Security – Page 27 – 37'.news ¯\_(ツ)

October 12, 2011

OS X Lion 10.7.2

OS X Lion 10.7.2 is now available for download through Software Updates and Apple Support Downloads page.

OS X Lion Update 10.7.2 Client Combo

The 10.7.2 update is recommended for all OS X Lion users and includes general operating system fixes that improve the stability, compatibility, and security of your Mac. It also includes support for iCloud, a breakthrough set of free cloud services that automatically and wirelessly store your content on iCloud and push it to all of your devices. iCloud on OS X Lion includes the following features:

iCloud stores your email, calendars, contacts, Safari bookmarks, and Safari Reading List and automatically pushes them to all your devices.
Back to My Mac provides remote access to your Mac from another Mac anywhere on the Internet.
Find My Mac helps find a missing Mac by locating it on a map and allows you to remotely lock the Mac or wipe all its data.
Getting started with iCloud is easy. After installing the update, OS X will automatically present an iCloud setup panel. Simply enter an existing Apple ID or create a new one and then follow the on screen instructions. To learn more about iCloud visit http://www.apple.com/icloud.

For more info, go to http://support.apple.com/kb/DL1459.

September 30, 2011

Microsoft Security Essentials flags Google Chrome as Malware

I spent the whole morning restoring Google Chrome on numbers of computers at the office after it was flagged as Password Stealer PWS:Win32/Zbot and forcibly removed by Microsoft Security Essentials. As I was working to get this problem straighten out, I discovered other people are having the same problem.

Interestingly, Microsoft Security Essentials did not flag Google Chrome Dev release as malware. It only affects the release version on the computers I have in the office.

I was unable to reinstall Google Chrome even after updating Microsoft Security Essentials. So I disabled Microsoft Security Essentials before started re-installing Google Chrome.

If you were still having problems re-installing Google Chrome with Microsoft Security Essentials disabled, try uninstalling Google Chrome from the Control Panel.

August 25, 2011

Spammer Alert: sallara.com

A spammer from sallara.com responsible for wave of spam emails using numbers of domain names.

sallara.com is registered through enom.com. Don’t even bother complaining to enom.com through their Abuse Policy page, because it always return an error page. Many domains used by spammers are registered through enom.com.

Domain name: sallara.com

Registrant Contact:
Sallara
Philip Stensor ()

Fax:
POBox: 15500 SW Jay Street #38743
Beaverton, OR 97006
US

Administrative Contact:
Sallara
Philip Stensor (admin@sallara.com)
+1.5033038404
Fax: +1.5555555555
POBox: 15500 SW Jay Street #38743
Beaverton, OR 97006
US

Technical Contact:
Sallara
Philip Stensor (admin@sallara.com)
+1.5033038404
Fax: +1.5555555555
POBox: 15500 SW Jay Street #38743
Beaverton, OR 97006
US

Status: Locked

Name Servers:
ns1.sallara.com
ns2.sallara.com

Creation date: 30 Jun 2011 03:41:00
Expiration date: 29 Jun 2012 22:41:00

Recent domains registered by Phillip Stensor of Sallara:

indongy.net
gospodg.info
reavel.info
driftsm.com
cativeta.com
dauphon.net
arellari.net
parlined.net

The name Phillip Stensor is most likely a pseudonym.

File complaints to FTC: https://www.ftccomplaintassistant.gov/FTC_Wizard.aspx?Lang=en for the violation of CAN-SPAM Act.

July 5, 2011

Reasons number (2π+f) not to like Facebook, contact-exporting tools are blocked.

Facebook is apparently blocking contact-exporting tool as reported by CNET and ZDNet. Does anyone remember when you first created a Facebook account, you were asked to upload your address book, be it from Gmail, Yahoo! Mail, Hotmail, etc? That’s one way Facebook created a tailored Social Network around you. In time you want to export all the contacts info from Facebook to other service such as the newly launched Google+, Facebook is saying no.

I do not know the details on Facebook contact-exporting policy because I got rid off my account a while ago. This is one more reason why I’m glad I no longer have a Facebook account.

July 4, 2011

Fox News’ Twitter Got Hacked.

UPDATE:
Fox News acknowledges that their Twitter account was hacked.

Conspiracy theorist might call this one as plausible deniability.

From The Next Web:

Fox has found it has been made the target of a hacking campaign once again after attackers managed to compromise the Fox News Politics Twitter account and used it to spread misinformation that the president had been shot and killed.

We managed to get a screen grab of the twitter account:

May 24, 2011

Breaking The Silence: Apple posts instructions on how to avoid and remove Mac Defender Malware.

Apple posts instructions on how to avoid or remove Mac Defender malware.

Apple sure did take the time to prepare the response while many pundits are calling the beginning of the “Mac-Apocalypse.”

One thing any Safari users should disable the Open “Safe” files after downloading preferences in Safari.

There is a legitimate software called MacDefender, and it has nothing to do with the malware.

——-

Note:

“Breaking The Silence” is also an out-of-print CD/Record of a 90’s Hardcore band, One Step Ahead.

May 22, 2011

Spammer Alert: superdooperdeals.com

Readers sent us a few info about new round of spam from superdooperdeals.com. Do not give them your email addresses with hope you’d be unsubscribed from their spam bombardments. superdooperdeals.com site includes some fake testimonials that don’t even make any sense.

Whois info on superdooperdeals.com:

Registration Service Provided By: Namecheap.com
Contact: support@namecheap.com
Visit: http://namecheap.com

Domain name: Superdooperdeals.com

Registrant Contact:
SuperDooperDeals
Liam Carroll ()

Fax:
15500 SW Jay Street #38743
Beaverton, OR 97006
US

Administrative Contact:
SuperDooperDeals
Liam Carroll (liam@superdooperdeals.com)
+1.5033038404
Fax: +1.5555555555
15500 SW Jay Street #38743
Beaverton, OR 97006
US

Technical Contact:
SuperDooperDeals
Liam Carroll (liam@superdooperdeals.com)
+1.5033038404
Fax: +1.5555555555
15500 SW Jay Street #38743
Beaverton, OR 97006
US

Status: Locked

Name Servers:
ns1.superdooperdeals.com
ns2.superdooperdeals.com

Creation date: 23 Mar 2011 03:15:00
Expiration date: 22 Mar 2012 22:15:00

Other Domain Registered by superdooperdeals.com:

bingolikey.com
carz-online.com
luxuryhosting.net
yourkeywords.net
we-mean-business.org
playwithusdaily.com

We will add more info whenever we get them.

eNom and namecheap are the DNS Registrar that superdooperdeal.com uses, but they are willing to resolve the issue.

This is a sample of namecheap.com reply to the complaints:

Hello,

Thank you for your email regarding researchsneeze.info domain name. The domain that you reported is registered with NameCheap but hosted with another company. Please contact the hosting company for help with investigating the incident of spam. You will need to forward entire email with full headers to them. Here are contact details of the company that owns IP address assigned to the domain:

http://who.is/whois-ip/108.60.156.10/
——————–
Regards,
Marta K.
Customer Support

http://whois.arin.net/rest/nets;q=108.60.156.10?showDetails=true&showARIN=false

Other good and responsible DNS Registrars would take the complaints seriously and actually do something to disable the offending domains.

File complaints to FTC: https://www.ftccomplaintassistant.gov/FTC_Wizard.aspx?Lang=en for the violation of CAN-SPAM Act.