Tech News Archive in reverse chronological order

The tech news for mutiple platforms users from October 5-12, 2005. After a one week break the tech news is back:

Apple Unveils the New iPod

The new iPod, featuring a gorgeous 2.5-inch color screen, can display album artwork and photos, as well as play stunning video including music videos, video podcasts, home movies and television shows. The new iPod holds up to 15,000 songs, 25,000 photos or over 150 hours of video and is available in a 30GB model for $299 and a 60GB model for $399, with both models available in stunning white or black designs. Apple Hot News 10/12/05 12:00 AM

Apple Introduces the New iMac G5

The new iMac G5 features a built-in iSight video camera for out-of-the-box video conferencing and Apple’s new breakthrough Front Row media experience. Front Row gives users a simple, intuitive and powerful way to play their music, enjoy their photo slideshows and watch their DVDs and iMovies, as well as popular movie trailers from apple.com and music videos and television shows purchased from the iTunes Music Store, on their iMac from up to 30 feet away using the new bundled Apple Remote. Apple Hot News 10/12/05 12:00 AM

Apple releases QuickTime 7.0.3 -- required for iTunes 6.0, release notes

Apple has released QuickTime 7.0.3, which is required for proper operation of iTunes 6.0.

Several readers report that they are not able to locate the new QuickTime release in Software Up… MacFixIt 10/12/05 12:14 PM

Win2K Users Beware

Of the 14 vulnerabilities for which Microsoft issued patches on the latest Patch Tuesday, one is especially important: a newly discovered Windows 2000 worm hole. MS Watch--Mary Jo Foley 10/12/05 1:50 PM

Don't Let Fear Kill Muni Wi-Fi

You can count on internet service providers to scream bloody murder -- or bloody cybercrime -- to dampen support for municipal Wi-Fi. But the benefits of free and open access outweigh the risks. Commentary by Jennifer Granick. Wired News 10/12/05 1:50 PM

Microsoft Readies Eight Windows Patches

At least nine security fixes are due for October release. PCWorld.com - Latest News Stories 10/10/05 5:32 AM

Share files and internet connection between 10.4 and XP

A problem I ran into while trying to connect a simple network of a Mac running OS X 10.4 to a PC with Windows XP via a crossover cable was that if I wanted to share my dial-up internet connection from the Mac to the PC, I had... Mac OS X Hints 10/10/05 5:56 AM

Microsoft's Real deal

Software giant and RealNetworks hammer out deal that puts aside legal differences and aims to shore up their respective digital music strategies. CNET News.com 10/11/05 2:25 PM

Tech News for September 21 to September 28, 2005

Microsoft Office 2003 SP2 released

Released on Tuesday, Microsoft Office 2003 Service Pack 2 is designed to improve security, application stability and support. CNET News.com  9/28/05 6:32 AM

Apple confirms LCD flaw in "limited" iPod nanos

Apple today confirmed an LCD manufacturing flaw in some of its iPod nanos, while downplaying other... MacNN  9/28/05 8:00 AM

RealPlayer, Helix users at risk of attack

Media players running on Linux face a new security vulnerability that could leave users open to remote attacks, security experts say. CNET News.com - Security  9/27/05 10:53 AM

Yahoo Users Get Phished

Attackers use sophisticated new methods to tap users' IDs and passwords. PCWorld.com - Latest News Stories  9/27/05 8:43 AM

Linux.com: Auditor: The Security Tool Collection

"The Auditor security collection is a GPL-licensed live CD based on Knoppix, with more than 300 security software tools. Auditor gives you easy access to a broad range of tools in almost no time..." Linux Today  9/26/05 5:32 AM

Firefox Update Squashes Bug

Mozilla urges update to Firefox 1.0.7 to prevent security breach. PCWorld.com - Latest News Stories  9/25/05 5:32 AM

Toolbar, search site aim to guard against phishers

GeoTrust on Monday will unveil free services meant to protect people from unwittingly giving up personal data to fake sites. CNET News.com  9/25/05 9:00 PM

Apple releases iPod Updater 2005-09-23 -- software update for iPod Shuffle

Apple has released iPod Updater 2005-09-23 which includes new iPod Software 1.1.2 for the iPod shuffle. It contains the same software versions as iPod Updater 2005-09-06 for all other iPod models. MacFixIt  9/23/05 7:30

