h3xc0d3: The digital world of 0 and 1

The volume of personal information on the internet is making the use of personal security questions a far less effective protection method.

Gary Warner, director of computer forensics research at the University of Alabama, Birmingham, outlined new risks which had surfaced in the aftermath of the Sarah Palin email attack.

Warner said in a blog posting that the attack shows just how simple it can be to obtain information to foil the ‘personal information’ questions used by many web services.

The questions are intended to ensure that only the intended user can reset an account password. Users are asked information that a stranger would not know, such as zip code or pet’s name.

As users put more of their lives online through the use of social networking and personal sites, however, more of that once-personal information is becoming publically available.

Warner pointed out that the information used by suspected hacker David Kernell to access the Yahoo mail account of Alaska governor and vice-presidential candidate Sarah Palin was found through a few Google searches.

Authorities have since tracked down Kernell’s surfing history in performing the attack and recently raided his apartment.

Kernell was able to obtain Palin’s zip code and birth date through a search, and figured out where she met her husband through online biographical information.

Those three pieces of information were then used to reset Palin’s password and access her account.

Firefox 3.0.1 was released on 16th July 2008.

Firefox 3.0.1 fixed several issues found in Firefox 3.

• Fixed the crash with malformed GIF file on Mac OS X.
• Fixed the command-line URLs launch multiple tabs when Firefox not running.
• Fixed the remote code execution by overflowing CSS reference counter.
• Fixed several stability issues.
• Fixed an issue where the phishing and malware database did not update on first launch.
• Under certain circumstances, Firefox 3.0 did not properly save the SSL certificate exceptions list.
• Updated the internal Public Suffix list.
• In certain cases, installing Firefox 2 in the same directory in which Firefox 3 has been installed resulted in Firefox 2 being unstable. This issue was fixed as part of Firefox 2.0.0.15.
• Fixed an issue where, when printing a selected region of content from the middle of a page, some of the output was missing.
• Fixed a Linux issues where, for users on a PPP connection (dialup or DSL) Firefox always started in “Offline” mode.

Now, you can get Ubuntu t-shirt. Currently only available in black colour. With only RM30 you can get yourself a Ubuntu t-shirt (price included poslaju).

Front:

Back:

How to order? Check here for more info.

Symantec announced that it is strengthening its partnership with the Malaysian government and industry players through its involvement in the International Multilateral Partnership Against Cyber-Terrorism (IMPACT). IMPACT is the first global public-private initiative against cyber-terrorism, which drives collaboration among governments, industry leaders and cyber-security experts to enhance the global community’s capacity to prevent and respond to cyber-threats. The inaugural meeting of the IMPACT International Advisory Board is taking place today in Kuala Lumpur, Malaysia, as a part of the IMPACT World Cyber Security Summit.

WinDVD from Corel (InterVideo) supports playback of Blu-Ray (BD) disc and is normally categorized as commercial software based high definition optical disc video player and music player.

As with DVD region code concept, Blu-ray Discs also can be encoded with a region code which restrict the area of the world in which they can be played, and WinDVD software player supports and imposes such as geographical restriction too.

WinDVD will ask users to enter their region to set the appropriate region code on first use, and subsequently users will only have a maximum of 5 more time to change the preset region code. For users who own many Blu Ray movie disc from many regions, the limitation is annoying. Don’t you agree with me?

Here is how to reset the counter of allowed number of times to reset region code on Blu Ray disc playback (so far it works on WinDVD Platinum for Sony VAIO version 8.0.08.100).

1. Download Autoruns program from here or mirror site.
2. Run autoruns.exe.
3. Click on Drivers tab and untick the check box next to regi (regi.sys) to disable the driver.
4. Restart Windows.
5. Delete file ivireg.ivr in C:\Windows\System32\ folder.
6. Run autoruns.exe again, then re-enable regi driver using by ticking the checkbox next to it.
7. Restart computer again. After restarted, the “ivireg.ivr” file will be recreated with default settings and you can change BD region from WinDVD interface 5 more times before you have to repeat this procedure.

Tired of waiting the computer to shutdown? Now you can force it to shutdown in 5 seconds.

1. Right click on the taskbar and click on Task Manager.
2. Click on Shutdown.
3. Hold on the Ctrl key while you click on Turn Off.

Now you just count from 1 to 5 and your computer will be turn off.

Detection of a trojan named Downloader-UA.h was added to the McAfee DAT files several days ago. Since that time more than 360,000 McAfee VirusScan Online users have reported detections, a whopping 32% of those reporting in the past 24 hours alone. Now Downloader-UA.h is not your everyday trojan, this detection covers fake music and video files associated with fastmp3player.com.

When a user attempts to load one of these MP3 and MPG files, they don’t get the music/video they were hoping for; instead they’re directed to download a file named PLAY_MP3.exe. In fact, the MP3/MPG file they downloaded was completely fake, playing no media clip what so ever.

Here are some of the samples names that we’ve seen. Many many other file names are surely floating around on P2P networks. File sizes vary as these files are padded with nulls.

• preview-t-3545425-adult.mpg
• preview-t-3545425-changing times earth wind .mp3
• preview-t-3545425-girls aloud st trinnians.mp3
• preview-t-3545425-heartbroken fast t2 ft jodie.mp3
• preview-t-3545425-jij bent zo jeroen van den.mp3
• preview-t-3545425-paralyized by you.mp3
• preview-t-3545425-say it right remix.mp3
• preview-t-3545425-theme godfather.mp3
• t-3545425-dx vs randi orton 2007.mpg
• t-3545425-just got lucky.mp3
• t-3545425-lion king portugues.mpg
• t-3545425-peanut butter jelly amende.mp3
• t-3545425-wayne and jane.mp3

If users agree to download and run PLAY_MP3.exe (detected as Generic PUP.a with McAfee DAT files) a 4,800 word EULA is displayed.

Does END OF DOCUMENT mean you can ignore the rest? Gotta love it when a “vendor” expects their “customers” to read a EULA that they themselves did not seem to read!

If you agree to the EULA and choose to proceed, Adware “FBrowsingAdvisor” and “SurfingEnhancer” is installed as described in the EULA. I especially like the directory named used by the developer:

c:\Documents and Settings\tani\My Documents\Dreamsoft\Firefox\firefox_adware\FF-Source\Source\Release\XPCOMEvents.pdb

If Firefox is not installed users may see an error message:

PlayMP3.exe from PlayMP3z.biz is installed, which is simply a browser control wrapped in an exe, and doesn’t actually play local MP3 files, but rather loads a webpage running the Wimpy MP3 Flash player. This page lets the user listen to a canned selection of a couple dozen songs.

In the end you’re left with a fake MP3 file taking up space, a worthless MP3 player, adware that claims not only to not display popups, but also to block them, and more adware that successfully displays popup and popunder ads.

Ladies and getlemen, I proudly announce that we have moved to new hosting.

I will no longer updating the old blog. I forgotten the password and even forgotten the GMail password. This is damn silly because I got too many password to remember.