Security and the Net

News and opinions about security, the internet and more

Entries for November, 2008

Another example of why you shouldn’t use the same password for every website

Most of us are aware that it’s not a very good idea to use the same password on multiple websites; there was a very good example of why this is such a bad practice. Users registered at the website of popular CMS Typo3 might have had their accounts compromised: As far as we could find […]

Leave a Comment

AVG offers free license and another false positive

Just as I was writing this post with positive news for AVG users, I was notified about this article at the Register that mentions that AVG is now also detecting non-existing viruses in Adobe Flash:  AVG, the popular anti-virus package, has falsely identified Adobe Flash as potentially malicious. The snafu comes just days after AVG […]

Comments (6)

Nuclear-powered datacenters: coming soon?

I just read this article about small nuclear reactors on DailyTech: The Hyperion Hydride Reactor is not much larger than a hot tub, is totally sealed and self-operating, has no moving parts and, beyond refueling, requires no maintenance of any sort. The reactor will output 27MW, enough to power a community of 20,000 homes, says Hyperion Energy, […]

Comments (2)

Major spam source shut down

As reported in several different places, SecurityFix has worked hard to get a major source of spam shut down: A U.S. based Web hosting firm that security experts say was responsible for facilitating more than 75 percent of the junk e-mail blasted out each day globally has been knocked offline following reports from Security Fix on evidence […]

Comments (1)

New Chrome Mac build

Since the previous one proved to be pretty popular, I figured I’d create an updated build of Chrome (or more precisely: a build of the Chromium TestShell) for MacOS X. This is based on revision 5273 of the code. Download Chromium Testshell build_5273 Update: Chrome builds can now be found on a separate page. As you […]

Leave a Comment

Patch Tuesday: MS08-68 and MS08-69

No big surprises from Microsoft this tuesday; there were no changes in the list of patches that were announced earlier. There are just two: MS08-068 is a patch for the Server Message Block (SMB) Protocol on all currently supported versions of Windows; the bug can lead to remote code execution with the rights of the logged-on […]

Leave a Comment

AVG virus scanner removes critical Windows file

Important note: be sure to read all the way down to the end of the article for the latest updates. Since publishing this article, AVG has offered a free license to all affected users; more about that here.  An update for the AVG virus scanner released yesterday contained an incorrect virus signature, which led it […]

Comments (67)

White House hacked on a regular basis?

The Financial Times has been told by a “senior US official” that the White House computer network has been penetrated by hackers on multiple occasions. The article itself provides some basic information, but you’ll have to read between the lines to get the most interesting stuff: Chinese hackers have penetrated the White House computer network […]

Comments (2)

Patch Tuesday november 2008

Microsoft has two updates planned for next tuesday: a critical update for the Core XML services (versions 3, 4, 5 and 6) and an important update for all currently supported versions of Windows. The Core XML services are not installed by default on most versions of Windows, but are included in other software such as […]

Comments (1)

WordPress 2.6.4 is a fake!

This is a quick warning: there is no WordPress 2.6.4 release; if you see notices that you need to upgrade to this version check them very carefully. A fake wordpress website appeared earlier today at; it looked the same but offered a fake 2.6.4 release containing a backdoor.  Craig Murphy has all the details. […]

Leave a Comment