VUPEN Security Research – Adobe Acrobat and Reader "pushstring" Memory Corruption Vulnerability (CVE-2010-2201)

continue reading.....

Wired: ACLU Study Highlights U.S. Surveillance Society

continue reading.....

The HURD was meant to be the true kernel at the heart of the GNU operating system. The promise behind the HURD was revolutionary – a set of daemons on top of a microkernel that was intended to surpass the performance of the monolithic kernels of trad…

continue reading.....

[Nirvous] managed to get composite video out working on the DIDJ. He knew that the CPU had the ability to generate the signal, and that similar devices already had this capability. After studying some DIDJ teardowns he figured out which connection on the processor should provide the appropriate signal. Next was the firmware side of [...]

continue reading.....

Adobe Acrobat and Reader ‘newfunction’ Remote Code Execution Vulnerability

continue reading.....

KVIrc DCC Directory Traversal and Multiple Format String Vulnerabilities

continue reading.....

Adobe Acrobat and Reader CLOD Remote Memory Corruption Vulnerability

continue reading.....

Oxygen Bulletin Board ‘member.php’ SQL Injection Vulnerability

continue reading.....

KontrolPack is a cross-platform network controller. You can manage your computers and execute the same shell commands on them regardless of the operating system. On top of this, it provides an easy interface that can be used to view your LAN activity a…

continue reading.....

(Posted 30 Jun 2010 by Ray)

continue reading.....

(Posted 30 Jun 2010 by Ray)

continue reading.....

Regular Hackaday reader [Osgeld] is at it again with this USB conversion for an NES controller. This is a ubiquitous hack that we started seeing very early on, sometimes involving an adapter kit, and other times including things like a thumb drive and USB hub. But this time around is truly a bare-bones version. He’s using [...]

continue reading.....

Install Linux Without Burning An ISO To CD/DVD – Use The ISO
Downloaded To Your Hard Drive

I am describing here a method to install Linux without using a DVD ROM
or CD Drive; I have checked it myself.
There are many ways to do so
you can install Lin…

continue reading.....

[Matt Meerian] introduced us to his kludge of cardboard, tape, mirrors, and electronics in the form of a clever non lethal robin trap. Whenever a pesky robin would enter the box, a sensor is triggered, the solenoid drops a lid, and the bird is contained (and we assume taken far away after that). Of course [...]

continue reading.....

Jarno Niemelä from our lab did a study on malicious Windows binaries that have been signed (with Microsoft Authenticode).Turns out, we have copies of tens of thousands of malware samples that have been signed.Malware authors are attempting to …

continue reading.....

The cloud values Internet-based computing above all else, but maybe the comprehensive flexibility of FOSS (Free and Open Source Software) would provide a better vision for the future of computing?

continue reading.....

With the way the RogueAv teams are using SEO to poison search results one of the isc.sans …(more)…

continue reading.....

Secunia Research has discovered a vulnerability in TaskFreak, which can be exploited by malicious people to conduct SQL injection attacks. Input passed via the password parameter to login.php (when username is set to a valid user) is not properly s…

continue reading.....

Cross-platform efforts to provide interoperability with Windows on Linux systems may cease to be of importance in future as the acceptance of alternative OSes widens, say industry watchers. Linux users have relied on various methods to access Windows p…

continue reading.....

Mobile ad network AdMob (now part of Google) released its final Mobile Metrics report today (embedded below), at least for a while. AdMob gathers data from millions of phones and mobile devices which serve up its ad impressions, including almost 44 million iOS devices (iPhones, iPod Touches, and iPads). The decision to stop disclosing the data may have something to do with its new owner, Google, wanting to assess what it wants to let out there, but it could also be tied to the fact that AdMob might no longer have access to any iPhone data since Apple is specifically threatening to block it.

Whatever the reason, AdMob’s reports have proven to be a rich source of data on the mobile Web across platforms since mobile ad impressions on the mobile Web and in mobile apps are a decent proxy for mobile Web/app usage overall. So let’s dig in.

Over the past two years, mobile ad impressions from smartphones have grown from 22 percent of the total to 46 percent in May, 2010.  Apple iOS devices account for the largest portion worldwide, with 40 percent share. But as you can see in the chart above, that share has been declining since it peaked above 50 percent in November, 2009.  Over that time, Android has been steadily taking share, rising to 26 percent.

continue reading.....

This guest post is by Eric Schwamberger, President, Zezza Network. Zezza helped the staid old whiskey brand, Canadian Club, create an online game called the Canadian Club Hide A Case contest. It’s an interesting look at how to build engagement without resorting to retweets.

When leveraged correctly, social media is an undeniably powerful tool for contest promotion. It’s important to strike the right balance between contest promotion and organic conversation. Consumers want to feel they are part of something, not just on a list with numerous other people. Facebook is a great place for brands to help create a real connection with their consumers, and, in turn, create valuable loyalists.

Through our experience we’ve identified a few simple strategies and considerations that nearly all successful contest-focused social media campaigns have in common.

continue reading.....

Mobile applications discovery and sharing service provider Appsfire has just launched a new product called AppTrends, which essentially delivers near real-time rankings of iPhone apps based on the chatter on Twitter.

Rankings – currently limited to the top 20 apps on the website – are based on what Appsfire determines are noteworthy items in the App Store virtually in real-time. Appsfire crawls Twitter for links to iPhone apps, regardless of whether the iTunes URLs are shortened or not, and determines which apps are hot and which are not based on their popularity on the micro-sharing service.

continue reading.....

SANS: How to be a better spy – Cyber security lessons from the recent russian spy arrests

continue reading.....

For the past 12 hours, over 1000 Twitter accounts have been hacked with an unknown method.The symptoms are always the same; the account is used to broadcast the phrase “Hacked By Turkish Hackers”. Here’s a sample search via search.twitter.com.A…

continue reading.....

A guest post from Mårten Mickos in response to Simon Phipps’s statement of opposition to so-called “open core” models. Mickos argues that “for an open source company to become commercially successful, it needs to have an unfair advantage against its c…

continue reading.....

It was over six weeks ago that rumors, later confirmed as true, circulated stating that Mandriva’s financial situation was so dire that it was considering buy-out offers to try to avoid having t…

continue reading.....

The Register: Google Chrome will block out-of-date plug-ins "Google will soon prevent insecure versions of plug-ins from running on top of its Chrome browser to make sure they don’t contain security bugs that can be exploited by malicious websites…

continue reading.....

It’s common knowledge that Linux has a fair number of file systems. Some of these are unappreciated and can be very useful outside their "comfort zone". OCFS2 is a clustered file system initially contributed by Oracle and can be a great back-end file system for general, shared storage needs.

continue reading.....

Tuesday’s Daily Show started out with a mash-up of Republicans trying to exonerate George W. Bush in all ways, shapes and forms. Apparently Dubya can’t be held responsible for any of the problems that Obama inherited — not the wars Bu…

continue reading.....

[Dustyn Roberts] takes us through the process of designing gears for a specific application. Using Inkscape and Ponoko.com [Dustyn] takes us from equation to physical gear. While there is a plugin for Inkscape that allows you to basically drag and drop gears, this writeup will take you through the math to get exactly what you [...]

continue reading.....