blog trackingRealtime Web Statistics Windows Archives - Page 8 of 12 - Gregory D. Evans | Worlds No. 1 Security Consultant

Posts Tagged ‘Windows’

Windows 8 May Prompt Malware Attacks on Hardware, McAfee Predicts

Security features in Windows 8 will discourage operating-system attacks and drive hackers to develop malware that compromises hardware directly, according to McAfee’s security predictions for 2012.

“Advances in the Windows 8 bootloader security feature have already caused researchers to show how they can be subverted through legacy BIOS,” McAfee says in its “2012 Threats Predictions, “meanwhile, the product has not even been fully released yet.”

At the same time Intel is developing its unified extensible firmware interface that is meant to enforce secure booting, which will further prod attackers into designing malware that evades these new protections, the report says.

MORE SECURITY: Twitter to open source Android security tech

“We will keenly watch how attackers use these low-level functions for botnet control, perhaps migrating their control functions into graphics processor functions, the BIOS, or the master boot record,” the report says. “In spite of our efforts to thwart their ambitions, attackers clearly see the value and power of attacking hardware and moving outside of traditional operating-system attacks.”

Attacks on mobile devices will also gain more attention from adversaries as the devices are used more to conduct financial transactions and become repositories of valuable information, McAfee says.

With PCs, attackers have effectively infiltrated banking applications, and the same will happen with banking apps on phones, the report says. “Attackers have adapted quickly to every change intended to secure banking on PCs. As we use our mobile devices ever more for banking, we will see attackers bypass PCs and go straight after mobile-banking apps,” the report says.

To gain better control of mobile devices, attackers will take advantage of rooting tools that legitimate customers use to add more features to their phones.

“Attackers have already used old root exploits to hide themselves; as new exploits are developed, attackers will eventually install their own custom firmware,” the report says.

Virtual currency operations such as Bitcoin will come under increasing attack in the coming year, McAfee says, because the virtual wallets where transactions take place are public and unencrypted – making them ideal for attacks from Trojans.

And a formal business structure, similar to what has grown up around botnets, will develop to streamline the violation of virtual currencies. “We expect to see this threat evolve into a cottage industry of cybercrime next year,” McAfee says, “with spam, data theft, tools, support networks, and other associated services dedicated solely to exploiting virtual currencies.”

Attacks against supervisory control and data acquisition (SCADA) systems have been proven and administrators of these systems need to take the threat seriously, McAfee says. There has been enough proof – particularly via Stuxnet – that cyber attacks can cause physical damage, so steps should be taken to reduce that likelihood.

“It’s time for extensive penetration testing and emergency response planning that includes cybercomponents and networking with law enforcement at all levels,” the report says. “They must ask themselves: What happens when we are targeted?”

Other predictions:

  • Hacktivists will integrate their protests with physical protests by demonstrators to assert more focused political pressure.
  • Cyber war demonstrations, if not actual attacks, will take place if for no other reason than as a deterrent to demonstrate how destructive they could be.
  • Further compromises of SSL certificates will reduce confidence in certificate authorities.
  • Traditional spam will wane as legal entities that accomplish essentially the same goals gain favor.

Read more about wide area network in Network World’s Wide Area Network section.

Article source: http://www.pcworld.com/article/246775/windows_8_may_prompt_malware_attacks_on_hardware_mcafee_predicts.html

View full post on National Cyber Security » Virus/Malware/Worms

Windows Administrator (SSE) – US / Rackspace / Austin, TX

Windows Administrator (SSE) – US / Rackspace / Austin, TX, Blog, Windows, Rackspace, Administrator, AustinRackspace/Austin, TX

Job Details

Windows Administrator (SSE) – US – 14827

This details all the information about the job posting. To submit your résumé/CV, click on the 'Submit your Résumé/CV to this Job' button.

