Identity theft: Six clicks from a cyber crook
Posting innocuous personal details on social websites could expose millions to fraud, says Heather McLean Our love affair with social networking, it appears, may be coming to an end. After almost 18 months of exponential growth, Facebook has suffered its first UK dip in user numbers, down from 8.9-million unique users in December to 8.5-million in January, a drop of five per cent. MySpace also experienced a five per cent downturn in user numbers, while Bebo's unique visitor numbers fell two per cent in the same period.
10 things you should know about Internet Explorer 7 Security
Internet Explorer 7 is designed to make browsing safer. Here's a quick rundown of some of the new security features, including Active X opt-in, the Phishing Filter, cross-domain security, enhanced privacy protection, and an international character alert. Some sensationalistic reports of a security flaw immediately followed Internet Explorer 7's final release, but the vulnerability turned out to be in Outlook Express rather than IE. In fact, Microsoft has put a great deal of effort into making IE 7 more secure. Here are some of the new IE 7 security features and what they can do for you.
Anti-Spyware Tips
How to stop spyware/adware at start up?
Spyware, virus and other malicious programs are always stealthily installed as auto start program. They automatically run when you start your computer and load Windows. In most of cases, spywares are loaded in the manner by which legitimate programs automatically starts. It is therefore important to regularly check the start up places to prevent the potential spyware added. In this article, the Windows program start-up places are discussed as well as the manner by which spywares are loaded. 1. START-UP FOLDER. This is a very common start-up place. It is in Start -> Programs -> Start Up. Windows opens every item in this folder during logon process. There is a tricky thing here. Windows "opens" every item that is listed in the Start Up folder, not "run" it. This is an important difference. That means a program shortcut or a document associated with certain program presented in Start-up folder will make the program itself to run. For example, if you put a html in Start-Up folder, Windows will start IE browser to open the html document in Start-Up folder.
Brute Force
Attacks on passwords in Windows networks Windows passwords are stored on computers and transmitted across networks with encryption. Nevertheless, there are methods and tools to enable access to these passwords as plain text. You can only protect yourself well if you are familiar with these tricks. To prevent unauthorized access on Windows PCs, prior authentication can be required. Most users are familiar with this from the Windows log-in under CTRL-ALT-DEL. Only users with rights can log in locally with their name and password. If the computer is connected to a Windows network, users generally log on with the domain controller. The entry mask is the same, the only difference being that you choose a domain name instead of a computer name. The domain controller manages the access rights of users for network resources and the rights of users in a domain. Registered users get an access token which authorizes them for other systems. To protect log-in data from being eavesdropped on the local PC or the network during transmission, Windows encrypts the data transmitted. But special programs can also crack the encryption used for this log-in data.
CAM, XVID, TS, What is it? The answer lies here.
Aizawl a Broadband Internet a awm chinah hian internet atangin movies kan download nasa hle a, kan file download ah hian thil chi hrang2 a inziak nuaih zel a,
entirnan: No Country For Old Men 2007 DVDSCR XVid.avi
heng te hi a awmzia hriat ve mai mai nan ka lo pawst ve mai mai a ni e.. chhiar ve teh u. - Sudden
Change Your Win-Xp Product Key
WinXP serial kha i lo tibo palh ta kher kher a.. mahse service pack(SP1) i install dawn khan i mamawh tho sia.. EMAW.. thil dang ah serial kha i mamawh ta a.. chu tiang hunah chuan.. i hman lai serial kha a thlak theih a nih chu!!!
Code Injection via Hidden Form Field Manipulation
Date: 5/17/2006Author: Monte Toren* Systems Affected: Potentially any website that passes user supplied data via a hidden form field element. * Overview: This paper shows a simple technique for injecting code by manipulating hidden form fields. Best practices for web development clearly dictates that user supplied input should always be sanitized for dangerous characters (such as '>') to avoid code injection in dynamically generated pages (see http://www.cert.org/advisories/CA-2000-02.html). However, what might not be as clear is that this sanitization must be done before any data is passed in a hidden form field. Since hidden form fields do not display in the browser, developers may feel safe passing unsanitized data in them (to be sanitized later). This practice is not safe, as will be shown. Please note that I am not claiming to have discovered a new vulnerability here - I am simply highlighting a specific case of an existing vulnerability that might be less than obvious. I ran across this when auditing a real site, so I know sites have actually made this mistake.