Apple releases Security Update 2005-008

Apple has posted Security Update 2005-008 for both Mac OS X 10.4.2 and Mac OS X 10.3.9. The update includes changes to the following components, per Knowledge Base article…

 MacFixIt  9/22/05 6:42 PM

 

Tech News from August 8th to August 15, 2005

Exploits Target Latest Microsoft Bugs

Code takes advantage of several recently patched Windows and IE flaws. PCWorld.com - Latest News Stories8/15/05 10:04 AM

Microsoft Warns of Windows 2000 Worm Hole Exploits

On Friday, Microsoft warned Windows 2000 users to patch their systems immediately in order to avoid potential exploits for a wormable Windows 2000 flaw that are circulating on underground security Web sites. MS Watch--Mary Jo Foley8/15/05 10:04 AM

More info on the item above: Zobot Worms Target Windows 2000 Hole

Code attacks through Plug and Play hole that Microsoft addressed last week with a patch.eWEEK Technology News8/15/05 10:04 AM

Mac OS X for x86 "spreading like wildfire"; Forbes: Macintosh Platform Set For Continued Share G

Mac OS X for x86 "spreading like wildfire" Bit-Tech reports that thousands are PC owners are experimenting after instructions for installing a pirated copy of Mac OS X for x86 processors we …  MacFixIt8/15/05 12:55 AM

High hopes for Apple through next year

Piper Jaffray today announced that Apple is its large-cap sector pick through the rest of the calend...MacNN8/15/05 8:00 AM

Apple on the Brink

What does the company have up its sleeve? PC Mag: John C. Dvorak8/15/05 10:04 AM

TechWorld: VMware Adds Para-Linux and x86 Support

"VMware will now support what it calls para-virtualised Linux, and the Solaris x86 operating system in future releases of all its core products..." Linux Today8/15/05 10:04 AM

New scam asks people to fax away credit card data 

New technique comes as people are increasingly skeptical about entering sensitive data in online forms, security specialist Sophos says. CNET Thursday August 11, 2005 07:48AM PDT

Microsoft fixes serious Windows flaws  

Microsoft warned of serious security flaws in Windows and urged users to patch as soon as possible. CNET 8/9/05 02:08PM PDT

ID theft ring hits 50 banks, firm says 

Sunbelt says an operation that steals data using spyware could affect customers of up to 50 banks. CNET 8/8/05 12:06PM PDT

 

Tech News From August 2 to August 8, 2005

The following are news items of interest for Multiple Platforms visitors:

Six Security Bulletins Due Next Week(for Microsoft Users)

According to the early heads-up provided by Microsoft on Thursday, the company plans to release six bulletins next week that will fix a variety of vulnerabilities.  MS Watch--Mary Jo Foley8/8/05 9:02 AM

Microsoft to Reissue Windows 2000 Rollup

Problems continue to dog users who have installed the collection of security and other patches and fixes for Windows 2000 that Microsoft released in late June. eWEEK Technology News8/8/05 9:02 AM

Report: Banks Make Theft Easy for Phishers

Attackers take advantage of customer conveniences to create fake bank cards. PCWorld.com - Latest News Stories8/8/05 9:02 AM

Linux.com: Review: Slax 5.0.6

"Slax is a live CD distribution based on the venerable and time-tested Slackware Linux. Its claim to fame is twofold..." Linux Today8/8/05 9:02 AM

Another way past Windows antipiracy found

Yet another way emerges to bypass Microsoft's validation tool meant to stop people with the pirated OS from getting downloads. CNET News.com8/5/05 5:29 PMSecurity

First potential virus risk for Windows Vista found

updateVirus writers are targeting a new Microsoft tool that will be part of Windows and is set to ship as part of the next Exchange e-mail server release.