Show Instructions
Job TitleWindows Administrator (SSE) – US
Category Database Administration
Requisition # 14827
Location US-TX-Austin Austin, TX 78754, US
Education Bachelor's Degree
Job Type Full-time
Shift/Hours
Travel Required 0
Job Description

A Senior System Administrator is a key element within the Rackspace support infrastructure and is expected to provide a high level of technical support to our customers over the phone and via support tickets. A Senior System Administrator is the owner of complex customer issues which may take several days or weeks to resolve. The SSE applies create problem-solving techniques to identify the source of problems; while at the same time keeping the customer aware of every step along the way via the ticketing system. A Senior System Administrator is expected to use imitative and advise on potential pitfalls that a customer may experience, using existing or planned methods, and suggest alternatives that may better serve the stability and security of the customer’s solution.

Proposes and implements system enhancements (software and hardware updates) that will improve the performance and reliability of the system. Manages the load configuration of a central data communication processor and makes recommendations for purchase or upgrade of data networks. Coordinates terminal orders, network system planning, upgrading, monitoring, testing and servicing.

Defines, designs and implements network communications and solutions using the Windows system. Responsible for solving customer's technical issues which can include OS level, webserver, database server, applications server, DNS, SMTP or other software issue.

Responsibilities:

- Expert troubleshooting of the Windows OS, IIS, SQL and other applications.
- Provides consulting service to customer on building solutions to meet customer needs.
- Responsible for technical aspect of customer visits both in the office and at customer locations, includes presentations.
- Ensures customer satisfaction with follow ups.
- Handles level-appropriate customer support requests via the ticket system.
- Creates and maintains customer loyalty by serving customers above and beyond their expectations.
- Exercises judgment in decision-making in order to routinely deliver FANATICAL customer support.
- Due to the 24×7 operations of the business, must be able to work a flexible work schedule, may include nights, weekends, holidays, etc.

Job Requirements

The ideal candidate will have the following:

- Uses skills as a seasoned experienced professional with a full understanding of industry practices and company policies and procedures; resolves a wide range of issues in imaginative as well as practical ways.
- Excellent knowledge of Windows 2000/2003 server, IIS 5 & 6, active directory, DNS, SMTP, and TCP/IP.
- Excellent knowledge of DNS, including diagnostics with Windows system tools.
- Continually expands knowledge in the areas of new developments and trends; may make recommendations to management on desirable additions and developments.
- MCSA or MCSE certification preferred.
- Requires 8 years experience in systems administration or related field.
- Bachelor’s degree in computer science or engineering related field or equivalent work experience, preferred.
- Able to touch type 50 – 60 wpm.
- Excellent ability to handle multiple tasks and prioritize work in order to maintain required productivity levels.
- Must be detailed in documenting information and practice good follow through techniques.
- Excellent problem solving abilities, coupled with a desire to take on responsibility.
- Possesses excellent written and verbal communication skills; bi-lingual skills is a plus.

Rackspace, a world leader in hosting delivers enterprise-level managed hosting, cloud hosting, and e-mail hosting services to businesses of all types and sizes globally. Today we serve thousands of customers from data centers around the world. Rackspace integrates the industry's best technologies and practices for each customer's specific needs delivering it as a service via the company's commitment to Fanatical Support®. We serve as an extension of our customers' IT departments enabling them to focus on their core business. Rackspace was founded in 1998 and since then has had significant growth year after year. There are now over 4,000 Rackers employed worldwide dedicated to providing customers our premier hosting services.

Rackspace Hosting is an Equal Opportunity Employer

The above information has been designed to indicate the general nature and level of work performed by employees in this classification. It is not designed to contain or to be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of the employee assigned to this job.
Skills
Type of Job(-US Only) 0

Apply To Job

View full post on Wired Jobs

View full post on National Cyber Security

Windows Administrator II – Emerging / Rackspace / San Antonio, TX

Windows Administrator II – Emerging / Rackspace / San Antonio, TX, Blog, Windows, Rackspace, Administrator, Antonio, EmergingRackspace/San Antonio, TX

Job Details

Windows Administrator II – Emerging – 14567

This details all the information about the job posting. To submit your résumé/CV, click on the 'Submit your Résumé/CV to this Job' button.

