Well..this is another vulnerability after a day Google Chrome was released. Google should take this seriously. This features potentially for attacker change the user systems files, registry and drop files without user acknowledge.
Exploits:
- http://www.milw0rm.com/exploits/6355 <POC>
Cheers!
656173747265646576696C
Another browser wars was declared, Google official launched its open-source Google Chrome (beta) browser on 02-Sep-08. The browser design look light and simple. Chrome interface extremely minimalistic and totally provide different outlook experience comparing existing popular browsers IE, Firefox, and etc. For those familiar with firefox browser shortcut key (Crtl + W, Crtl + E, Ctrl +B, Ctrl +D, Crtl + E, Crtl + T and etc), you can get it in Chrome as well.
Another nice feature that come with Chrome is “inspect element“, user can view the source code, styles, object and properties for the Chrome.
Most Visited tab
Network Settings:
Google Chrome shared the same network setting with IE browser network settings.
Various default Search Engine
Inspect Elements
Requirements:
Windows XP with Service Pack2 or later and Windows Vista
Exploits:
First Google Chrome exploits discovered on the same day as official released. Chrome browser will crashed when user moved the mouse pointer to <a href=“EVIL:%”>HERE</a>
- http://www.milw0rm.com/exploits/6353
- http://evilfingers.com/advisory/google_chrome_poc.php <POC>
Although this just Google Chrome beta released with exploited <POC> founded on same day, I believe Google Chrome continuely giving out suprise for users by providing attractive features and better secure browser in the coming days. Hope to see Google Chrome be part of main player within browser market segmet.
Cheers!
656173747265646576696C
Hi,
Currently I am using ubuntu 8.04(x86_x64), and encounter problem when open existing vmware images. It prompt with error message “Unable to change virtual machine power state: Failed to connect to peer process“. The problem solved after installing ia32-libs package.
1. $ sudo apt-get install ia32-libs
Reconfigure again the vmware:
2. $ vmware-config.pl
Thanks for reference from “http://peterdedecker.net/blog/index.php/2005/11/25/vmware_troubles”
Cheers!
656173747265646576696C
Well, based on daily observation that I found out is Social Engineering (security) is too easy. Peoples around me seem don’t have this kind of awareness on how riskly they expose their id card and put their company in cyber threat.
Kind of information such as people name, id, company name can be easily obtain especially in train, restaurant, mall and etc. The valuable gathered informations can be used to obtain the door access code, web login password, computer access, email address and etc. The company P&C information can be easily leaked out once the email company accessed. Don’t think that what I mentioned here is impossible, because lots company don’t pay afford on securing their company assets.
As I concerned here is there have no way to protect the company assets if human factor’s security awareness are not educated.
Example 1:
Company: MAxxx Telco
Employee: JT Pxxx
ID: 04xxx
Example 2:
Company: xxxC Bank
Employee: S Vijaxxxxxxxx
ID: 35xxx4xxx
Starting from today, lets pay extra observation when people are surrounding you. You will surprising on what you get.
Quote: “The quieter you become, the more you are able to hear“
Cheers!
656173747265646576696C
Hi, today I found out one of the website trick user that user system was infected by malwares, and pop-up to install an applications . Any click on that webpage will trigger it to download the installer to user system.
htt p://scanner.msscanner.com/35/?advid=4849&p=101000000
filename:
install_4732_MHwzNXwxMDEwMDAwMDAwfHx8fHx8fHw_.exe
md5:8a41ad493981d77c04fbabb149f8f1e4
According to 28-Aug-08 from www.virustotal.com, this installer contain adware.
Thanks,
656173747265646576696C
How to notifiy user when receive new email in Outlook 2007 ? You can configure it and make it appear in notification area.
Steps:
1. Click Tools –>Options –> Preferences tab
2. Click E-mail Options button
3. Click Advanced E-mail Options button
4. Check “Show an envelope icon in the notification area” to enable the feature.
5. Click OK button to apply the change.
Thanks,
656173747265646576696C
Hi, from my personal experience is malwares can be spread through CDROM or USB removable drive. So the best precautions that can be done on personal systems is to disable the USB removeable and CD-ROM Autorun features. These steps is very simple.
Step 1:
Start –> Run
Step 2:
Browse to
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Policies\Explorer
Export the registry key before do any changes.
Step 3:
Change the “NoDriveTypeAutorun” from value 91(Hex) to FF(Hex); This is to avoid worry for the autorun on devices.
Note: if “NoDriveTypeAutorun” not exist, you can simply create one with assign name “NoDriveTypeAutorun” without quote.
Step 4:
Click File –> Exit
Reboot system to changes take effect.
As usual, do it in your word risk.
Thanks,
656173747265646576696C