A virus writer has published the first examples of malicious code that targets Microsoft's upcoming command-line shell, code-named Monad, according to Finnish antivirus maker F-Secure …

CNET News.comLast modified: August 5, 2005, 7:35 AM PDT

Mac OS X 10.4.2 (#14): System fails to startup/shutdown properly, possible solutions

System fails to boot properly, possible solutions We've previously covered a number of issues with startup after installing Mac OS X 10.4.2. These problems can spontaneously occur with any…  MacFixIt8/5/05 9:30 AMLate-Breakers

Apple Introduces Mighty Mouse

CUPERTINO, California--August 2, 2005--Apple today introduced Mighty Mouse, its next generation mouse with several innovative new features that make using a Mac even more powerful and easy. Mighty Mouse offers power users up to four independently programmable buttons, without compromising simplicity for users who prefer just a single-button mouse. Mighty Mouse also introduces an ingenious Scroll Ball that lets users scroll in any direction--vertically, horizontally and even diagonally. With the Scroll Ball, users can scroll with natural, fluid movements, making Mighty Mouse perfect for applications from viewing web pages and photographs, to video editing and music creation. Mighty Mouse is priced at just $49.MacMegasite8/2/05 10:31 AMApple News, Hardware

Tech News From July 28 to August 1, 2005

Hackers Crack Microsoft's Antipiracy System

Windows Genuine Advantage system first exploited within 24 hours of its launch. [PCWorld.com - Latest News Stories 8/1/05 7:13 PM]

Microsoft Tightens Piracy Policy

Updates hinge upon software validation. [eWEEK Technology News 8/1/05 9:01 AM]

Hackers Hit Windows Genuine Advantage

Days after Microsoft launched Windows Genuine Advantage anti-piracy program, hackers found a way around it. [CRN.com Daily News August 1, 2005]

Microsoft wants to meet more hackers

Software giant plans to invite hackers back for biannual meetings to show developers flaws discovered in Microsoft products. [CNET News.com 8/1/05 3:04 PM Security]

Windows Vista, IE7 betas leaked

Also: New solar system world has a moon. [CNET News.com7/30/05 12:49 PM]

Windows Vista: Where's the Buzz?

Is this the end of Microsoft's OS dominance?  [PC Mag: John C. Dvorak7/30/05 12:49 PM]

Net-Crashing Vulnerability Described

Update: Several sites post details of Black Hat talk detailing patchable flaw in Cisco routers. [PCWorld.com - Latest News Stories7/30/05 12:49 PM]

PCBurn: Ubuntu 5.04: Hardware & Installation

"Ubuntu Linux aims to be a clean user-centric distribution with a simple install and usable defaults..." [Linux Today7/30/05 12:49 PM]

Black Hat: Hunting bugs, finding holes

At security conference, researchers dig into flaws and fixes--and one gets into a dust-up with Cisco. [CNET News.com7/29/05 11:40 PMSecurity]

Sophos bug highlights wider anti-virus flaws

Window of vulnerability… [The Register7/29/05 9:25 AM]

Mac OS X 10.4.2 (#12): Mail.app 2.0.2 -- last resort for Comcast mail sending issues; Spotlight not finding files with asterisks

Mail.app 2.0.2 -- last resort for Comcast mail sending issues Over the past week we've covered a number of solutions for two key issues facing users of specific ISPs (particularly Comcast)  [MacFixIt7/29/05 7:25 AMLate-Breakers]

Mac OS X 10.4.2 (#11): Response from Symantec regarding Norton AntiVirus preventing FireWire drive unmounting; more

Response from Symantec regarding Norton AntiVirus preventing FireWire drive unmounting Yesterday we reported that in some cases, the "Auto-Protect" component of Norton AntiVirus (NAV) can… [MacFixIt7/28/05 3:30 PMLate-Breakers]

7.25.05 Tech News Updates

Adieu Lance, Merci

It was no coincidence that my recent break occurred at the same time as Lance Armstrong and the Discovery Channel Team challenged the greatest athletes in the bike-racing world in the Tour de France. I like bike racing, the Tour is the penultimate road racing challenge, and Lance Armstrong is my favorite rider and a man I consider to be heroic not because of his racing prowess in as much as for his work in the never ending battle to find a cure for cancer. As I suffer through the first day of Tour withdrawals, I thought it would be a great time to remind you that not only has Lance won seven consecutive Tour de France titles, he spent 83 days of the tour sporting the yellow jersey and received an Olympic bronze medal in Sydney in the 2000 Summer Games. Lance has now retired from professional bike racing after only having recorded a mere 25 stage wins during the tour, but he isn’t retiring in his work to win the battle against cancer. So far, Lance has raised 52 million dollars through the Lance Armstrong Foundation. I have included a link to the Lance Armstrong Foundation on this web site for the past year and if you would like to purchase a Livestrong bracelet use the link below or the one found on the left side of the page. Adieu Lance, merci… Vive Le Tour, Vive Lance… Merci, OLN!

