New evidence points to a previously unknown vulnerability in Internet Explorer as the hole through which criminals recently attacked Google and other companies, rather than a known, but unpatched vulnerability in Adobe Acrobat and Reader, as had previously been claimed.
Microsoft has issued an advisory for the new vulnerability in IE listing every currently supported version except IE5 on Windows 2000 as vulnerable. As described by Microsoft: "It is possible under certain conditions for [an] invalid pointer to be accessed after an object is deleted. In a specially-crafted attack, in attempting to access a freed object, Internet Explorer can be caused to allow remote code execution."
There are some important mitigations to this vulnerability:
* DEP (data execution prevention) blocks it, and Microsoft has created a KB article with quick links to enable and disable DEP, if your system supports it, as all modern software and hardware do.
* Protected Mode in IE7 and IE8 in Windows Vista and Windows 7 "limits the impact of this vulnerability." This means that the exploit code runs in the unprivileged context of IE, and can't likely do much damage.
* If not running in Protected Mode, the attack code runs with the same privileges as the logged-in user, so running them as a standard user can limit the impact of the vulnerability as well.
* Users running on Windows Server 2003 and 2008 run, by default, in Enhanced Security Configuration and limiting the impact for sites not in the Windows Trusted Sites zone.
* HTML e-mail in Outlook, Outlook Express and Windows Mail opens in the Restricted Sites Zone, which prevents scripting and ActiveX controls, which Microsoft says should mitigate the attack. Unsurprisingly, this is a clue that the vulnerability is invoked through scripting and/or ActiveX controls.
Microsoft says that they are aware of "limited, active attacks attempting to use this vulnerability against Internet Explorer 6." This is worded interestingly, in that we have been led to believe that many companies were attacked and surely some of them use IE7 or IE8 on Windows XP (on Vista or Windows 7 the attacks would be blocked by Protected Mode). Perhaps the vulnerability is easier to exploit through IE6 than through more recent versions. It wouldn't be the first time that happened.
Just yesterday analysts, VeriSign iDefense among them, were claiming with certainty that the most recent PDF vulnerability, just patched by Adobe, was the vector used in the attacks. It was so easy to believe that this was the case because PDF vulnerabilities are a popular and growing vector for attacks and lend themselves well to targeted attacks.
But now Adobe is claiming that there is no evidence that "Adobe technology" was used as an attack vector. An MSRC (Microsoft Security Response Center) blog entry on the matter states that the IE 0-day was "one of the vectors used in targeted and sophisticated attacks against Google and possibly other corporate networks." This implies that there are others, although they take no position on what those were.
Adobe points to a McAfee Security Insights blog entry that names the mass-attack "Aurora" and states that they have analyzed "several pieces of malicious code" involved in the attack. It seems it was they who identified the new IE 0-day and reported it to Microsoft. They confirm that all versions of IE are vulnerable, but only IE6 was targeted.
Incidentally, in their advisory Microsoft thanks these companies for working with them and providing details:
* Google Inc. and MANDIANT
* Adobe
* McAfee
MANDIANT is an threat management and incident response company which, it would seem, worked with Google on the incident. You know who the other companies are and what roles they played.
Clearly there is still a great deal about these attacks that is not yet public and we need to refrain from jumping to conclusions. Adobe's role in this, for example, could easily be just another victim of the attack, an attack which they claim was largely thwarted. We can also say, based on what we know so far, that the standard best practices advice we always give would have gone a long way towards repelling these attacks: Run current versions of operating systems, browsers and other key software and employ multiple levels of defense. There were already, for example, no end of good reasons not to run IE6 anymore, but now you have one more.
Hotmail: Free, trusted and rich email service. Get it now.
Friday, January 15, 2010
Thursday, January 14, 2010
ITP officials given bikes to test licence seekers
ISLAMABAD - With the aim to facilitate the persons visiting traffic headquarters for the purpose of getting driving licenses, Islamabad Traffic Police (ITP) has provided motorbikes to its team that conducts driving tests.
