Help!

February 23 2007 COOLSITES newsletter by Mark Donaldson
Post new topic   General Reply to Topic (not reply to a specific post)    Forums Home -> Cool Web Links RSS
Next:  Moved from Humor: A bit naughty, but cute.  
Author Message
luem42



Joined: Aug 02, 2003
Posts: 260
PostPosted: Sat Feb 24, 2007 6:31 am    Post subject: February 23 2007 COOLSITES newsletter by Mark Donaldson
I have published the February 23 2007 COOLSITES newsletter by Mark Donaldson.

The following is an excerpt from this weeks newsletter. To see the full newsletter with all of the COOLSITES links please go to my website at: http://luem42.com/coolsites.aspx Thank you. Mark.

February 23 2007 COOLSITES by Mark Donaldson

This is the newsletter 101st

Wherever you go if you see the user name LUEM42 that's me

COOLSITES is a list of fun, useful, informative and just plain cool websites and programs that are FREE, FREE and FREE. All of the programs and websites I list are free. If I list anything that is so good but isn't free I will list the price with it

Pirillo's Picks for February 13 2007 "And if you think that's a lot of links, you should see how many http://luem42.com/ collects every day. It's enough to make you wanna never leave the house again as long as you live" Yours Digitally, Chris Pirillo http://chris.pirillo.com/



Visited links are red and unvisited links are blue



--------------------------------------------------------------------------------


Security News
Websense® Security Labs(TM) has received reports of a phishing attack that targets users of Party Poker. Users receive a spoofed email message which claims that a new online gambling law will be passed, and that they must log in to their account to view the impact on Party Poker users. The email provides a link to a phishing site that attempts to collect personal and account information.

This phishing site is hosted in the United States and was up at the time of this alert.



--------------------------------------------------------------------------------


National Cyber Alert System Cyber Security Alert SA07-047A

Apple Updates for Multiple Vulnerabilities. Original release date: February 16, 2006

Systems Affected: Apple Mac OS X version 10.3.9 (Panther) and version 10.4.8 (Tiger) and Apple iChat

These vulnerabilities affect both Intel-based and PowerPC-based Apple systems.

Overview: Apple Mac OS X and iChat are affected by multiple vulnerabilities. Apple has released Security Update 2007-002 to address these vulnerabilities, the most serious of which may allow a remote attacker to place and run malicious programs on your computer.

Solution: Install an Update. Install Apple Security Update 2007-002 through Apple Update. US-CERT Technical Cyber Security Alert TA07-047A - http://www.us-cert.gov/cas/techalerts/TA07-047A.html



--------------------------------------------------------------------------------


Websense Security Labs(TM) has received reports of new malicious websites designed to install Trojan Horse bots that allow attackers to compromise end-user banking credentials for more than 50 financial institutions and ecommerce websites.

The websites are hosted in Germany, England, and Estonia, and appear to be using round robin DNS, resolving to five unique IP address that revolve on each lookup. Each site hosts the same exploit code. This code attempts to exploit the Microsoft AdoDB / XML HTTP (MS06-014) vulnerability to download and install a Trojan downloader without end-user interaction.

When end-users visit the site, they are directed to one of the five servers. If the end-user machine is vulnerable, a file called "iexplorer.exe" is downloaded and run. The site displays a simple page that says the sever is temporarily busy and suggests that the user shut down any firewall and antivirus software. The "iexplorer.exe" file downloads and installs five additional files from a server in Russia. The filenames are: IEMod.dll, IEGrabber.dll, IEFaker.dll, CertGrabber.dll and PSGrabber.dll

The server in Russia also acts as a bot controller, allowing the attacker to control the machines remotely. Additional files can be uploaded or downloaded and new phishing attacks can be appended. In addition, several attack success statistics are recorded. The bot controller also has a database query interface that gives the attacker a simple-to-use search/query interface for additional information.

Once the DLLs are installed and loaded and the end-user connects to one of more than 50 financial institutions or ecommerce websites, the code transparently replaces some HTML within the page and posts the end-user's logon credentials to the server in Russia. At the time of this alert, the statistics showed more than 1000 successful infections per day, with the USA and Australia leading the list.

For additional details and information on how to detect and prevent this type of attack:
http://www.websensesecuritylabs.com/alerts/alert.php?AlertID=743



--------------------------------------------------------------------------------


Security Links

FTC Advice on Giving the Bounce to Counterfeit Check Scams: http://www.ftc.gov/opa/2007/02/fyi0716.htm


IE7. Prevent Internet Explorer 7 From Remembering Passwords: http://www.lockergnome.com/nexus/windows/2007/02/20/prevent-internet-e...orer-7-


Latest scam uses BBB's name: http://www.cleveland.com/business/plaindealer/index.ssf?/base/business...7153337


Microsoft apologises for serving malware - APC Magazine: http://apcmag.com/5382/microsoft_apologises_for_serving_malware_to_customers


New. CryptF is a file encryption tool that can encrypt with either 3-DES or IDEA: http://ntsecurity.nu/toolbox/cryptf/


