July 11 2008 COOLSITES Newsletter #173 by Mark Donaldson

This is what the COOLSITES Toolbar looks like. Click here for more info: http://luem42.com/toolbar.html Click here to get it: http://luem42.OurToolbar.com


I have published the July 11 2008 COOLSITES Newsletter #173 by Mark Donaldson.

The following is an excerpt from this weeks newsletter. To see the full newsletter with all of the COOLSITES links please click and bookmark this link: http://luem42.googlepages.com/coolsites.html and check it each week. Thank you. Mark.


July 11 2008 COOLSITES Newsletter #173 by Mark Donaldson

Almost everyone got last week's newsletter.

I still may have problems from time to time so here is what I have done. Subscribers may use a private link to download the newsletter in the text ( .txt ), html (.html ) and the MS Word Doc ( .doc ) format in a zip file. I will upload the zip files to my archive site right after I send out the newsletter on Friday morning. If a subscriber doesn't receive the newsletter, by 8am EDT, they can quickly download it, unzip it and peruse it offline. You can also read it online from there.

If you are a subscriber and don't know the private link you can email me for it. These zip files are less than 40K which is smaller than the 100K or more newsletter email.


--------------------------------------------------------------------------------

Semper Gratis (forever free) of cost

COOLSITES is a list of safe, fun, useful, informative and just plain cool websites and programs that are FREE, FREE and FREE. All of the programs and websites I list are free. If I list anything that is so good but isn't free I will list the price with it.

My website is Dialup Friendly. All pages except "Just The Links" and "Specialized Search Engines" load up in under 15 seconds.

Wherever you go if you see the user name LUEM42 that's me

--------------------------------------------------------------------------------


Pirillo's Picks for February 13 2007

"And if you think that's a lot of links, you should see how many http://luem42.com/ collects every day. It's enough to make you wanna never leave the house again as long as you live" Yours Digitally, Chris Pirillo http://chris.pirillo.com/


--------------------------------------------------------------------------------


Clif Notes Newsletter, Feb 2007 http://freewarewiki.com/ClifNotes

"The COOLSITES Newsletter - find the coolest links here. This fella named Mark Donaldson has been sending out his lists of cool sites since 2003. I'd never heard of him before last week. One day I was Googling myself to see who was posting links to my newsletter, and I found his website. I guess he's mentioned my newsletter at least 3 times. I like the COOLSITES website too, but I think it could use some reformatting to make it a bit easier to read. What I really like is the content there. Mark must really read a lot of stuff on the web and he takes the best links then tells you about them." http://freewarewiki.com/CoolSitesNewsletter


Welcome to Clif Notes Newsletter
July 6, 2008

Hi everyone. I'm sorry I have to tell you that there is no newsletter this week.
I have family that is visiting this week and for me, family comes first.
Don't worry, I'll be back soon so I can talk to all of you again.

Last Newsletter http://freewarewiki.com/ClifNotesNewsletter080622

--------------------------------------------------------------------------------


Security News

Beware of the IRS Stimulus Check scam. Phishers are sending out emails that look like they came from the IRS and calling on the phone claiming they need additional info or for you to click a link to get your check. The IRS says that they do not correspond with anyone via email and that it's a scam. If you should receive this email or other IRS scams please forward to: phishing.RemoveThis@irs.gov.



"Websense® Security LabsT ThreatSeekerT Network has discovered a substantial number of spam messages utilizing a social engineering tactic that lures users to download malicious software.

It is interesting to note and observe how quickly spammers react to the latest major online news updates, capitalizing on these events to achieve better success rates with their social engineering tactics. The recent media coverage discussing Osama Bin Laden seem to have prompted spammers to quickly recycle an old spam campaign. The messages include a link to a compromised site which contains an obfuscated JavaScript that tries to exploit a rather old vulnerability corresponding to Microsoft Data Access Component (MDAC).

Regardless of whether the exploit succeeds or fails, the visitor is then redirected to a page showing a fake security warning encouraging users to download anti-spyware tools to repair their system. Spammers usually use this tactic to encourage users to install rogue applications. We have seen the same malicious executable used throughout different spam campaigns bearing following email subjects lines:

Jennifer Aniston Interesting mp3!!!
Clara Morgane Shocking photo!!!
Kylie Minogue Interesting video without cowards!!!
Demi Moore New sexy songs!!!
Avril Lavigne Shocking porno dvd!!!
Nicole Richie Kick-up cd!!!
Beyonce Shocking sexy songs!!!
Keira Knightley Gallery photo!!!
Britney Spears Interesting cd!!!"



"Websense® Security Labs(TM) ThreatSeeker(TM) Network has discovered a new Storm worm campaign emerging. To tie in with the 4th of July Independence Day celebrations in the US, we have detected a series of email subject lines around this theme to entice users into downloading a Trojan.

We have just previously seen the group behind the infamous Storm worm utilize the tried and tested 'I love you' theme and then capitalizing on the global attention around the Olympics to be held in Beijing.

Clicking on the link in the email directs the user to a site laden with drive-by exploits inside of a script file named ind.php. The use of this script file name has been constant throughout this campaign. In a typical Storm worm fashion, its infection success rate is highly dependant on the social engineering tactic employed and thus the malicious file is appropriately named fireworks.exe.