I enjoyed my break from Multiple Platforms and our vacation to the coast and during that time, I decided that it is no longer possible for me to offer daily news updates. My plan is to offer weekly updates and possibly return to the world of podcasting. My podcasts are listed with the iTunes Music Store, but I apparently have them in the wrong format or they may not like the fact that the mp3 files are stored on my .Mac account! I am also working full-time on my research, and soon school will begin again. Weekly updates will still be found on this page and I’ll work out a schedule when the university decides what classes I will be assigned. Your questions and annoyances are what I really want to help solve, and please don’t feel like your question is too elementary. Send your questions to: contactus@multipleplatforms.com

Order Livestrong Bracelets...

These are some of the important stories from the past week that might interest Multiple Platforms readers:

New Steps to Reduce Identity Theft

Visa and U.S. Chamber of Commerce launch a nationwide campaign to educate businesses about consumer data security.PCWorld.com - Latest News Stories7/25/05 12:37 PM

Apple Patches OS X Flaws

Mac OS X Update 10.4.2 fixes two security flaws, including one that potentially opened the platform up to a denial-of-service attack. eWEEK Technology News7/25/05 12:38 PM

Security holes add up in second quarter

Between April and June, more than 400 new flaws were discovered that could let an attacker take control of a PC remotely. CNET Monday July 25, 2005 07:59AM PDT

'Critical' Kerberos Flaws Could Open Networks to Attack

MIT researchers say the popular authentication protocol is vulnerable to three serious flaws that could allow an attacker to gain access to protected corporate networks. eWEEK Technology News7/25/05 12:38 PM

Longhorn to Be Christened 'Windows Vista'

Sources say Microsoft is set to unveil the official name of Longhorn on Friday. And the word on the street is that name will be "Windows Vista." New Product Update7/25/05 12:37 PM

Offering a bounty for security bugs  

Security vendor TippingPoint wants to be the first to know about flaws to protect its customers against potential attacks. CNET Sunday July 24, 2005 09:55PM PDT

Web takes in the Windows Vista  

The Internet is buzzing with online reaction to the newly-announced name for the next version of Windows. CNET Saturday July 23, 2005 11:01AM PDT

Windows worm poses as iTunes file

A new Windows worm may deceive some users into thinking it’s an iTunes file, according to Trend Micro. MacCentral7/20/05 7:55 AM

Warning: 'iTunes' Attachment Is AIM Worm

A new worm spreading via America Online's Instant Messenger piggybacks on the popularity of Apple's iTunes music service. eWEEK Technology News7/20/05 4:57 PM

Attackers Tuck Viruses Into Fake E-Mail Greeting Cards

Malicious e-mail messages in general increase 30 percent from last year. PCWorld.com - Latest News Stories7/20/05 4:57 PM

ZDNet UK: Thousands Back Petition to Open Source OS/2

"Nearly 10,000 people have signed a petition calling on IBM to publish the source code of OS/2..."  Linux Today7/20/05 4:57 PM

Update 7.20.05

The tech news has been slow over the last week, here are some highlights (or low-lights):

It is safe to say that if you are using any open source distro you have an important update available.

The latest updates for Microsoft's Windows XP are important and you should install it ASAP.

Firefox users also should update to the latest version of that browser from Mozilla.org/.

Vacation update: One week wasn't enough of a break and I am going to make it a two week break. If there are any critical stories before next Wednesday, I'll post them here...

7.11.05

With great reluctance, I'm taking the next week off. I'll be traveling to some areas that lack Internet connectivity (!) and furthermore, after fourteen months of delivering the tech news to you, I need a break... Please feel free to submit any of your computer annoyances while I am away and I will respond to them upon my return. I hope you will return next week, and may all your tech news be good! Thanks and Aloha!

 

7.08.05

Florida to War Drivers: Just Say No

War drivers in Florida might want to find a new hobby now that the state has arrested a man for allegedly accessing someone’s wireless network, a felony violation in Florida according to a report from PC World. If you haven’t yet, activate your wireless router’s protection and you might consider disconnecting the router when you aren’t using it. For more on this subject surf to CNET:

FAQ: Wi-Fi mooching and the law

Is it legal to use another's network without asking? Is it OK to share your own network? It's not always clear. [CNET News.com]

Trojan Attacks on Rise

According to CNET, an Internet security watchdog has detected a significant increase in Trojan attacks. The Trojans are delivered via email and include attachments named: ‘Downloader.abc’ and ‘Downloader.xz’, sans quotation marks. If you open the attachment you will open a backdoor for a cracker, so just say NO to attachments.