Senior Superintendent of Police (Traffic) Dr Moeen Masood on Wednesday handed over the keys of motorcycle to the Driving Test Officer Inspector Majid Iqbal and stressed the importance of ensuring merit in the issuance of the driving licenses.
He said ITP had adopted a very transparent system for the issuance of driving licences, which would be further strengthened to ensure a safe road environment.
The SSP said that Traffic Police was making every possible effort to facilitate the citizens and has introduced one window operation for acquiring the driving license. “ITP is following a very transparent system for getting driving license and every citizen is treated equally as per law,” he said and asked the applicants not to be dependent on touts or others irrelevant persons for getting driving licenses. He said that ITP had implemented equal application of law and eliminated VIP culture. “We take no pressure from anyone and the license-seekers have to appear personally for passing the various phases conducted in a transparent manner,” he maintained.
Following the motto of quality service, he said that ITP force was accomplishing its responsibilities in a professional manner and making every possible effort for a safer road environment in the Capital.
Apple IPhone With New Camera May Be Out By June, Goldman Says
Apple Inc.’s latest iPhone will probably be available as early as June, include a more advanced camera, and may feature a touch-sensitive casing, Goldman Sachs Group Inc. analyst Robert Chen said in an interview, without identifying who gave him the information.
“Apple’s going to put a lot of innovation, not just on the hardware, but also on the software of the new iPhone,” said Taipei-based Chen, a member of Asia’s top-ranked technology hardware research team. The handset will feature a new plastic casing similar to that used for Apple’s touch-panel Magic Mouse released last year, he said.
“We’re not going to comment on rumors and speculation,” said Steve Dowling, an Apple spokesman.
Upgrading to a 5-megapixels camera will bring the handset into line with that offered by Google Inc.’s Nexus One which was released last week, Chen said. Apple, creator of iPod music players and Mac computers, got 23 percent of its sales from iPhones in the September quarter, trailing only laptops as a source of revenue, according to Bloomberg data.
The next iPhone will go into production as early as April and be available to consumers in June or July, Chen said. The handset may include an updated version of the iPhone Operating System as part an overhaul of Apple’s applications store, he said.
Robert Chen is a member of Goldman’s Asia Technology Hardware team lead by Henry King which topped the 2009 Institutional Investor rankings.
Magic Mouse, a computer mouse released in October, has a touch-sensitive solid plastic shell that replaces mechanical buttons. The technology may be replicated in the new iPhone to offer touch-sensitive features on the rear of the handset, Chen said.
Wednesday, January 6, 2010
Understanding Windows 7's 'GodMode'
Although its name suggests perhaps even grander capabilities, Windows enthusiasts are excited over the discovery of a hidden "GodMode" feature that lets users access all of the operating system's control panels from within a single folder.
By creating a new folder in Windows 7 and renaming it with a certain text string at the end, users are able to have a single place to do everything from changing the look of the mouse pointer to making a new hard-drive partition. The trick is also said to work in Windows Vista, although some are warning that although it works fine in 32-bit versions of Vista, it can cause 64-bit versions of that operating system to crash.
To enter "GodMode," one need only create a new folder and then rename the folder to the following:
GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}
Once that is done, the folder's icon will change to resemble a control panel and will contain dozens of control options. I'm not sure it's my idea of playing God, but it is a handy way to get to all kinds of controls.
I've asked Microsoft for more details on the feature and how it came to be. But so far, Redmond is silent on the topic.
Here is how to enable it:
By creating a new folder in Windows 7 and renaming it with a certain text string at the end, users are able to have a single place to do everything from changing the look of the mouse pointer to making a new hard-drive partition. The trick is also said to work in Windows Vista, although some are warning that although it works fine in 32-bit versions of Vista, it can cause 64-bit versions of that operating system to crash.
To enter "GodMode," one need only create a new folder and then rename the folder to the following:
GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}
Once that is done, the folder's icon will change to resemble a control panel and will contain dozens of control options. I'm not sure it's my idea of playing God, but it is a handy way to get to all kinds of controls.
I've asked Microsoft for more details on the feature and how it came to be. But so far, Redmond is silent on the topic.