Here are a few examples of the varied subjects we have seen in this campaign:

Amazing firework 2008
America for You and Me
Celebrate Independence
Happy Fourth of July
Light up the sky
Stars and Strips forever
Super 4th!"



"Websense® Security Labs(TM) ThreatSeeker(TM) Network has discovered yet another peak in Storm Worm's spam campaign. This time the socially-engineered messages announce the start of World War III, indicating that U.S. forces just invaded Iran. The messages offer a video of this alleged recent drama.

The structure of the attack is similar to the 4th of July alert; initially, several exploits are delivered to the user's browser under a script file named ind.php . The names of the socially-engineered executables in this attack are iran_occupation.exe and form.exe."



"National Cyber Alert System Cyber Security Alert SA08-190A Microsoft Updates for Multiple Vulnerabilities Original release date: July 8, 2008 Source: US-CERT Systems Affected * Microsoft Windows Overview Vulnerabilities in Microsoft Windows could allow an attacker to gain control of your computer. Solution: Install updates Microsoft has released updates to remedy critical vulnerabilities in Microsoft Windows. Updates for Microsoft Windows are available on the Microsoft Update site. We recommend enabling Automatic Updates. Description: Vulnerabilities in Microsoft Windows may allow an attacker to access your computer, install and run malicious software on your computer, or cause your computer to crash. More technical information is available in http://www.us-cert.gov/cas/techalerts/TA08-190A.html "

--------------------------------------------------------------------------------


Security Links

Some subscribers have indicated that the anti-spyware/adware programs I have listed here recently are "rogues". I get these links from good sources however I do not test the programs myself because I just don't have the time and most new programs won't work on my old 98 system. The definitive source of rogue info is Spyware Warrior and they weren't listed there. Spyware Warrior- Rogue-Suspect Anti-Spyware Products & Web Sites: http://www.spywarewarrior.com/rogue_anti-spyware.htm


A Sucker Is Converted Every Minute: http://bits.blogs.nytimes.com/2008/07/02/a-sucker-is-converted-every-m...te/inde

ActiveX attacks targeting Office viewer. attacker would have to lure a victim, via a link in an e-mail or IM for instance, to a specially crafted Web page that could exploit the security hole: http://ct.cnet-ssa.cnet.com/clicks?t=65467106-be56918137808c8d29d61779...633af-b

Fakes- Software and Donation Boxes. Scambusters.org: http://www.scambusters.org/fakes.html

Google powers up users' Gmail security arsenal: http://news.cnet.com/8301-13577_3-9985264-36.html

How to Enjoy a Scam-Free Retirement: http://news.yahoo.com/s/bw/20080703/bs_bw/0828b4092000137707

MALWARECITY- stay informed in your every day battle against malware: http://www.malwarecity.com/

Microsoft fixes 8 flaws with 4 patches; none are critical : http://ct.cnet-ssa.cnet.com/clicks?t=65467119-be56918137808c8d29d61779...633af-b

New. MSN Virus Cleaner 1.0.1.2: http://dcmagnet.eu/web/index.php

Opera Fixes A Security Flaw: http://www.lockergnome.com/forsythe/2008/07/07/opera-fixes-a-security-flaw/

Update. Crypt4Free 4.7.7 128 bit to 2048 bit strong aes encryption software.: http://www.secureaction.com/encryption_free/

Update. Microsoft Malicious Software Removal Tool 2.0: http://www.microsoft.com/downloads/details.aspx?FamilyID=ad724ae0-e72d...54-9ab3

Update. Spybot - Search and Destroy 1.60.30: http://www.safer-networking.org/index2.html

Update. Spyware Terminator 2.2.3.444 realtime spyware protection: http://www.spywareterminator.com/

Update. WISeCrypt 1.4.6.4: http://www1.wisekey.com/products/wisecrypt/personal/

Vista. Encryption Technologies In Vista Part I: http://feed.lockergnome.com/~r/nexus/it/~3/332384507/

Vista-s Security Center: http://feed.lockergnome.com/~r/nexus/it/~3/330502268/

--------------------------------------------------------------------------------


Windows Secrets Newsletter • Issue 160 • 2008-07-10

The following topics appear in our free content

INTRODUCTION Say "hi" to 150,000 new Support Alert readers
A totally free e-book about totally free software
As if our name wasn't long enough already...

TOP STORY TechSpot battles Google for best PC support info
Finding searchable databases of tech answers
Test questions bring winners and losers
Explore other options for free support

KNOWN ISSUES A popular antivirus program garbles HTML e-mails
Dozens of responses point to a single app
PC repair pros do know their stuff
The final word on the racy beer-ad parody

WACKY WEB WEEK Even Death Stars can't find good kitchen help

http://WindowsSecrets.com/comp/080710

--------------------------------------------------------------------------------


What a Freebie

In Honor of 7-Eleven Day, 7-Eleven's across the United States will be handing out free 7.11 ounce Slurpee's on July 11, 2008. Stop by your local
7-Eleven store Friday and pick yours up for a quick cool-down.

--------------------------------------------------------------------------------


COOLSITES 98 cool links

I harvest what I believe to be the best links from the best sources that are safe, fun, informative, useful and just plain cool. I categorize them and edit their descriptions for clarity. I may make comments about the links but you will know because I always sign them with "Mark".

To see the full newsletter with all of the COOLSITES links please click and bookmark this link: http://luem42.googlepages.com/coolsites.html and check it each week. Thank you. Mark.