Remove Your Annoyance

If you have an annoyance with your computer, let me help solve the issue. Please include as much information as possible regarding the situation, including what operating system you are using and when you last updated, anything you might have installed prior to the start of the problem, if you are logged on as the administrator when the issue occurs and any other information think might be even remotely related. It really helps to include your email address in the event that I need more background information to solve your problem, but you can submit your question anonymously to: contactus@multipleplatforms.com/.

Open Source Updates

Open source systems have a flaw in their zlib component and most of the following updates and those listed yesterday address this problem according to CNET. Secunia released the following bulletins for open source users: Debian (1, 2, 3, 4), Red Hat, OpenBSD, Conectiva, Mandriva, SuSE, and Fedora.

 

7.07.05

The Tech News seems to be in a summer slump, which is good news for end-users. The following items are news briefs that might be of interest to you.

Is This the Root of Evil?

Windows users are not taking advantage of the upgraded security offered by Microsoft’s Windows XP SP2 update. The problem is that these PCs are perfect targets for enlistment in the growing army of zombie computers:

XP owners shunning security update

Microsoft says only a third of Windows XP machines have the SP2 security update loaded, a Microsoft exec says. [CNET]

Spyware fears prompt changing net habits

Up to a point, Lord Copper… [The Register]

A safe browser? No longer in the lexicon

CERT security analyst Art Manion warns that all Web browsers now face similar threats--and some even share similar design features. [CNET News.com]

Exploit heightens risk from old Firefox flaw

Code that takes advantage of a security hole in older versions of the open-source Web browser could help an attacker take control of PCs. [CNET News.com]

Open Source Updates

Secunia’s bulletins for open source systems include the following: Debian, Gentoo (1, 2, 3, 4), FreeBSD, SuSE, Red Hat, Fedora, and Ubuntu.

Tip of the Day From Multiple Platforms.com: Music for Free

Don’t forget to download your free iTunes song of the week. A new song is available for Multiple Platforms every Tuesday and you can get your tune by clicking on the iTunes Music store logo to the left. If aren’t an iTunes user yet, I have also provided a link for you to download iTunes application.

What is iTunes?

Wikipedia provides this definition for iTunes: “iTunes is a media player, written by Apple Computer, for playing and organizing digital music, video files, and purchasing digital music files in the FairPlaydigital rights management format. The iTunes Music Store (also sometimes referred to simply as "iTunes" or "iTMS") is the component of iTunes through which users can purchase digital music files from within iTunes.

The player has gained and maintained a reputation as being easy to use, while still allowing users precisely to organize their music (for example, features such as the smart playlist). iTunes is used to fill Apple's popular digital audio player iPod with songs. The program is freely downloadable and is also supplied with Mac OS X as well as Apple's iLife home-application suite.

iTunes is compatible with computers running Mac OS X, Windows 2000, Windows XP, and Windows Server 2003operating systems. Previously iTunes supported Mac OS 9, however OS 9 support was removed with version 3.”

7.06.05

Issues With iTunes Continue

MacFixIt continues to receive reports of problems with the latest update from Apple, iTunes 4.9 and today a new symptom has been included in the list, a loss of the iTunes library. If you are having trouble transferring songs to your iPod or iTunes annoyances post-installation of the latest update you should visit MacFixIt to learn about your options.

More on Internet Explorer Flaw

According to PC World, Microsoft has released software you can use to address the latest flaw discovered in Internet Explorer. The software disables the ‘Javaprxy.dll’ registry file. PC World notes that the aforementioned file is used by Internet Exploder to run the Microsoft Java Virtual Machine. As noted yesterday in this space, Secunia has rated this flaw ‘extremely critical’ (see 7.05.05 Tech News below for more background).