Here is how to enable it:
- Right click on any bank space on your desktop.
- Click new from the menu and create a New Folder.
- Rename the folder as follow: GodMode.{ED7BA470-8E54-465E-825C-99712043E01C}
- DO NOT use this trick on Vista 64X and Windows 7 64X. It will cause your Windows to crash! (read comments below)
Thursday, December 31, 2009
Servers get a makeover in 2010
Virtualization will hit a hot streak in 2010, and enterprises will order more systems fully loaded with maximum processing power, memory and I/O capabilities
The recession may have forced Media General Inc. to scale back its grand plans for server virtualization in 2009, but like many other businesses, the communications company is planning a major push to make up lost ground this year. "Pretty much everything is being virtualized," says Mike Miller, director of information security, who oversees virtualization and server standards.
Media General has already consolidated by converting 250 servers into virtual machines running on 19 physical machines. Miller says he hopes to convert a big chunk of the other 400 servers this year. Other IT executives say they're ramping up virtualization efforts of their own. As virtualization hits the tipping point, it's redefining server requirements for 2010.
In Computerworld's 2010 Forecast survey, 64% of 312 professionals polled said that their organizations are likely or very likely to virtualize more servers in 2010. How many more? Gartner Inc. estimates that 55% of all new workloads will be deployed on virtual servers this year, up from 40% in 2009. The research firm predicts that by the end of this year, 24% of all workloads will be running virtually. Overall, IDC projects server shipments to hit 6.9 million this year, about 6% higher than in 2009 but 16% lower than in 2008, when shipments peaked at 8.1 million. Because of virtualization, servers shipping this year will be more heavily configured than they were in the past, especially with respect to memory, says IDC analyst Daniel Harrington.
The recession may have forced Media General Inc. to scale back its grand plans for server virtualization in 2009, but like many other businesses, the communications company is planning a major push to make up lost ground this year. "Pretty much everything is being virtualized," says Mike Miller, director of information security, who oversees virtualization and server standards.
Media General has already consolidated by converting 250 servers into virtual machines running on 19 physical machines. Miller says he hopes to convert a big chunk of the other 400 servers this year. Other IT executives say they're ramping up virtualization efforts of their own. As virtualization hits the tipping point, it's redefining server requirements for 2010.
In Computerworld's 2010 Forecast survey, 64% of 312 professionals polled said that their organizations are likely or very likely to virtualize more servers in 2010. How many more? Gartner Inc. estimates that 55% of all new workloads will be deployed on virtual servers this year, up from 40% in 2009. The research firm predicts that by the end of this year, 24% of all workloads will be running virtually. Overall, IDC projects server shipments to hit 6.9 million this year, about 6% higher than in 2009 but 16% lower than in 2008, when shipments peaked at 8.1 million. Because of virtualization, servers shipping this year will be more heavily configured than they were in the past, especially with respect to memory, says IDC analyst Daniel Harrington.
Monday, December 28, 2009
Apple almost reaches market parity with Google, Wal-Mart
NEW YORK: With a huge Christmas-eve surge in its stock Thursday, Apple Inc. has almost reached market parity with Google and Wal-Mart.
The 3.4 percent or $6.94 rise in Apple's stock during the day took its market value to $188 billion. The Apple stock sold for $209.04, surpassing the previous high of $207 last month. The stock surge brought Apple within striking distance of Google Inc. ($196 billion) and Wal-Mart ($204 billion).
The Cupertino-based (California) software manufacturer is already ahead of IBM Corp. ($171 billion) and General Electric ($164 billion) in market valuation. The spurt in its stock has been fuelled by the speculation that the company is set to unveil an Apple tablet computer next month. The new device, which could be called iPad, will be a cross between the iPhone and the Kindle reading device.
The New York Times said Wednesday that "there are too many signs that point in this direction'' of the Apple tablet.
Sunday, December 20, 2009
Windows 7
Why you should buy Windows 7?
I have been using Windows 7, officially, for a couple of months now and I am still somewhat staggered by the vast improvement over Windows Vista. Here's why.
