Hackers exploit Obama site to spread malware

January 26, 2009 – 2:18 PM

A social networking site operated by the 2008 Barack Obama campaign is serving up malware to unwary visitors a full week after the tactic was reported, a security researcher said today.

My.BarackObama.com, still active after the innauguration last week of President Obama, is being used by hackers trying to dupe users into downloading a Trojan horse, said Dan Hubbard vice president of security research at Websense Inc.

The criminals have set up bogus accounts on My.BarackObama.com, which provides tools to join groups of Obama supporters, raise funds and create a personal blog hosted on the site, and they used the accounts to post blogs. When a user reaches one of the fake blogs, a YouTube-like video window is displayed; clicking on that video frame takes the user to a malicious Web site packed with pornography.

If the user clicks to view the porn, a message pops up claiming a video codec must be downloaded and installed. The executable file is no codec, but rather a Trojan horse that hijacks the PC.

Source:
http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9126801&source=rss_topic17

Posted in Internet, Privacy, Security | No Comments

Facebook Beacon Blocker

January 26, 2009 – 10:07 AM

Facebook Beacon is part of Facebook’s advertising efforts. It is basically a cooperation with 44 partner sites who execute JavaScript code on their website sending specific user information to Facebook. Examples would be the popular gaming portal Kongegrate which send information about played games to Facebook, movie reviews published at Fandango or purchases made on eBay. User identification is done by the JavaScript code and a Facebook cookie.

Facebook Beacon has been heavily criticized by privacy advocates since its introduction. The main point of criticism is that users cannot opt out completely. While they can prevent that information from the 44 partner sites will be published publicly and accessible by friends they cannot prevent Facebook from receiving the data in first place. There is no opt out of the system other than blocking the scripts from being executed.

Facebook Beacon Blocker is a Firefox add-on that will block the Facebook Beacon service from collecting and sending information about the user to Facebook. It basically blocks the script from being executed on the partner sites which is all it takes to turn the service off completely.

Source:
http://www.ghacks.net/2009/01/25/facebook-beacon-blocker/

Posted in Internet, Privacy | No Comments

World’s Most Famous Hackers

January 25, 2009 – 5:37 PM

Here is a great list of the world’s most famous hackers to date.  This page includes information about what each hacker is famous for and also includes a photo of them.  Very interesting read:

http://zed.m6.net/dyne/hackers.php

Posted in General BS, Security | No Comments

Firefox Tweaks To Double Your Browsing Speed

January 25, 2009 – 2:01 PM

By tweaking the way Firefox handles some caching functions, you can dramatically improve page load speed and even prevent Firefox from hogging your system resources while minimized. If you don’t currently have any experience playing with your configuration file, don’t be scared. Just follow the simple instructions, take your time and if you want a security blanket to squeeze, jot down each setting before you change it so you can always restore the default configuration if need be.

Reduce the amount of RAM Firefox uses for its cache feature

1. Type “about:config” (no quotes) in the adress bar in the browser.
2. Find “browser.sessionhistory.max_total_viewer”
3. Set it’s value to “0“;(Zero)

Increase the Speed at Which Firefox loads pages

1. Type “about:config” into the address bar and hit Enter.
(Normally the browser will make one request to a web page at a time. When you enable pipelining it will make several at once, which really speeds up page loading.)

2. Alter the entries as follows:
Set “network.http.pipelining” to “true”
Set “network.http.proxy.pipelining” to “true”
Set “network.http.pipelining.maxrequests” to some number like 10.

This means it will make 10 requests at once.

3. Lastly, right-click anywhere and select New-> Integer. Name it “nglayout.initialpaint.delay” and set its value to “0“;.(Zero)

This value is the amount of time the browser waits before it acts on information it receives. If you’re using a broadband connection you’ll load pages faster now.
Optionally (for even faster web browsing) here are some more options for your about:config (you might have to create some of these entries by Right Click –> New– > Integer or String)

network.dns.disableIPv6: set “false”
“content.notify.backoffcount”: set “5“; (Five)
“plugin.expose_full_path”: set “true”.
“ui.submenuDelay”: set “0; (zero)

Reduce RAM usage to 10MB when Firefox is minimized:

This little hack will drop Firefox’s RAM usage down to 10 Mb when minimized:

1. Open Firefox and go to the Address Bar. Type in about:config and then press Enter.
2. Right Click in the page and select New -> Boolean.
3. In the box that pops up enter “config.trim_on_minimize”. Press Enter.
4. Now select True and then press Enter.
5. Restart Firefox.

Source:
http://www.boygeniusreport.com/2009/01/25/a-handful-of-firefox-tweaks-that-will-double-your-browser-speed/

Posted in Internet, Linux, Windows | No Comments

Use Your Laptop Cable Locks Wisely

January 24, 2009 – 1:56 PM

We should all be using cable locks to secure our laptops when we have to leave them in a static location for an extended period of time, but do you always take the cable lock with you when you throw your laptop in your bag and leave?  Or does the cable lock remain wrapped around your desk until the next time you need it?

I see this simple mistake from time to time and wanted to remind everybody not to forget a tiny, but critical, step when they leave the cable lock unattended at their desk.  Here’s the typical process when a person leaves the office:

1. Power down your laptop
2. Unlock your cable lock and disconnect it from the laptop
3. Throw your laptop in your bag
4. Leave

Cool, right?  Wrong!  Your cable lock dials are still set to your unlock code.  I can easily walk up to your desk after you leave, look at where the dials are set and know your super secret unlock code.  The laptop, which will probably include your personal and/or company data, is now mine.  No bolt cutters required.

Please remember to randomly turn the dials of your cable lock before you leave it.  Or better yet, just take it with you.

Posted in Hardware, Security | No Comments