Talos (a Cisco subsidiary) has found a vulnerability in the popular software 7-Zip. It exists in the code that handles the UDF files (Uniform Disk Format). This fault is in the file which handles DVD video and audio, and it’s used for other optical disk formats, and involves flawed input validation. This flaw has been fixed in the 7-Zip v. 16.0 released this month. Sooo…if you, like many, use 7-Zip, PLEASE UPDATE your software to protect from attacks targeting thi...

  Eight universities will be working with IBM and a cloud based version of Watson to better understand how to detect and fight cybercime. The computer will be fed huge amounts of data and system security reports including IMB’s X-Force library which contains more than 100K of documented vulnerabilities. They hope this will also bridge gaps in knowledge of individuals working in IT security. One of Watson’s pluses is that it can work with unstructured data, since the average organizatio...

  Folds like a book, lighter than the weight requiring an FAA license (less than 250 grams)…your own paparazzi and faithful puppy. This is truly cool…even the holes for air are too small to allow adult fingers to be hurt. It hovers and follows or leads…you can play a sort of frisbee game with it…a $600 frisbee, that is. Anyway, it’s here: http://gethover.com/   Nice article at Engadget: http://www.engadget.com/2016/04/26/hover-camera-drone-zero-zero-robotics/...

  The reason I’m writing this is because I saw the review on The Windows Club and wanted to add my two cents to Ankit Gupta’s review. This is NOT an “instead of” app. This will not replace your current AV software. But no AV software is perfect, even if you’re an exemplary user of the internet, with great browsing habits (you do use a guest account to browse, right?) is perfect. The AV test results themselves show that. So…if something sneaks by what do you do. You sh...

  Gmail, Yahoo, Hotmail and Mail.ru and perhaps more, have leaked usernames, email addresses and unencrypted passwords. The security firm that discovered the breach, Hold Security, believes that many of the accounts involved in this leak have not been previously leaked. According to its analysis there are over 272 million unique email and unencrypted password pairs, where 42.5 million have not been previously leaked. Hold Security was able to get a hold of the data for ...

  The Windows Club published about a very useful app: “Hardware Identify” which (especially when upgrading or updating) ends the notifications regarding “unknown devices or hardware”. “Hardware Identify will help identify unknown hardware on your system. This program does not help you download drivers but helps let you know what the hardware is so you know what drivers to find. For example say you just reinstalled a computer and the device manager shows multiple ...

  Sorry, Cortana no speaka Chrome, Firefox, Vivaldi, Google, DuckDuckGo…or anything but Edge and Bing. Microsoft's reason for doing so is that the changing of the search provider and browser supposedly compromises the search experience on the operating system. “Unfortunately, as Windows 10 has grown in adoption and usage, we have seen some software programs circumvent the design of Windows 10 and redirect you to search providers that were not designed to work with...

  April 25, 1915…the Australian and New Zealand Army Corps landed at Gallipoli to fight against the Turks, allies of the Germans, in WWI. They waged an eight month fight, and ultimately lost, but they established a tradition of being part of the fight despite the deaths of 8,700 Australians and 2,700 New Zealanders…theirsacrifices were not for naught. This tradition and spirit were rallying cries in WWII, when the ANZAC forces fought Rommel in North Africa, and the Ja...

  Not a big surprise, but yes, the FBI has a vault of “Zero Day” vulnerabilities, and so do other agencies, and not just in the US. This is exactly the opposite of how things “should” be…ideally a vulnerability is found, a patch or fix is created and then published so everyone is a bit safer. This vault of vulnerabilities works exactly the opposite, and everyone is, therefore, a bit less secure. The Tor penetration is an example of this: The browser is Firefox based and was c...

  The Windows Club has published a pretty extensive list of tools to help you if you get zapped. First of all, it’ll probably be Petya or Locky as they’re the most common ones encountered currently. First you have to identify the malware. You upload the ransom note or a file which has been encrypted by the malware (and hope it identifies the malware) here: https://id-ransomware.malwarehunterteam.com/index.php There’s a great list of the tools here: http://www.thew...

  Sorry to relay this to you folks. Apparently his body was discovered at his home in Minnesota early this morning. He had to cancel a few shows recently…the latest because of the “flu”. He sold more than 100 million records in his career, 7 Grammys…who’ll forget “Purple Rain” or “While my Guitar Gently Weeps” in 2004? He was inducted into the Rock and Roll Hall of Fame in 2004, was married twice. Anyway, sorry to...

  Opera already has adblocking, and now it has added a free VPN with unlimited bandwidth (Opera won’t make you pay for the bandwidth you use) which spoofs your IP address. In other words, say you’re sitting in L.A., your browser’s VPN will make it look like you’re in London (or anywhere). It’s free…something which could cost $48/year. So…say a Youtube vid weren’t available in the US, it would be for you since you appear to be in London. The VPN would also keep people from tracking...

  Solid tips…some might not apply if you aren’t running a business, but they can be translated to the family level. The first tip about backups is a great one. The only backup you’ll ever regret is the one you didn’t do. “1. Back up your files regularly and keep a recent backup off-site. The only backup you’ll ever regret is one you left for “another day.” Backups can protect your data against more than just ransomware: theft, fire, flood or accidental deletion ...

  Chrome 50 was released yesterday as a stable version with some new features, but has ended support for several OSs, among them Windows XP, Windows Vista, OS X 10.6, OS X 10.7, and OS X 10.8. Google promised to do that in November 2015, and they’re on time. Older versions on these OSs won’t stop working yet, but they won’t get updated, and Google hasn’t guaranteed that Google account sign in, syncing, etc. will still work. So, if you have one of these older OSs and use C...

My thanks to Martin Brinkmann for his summary of these bulletins...3-4  'Critical' updates, depending on the OS. You can read more here:  http://www.ghacks.net/2016/04/12/microsoft-security-bulletins-april-2016/?_m=3n%2e0038%2e1848%2ehj0ao01hy5%2e1x9g