Setting up the operating system uses the same user interface as Windows Vista. However, it's only when you begin to install, that you realise that it is indeed a much faster process this time around when choosing to do a full install rather than an upgrade (which many users with larger hard drives claimed it took 24 hours to do!). Microsoft have taken some flak for their upgrade procedures with there being so many different versions of the software, making it extremely difficult for some users to know where to begin. However, with a fresh install, nothing could be simpler and I was up and running in roughly 15 minutes.
After the install you are left with the traditional windows problem of having no third party software such as anti-virus, video/audio players etc. However, a useful site called Ninite helped me with that by creating a batch installer for all of your favourite free applications such as AVG, iTunes and Firefox. So as it was, I was using Windows 7 hassle free within a few minutes.
In terms of features, Windows 7 has its fair few. The majority of them are not only good aesthetically, but they most definitely increase your means to be productive and efficient. The first of these is the new 'superbar' as they have so aptly named it. This is of course, the replacement for the old taskbar. In truth, it is not all that different; however they have added the capability to add shortcuts to the superbar. This not only makes it easy to locate and use all of your commonly used programs quickly and easily with just 1 click, it also keeps your desktop from being excessively cluttered with icons. A truly great addition to the operating system.
Next up, are the new features in Aero, Windows' graphically demanding theme which was present, but very limited in Vista. Firstly, Aero Peek allows you to hover over a running application on the superbar and interact with preview windows that appear above. You can shift between tabs on a web browser or conversations on your instant messenger. Secondly, Aero Snap, this allows you to drag your open windows to the outside of the screen in order to easily position them neatly. Dragging your windows to the left or right edges causes them to snap and fill the respective half of the screen. This can be used on multiple monitors as well. Lastly, is Aero Shake. This is an interesting feature which basically allows you to minimize any unwanted windows by shaking the one that you want to keep open. Basically, it's just a simple clean up feature. There is also a small button placed at the extreme bottom right of the screen which allows users to view their desktop by hovering, or minimizing everything by clicking.
Windows 7 also has great touch screen capability and this was one of the main selling points behind the operating system. Tablet PC's benefit hugely from running windows 7 as it allows you to use multi-touch technology to view/edit photos, browse the web and even type on a simple onscreen keyboard.
Microsoft have also revamped Paint for the first time in I don't know how long. It now has extra features such as textured brushes: chalk, paint, pencil etc. and a new layout. I would say it now feels very much like part of Microsoft Office, rather than a simple drawing tool that not many ever use for anything productive. Moreover, the addition of simple applications such as the snipping tool make Windows 7 easier. This basically allows any user to simply cut a portion of a screenshot and save it as an image in any format extremely quickly. Very impressive.
Yet another addition is the ability for slideshows replacing your standard desktop wallpaper. This negates the need for a screen saver if you wish to have a rapidly rotating desktop. It is a simple process to set up and is built into the themes section of Windows 7 which incidentally, is another nice touch. When you first run Windows 7 for the first time, you are given multiple themes based on individual countries' landmarks. Usually this will include USA, UK, Canada and a few others depending on where you are from in the world. More can be downloaded free of charge from the download section of Microsoft's website.
A more technical feature that is available in Windows 7 is the ability to boot from multiple cores of your processor. Basically this means that if you have a dual or even quad core CPU in your PC which the majority of modern ones will, you can decrease the time it takes to boot by selecting however many cores you wish to boot from.
Overall, Windows 7 is a great upgrade from Vista or XP. In my opinion it is everything Vista should have been. An all round great OS that will not only speed up your PC if upgrading from Vista, it will run seamlessly on less capable PC's most notable netbooks. I am extremely impressed with Windows 7, it is enjoyable to use as well as functional. I cannot recommend it strongly enough to anyone who is still using the laggy Vista release from a few years ago. Personally, I have grown tired with XP over the years, but there are still those who like the compatibility. Not to worry, the professional edition of Windows 7 comes with built in 'XP mode' which is capable of running any of your applications natively. That's why Windows 7 is for everyone.
I have been using Windows 7, officially, for a couple of months now and I am still somewhat staggered by the vast improvement over Windows Vista. Here's why.