Show Instructions
Job TitleWindows Administrator II – Emerging
Category Information Technology
Requisition # 14567
Location US-TX-San Antonio-DP San Antonio, TX 78229, US
Education Bachelor's Degree
Job Type Full-time
Shift/Hours
Travel Required 0
Job Description

We are looking for a Windows System Administrator II who will be a key element within the Rackspace support infrastructure and is expected to provide a high level of technical support to our customers over the phone and via support tickets.The Administrator applies creative problem-solving techniques to identify the source of problems; as well as keeping the customer aware of every step along the way via the ticketing system. A System Administrator is expected to use initiative and advise on potential pitfalls that a customer may experience, using existing or planned methods, and suggest alternatives that may better serve the stability and security of the customer’s solution.

Responsibilities:

- Validate monitoring alerts, create support tickets as required and execute predefined troubleshooting instructions
- Create Active Directory users, OU groups, and understand how to apply NTFS and share level permissions
- Perform routine maintenance tasks (servers reboots, user maintenance and service restarts)
- Route tickets to applicable departments
- Perform documented server maintenances
- Audit customer configurations

Job Requirements

The ideal candidate will have the following:

- Understanding of networking technology fundamentals
- General understanding of Active Directory, IIS and DNS
- Understands concepts of E-mail, clustering and databases
- Understands purpose of Firewalls and Load Balancers, VPN and SSL technologies
- Demonstrates basic problem solving abilities and possesses effective communication skills
- Bachelors degree in computer science or engineering related field or equivalent work experience, preferred
- Requires at least 2-4 years working in a computer technical field

Rackspace, a world leader in hosting delivers enterprise-level managed hosting, cloud hosting, and e-mail hosting services to businesses of all types and sizes globally. Today we serve thousands of customers from data centers around the world. Rackspace integrates the industry's best technologies and practices for each customer's specific needs delivering it as a service via the company's commitment to Fanatical Support®. We serve as an extension of our customers' IT departments enabling them to focus on their core business. Rackspace was founded in 1998 and since then has had significant growth year after year. There are now over 3,000 Rackers employed worldwide dedicated to providing customers our premier hosting services.

Rackspace Hosting is an Equal Opportunity Employer

The above information has been designed to indicate the general nature and level of work performed by employees in this classification. It is not designed to contain or to be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of the employee assigned to this job.
Skills
Type of Job(-US Only) 0

Apply To Job

View full post on Wired Jobs

View full post on National Cyber Security

Windows 8 picture security just a toy, claims RSA SecurID inventor

The Windows 8 feature that logs users in if they touch certain points in a photo in the right order might be fun, but it’s not very good security, according to the inventor of RSA’s SecurID token.

“I think it’s cute,” says Kenneth Weiss, who now runs a three-factor authentication business called Universal Secure Registry. “I don’t think it’s serious security.”

The major downside of the picture password is that drawing a finger across a photo on a touch screen is easy to video record from a distance, making it relatively easy to compromise, he says. Designers of alphanumeric passwords recognise this danger, and have responded to it by having password characters appear as dots on the screen so the password can’t be copied down.

Designers of Windows 8′s picture login have made a traditional password an alternative, perhaps in acknowledgement of this shortcoming, he says.

Other problems include backing up the touch pattern that is the login. “To put down a description of the sequence is possible, but that’s a lot of writing,” he says.

All in all, “It’s more like a Fisher-Price toy than a serious choice for secure computer access,” he says. Still, it’s better than nothing, he says, and it is raising awareness of login security.

Windows 8 is the next version of the Windows operating system, now due for beta release in February. It’s expected to be generally available later next year featuring touchscreen navigation and commands as well as support for tablets.

Not all apps that run on Windows 7 will be compatible with the touchscreen capabilities, but mouse and keyboard devices will enable all apps that ran on Windows 7.

The new operating system shoots for power efficiency, better security and compatibility with ARM-based chips (read tablets and next generation PCs), all of which could make Windows 8 attractive to businesses.

