separate fibre channel was needed which only the keys were able to transmit but thanks to researchers at Toshiba’s Cambridge Research Laboratory it is now possible to send the keys on existing fibre which also carries other data.  They have created a detector which can open for a mere 100 millionths of a micro-second and receive the key, with the detection window being so quick there is not time for noise to interfere and the wrong photon be detected as the key.  The Register reports they can transmit keys over a line running at 500kbps for 50km and still have the key properly detected.

"Traditionally it has been necessary to use dedicated fibre to send the single photons (particles of light) that are required for Quantum Key Distribution (QKD). This has restricted any applications of quantum cryptography technology to specialist and small-scale systems in banks and high-level government, essentially because of the extra inconvenience and cost required in allocating a dedicated fibre strand for quantum key distribution."

Here is some more Tech News from around the web:

Tech Talk

• Cloudy admin? Here's how to ward off Call of Duty-playing teens @ The Register
• Media Center Key Accidentally Gives Pirates Free Windows 8 Pro License @ Slashdot
• How-to: installing Windows 8 without product key @ Hardware.info
• The Rise and Fall of AMD @ Techspot
• Newer Technology Power2U USB Charging Wall Outlet @ Funky Kit
• Mozilla previews Facebook integration with Firefox 17 @ The Inquirer
• Tiger Direct First Annual Holiday Bash @ TechwareLabs
• Enter to win a Radeon HD 7770 CrossFire team and game bundle @ The Tech Report