Crackers Today: No Lonely Geeks Need Apply

Yesterday I mocked surprise when confronted with the news that the crackers of today might be linked to organized syndicates and today that thread is continued in an article on a similar topic from CNET: Cracking for Dollars. According to the article, lonely geeks need not apply and the typical cracker today is a “white-collar criminal …”or a “… criminal from a foreign country”. The cracker of today is looking for big bucks, not fame and fortune and a popular method of cracking for dollars is to capture your PC and enlist it in a zombie army. Then your PC becomes a virtual mercenary as the crackers have found a new virtual market for your computer.

Open Source Updates – Adobe 5.x is rated ‘highly critical’

Secunia has these bulletins for open source systems: Conectiva (1, 2, 3, 4) and Debian (1, 2, 3). Secunia also announced a ‘highly critical’ flaw has been identified in Adobe Acrobat Reader 5.x and Secunia recommends that you update to a later version available from Adobe.

Tip of the Day From Multiple Platforms.com: Feel the Thunder

The Tip of the Day regards email clients and for Multiple Platforms users, Thunderbird is made to order. The performance of the spam filter exceeds Apple’s offering in the category of false positives. The email client also includes RSS support, privacy protection and more. You can download Thunderbird from Mozilla.org and the price is right, free.

What is RSS?

Wikipedia has this to say about RSS: “RSS provides short descriptions of web content together with links to the full versions of the content. This information is delivered as an XML file called RSS feed, webfeed, RSS stream, or RSS channel. In addition to facilitating syndication, RSS allows a website's frequent readers to track updates on the site using a news aggregator.

RSS is widely used by the weblog community to share the latest entries' headlines or their full text, and even attached multimedia files. (See podcasting, broadcatching and MP3 blogs.)

In 2004 and 2005, after several years of use by early adopters, use of RSS spread to many major news organizations, including Reuters and the Associated Press. Under various usage agreements, providers allow other websites to incorporate their "syndicated" headline or headline-and-short-summary feeds.

A program known as a feed reader or aggregator can check RSS-enabled webpages on behalf of a user and display any updated articles that it finds. It is now common to find RSS feeds on major web sites, as well as many smaller ones.

Client-side readers and aggregators are typically constructed as standalone programs or extensions to existing programs like web browsers. See List of news aggregators for a list of clients for various operating systems.

Web-based feed readers and news aggregators require no software installation and make the user's "feeds" available on any computer with Web access. Some aggregators syndicate (combine) RSS feeds into new feeds, e.g. take all football related items from several sports feeds and provide a new football feed. There are also search engines for RSS feeds like Feedster, Technorati, Pluck or Plazoo.

RSS feeds are typically linked to with an orange rectangle with the letters XML or RSS.”

I use NetNewsWire to check several hundred news sources daily for the tech news found on this page.

7.5.05

Gone in Sixty Seconds?

According to realtechnews.com/, it now takes only twelve minutes for your unprotected PC to become compromised by a cracker; somewhat longer than the 60 seconds it takes to steal a car, but remember that 12 minutes in the average and your PC could be gone in sixty seconds without the proper precautions. The basis for the report is a study conducted by Sophos, a security firm (see below). Leo Laporte (host of Call For Help and The Tech Guy on KFI) has provided directions for safely installing Windows and connecting your PC to the Internet.

Increase in Malware Equals Organized Effort?

A CNET article citing the same security firm named in the lead story today states that organized crime maybe behind the skyrocketing increase in computer based attacks. REALLY!?! I just thought that it was because there are an ever increasing number of geeks that want to be crackers and steal from people for a living. The bad news is the attacks are now being deployed on all platforms and aren’t restricted to Microsoft products.

Internet Explorer Bug Will Be Patched

PC World has a report regarding the latest bug affecting Microsoft’s Internet Explorer and the bottom line is a patch will be forthcoming; just don’t hold your breath. A Microsoft spokesperson has acknowledged the issue and security experts expect Microsoft to issue a patch “within a few weeks”. Exhale…

Issues With iTunes Update

MacFixIt reports that the latest iTunes update from Apple is creating headaches for some Apple users. Some of the issues noted include inability to move songs to your iPod, individual track problems and more. If you are experiencing any of these problems, visit MacFixIt for directions on reverting to a previous version of iTunes.