Article source: http://rss.feedsportal.com/c/270/f/3551/s/1b35a760/l/0Lnews0Btechworld0N0Coperating0Esystems0C33268470Cwindows0E80Epicture0Esecurity0Eis0Ejust0Etoy0Eclaims0Ersa0Esecurid0Einventor0C0Dolo0Frss/story01.htm

View full post on National Cyber Security » Computer Hacking

Windows 8 picture security just a toy, claims RSA SecurID inventor

The Windows 8 feature that logs users in if they touch certain points in a photo in the right order might be fun, but it’s not very good security, according to the inventor of RSA’s SecurID token.

“I think it’s cute,” says Kenneth Weiss, who now runs a three-factor authentication business called Universal Secure Registry. “I don’t think it’s serious security.”

The major downside of the picture password is that drawing a finger across a photo on a touch screen is easy to video record from a distance, making it relatively easy to compromise, he says. Designers of alphanumeric passwords recognise this danger, and have responded to it by having password characters appear as dots on the screen so the password can’t be copied down.

Designers of Windows 8′s picture login have made a traditional password an alternative, perhaps in acknowledgement of this shortcoming, he says.

Other problems include backing up the touch pattern that is the login. “To put down a description of the sequence is possible, but that’s a lot of writing,” he says.

All in all, “It’s more like a Fisher-Price toy than a serious choice for secure computer access,” he says. Still, it’s better than nothing, he says, and it is raising awareness of login security.

Windows 8 is the next version of the Windows operating system, now due for beta release in February. It’s expected to be generally available later next year featuring touchscreen navigation and commands as well as support for tablets.

Not all apps that run on Windows 7 will be compatible with the touchscreen capabilities, but mouse and keyboard devices will enable all apps that ran on Windows 7.

The new operating system shoots for power efficiency, better security and compatibility with ARM-based chips (read tablets and next generation PCs), all of which could make Windows 8 attractive to businesses.

Article source: http://rss.feedsportal.com/c/270/f/3551/s/1b35a760/l/0Lnews0Btechworld0N0Coperating0Esystems0C33268470Cwindows0E80Epicture0Esecurity0Eis0Ejust0Etoy0Eclaims0Ersa0Esecurid0Einventor0C0Dolo0Frss/story01.htm

View full post on National Cyber Security » Computer Hacking

Hackers could crash Windows 7 with Safari browser code exploit

Microsoft is currently investigating reports of a zero-day vulnerability in Windows 7 64-bit that leads to crashes and could allow attackers to execute arbitrary code on affected systems.

The security flaw can be exploited by opening a web page containing a specially-crafted iframe using Apple’s Safari browser. Twitter user WebDEViL reported that the flaw can crash a system, triggering the “blue screen of death”.

Security researchers from Secunia believe that the crash could also be leveraged to execute malicious code.

“Based on our testing the impact could be more severe due to the type of crash and nature of the vulnerability i.e. crashing when attempting to write to invalid memory in a call to memmove(),” said Secunia’s chief security specialist Carsten Eiram. “Based on this we do consider remote code execution a possibility though it has not been proven at this time.”

The security flaw stems from an error in the win32k.sys kernel-mode driver, a common source for critical Windows vulnerabilities.

The exploit has so far only been confirmed on Windows 7 64-bit when parsing an iframe with an overly-long height attribute in Safari.

However, researchers don’t exclude the possibility that other versions of Windows can be affected through different attack vectors. “Other 64-bit versions could be affected,” Eiram said. “During testing we observed no crashes on Windows XP SP3 32-bit nor Windows 7 32-bit, but cannot completely rule out that these could be affected via different approaches.”

Microsoft is aware of the reports, but hasn’t published an advisory yet. “We are currently examining the issue and will take appropriate action to help ensure customers are protected,” said Jerry Bryant, manager of response communications with Microsoft’s Trustworthy Computing Group.