Cross-site scripting the top security risk
Web administrators beware - cross-site scripting vulnerabilities are now far more popular attactive targets than more notorious bugs such as buffer overflows, according to new figures from Mitre, a US government-funded research organisation. Buffer overflows have long been one of the most common types of bugs attacked by malware, with Intel and AMD even building in hardware support for an anti-buffer overflow technology called NX (No Execute) or XD (Execution Disable). But a shift is underway, according to Mitre's findings. While buffer overflows affect executable files written in languages such as C, the increasing popularity of cross-site scripting (XSS) bugs indicates attackers are looking more at programming languages typically used for Web applications, such as Java, .Net and PHP. Client-side scripting languages generally include same-origin policies, which allow interaction between Web objects and pages only as long as they come from the same domain and over the same protocol. XSS bugs allow malicious websites to find ways around these policies, potentially accessing sensitive data in other objects or browser windows.
Cyberthieves Silently Copy Your Passwords
Most people who use e-mail now know enough to be on guard against "phishing" messages that pretend to be from a bank or business but are actually attempts to steal passwords and other personal information. But there is evidence that among global cybercriminals, phishing may already be passé. In some countries, like Brazil, it has been eclipsed by an even more virulent form of electronic con — the use of keylogging programs that silently copy the keystrokes of computer users and send that information to the crooks. These programs are often hidden inside other software and then infect the machine, putting them in the category of malicious programs known as Trojan horses, or just Trojans.
Enable Regedit
Apparently, one way the Windows XP registry editor can be disabled is by a virus. They do this to stop the technically minded user from finding out about the attack and to hinder virus removal. (Mahni buaina ang zel ziak mai ang, Win32.Brontok.A@mm worm vangin ka buai a.. regedit hi a in disable deih mai a..)
Firefox 1.5 buffer overflow
An exploit for the new Firefox 1.5 browser was released that causes a denial of service condition using a simple web page as a trigger.
History of INTERNET
History of INTERNET .. year wise
How to avoid suspicious Web sites
By Jessica Dolcourt (5/23/06) No matter how you arrive at an unsafe Web site, much can go wrong when you do. Phishers will attempt to coerce you into disclosing sensitive information--such as your address and social security number--and adware engines may sprout pop-ups over your screen like a field of clover. Thankfully, you can learn to avoid trouble before it's too late. Here are nine telltale signs you're headed for dangerous waters, with tips to keep you firmly in the safety zone. Nobody's perfect, and while these nine tips should help you avoid many dangerous sites, other online threats are more subtle. Two tools can assist in warning you about dangerous sites. McAfee SiteAdvisor assesses the hazards of sites you visit, and is available for Firefox or Internet Explorer. Online Armor scans sites in real time based on traceable patterns of malware behavior. Also, our Security Starter Kit presents an excellent set of tools to provide a solid foundation of defense against potential threats.
How To Reinstall Windows Without Losing Anything
How To Reinstall Windows Without Losing Anything Here Is Another Possible Solution:easy way and tested:
1- Start WindowsXP from Cd Drive
2- Go to the location of your source files
3- Run WINNT32 /unattend
For example, D:\I386\winnt32 /unattend ( copy & paste this command into the RUN box, then press ENTER ) Your computer will do the rest.
Or,
Start > All Programs > Accessories > Command Prompt.
Copy & paste > D:\I386\winnt32 /unattend
Press Enter.
If you have i386 on your drive, you can replace D: ( if D: is your cd drive ) with the location of it.
I've often need to do this to repair something that had gotten corrupted and didn't want to do a clean install.
D: is the driver letter where your windows XP Cd is
if D:\I386\winnt32 /unattend doesn't work then try : d:\winnt32 /unattend.
Identity Theft for dummies
There are three kinds of identity theft: Financial Identity Theft: to obtain credit with another person’s credentials. Criminal Identity Theft: to defraud the public administration Identity Cloning: when the goal is the creation of a new identity to throw the police off the scent, to give papers to an alien immigrant or to a previous offender.
An identity thief could act in a concrete way too, for example running a credit card into a skimmer, a device that reads the data it contains. While nowadays chip based cards technology has made this task much more complex, it is still an approach widely used.
| 