 

 

7.01.05

Lance Armstrong Begins Podcasting

Livestrong leader and six-time Tour de France champion Lance Armstrong has joined the podcasting fad according to CNET. I have not had a chance to check out the podcast, but I certainly will over the weekend. If you would like to order a package of Livestrong bracelets, please use the link found on the left side of this page. Speaking of podcasts, I’m sorry that I haven’t been able to produce a new episode of Life in a Multiple Platforms World lately. I hope to return to the podcasting world soon, and thanks to all of you that are still downloading my previous podcasts.

New Flaw for Internet Explorer

Secunia released a security bulletin rated ‘highly critical’ for users of Internet Explorer (5.0.1; 5.5; 6.x). The flaw could allow crackers to gain control of your computer. Secunia suggests: “The vendor recommends setting Internet and Local intranet security zone settings to ‘High’.” You could also check out the Tip of the Day From Multiple Platforms.com (below) regarding alternative browsers.

PCMag.com Reviews Top Security Tools

PCMag.com has a great review of security products to protect you from the types of intrusion perpetrated on a daily basis by evil-crackers. Several of the tools are free, others come with a fee, and some will work on Multiple Platforms.

Bogus Microsoft Alerts Rise Again

PCWorld.com is reporting that bogus emails that claim to be from Microsoft are on the rise and if you open the message, your PC might join the growing army of zombie computers. Remember, all Microsoft email messages are digitally signed and the company doesn’t distribute updates via email.

Open Source Updates

Secunia has these notices posted for open source systems: Debian (1, 2), and Mandriva (1, 2, 3).

Tip of the Day From Multiple Platforms.com: Surf With Another Browser

The end of the month statistics for this web site show Internet Explorer as the most commonly used browser, and the story above about Internet Exploder is just another in a long line of security bulletins for application. If you would like to surf with another browser, you should look at Firefox from Mozilla.org/. Remember, you still must exercise caution when using any browser, but of late the open source community seems to respond faster to security breaches than their corporate counterparts.

What is a Browser?

According to Wikipedia, “A web browser or Internet browser is a software application that enables a user to display and interact with HTML documents hosted by web servers or held in a file system. Popular browsers available for personal computers include MicrosoftInternet Explorer, MozillaFirefox, Opera, and Safari. A browser is the most commonly used kind of user agent. The largest networked collection of linked documents is known as the World Wide Web.”

6.30.05

New Legislation Aimed at Tightening Security; but does it go far enough?

CNET is carrying a timely story regarding new legislation proposed on the national level to cut down on the prolific growth of security breaches that affect the individual consumer as well as unsuspecting merchants. The bills if enacted as currently drafted would surely bring howls of protest from the credit card and business interests, but the bill still lacks any significant deterrents for the mega-billion dollar corporations who have routinely been lackadaisical in their efforts to protect our vital information. If I sound somewhat bitter, angry, or just plain fed-up, let me assure you I have a reason to be. Allow me to explain.

How many ways can you be compromised?

As an employee of the State of California, my vital information including social security number, date of birth, drivers license number and more have been illegally exposed on three separate occasions (that we have been informed of) and in each of those cases we were collectively assured that there was nothing to worry about. However, we were advised to check our credit reports frequently. If that were my only complaint with security breaches, I might feel less inclined to crow this loudly; and thankfully, the breaches haven’t resulted in someone assuming my identity.

However, the story of corporate and bureaucratic ineptitude isn’t quite finished and long-time readers may recall that I wrote about becoming a victim to credit card skimming (see below for definition). Crackers using software and a compliant merchant to find active numbers obtained our credit card number and expiration date. In defense of our credit institution, they quickly froze our account and we were not held liable for any of the charges. Furthermore, this was a new type of crack attack and it seems that the companies involved have closed the door on this swindle. With the latest wave of disclosures regarding credit information, I cranked up the volume on the need to increase the penalties for this type of problem, not realizing that the ugly-credit monster was about to strike our home again. This time the news arrived in the form of a letter from our bank detailing the fact that are credit card number and expiration date were part of the information crackers gained when raiding ChoicePoint. Remember, these problems are not associated with the Internet per se, or transaction over the same. In all of the above instances, the fact that I’m a confirmed Internet user hasn’t prompted these issues and any or all of the occurrences could happen to anyone that has a credit card, social security number, or in short if you are or were breathing.

The fact that these problems hit home with United States Senator Patrick Leahy has prompted the call for more legislation, but as I mentioned previously, the senator’s bill lacks a bite for these corporations that can’t keep the back door closed. Stay tuned for more…

Open Source Updates

Secunia released these bulletins: FreeBSD (1, 2), Fedora, and Red Hat.