Article source: http://rss.feedsportal.com/c/270/f/3551/s/1b2ce9d3/l/0Lnews0Btechworld0N0Csecurity0C33266930Chackers0Ecould0Ecrash0Ewindows0E70Ewith0Esafari0Ebrowser0Ecode0Eexploit0C0Dolo0Frss/story01.htm

View full post on National Cyber Security » Computer Hacking

Windows Administrator III – US / Rackspace / San Antonio, TX

Windows Administrator III – US / Rackspace / San Antonio, TX, Blog, Windows, Rackspace, Administrator, AntonioRackspace/San Antonio, TX

Job Details

Windows Administrator III – US – 14929

This details all the information about the job posting. To submit your résumé/CV, click on the 'Submit your Résumé/CV to this Job' button.

Show Instructions
Job TitleWindows Administrator III – US
Category Information Technology
Requisition # 14929
Location US-TX-San Antonio-CSTL San Antonio, TX 78218, US
Education Bachelor's Degree
Job Type Full-time
Shift/Hours
Travel Required 0
Job Description

We are looking for a Windows System Administrator who will be a key element within the Rackspace support infrastructure and is expected to provide a high level of technical support to our customers over the phone and via support tickets.The Administrator applies creative problem-solving techniques to identify the source of problems; as well as keeping the customer aware of every step along the way via the ticketing system. A System Administrator is expected to use initiative and advise on potential pitfalls that a customer may experience, using existing or planned methods, and suggest alternatives that may better serve the stability and security of the customer’s solution.

Responsibilities:

- Interact with customers via ticketing system and telephone
- Take ownership of customer issues to include: routing, prioritization, troubleshooting to resolution
- Issues addressed at this level would include: Server Hardware, Networking, Web Services, Database, Active Directory, DNS, Cluster Configuration and E-Mail
- Validate monitoring alerts, create support tickets as required and execute predefined troubleshooting instructions
- Create Active Directory users, OU groups, and understand how to apply NTFS and share level permissions
- Perform routine maintenance tasks (servers reboots, user maintenance and service restarts)
- Route tickets to applicable departments
- Perform documented server maintenances
- Audit customer configurations

Job Requirements

The ideal candidate will have the following:

- MCSA certification preferred
- Requires 4-6 years experience in systems administration or related field
- Ability to read and interpret Firewall and Load Balancer configurations
- Ability to maintain and troubleshoot FTP, HTTP, SSL, and SMTP mail flow
- Thorough working knowledge of DNS to include record type requirements
- Ability to identify and troubleshoot server performance issues using native Windows Server tools and utilities
- Thorough understanding of clustering requirements; ability to build and maintain Microsoft Windows clusters
- Ability to troubleshoot Active Directory communication issues
- Ability to install and modify SQL components; troubleshoot job and/or maintenance plan failures
- Thorough understanding of server hardware components to include RAID configurations and externally attached storage devices
- General understanding of server-side scripting uses
- Strong working knowledge of IIS to include the ability to maintain and troubleshoot multiple websites and the use of advanced configuration options

Rackspace, a world leader in hosting delivers enterprise-level managed hosting, cloud hosting, and e-mail hosting services to businesses of all types and sizes globally. Today we serve thousands of customers from data centers around the world. Rackspace integrates the industry's best technologies and practices for each customer's specific needs delivering it as a service via the company's commitment to Fanatical Support®. We serve as an extension of our customers' IT departments enabling them to focus on their core business. Rackspace was founded in 1998 and since then has had significant growth year after year. There are now over 3,000 Rackers employed worldwide dedicated to providing customers our premier hosting services.

Rackspace Hosting is an Equal Opportunity Employer

The above information has been designed to indicate the general nature and level of work performed by employees in this classification. It is not designed to contain or to be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of the employee assigned to this job.
Skills
Type of Job(-US Only) 0

Apply To Job

View full post on Wired Jobs

View full post on National Cyber Security

Windows Administrator II – US / Rackspace / San Antonio, TX

Windows Administrator II – US / Rackspace / San Antonio, TX, Blog, Windows, Rackspace, Administrator, AntonioRackspace/San Antonio, TX

Job Details

Windows Administrator II – US – 14882

This details all the information about the job posting. To submit your résumé/CV, click on the 'Submit your Résumé/CV to this Job' button.