Setting up the operating system uses the same user interface as Windows Vista. However, it's only when you begin to install, that you realise that it is indeed a much faster process this time around when choosing to do a full install rather than an upgrade (which many users with larger hard drives claimed it took 24 hours to do!). Microsoft have taken some flak for their upgrade procedures with there being so many different versions of the software, making it extremely difficult for some users to know where to begin. However, with a fresh install, nothing could be simpler and I was up and running in roughly 15 minutes.
After the install you are left with the traditional windows problem of having no third party software such as anti-virus, video/audio players etc. However, a useful site called Ninite helped me with that by creating a batch installer for all of your favourite free applications such as AVG, iTunes and Firefox. So as it was, I was using Windows 7 hassle free within a few minutes.
In terms of features, Windows 7 has its fair few. The majority of them are not only good aesthetically, but they most definitely increase your means to be productive and efficient. The first of these is the new 'superbar' as they have so aptly named it. This is of course, the replacement for the old taskbar. In truth, it is not all that different; however they have added the capability to add shortcuts to the superbar. This not only makes it easy to locate and use all of your commonly used programs quickly and easily with just 1 click, it also keeps your desktop from being excessively cluttered with icons. A truly great addition to the operating system.
Next up, are the new features in Aero, Windows' graphically demanding theme which was present, but very limited in Vista. Firstly, Aero Peek allows you to hover over a running application on the superbar and interact with preview windows that appear above. You can shift between tabs on a web browser or conversations on your instant messenger. Secondly, Aero Snap, this allows you to drag your open windows to the outside of the screen in order to easily position them neatly. Dragging your windows to the left or right edges causes them to snap and fill the respective half of the screen. This can be used on multiple monitors as well. Lastly, is Aero Shake. This is an interesting feature which basically allows you to minimize any unwanted windows by shaking the one that you want to keep open. Basically, it's just a simple clean up feature. There is also a small button placed at the extreme bottom right of the screen which allows users to view their desktop by hovering, or minimizing everything by clicking.
Windows 7 also has great touch screen capability and this was one of the main selling points behind the operating system. Tablet PC's benefit hugely from running windows 7 as it allows you to use multi-touch technology to view/edit photos, browse the web and even type on a simple onscreen keyboard.
Microsoft have also revamped Paint for the first time in I don't know how long. It now has extra features such as textured brushes: chalk, paint, pencil etc. and a new layout. I would say it now feels very much like part of Microsoft Office, rather than a simple drawing tool that not many ever use for anything productive. Moreover, the addition of simple applications such as the snipping tool make Windows 7 easier. This basically allows any user to simply cut a portion of a screenshot and save it as an image in any format extremely quickly. Very impressive.
Yet another addition is the ability for slideshows replacing your standard desktop wallpaper. This negates the need for a screen saver if you wish to have a rapidly rotating desktop. It is a simple process to set up and is built into the themes section of Windows 7 which incidentally, is another nice touch. When you first run Windows 7 for the first time, you are given multiple themes based on individual countries' landmarks. Usually this will include USA, UK, Canada and a few others depending on where you are from in the world. More can be downloaded free of charge from the download section of Microsoft's website.
A more technical feature that is available in Windows 7 is the ability to boot from multiple cores of your processor. Basically this means that if you have a dual or even quad core CPU in your PC which the majority of modern ones will, you can decrease the time it takes to boot by selecting however many cores you wish to boot from.
Overall, Windows 7 is a great upgrade from Vista or XP. In my opinion it is everything Vista should have been. An all round great OS that will not only speed up your PC if upgrading from Vista, it will run seamlessly on less capable PC's most notable netbooks. I am extremely impressed with Windows 7, it is enjoyable to use as well as functional. I cannot recommend it strongly enough to anyone who is still using the laggy Vista release from a few years ago. Personally, I have grown tired with XP over the years, but there are still those who like the compatibility. Not to worry, the professional edition of Windows 7 comes with built in 'XP mode' which is capable of running any of your applications natively. That's why Windows 7 is for everyone.
Subscribe to:
Posts (Atom)