Subscribe to Posts


Tutorials

Recent Comments

Home

Browser inSecurity

Published December 6, 2011 | By InetDaemon

I’m paranoid about the web, and with good reason.

The #1 way hackers get into computers today is through your web browser from an infected website.  The battle for control of your computer has spread from e-mail and attachments. Another battlefront has opened up on your web browser.  A large number of big-name sites have been hacked recently and nobody is completely sure just what the hackers made off with.  Hackers use DNS spoofing to trick computers into coming to an infected website, so you can’t completely be sure that you ended up on the website you intended to visit. They also buy up common misspellings of big sites to catch anyone that makes a typo.

Hackers have been using SQL injection vulnerabilities to break into websites for years (it is in fact one of the primary ways hackers get into a server), and these vulnerabilities still go unpatched. Now they are infecting websites in order to set up complex computer/browser/plugin fingerprinting engines that detect vulnerable versions.  These engines deliver attacks custom-tailored to infect the visitor’s computer with slimy botware.  Take out the cookies, pop-ups, plugins and JavaScript and you’ve stripped your attack surface these engines can attack, down to just your web browser. But this makes browsing less user friendly and a lot more frustrating in the short term, and confusing for people who aren’t technical.

Of course, whenever someone starts talking about a really secure platform, the Mac fanboys jump right in to tell me how secure Apple MacOS is–never mind that the MacOS/Safari combo gets hacked every year (2007200820092010,2011)  during PWN2OWN at CANSECWEST.  Never mind that the hackers have now developed a crimeware kit for the Mac, which means Mac users will need to be on the lookout for a deluge of malware from now on.

With so much dangerous malware and so many threats, how do I stay secure online?

READ MORE: Browser inSecurity – How I Stay Protected Online

Posted in Computers, Internet, Reviews, Security, Software, Technology, World Wide Web | Tagged , | Leave a comment

New Tutorial: Computer Appliances

Published October 22, 2011 | By InetDaemon

The term computer appliance is a generic term for a class of computer devices that come pre-packaged and pre-wired from the factory with special features and functionality pre-configured and ready to use with only minimal setup. There are several types of devices that fall into this category such as storage appliances, network appliances, security appliances, anti-virus appliances and so forth.  You can find this new tutorial I’ve written in my Tutorials section, under Computers as computer appliances

 

Posted in Computers, News, Technology | Tagged , | Leave a comment

The Best Browser Against Socially-Engineered Malware Q3 2011

Published October 11, 2011 | By InetDaemon

Malware is malicious software which the user is tricked into downloading and/or installing from an e-mail attachment, or more commonly today, malicious and infected websites.  Social Engineering is a term used to describe the techniques used to deceive people and trick pe0ple into revealing information or taking an action that is unsafe.  Socially-engineered malware is malware that is pushed to Internet users from malicious URL’s (website addresses) that have content designed to grab your attention and trick you into clicking a link in a search engine or e-mail, or which exploit a vulnerability via JavaScript or within a plugin (Java, Flash, Silverlight, Adobe Reader etc.) to gain access to the computer and install malware.  Once installed, the malware remotely grants hackers control of the computer, and full access to everything on the computer and everything the computer is used to access, including email, online banking and personal online investment accounts.  The hacker may even be able to observe the screen, and record keyboard and mouse activities.

The latest website to fall victim to getting hacked is MySQL.com, owned by Oracle Corporation, which was briefly forcing malware downloads to computers running vulnerable web browsers that connected to the MySQL.com website.

According to recent statistics published at Virus Bulletin by Bruce Hughes of anti-virus company AVG technologies, Internet users are four times more likely to encounter social engineering as the mechanism used to infect their computers than a technological ’hack’.

An independent security firm has released their third quarter report on the protection provided by each of the top five web browsers. The test was designed to determine how well each browser protects against malicious URL’s, malicious downloads and phishing.

The firm compared the following browser versions:

  • Internet Explorer 9
  • Firefox 4
  • Chrome 12
  • Safari 5
  • Opera 11

Which browser blocked the most malware and was the best, most secure browser against socially-engineered malware?

According to NSS Labs,  all of these browsers offer a reputation system to warn the user about malicious URL’s and block malicious software downloads from those addresses. Reputation systems are used to provide the user additional feedback to make a determination as to whether the site is safe and to recommend blocking the website to the user in cases where the sites are known to be malicious. However, one of these browsers proved dramatically more effective at blocking socially-engineered malware–malware that users are tricked into downloading simply by visiting a website or clicking a picture or link in a search engine result, e-mail, tweet or SMS text.

MORE: Best web browser against socially engineered malware

Posted in Q&A | Leave a comment

The Evolution of Web Browsers

Published September 22, 2011 | By InetDaemon

Cool flash applet HTML5/JavaScript page showing the history of the development of web standards and web browsers:
http://evolutionofweb.appspot.com/

(I stand corrected.. ;-)   )

Posted in Q&A | Tagged , , , , | 2 Comments

eBook Inventor and Project Gutenberg Founder, Michael S. Hart, dies at age 64

Published September 17, 2011 | By InetDaemon

I’ve been working on my own eBook that I will be releasing in 2012 focused on teaching people to protect themselves from online criminals, identity theft, parental controls, and how use the Internet safely.  I was doing research for the book when I stumbled across the obituary for Michael S. Hart, inventor of the eBook and Founder of Project Gutenberg who died September 8, 2011.  Michael Hart invented eBooks in 1971 and he founded Project Gutenberg as an organization dedicated to publishing electronic versions of books online in standard eBook reader, Adobe PDF and plain text formats, for anyone to download and read.  Project Gutenberg represents almost 40 years work by Michael and other volunteers to convert books and documents to eBook formats. Gutenberg contains documents and books which are no longer protected by copyright in the U.S. This includes the Harvard Classics Library, loads of classic fiction works by famous authors, important historical political documents such as the Magna Carta, U.S. Declaration of Independence and U.S. Constitution, and more, all free and freely available to anyone with a computer and an Internet connection.  If you have a Kindle, Nook, iPad or other eBook reader, you can thank Michael for eBooks.

Michael S. Hart Obituary at Project Gutenberg.

Posted in News, Technology | Leave a comment

‘Explosive Growth’ of Malware SPAM

Published September 14, 2011 | By InetDaemon

From M86 Security Labs comes a blog post showing ‘explosive’ growth in malicious spam, originating from the Cutwail, Festi and Asprox botnets.

Posted in Malware Alerts, Security | Tagged , , | Leave a comment
Page 1 of 2412345...1020...Last »

Upcoming Events

Support InetDaemon.Com

Recent Comments

TUTORIALS [ BASICS | COMPUTERS | INTERNET | SATELLITE | SECURITY | TELECOM | WORLD WIDE WEB | TROUBLESHOOTING ]

YOUR DONATIONS SUPPORT THE CONSTRUCTION OR COMPLETION OF TUTORIALS THROUGHOUT THIS SITE

STANDARD DISCLAIMER | Comments and Suggestions | FAQ's | About InetDaemon.Com | About InetDaemon | Acceptable Use Policy | Privacy Policy

Copyright 2012, Top, RSS Feeds, , InetDaemon

Designed by John M. Patterson.