Show Instructions
Job TitleWindows Administrator II – US
Category Information Technology
Requisition # 14882
Location US-TX-San Antonio-CSTL San Antonio, TX 78218, US
Education Bachelor's Degree
Job Type Full-time
Shift/Hours
Travel Required 0
Job Description

We are looking for a Windows System Administrator II who will be a key element within the Rackspace support infrastructure and is expected to provide a high level of technical support to our customers over the phone and via support tickets.The Administrator applies creative problem-solving techniques to identify the source of problems; as well as keeping the customer aware of every step along the way via the ticketing system. A System Administrator is expected to use initiative and advise on potential pitfalls that a customer may experience, using existing or planned methods, and suggest alternatives that may better serve the stability and security of the customer’s solution.

Responsibilities:

- Validate monitoring alerts, create support tickets as required and execute predefined troubleshooting instructions
- Create Active Directory users, OU groups, and understand how to apply NTFS and share level permissions
- Perform routine maintenance tasks (servers reboots, user maintenance and service restarts)
- Route tickets to applicable departments
- Perform documented server maintenances
- Audit customer configurations

Job Requirements

The ideal candidate will have the following:

- Understanding of networking technology fundamentals
- General understanding of Active Directory, IIS and DNS
- Understands concepts of E-mail, clustering and databases
- Understands purpose of Firewalls and Load Balancers, VPN and SSL technologies
- Demonstrates basic problem solving abilities and possesses effective communication skills
- Bachelors degree in computer science or engineering related field or equivalent work experience, preferred
- Requires at least 2-4 years working in a computer technical field

Rackspace, a world leader in hosting delivers enterprise-level managed hosting, cloud hosting, and e-mail hosting services to businesses of all types and sizes globally. Today we serve thousands of customers from data centers around the world. Rackspace integrates the industry's best technologies and practices for each customer's specific needs delivering it as a service via the company's commitment to Fanatical Support®. We serve as an extension of our customers' IT departments enabling them to focus on their core business. Rackspace was founded in 1998 and since then has had significant growth year after year. There are now over 4,000 Rackers employed worldwide dedicated to providing customers our premier hosting services.

Rackspace Hosting is an Equal Opportunity Employer

The above information has been designed to indicate the general nature and level of work performed by employees in this classification. It is not designed to contain or to be interpreted as a comprehensive inventory of all duties, responsibilities, and qualifications required of the employee assigned to this job.
Skills
Type of Job(-US Only) 0

Apply To Job

View full post on Wired Jobs

View full post on National Cyber Security

Microsoft gives free Windows Phones to Android malware victims; iPhone users unaffected

“Want a free Windows Phone? Well, it turns out that you may be able to get one for free – all you need to do is tell Microsoft about the malware problems you’ve had with Android smartphones,” Graham Cluley blogs for Spohos.

“Ben Rudolph, Microsoft’s Windows Phone ‘evangelist,’ is the brainbox behind the scheme which has adopted the hashtag ‘#droidrage’ on Twitter,” Cluley writes. “Linking followers to current news articles about Android malware, Rudolph says he will give an ‘upgrade’ to a Windows Phone to the ’5 best (worst?)’ stories about being hit by Android malware.”

“I guess it must be kind of thrilling for Microsoft – which has endorsed the “#droidrage’ campaign – to find the malware boot on the other foot for once,” Cluley writes. “Microsoft would be wise not to look too smug at the current focus on Android malware issue though – and using the issue as a promotion for Windows Phone 7 may be shortsighted. Let’s not forget, people who live in glass houses shouldn’t throw stones.”

Read more in the full article here.

MacDailyNews Take: When even Microsoft is proclaiming to be more secure than you, you’ve got a security problem.

Android. “Open” in all the wrong ways.

You know what’s really funny is a lot of these Android settlers are Windows Sufferers, too. You know, the anti-Apple types who nevertheless strive to use the nearest Apple approximation they can find. Now these Apple haters being attacked by their pretend Mac OS vendor over their use of devices loaded with a pretend iPhone OS. What to do, what to do? If you could bake a cake made from the irony here, it’d be multi-layered and very, very sweet.

