Security flaw in Adobe Flash Player also Affects Reader
Adobe warns of a new security hole in Adobe Flash Player, which has been used for targeted attacks by embedding a Flash object in an Excel sheet. Adobe Reader is also affected.
Adobe has released a warning about a new critical vulnerability in Adobe Flash Player, which has been used in targeted attacks. Adobe is now working on an update that should close the security hole.
The security hole is found in the latest version of Adobe Flash Player, which in recent years has been plagued by serious security holes and has been seen as taking candy from kids for the computer criminals. They have used Adobe vulnerabilities in browsers and operating systems with limited control over security.
OpenLeaks: A safe haven for whistleblowers
The controversies surrounding WikiLeaks has shown that it is far from risk free to leak secret documents. Whistleblowers must be protected against powerful enemies, the messengers must resist the relentless effort to be throttled, and journalists must be able to work in peace with the material without being monitored. (more…)
Apple secrets leaked to major investors
A ring of criminal executives in the U.S. electronics industry is unraveling at the FBI. So far, five leaders jailed for selling confidential market information to buyers in the financial world. (more…)
19-year-old risk imprisonment for participation DDoS revenge for Wikileaks
Dutch police have arrested a 19-year-old man who participated in a network attack against the state prosecutor’s office in Holland, after police had arrested a 16-year-old boy to have participated in attacks against Mastercard.
A 19-year-old Dutch boy can risk up to six years imprisonment for participating in a distributed denial of service attacks, or DDoS attacks against the Dutch state prosecutor.The 19-year-old was arrested by authorities Saturday after he had participated in attacks against the website of the State Prosecutor’s office and under his Internet pseudonym, he also allegedly encouraged others to join in the attack.
Fake Kingston USB drives loaded with malware
Unexpectedly cheap 256 GB USB sticks were a little too good to be true. The drives were counterfeit and contained malware.
Now I know not so much to the Windows world, but any decent company would have ecurity software to protect against malware, banks should at least have it. So it should be easy to catch. Or you could test it on a Mac or Linux machine, and then just reformat.
It is not described in the article, but I doubt very much that there is 256GB in their fraud-sticks. Probably rather some 64MB “waste products”. It may also be set up so that the actual size is reported incorrectly when you have it in your computer (ie it says 256GB free, but you actually have 64MB). You can be 100% sure that you do not get 256 GB of Flash. The controller is engineered so it probably shows 256 GB but actually might be 2 GB. It means that when you exceed the physical capacity, you begin to overwrite the data and end up with corrupt data.
British 19-year-old jailed for refusing to disclose encryption key
In Britain, a 19-year-old man has been sentenced to four months in prison after refusing to reveal his encryption key for the police. A 19-year-old man in the small English town Freckleton has been sentenced to 16 weeks in jail. The man was suspected of crimes and in connection with the seizure of his computer the police failed to access the data, as it was encrypted with a 50 character long password. In the UK there is a law regarding disclosing information to the police to provide access to data, but the man refused. Therefore, he has now been sentenced to prison.
- It sends a clear message to those who try to mask their criminal activity online that they will be taken to court, with, as in this case, detention as a possible penalty, says local police Neil Fowler, according to a statement quoted by El Reg.
The Law on the encryption key must be disclosed on suspicion of criminal activity is part of the Regulation of Investigatory Powers Act, a collection of laws relating to monitoring and interception, which was effective on the first October 2007. The law was then criticized by human rights organizations, including the risk that you might forget your encryption key, and therefore be unable to help the police.
