Secunia Security Advisory – A weakness has been discovered in PHPBoost, which can be exploited by malicious people to disclose sensitive information.

continue reading.....

Secunia Security Advisory – SUSE has issued an update for libxml2. This fixes a vulnerability, which can be exploited by malicious people to cause a DoS (Denial of Service) or potentially compromise an application using the library.

continue reading.....

Social networking company myYearbook this morning announced it has acquired five new Android apps to support its mobile strategy and grow its team. In addition, the company acquired FlockEngine, which powers multiplayer games on Android phones.
The acquisitions include Toss It, Tic Tac Toe (both of which are among the top 30 most downloaded free Android [...]

continue reading.....

Because I wrote a three star review of the first edition of The Book of Pf by Peter N.M. Hansteen, Amazon.com won’t allow me to write a review of the second edition. So, I added the following comment to my old review indicating that I think the second…

continue reading.....

[Marcus] wrote a guide to using TouchOSC to control your projects. He sent a link to us after reading our feature about using Open Sound Control for Arduino without an Ethernet shield. He’s been using that method for quite some time now, but takes it one step further by using a smartphone as a control [...]

continue reading.....

Exclusive – Munich, Germany-based social games developer and publisher MegaZebra has secured ‘multiple millions of euros’ in its latest round of financing led by Doughty Hanson Technology Ventures. Previous backer Kizoo Technology Ventures also parti…

continue reading.....

bzip2 ‘BZ2_decompress’ Function Integer Overflow Vulnerability

continue reading.....

Network World has published an article claiming that Samsung Electronics installs Windows keyloggers on their laptops by default. This caused an uproar, as even Samsung support appeared to confirm this, saying that the commercial StarLogger key…

continue reading.....

Pligg CMS Multiple Security Vulnerabilities

continue reading.....

Security Horizon (http://www.securityhorizon.com/ISAM.php). The ISAM, which was formerly the NSA-IAM\IEM, course has now been merged into a combined 3-day, 24-hour course.

The ISAM was created by examining the processes and techniques implemented wi…

continue reading.....

SMH: Samsung denies shipping laptops with secret spyware

continue reading.....

I just uploaded a new version of systemd into F15, which establishes adirectory /run in the root directory. Most likely you’ll sooner or laterstumble over it, so here’s an explanation what this is and why this is.

continue reading.....

Secunia Security Advisory – A security issue has been reported in VMware Workstation, which can be exploited by malicious, local users to gain potentially escalated privileges.

continue reading.....

Secunia Security Advisory – Debian has issued an update for mahara. This fixes two vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and by malicious people to conduct cross-site request forgery attacks.

continue reading.....

Secunia Security Advisory – Oracle has acknowledged two vulnerabilities in Solaris, which can be exploited by malicious people to manipulate certain data and cause a DoS (Denial of Service).

continue reading.....

Secunia Security Advisory – Fedora has issued an update for wordpress. This fixes multiple vulnerabilities, which can be exploited by malicious users to conduct script insertion attacks and disclose potentially sensitive information and by malicious pe…

continue reading.....

The latest major revision to the Qt-based Krita painting application was released in late December, although due to the calendar timing and its packaging within a large KOffice release, it did not garner the attention it probably deserved. That was ver…

continue reading.....

So, there I was, sitting at TCHQ, discussing the recent Vanity Fair article about Jack Dorsey — and the ridiculous bluebird-on-the-shoulder picture that accompanied it.

Keen to track down the image itself, I typed Dorsey’s name into Google’s predictive image search box.

Here’s what came up…

continue reading.....

President Obama seems to understand the role that startups play and the contribution that skilled immigrants make to U.S. economic growth. He has talked a lot about the importance of science and engineering, and expressed fears that, unless we improve our game, China and India will out-innovate us. He even visited Silicon Valley recently to talk to its elite. And he has had his Chief Technology Officer, Aneesh Chopra, make several trips here to the Valley.

I commend the President for putting a spotlight on entrepreneurship with his Startup America initiative; but I can’t help wondering whether this is just a giant press release. It needs more substance: a way for foreign-born entrepreneurs to start companies here and a leveling of the playing field for entrepreneurs wanting to solve government problems.

I debated this with Aneesh Chopra, at the Economist Innovation Summit in Berkeley, last week.

continue reading.....

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Alert Management System.

continue reading.....

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Alert Management System.

continue reading.....

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Novell GroupWise.

continue reading.....

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Alert Management System.

continue reading.....

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of the Java Runtime Environment.

continue reading.....

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Symantec Alert Management System.

continue reading.....

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Oracle Java.

continue reading.....

Almost exactly one year ago (their birthday is tomorrow), WePay launched its group payment platform to the public. The goal was simple: give people an easy way to divvy up bills, member dues, and other common transactions with an integrated payment system and easy reminders to nudge those fraternity members who haven’t paid their dues yet. The service is also handy for selling tickets and collecting donations.

In light of the occasion, WePay is starting to talk about some of its numbers (albeit vaguely). WePay CEO Bill Clerico says that in the last three months, the service’s engagement numbers have surged from around 5,000 users per week to 25,000 per week. These users aren’t just visiting the site — they’re actually taking substantive action, like sending bills. He attributes this growth to optimizations the site has recently made to its sharing flows on Twitter, Facebook and its emails. He also says that WePay has drawn a lot of new users from referrals.

continue reading.....

Bruce Byfield reviews Bodhi Linux.

continue reading.....

BuzzFeed and Huffington Post co-founder Jonah Peretti talked at Web 2.0 Expo today about the much misunderstood subject of how to make something go viral (no it’s not all about cats and bacon). Peretti began the talk running through his various early experiments in virality and what they taught him about why content spreads.

As part of his theory as to why content that elicits a reaction from users has more of a penchant for going viral, Peretti contrasted Google and Facebook in terms of their approaches to information.

continue reading.....

continue reading.....