 |
 |
This is the first feature-complete mobile version of NoScript. In other words, it provides all the major security features of its desktop counterpart which make sense on a mobile device.
http://hackademix.net/2011/10/15/noscript-for-mobile-is-complete/
I still find myself going back and watching this every year or so. Very motivating, especially for me right now.
I’m mainly archiving this for myself but, if you have an entire weekend to kill and want to learn from some of the best, here are all the videos from DerbyCon this past weekend.
http://www.irongeek.com/i.php?page=videos/derbycon1/mainlist
Researchers have discovered what is believed to be the first in-the-wild rootkit that targets BIOS, the built-in software responsible for booting up a computer and managing communication between the machine and its attached devices.
The discovery of Mebromi is notable not because any widespread infections are anticipated – the complexity of a successful attack on the motherboard is high – but because it appears to be the first malware written for the BIOS in at least four years, Webroot researcher Marco Giuliani, who studied the threat, said in a blog post Tuesday. The potent malware cocktail, consisting of a BIOS rootkit, an MBR (master boot record) rootkit, a kernel-mode rookit, a PE (portable executable) file infector and a trojan downloader, is designed to evade anti-virus detection.
Right now, the active attack exclusively is targeting Chinese users, Giuliani said. The trojan dropper is designed to first infect Award BIOS, manufactured by Phoenix Technologies. Once the BIOS is infected, the malicious code compromises the master boot record, a small program initiated when a computer starts up.
Source:
http://www.scmagazineus.com/researchers-uncover-first-active-bios-rootkit-attack/article/212035/
The premise of a new (and fake) Facebook app called “If I Die” is sweet if a little morbid: You record a video message that will be played for your loved ones after your death. As the app advertisement says: “Death can catch you anywhere, anytime. Leave your If I Die message before it’s too late.” There’s just one catch: The app is a fake, and if you download it, the only thing dying will be your computer’s security. Spotted by researchers at the anti-virus firm Bitdefender, “If I Die” harbors a nasty payload, including a keylogger that can steal passwords, emails and any other sensitive information stored on your system. The dangerous app also implants a back door, opening up victims’ computers to receive commands from remote sources such as botnets, and even can take photos from infected computers’ webcams. Downloading the “If I Die” app, Bitdefender warns, is essentially “signing the death certificate on your computer’s security.”
Source:
http://www.msnbc.msn.com/id/44504875/ns/technology_and_science-security/#.Tm_ifU-4SVg
Admin Edit:
This article is very misleading. The malicious app mentioned above is a fake. It’s not the genuine “If I Die” app. The genuine version can always be found here.