Tip of the Day From Multiple Platforms.com: Dog Friendly Travel

We are planning for an upcoming vacation and of course, our dogs need a vacation too. This year I found a great web site for pet people, DogFriendly.com/. The site provides you with links to lodging, places, and activities you can enjoy with your pet while on your annual respite. We found several places to stay for each of our chosen rest stops and the folks at The Inn at Schoolhouse Creek seem to actually be excited about the arrival of our dogs.

What is Skimming?

The Wisconsin Better Business Bureau supplies this definition: “Credit card skimming is a practice that has been around for over a decade but, has increased in frequency the past two or three years.

Here is how it works. Skim artists recruit gofers, who then find temporary work within restaurants, hotels and retail establishments. The recruits are given small, illicit, electronic devices, known as skimmers, that capture all of the credit or debit card's details (name, address, telephone number, card number, credit limit and PIN number) in the few seconds that it takes to swipe the card through the machine.

When the unsuspecting customers go to pay their bill, their card is first swiped through the legitimate credit card machine, but then, secretly, it is also swiped through the smaller skimmer machine. The gofer then passes the gadget on to the skim artist, who pays them cash for their part in the crime. Once the skim artist has the details, he downloads the information onto a computer and makes up a fake card. The "cloned" card is embossed with the details of the victim's credit card and passed on to others, who may sell the card or use it for their own benefit.”

Another form of skimming involves harvesting your credit card number and expiration date with software programs aimed at compliant merchants. Once the software detects a positive hit on a number, the crooks quickly target other unsuspecting merchants for anything they can get their hands on without risking capture. The latter is the form of skimming that we fell victim to.

6.29.05

New Worm Uses John Paul ll as Hook

The latest worm is using the passing of John Paul ll as a hook for unwary PC users and if you are infected your security system will be history. CNET is reporting on this and another attack by a Bagle variant that is enlisting zombie computers via a Trojan horse. The compromised PCs are then used in nefarious ways; what a shock!

Adobe Patch for Macs

As reported here yesterday Mac owner using Adobe applications should update the program to avoid security issues. CNET has more on this threat to Apple users.

Virtual PC for Mac Has Update

Microsoft has released an update for Virtual PC for Mac that will address the conflicts that Tiger users are currently experiencing according to a report by MacCentral. If you are having problems with Virtual Switch, Zero Configuration, or printing issues make sure you install the update.

Searching For Multiple Platforms Printer

If you are working on your Mac and cannot locate a printer that is connected to your PC then Apple has a tip that will help you isolate and eliminate the irritation.

Open Source Updates

Secunia released the following security or update bulletins for open source users: Mandriva (1, 2), Sun Solaris, and Ubuntu.

Tip of the Day From Multiple Platforms.com: Test Your Defenses

If you would like a free security assessment of your computers’ defenses then Steve Gibson’s GRC.com is the place to visit. Steve has provided Shields Up, an excellent test package that will give your computers’ security blanket a thorough inspection and alert you of any vulnerability that may leave your box at risk.

Who is the Creator of Shields Up?

The creator of today’s tip of the day is Steve Gibson and Wikipedia has this about that: “Steve Gibson (b. March1955) is a computer engineer and journalist based in Laguna Hills, California. Gibson has had a long career in the technology field starting in his teen years. He began in hardware projects but moved more towards software development in the 1980s. Gibson founded Gibson Research Corporation in 1985, and is currently its primary employee. Gibson is also a contributing editor to InfoWorld magazine.

In the 1980’s, his SpinRite program optimized the efficiency of hard disks. SpinRite has evolved to this time (early 2005) into a data loss prevention and data recovery utility.

Gibson is an advocate of assembly language programming, and prides himself with writing whole applications exclusively in assembly language. He is one of several advocates of optimizing computer programs and reducing the size of their executables.

Gibson has garnered criticism for certain writings on computer security which allegedly do no more than spread fear. He has also been accused of shameless self-promotion, and has oft been likened to a snake oil merchant. These accusations notwithstanding, he has developed and distributed (for free) a number of useful security tools, including the popular ShieldsUp port-scanning site. His writings also provide something of a glimpse into the world of hackers and crackers, of which he counts himself one of the former.”