A FRENCH TECH SITE is releasing free software that anonymises DRM free files bought on iTunes Plus. Ratatium.com has just launched software called Privatunes, which strips out personal information including the user’s full name and account e-mail. Apple wanted the information in the file so it could find out which of its users were pirating music. But Apple’s insistence had raised privacy concerns in Europe.
Read more…
Malicious code embedded in about two dozen MySpace pages downloads the dangerous FluxBot onto victims’ machines. Internet Storm Center researchers are warning users that drive-by exploits have been embedded in a few dozen legitimate MySpace pages.
Read more…
Users are being warned of a new phishing scam falsely telling recipients they need to download a Microsoft patch. SANS Internet Storm Center handler Donald Smith wrote on the organisation’s blog last night that several readers reported receiving emails, from four different domains, claiming to be from Microsoft. The emails – some of which include the recipient’s full name and the company they work for in the letter body – inform recipients that they must download a fix to address a zero-day vulnerability affecting Outlook, according to one of the messages posted on the SANS site.
Read more…
Spanish police have arrested a 28-year-old man and charged him with creating and distributing malware that infected an estimated 115,000 mobile phones, the French AFP news service has reported. The unidentified defendant, who was arrested in Valencia after a seven-month investigation, allegedly created more than 20 variants of the Cabir and Commwarrior worms, which target mobile phones running the Symbian operating system and infect nearby devices via Bluetooth.
Read more…
Concerns over the latest hi-tech security vulnerabilities have been highlighted at a conference in Kuala Lumpur, Malaysia. There seems to be an unspoken understanding among hackers that dressing in black is cool. Hack in the Box, Asia’s leading hacking and security gathering, is full of geeks in black. And their cloak and dagger looks add a certain frisson to the occasion.
Read more…
Hacking group warez has released a patch allowing gamers to run Halo 2 and Shadowrun, both released by Microsoft as Windows Vista-only titles, on the firmâs older Windows XP operating system. It had been claimed that neither title would be able to run successfully using the older DirectX 9 graphics engine, with Microsoft urging gamers to take the plunge and switch to the Vista.
Read more…
Multiple hacker groups are using a “construction kit” supplied by the author of a Trojan horse program discovered last October to develop and unleash more dangerous variants of the original malware. Already such variants have stolen sensitive information belonging to at least 10,000 individuals and sent the data to rogue servers in China, Russia and the United States, according to Don Jackson, a security researcher at SecureWorks Inc. of Atlanta. The stolen data includes Social Security numbers, online account information, bank account and credit card numbers, user names and passwords and other data that users would usually input during an SSL session.
Read more…
The recently-launched Apple browser, Safari for Windows, has received its second lot of patches since its debut earlier this month. Apple has posted the latest version of the beta software, 3.0.2, on its website, containing security fixes as well as other tweaks. The browser was first released by chief executive Steve Jobs at the company’s Worldwide Developers Conference earlier this month. Within days, security vulnerabilities had been unearthed by researchers, prompting the Mac maker to issue its first patch batch. Just over a week later, and Apple has released a second security upgrade.
Read more…
Apple has released patches for a cross-site scripting (XSS) flaw in WebCore and a vulnerability in WebKit that allows arbitrary code execution â as well a third beta version of Safari for Windows. In its third security advisory of the past week, Apple said that the WebCore flaw could be exploited to create a HTTP injection issue.
Read more…
Researchers are warning internet users to be on the lookout for website scams appearing on Google Pages. This month, experts at Websense reported a spike in the user-created sites hosting phishing schemes, such as one for eBay, Dan Hubbard, vice president of security research at San Diego-based Websense, told SCMagazine.com today.
Read more…