Category: reader

A Facebook Bug Pretty Much Took Down the Entire Internet

If you thought the Internet freaked out for a little bit and every site you went to was down, you’re not alone. Major websites were down: CNN, Huffington Post, ESPN, Gawker, The Washington Post, BuzzFeed, etc. were all broken. Why? Because of a glitch with Facebook. More »

Read More:
A Facebook Bug Pretty Much Took Down the Entire Internet

Adobe issues emergency Flash update for attacks on Windows, Mac users

Adobe Systems has released a patch for two Flash player vulnerabilities that are being actively exploited online to surreptitiously install malware, one in attacks that target users of Apple’s Macintosh platform. While Flash versions for OS X and Windows are the only ones reported to be under attack, Thursday’s unscheduled release is available for Linux and Android devices as well. Users of all affected operating systems should install the update as soon as possible. The Mac exploits target users of the Safari browser included in Apple’s OS X, as well as those using Mozilla’s Firefox. That vulnerability, cataloged as CVE-2013-0634, is also being used in exploits that trick Windows users into opening booby-trapped Microsoft Word documents that contain malicious Flash content, Adobe said in an advisory . Adobe credited members of the Shadowserver Foundation , Lockheed Martin’s Computer Incident Response Team, and MITRE with discovery of the critical bug. Read 4 remaining paragraphs | Comments

Continue Reading:
Adobe issues emergency Flash update for attacks on Windows, Mac users

Which One Has More Usable Space: the 128GB Surface Pro or the 128GB MacBook Air?

Everyone’s been making fun of the Surface Pro for being so stingy on hard drive space. The 128GB version of the Surface Pro only has 90GB of free space ( originally reported to be 83GB but since boosted). Where the hell did the other 38 gigs go? Well, you could ask the same question to the 128GB version of the MacBook Air. The MBA only has 92GB of free space. What! More »

Read the original post:
Which One Has More Usable Space: the 128GB Surface Pro or the 128GB MacBook Air?

Parcel Sensor Knows When Your Delivery Has Been Dropped

First time accepted submitter Hamsterdan writes “If you’re tired of finding that your stuff has been smashed during shipping after opening your package, this device is for you. ‘Called DropTag, the gadget combines a battery, a low-energy Bluetooth transmitter, an accelerometer and a memory chip. Stuck on a parcel as it leaves an e-commerce warehouse, it logs any g-forces above a set risky shock level that it experiences. The idea is that when the courier puts it in your hands, you turn on Bluetooth on a smartphone running a DropTag app and scan it before you sign for it.'” Read more of this story at Slashdot.

Visit site:
Parcel Sensor Knows When Your Delivery Has Been Dropped

Data siphoned in Fed reserve hack a “bonanza” for spear phishers

Sensitive details on thousands of banking executives lifted from a hacking involving the Federal Reserve represent a potential “bonanza” for spear phishers looking to snare high-value targets in personalized scam e-mails, a security researcher said. The list is no longer readily available online, but according to Chris Wysopal, CTO of security firm Veracode, it contained details from a Federal Reserve-related database that Anonymous-affiliated hackers claimed to breach on Sunday. It included 31 fields, including home addresses, e-mail addresses, login IDs, and cryptographically hashed passwords. “As you can see, this is a spearphishing bonanza and even a password reuse bonanza for whoever can crack the password hashes,” he wrote in a blog post published on Wednesday. “It doesn’t look like any of these are internal Federal Reserve System accounts as those would have FRS AD UIDs associated with each account. Still, this is about the most valuable account dump by quality I have seen in a while.” Read 2 remaining paragraphs | Comments

View article:
Data siphoned in Fed reserve hack a “bonanza” for spear phishers

We’re going to blow up your boiler: Critical bug threatens hospital systems

A picture of a Tridium device running the Niagara AX framework. Tridium More than 21,000 Internet-connected devices sold by Honeywell are vulnerable to a hack that allows attackers to remotely seize control of building heating systems, elevators, and other industrial equipment and in some cases, causes them to malfunction. The hijacking vulnerability in Niagara AX-branded hardware and software sold by Honeywell’s Tridium division was demonstrated at this week’s Kaspersky Security Analyst Summit in San Juan, Puerto Rico. Billy Rios and Terry McCorkle, two security experts with a firm called Cylance , allowed an audience to watch as they executed a custom script that took about 25 seconds to take control of a default configuration of the industrial control software. When they were done they had unfettered control over the device, which is used to centralize control over alarm systems, garage doors, heating ventilation and cooling systems, and other equipment in large buildings. Taking advantage of the flaw would give attackers half a world away the same control on-site engineers have over connected systems. Extortionists, disgruntled or unstable employees, or even terrorists could potentially exploit vulnerabilities that allow them to bring about catastrophic effects, such as causing a large heating system to explode or catch fire or sabotaging large chillers used by hospitals and other facilities. Attackers could also exploit the bug to gain a toehold into networks, which could then be further penetrated using additional vulnerabilities that may be present. Read 12 remaining paragraphs | Comments

View the original here:
We’re going to blow up your boiler: Critical bug threatens hospital systems