Month: November 2007

No blog entry here for 12 days and sorry for that.  I faced an issue on 5 year old desktop and only today I figured what to do or shall I say… work-around. First issue:  Vista and the 5 year old desktop is sick of BSOD on nvlddmkm.sys.  Problem Reports and Solutions in Vista is flooded with LiveKernel Event log.  Like many NVIDIA users who is experiencing the said TDR error (see their forum on Forceware driver), I have tried installing the latest stable and even their beta driver on Vista. Result:  No joy.  The desktop is unusable most of … Continue reading What a 12 days …

Symantec Corp. today announced it has signed a definitive agreement to acquire Vontu, the leader in Data Loss Prevention (DLP) solutions, for $350 million, which will be paid in cash and assumed options. The acquisition is expected to close in the fourth calendar quarter of 2007, subject to receiving regulatory approvals and satisfaction of other customary closing conditions. More at http://www.marketwire.com/mw/release.do?id=789022 Proposed Vontu Acquisition and Data Loss Prevention to Play a Central Role in Symantec’s Security 2.0 Vision and Strategy for Information Risk Management Combining Symantec’s market-leading security and storage capabilities with Vontu’s market-leading DLP technologies will create the most … Continue reading Symantec to Acquire Vontu; Symantec to Extend Its Leadership in Information-Centric Security

Microsoft Security Advisory (944653)Vulnerability in Macrovision SECDRV.SYS Driver on Windows Could Allow Elevation of PrivilegePublished: November 5, 2007 Microsoft is working with Macrovision, investigating new public reports of a vulnerability in the Macrovision secdrv.sys driver on supported editions of Windows Server 2003 and Windows XP. This vulnerability does not affect Windows Vista. We are aware of limited attacks that try to use the reported vulnerability. Microsoft is actively monitoring this situation to keep customers informed and to provide customer guidance as necessary. Upon completion of this investigation, Microsoft will take the appropriate action to help protect our customers. This will … Continue reading Microsoft Security Advisory (944653)

Microsoft MVP Ken Howey (aka YoKenny) remind users of Windows 98/ME to adjust to the correct time since DST occured Sunday. If you don’t know how to fix it in your Windows 98/ME system, see the discussion at http://www.dozleng.com/updates/index.php?showtopic=16148

The concept of using CAPTCHA tests to defeat automated attacks is reaching the end of its useful life. Read more at http://www.eweek.com/article2/0,1759,2211589,00.asp?kc=EWRSS03129TX1K0000614

A recent study performed by U.K. security vendor Prevx of 300,000 PCs showed that 15.6 percent of those machines had at least one active spyware or malware program installed. These programs, which include keyboard loggers that record keystrokes, information stealers and fake antispyware, are emerging at rates of 5,000 to 10,000 per day, company officials say. Of these 300,000 PCs, the ones with no security software installed at all had infections rate 60 percent higher than those running some sort of antivirus, antimalware, or other security program. http://www.pcworld.com/article/id,139228-c,onlinesecurity/article.html

Heads-up for Thunderbird users 🙂 Below are the fixes to expect when Mozilla officially release v2.0.0.9 of Thunderbird.  Todate, it’s not yet released and release notes is not available too: Changes in 2.0.0.9 (so far): (39) Security issue: (2)Fixed: 307788 – if Kerberos tickets don’t exist when launching T-Bird, get Krb Ticket Manager to prompt for themFixed: 380744 – Thunderbird reports “unable to decrypt” on truncated decryptable messages Topcrash: (1)Fixed: 316543 – crash when opening message compose window Crash: (3)Fixed: 351783 – Thunderbird crash on sending a return receiptFixed: 374240 – Thunderbird crash on exitFixed: 382480 – TB Crash [@ … Continue reading Upcoming Thunderbird 2.0.0.9 contains security fixes

SYM07-028 – Symantec AntiVirus for Macintosh and Norton AntiVirus for Macintosh Local Elevation of Privilege A feature of Symantec AntiVirus for Macintosh and Norton AntiVirus for Macintosh could be used by members of the group admin to execute code as the root user (uid 0) on the local system. Affected ProductsNorton AntiVirus for Macintosh    9.x-10.xNorton Internet Security for Macintosh    3.xSymantec AntiVirus for Macintosh    10.0Symantec AntiVirus for Macintosh    10.1 SolutionDisable “Show Progress During Mount Scans” in the Mount Scan tab of Auto-Protect System preferences. Note: This vulnerability exists only in products running on the Macintosh platform. It does not exist in … Continue reading Symantec AntiVirus for Macintosh and Norton AntiVirus for Macintosh Local Elevation of Privilege

The SavetheInternet.com coalition and several academics on Thursday filed a complaint with the FCC calling on the commission to stop Comcast from violating customer rights in the wake of reports that the ISP is cutting off service to file-sharing services. http://www.pcmag.com/article2/0,2704,2211047,00.asp

So much for Mac users avoiding bugs, worms, and other security nuisances. A Trojan targeting Macs is on the loose, and it’s hanging out on porn sites, according to security researchers. http://www.newsfactor.com/news/Mac-Users-Targeted-with-Nasty-Malware/story.xhtml?story_id=0020002HDFU8 Related news:  Fortress Mac Is Gone