Trojan demands money for internet access

Tuesday, December 1st, 2009

There's nothing new about Windows trojans resorting to a little blackmail, but Computer Associates has now observed a new twist; a trojan which blocks internet access until the user enters an activation code. This is activation code is obtained by sending an SMS containing a particular number to an expensive ...

Clientless SSL VPN Vulnerability

Tuesday, December 1st, 2009

Web browsers enforce the same origin policy to prevent one site's active content (such as JavaScript) from accessing or modifying another site's data. For instance, active content hosted at http:///page1.html can access DOM objects on http:///page2.html, but cannot access objects hosted at http:///page.html. Many clientless SSL VPN products retrieve content ...

VirtualBox 3.1.0 released

Monday, November 30th, 2009

Sun today released VirtualBox 3.1.0, a major update introducing teleportation, branched snapshots, 2D video acceleration for Windows guests, more flexible storage management and much more. See the ChangeLog for details. Download:http://www.virtualbox.org/wiki/Downloads

Jungle Disk Not Backing Up EFS Encrypted Files

Friday, November 20th, 2009

I've been using SyncToy to back up data to an external USB drive and then using Jungle Disk to back up the data to Amazon S3.  With the newest version of SyncToy (2.1) they fixed a bug for EFS and now files retain their encryption when copied to an NTFS ...

Metasploit 3.3 released

Wednesday, November 18th, 2009

Nearly one year after the release of Metasploit 3.2, the Metasploit Project developers have announced the availability of version 3.3 of the Metasploit Framework. The comprehensive programming framework for developing exploits for vulnerabilities is used by security researchers, penetration testers and black hat crackers alike. The latest release includes a ...