iPhone security alert: your lock screen can be bypassed!

/in ,

This YouTube Video shows how you can bypass the iPhone lock screen to make calls and list contacts. You can even browse photos if you attempt to add a photo to a contact.

While you can’t run any apps or do anything other than work with contacts or make phone calls, the facts is that anyone who watches this video can unlock a part of your iPhone without knowing your passcode.

I’m sure Apple will have a fix soon but until then, don’t let that phone go to the wrong hands!

 

Using Godaddy? Your site might be down.

/in

I’ve got all my domains REGISTERED at Godaddy but no websites HOSTED there. I’m not entirely sure of what exactly is affected but if you are using Godaddy I suggest you follow them on @godaddy for the lastest info and read more from the link below.

 

GoDaddy Outage Takes Down Millions Of Sites, Anonymous Member Claims Responsibility | TechCrunch.

Your Yahoo password may be compromised

/in

I had a very old Yahoo account that I never used. Right now I’m changing any other website I used that has the same password. If you use or used Yahoo, I suggest you do the same. There is a chance, and right now we don’t know if it’s likely or not, that your password has been exposed to hackers. Play it safe and assume that it has.

Confirm your Microsoft Update Today

/in ,

There were a bunch of Microsoft-related security updates today Tuesday July 10, 2012. Make sure you get them. Go to Start, All Programs, Windows Updates.

Clean Your PC or Lose Internet Access

/in ,

Hundreds of thousands of PC’s are infected and they don’t know it. Read the article below for more details on this “DNSCHanger” malware. You can click over to this site to check if your PC is infected

. Don’t lose out on your Internet!

Starting this week, any users of Google’s search tools who are detected redirecting to DNSChanger’s now substituted domains will be splashed the stark warning “Your computer appears to be infected” with an accompanying link offering remediation advice.</blockquote>

via pcworld.com

Mac security holes found. You may have a trojan horse.

/in ,

Make sure you update your Mac asap. For the longest time, Mac users thought that they were immune to viruses. The truth is that until recently, there just weren’t enough Macs in the market to make economic sense for virus authors to go after. This trojan horse now marks the beginning of Macs joining mainstream PC users as virus targets. The party is over! Please get your Mac updated.

Apple released a Java 1.6.0_31 update for OS X on Tuesday that claims to deliver “improved compatibility, security, and reliability.” The patch closes multiple vulnerabilities found in Java 1.6.0_29, the most serious of which allows malicious code to be executed just by visiting a compromised website. The update is available from Software Update on any Mac running Mac OS X v10.6.8, Mac OS X Server v10.6.8, OS X Lion v10.7.3, or Lion Server v10.7.3.

Russian security firm Doctor Web claims that attackers began to exploit the Java vulnerability on March 16th which Apple closed with the release of the Java update on April 3rd. Dr. Web now estimates that about 600,000 Macs, most of which reside in the US (55 percent) and Canada (19.8 percent), are now infected members of the Flashback botnet. The company also notes that some four million compromised web-pages could be found in Google search results at the end of March with some users claiming infection by visiting sites as mainstream as dlink.com.

Security company F-Secure has instructions for detecting and deleting the Flashback botnet on infected computers.

via theverge.com

Check your WordPress site: it might be hacked

/in

It’s been a wild month for WordPress users;  there has been a rash of WordPress sites getting hacked.  If you haven’t checked your own site lately, you should.    The symptom of the hack is that visitors to your site get redirected to a malicious site, typically ending in .ru (Russia). It’s pretty easy to test: go to your site :(.

You can also go to sucuri.net to do a free scan on your WordPress site.

The fix is complicated and different for each user.  If you’re not technically-minded, get some professional help to clean out your site.   Do a Google search for “WordPress site hacked” and go from there.

Massive Microsoft Security Mess – Get yours patched immediately

/in ,

Straight from Microsoft’s website comes a stern warning about a security hole that apparently can happen by simply going to a bad website. Make sure your Windows system is promptly updated, like now!

The most severe of these vulnerabilities could allow elevation of privilege if an unauthenticated attacker sends a specially crafted web request to the target site. An attacker who successfully exploited this vulnerability could take any action in the context of an existing account on the ASP.NET site, including executing arbitrary commands

via technet.microsoft.com

Security Hole discovered in Adobe Reader.

/in ,
Keep an extra vigilant eye out for suspicious PDF files. Adobe has discovered a security hole and they plan an update in Jan 2012, more than a month from today.

Adobe Reader X (10.1.1) and earlier versions for Windows and Macintosh, Adobe Reader 9.4.6 and earlier 9.x versions for UNIX, and Adobe Acrobat X (10.1.1)

via blogs.adobe.com

HTC phones security flaw; EVO, Thunderbolt & others

/in ,

Any installed app that has “Full Internet Access” permissions (which you would think is most if not all apps as they typically use a Net connection for their functionality) also has access to a lot what we might regard as private data including phone and sms log data (including phone numbers)

Many HTC phones have been identified as affected, including EVO 4G, EVO 3D, Thunderbolt, and Shift. Other HTC phones may be vulnerable too but that has not been confirmed. You can get in-depth technical information from “Android Police

Right now there is no patch or workaround. My recommendation is that you only install or run “name brand” apps that wouldn’t unnecessarily have an interest in violating your privacy

Media_httpnewsbbcimgc_tkfsp
via bbc.co.uk