[Thanks to MacDailyNews Reader "Fred Mertz" and "GetMeOnTop" for the heads up.]

Related articles:
Insecure: Malicious Android apps double in six months – December 14, 2011
Android permissions flaw allows eavesdropping, data theft, location tracking – December 2, 2011
You bank on your pretend iPhone? Are you nuts?! Android malware up 472% since July – November 16, 2011
Android security threats surge with infected ‘Angry Birds’; iPhone and iPad users unaffected – November 15, 2011
Apple’s iOS unaffected by malware as Android exploits surge 76% – August 24, 2011
McAfee: Google’s Android number one in malware – August 23, 2011
Android malware records phone calls; iPhone users unaffected – August 2, 2011
Symantec: Apple iOS offers ‘full protection,’ Google Android ‘little protection’ vs. malware attacks – June 29, 2011
Malware apps spoof Android Market to infect Android phones – June 21, 2011
Google forced to pull several malware-infested apps from Android market – June 8, 2011
Android malware sees explosive growth; even faster than with PCs – April 27, 2011
Virus-laden apps infest Google’s ‘open’ Android platform; iPhone unaffected – March 3, 2011
Security firm warns of new Android trojan that can steal personal information; iPhone unaffected – December 30, 2010
Trojan infects Android smartphones; iPhone unaffected – August 10, 2010
Millions of Android phone users slammed by malicious data theft app – July 29, 2010
Unlike proactive Apple, reactive Google doesn’t block malware from Android app store – June 4, 2010
Malware designed to steal bank information pops up in Google’s Android app store – January 11, 2010

Article source: http://macdailynews.com/2011/12/16/microsoft-gives-free-windows-phones-to-android-malware-victims-iphone-users-unaffected/

View full post on National Cyber Security » Virus/Malware/Worms

Microsoft reviewing Windows Phone messaging bug reports

Microsoft Windows Phone engineers are reviewing a report that various messaging technologies can be used to send the phone into a reboot and then freeze its messaging centre, or hub.

Currently, the only “fix” is a hard reset and wipe of the phone, according to WinRumors.com, which reported the attack on December 13, after it was contacted by a Windows Phone user who discovered the problem. A short video by WinRumors’ Tom Warren shows the results of the attack but no details of how it actually succeeds.

The website says it is talking privately with Microsoft about what it found.

Though now widely labelled an SMS attack, the WinRumors story discloses the problem can be triggered also by messages created with Facebook chat or Windows Live Messenger. “The attack is not device specific and appears to be an issue with the way the Windows Phone messaging hub handles messages,” writes Warren.

It’s not clear from Warren’s account whether there’s a bug in the OS that’s randomly triggered by any of these messages, or whether the message has to be somehow deliberately designed to leverage the flaw.

“The flaw appears to affect other aspects of the Windows Phone operating system too. If a user has pinned a friend as a live tile on their device and the friend posts a particular message on Facebook then the live tile will update and causes the device to lock up,” Warren reported. There is a short time during initial boot up when a user can “get past the lock screen and into the home screen to remove the pinned live tile before it flips over and locks the device.”

Microsoft issued a generic statement about the reported attack via a spokesman’s email to PhoneScoop.com: “We are aware of the issue and our engineering teams are examining it now. Once we have more details, we will take appropriate action to help ensure customers are protected.”

Article source: http://rss.feedsportal.com/c/270/f/3551/s/1af9578d/l/0Lnews0Btechworld0N0Csecurity0C33253150Cmicrosoft0Ereviewing0Ewindows0Ephone0Emessaging0Ebug0Ereports0C0Dolo0Frss/story01.htm

View full post on National Cyber Security » Computer Hacking

Page 8 of 12« First...«678910»...Last »

Get The New Book By Gregory Evans

Everyone Is Talking About!

Are You Hacker Proof?
$15.95

Find Out More, Click Here!