New. Instant Firewall Monitor 1.0.1 - In List mode see all interactive connections through the firewall. In World mode, see which countries are accessing your computer: http://www.freewarefiles.com/program_5_180_26999.html


New. RemoveIT Pro v4 - SE 2.21.2007 - Locate and remove many new dangerous files including Malware, Viruses, Worms, Trojan horses, Adwares & Spywares that other popular AV programs cannot find: http://www.freewarefiles.com/program_9_90_19439.html


OnGuard Online. tips from the federal government and the technology industry to help you be on guard against Internet fraud, secure your computer, and protect your personal information: http://onguardonline.gov/index.html


Online Software Inspector - Secunia. Detects insecure versions of applications installed: http://secunia.com/software_inspector


PC World Downloads - ZonedOut. Manage IE's restricted and unrestricted sites in the security settings: http://www.pcworld.com/downloads/file/fid,64502/description.html?tk=nl_hsxdwn


Safe surfing tools - CNET Reviews: http://reviews.cnet.com/4321-3667_7-6561525.html?tag=nl.e415


safe-surfing comparison: http://ct.download.com/clicks?t=31049295-be56918137808c8d29d6177983a63...-bf&amp


Tips to Keep Your Teens (and Yourself) Safe on MySpace and Other Social Networking Sites: http://www.scambusters.org/


UL Warns of Counterfeit Fire Extinguishers: http://www.ul.com/newsroom/newsrel/nr021407.html


Update. Crypt4Free v4.5.13 128 bit to 2048 bit strong aes encryption software.: http://www.secureaction.com/encryption_free/


Update. Jetico Personal Firewall 2.0.0.24 Beta All security products from Jetico- BestCrypt, BCWipe, Jetico Personal Firewall, BCArchive. Download it now.: http://www.jetico.com/


Vista. Malware Protection In Vista (Part I): http://www.lockergnome.com/nexus/it/2007/02/22/malware-protection-in-v...a-part-


Vista. New Windows Vista Firewall Fails on Outbound Security: http://www.pcworld.com/article/id,128834/article.html?tk=nl_cxanws


Vista's Parental Controls (Part I): http://www.lockergnome.com/nexus/it/2007/02/20/vistas-parental-controls-part-i/


Vista's Parental Controls (Part II): http://www.lockergnome.com/nexus/it/2007/02/21/vistas-parental-controls-part-ii/


Vista's Security Design Error Cause For Concern-: http://www.lockergnome.com/nexus/it/2007/02/19/vistas-security-design-...or-caus



--------------------------------------------------------------------------------


Back to the plain newsletter

Last week I published the 100th newsletter with a little extra pizzazz. I included an image and background in the newsletter. One subscriber had a problem with it because the image and background was sent as an attachment during server routing and their server filter thought it was a virus. I can assure everyone that it wasn't. I use Google's Gmail to manage and send out the newsletter. As Google says:

"If Gmail detects a virus in an attachment you're trying to send, you will receive an error message that says: 'Your attachment contained a virus and could not be sent.' Click the link in the error message that says 'Remove attachment and send.' Your message will then be sent, without the attachment."

So now it's back to the plain jane newsletter ( I am not saying that all Janes are plain ) with html so you can click links instead of copy & paste links. Mark.

The Health Encyclopedia That Isn't.

From: Skeptic's Dictionary Newsletter 75 http://skepdic.com/

Doesn't this sound like a sweet e-mail?


I browsed through your website and found it useful. I would like to make a contribution by suggesting some websites for addition to your web links collection.


Her suggestions? Each of them involved going to a site called Healthopedia.com, which is little more than a portal for thousands of advertisements squeezed around bits of information. If you want health information, don't go to Healthopedia.com. See your physician.

I am embarrassed to say I fell for that one and included the link in October 6 2006 COOLSITES newsletter. I have now removed the link from the newsletter, the 2006 newsletter archive, the "Search" page and the "Just The Links" page. You won't find that link on my websites. Mark.

From: Windows Secrets Newsletter • Issue 97 • 2007-02-22

http://WindowsSecrets.com/comp/070222

The following topics appear in the free version


TOP STORY Pop-up ads can land you in jail
Meet Julie Amero, substitute teacher
Flawed technology condemns an educator
Legal system fails pop-up victim
An innocent teacher awaits sentencing
LANGALIST TIPS Make more space by deleting log files
Hidden log files eat your disk space
Running floppy-based tools with no floppy drive
CD-Rs don't survive freezing temperatures
Another look at HijackThis
USEFUL LINKS Now, rechargeable batteries you can rely on
WACKY WEB WEEK Gollum and Smeagol get their groove on



--------------------------------------------------------------------------------


COOLSITES 103 cool links

To see the full newsletter with all of the COOLSITES links please go to my website at: http://luem42.com/coolsites.aspx Thank you. Mark.
Back to top
luem42



Joined: Aug 02, 2003
Posts: 260
PostPosted: Sun Feb 25, 2007 5:50 am    Post subject: Thanx
Thanx
Back to top
Display posts from previous:   
Post new topic   General Reply to Topic (not reply to a specific post)    Forums Home -> Cool Web Links All times are: Eastern Time (US & Canada) (change)
Page 1 of 1

 
 You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum