Users of Internet Explorer, the world's most popular web browser, are at risk of having their computers hijacked because of a security flaw.


By Matthew Moore
Last Updated: 2:22PM GMT 16 Dec 2008

The flaw allows criminal gangs to take control of people's computers and steal their personal information when they visit websites that have been corrupted by malicious hackers.

It is believed that as many 10,000 sites have been compromised since last week.

Microsoft said that it had detected attacks on machines using Internet Explorer 7, the most widely-used version of the browser, but that other versions are "potentially vulnerable".

"We are actively investigating the vulnerability that these attacks attempt to exploit," the firm, which also makes the Windows operating system, said in a security statement.

Read More Here

A virus dubbed as "Koobface" is infiltrating Facebook's 120 million users by using the social network's messaging system to infect PCs, and get credit card numbers.

This is the most recent attempt of hackers looking to take advantage of users on social network sites.

"A few other viruses have tried to use Facebook in similar ways to propagate themselves," Facebook spokesman Barry Schnitt said in an e-mail. He said a "very small percentage of users" had been affected by these viruses

"It is on the rise, relative to other threats like e-mails," said Craig Schmugar, a researcher with McAfee Inc.

Read More Here

In today's technological world we leave electronic traces wherever we go, whether shopping online or on the high street, at work or at play. That data is the raw material for a new industry of number crunchers trying to explain and influence human behaviour, as Stephen Baker explains in his new book The Numerati.

In the book, Baker meets the maths whizzes at the bleeding edge of this new way of doing business, politics, and even matchmaking.

You might be surprised at some of the things Baker's "numerati" want to know and can already find out about you. Read on for some examples taken from the book, and click here to read our full review.

Read More Here

PCLinuxOS (also known as PCLOS) is an installable Live CD distribution based on the Mandriva Linux operating system. While PCLinuxOS tries to be a very elegant Linux desktop, on the other hand its main aim is to be easy to use by everyone who dares to try a Linux distribution. Looking back in time (a few years), PCLinuxOS project was started as a set of RPM packages created to improve Mandriva Linux distros (Mandrake was called at that time) and Texstar is responsible for the PCLinuxOS Linux distribution, which was created in 2003 as a fork of the Mandrake Linux 9.2.

Today, the PCLinuxOS project is proud to have three more "brothers": MiniMe (a minimal Live CD/HDD install with a basic KDE desktop environment), Junior (a self booting Live CD with advanced hardware detection) and Big Daddy (aka PCLinuxOS Full Edition). But wait, PCLinuxOS has more relatives (because of a nice script, which comes with the system, that can remaster the whole distribution). Here is a list with some of them:

Read More Here

Internet worm exploits Windows vulnerability
Posted by Elinor Mills

A worm dubbed Win32/Conficker.A is making the rounds on Windows machines, exploiting a security hole that Microsoft released a patch for in October, Microsoft said on Wednesday.

The number of attacks have increased over the past couple of days, exploiting a critical vulnerability that was addressed by security update MS08-067.

The malware mostly was spreading inside corporations, but also hit several hundred home PCs, Microsoft said in a posting on the Microsoft Malware Protection Center Blog.

"It opens a random port between port 1024 and 10000 and acts like a Web server. It propagates to random computers on the network by exploiting MS08-067. Once the remote computer is exploited, that computer will download a copy of the worm via HTTP using the random port opened by the worm. The worm often uses a .JPG extension when copied over and then it is saved to the local system folder as a random named dll," the posting said.

"It is also interesting to note that the worm patches the vulnerable API in memory so the machine will not be vulnerable anymore. It is not that the malware authors care so much about the computer as they want to make sure that other malware will not take it over too," Microsoft said.

Most of the infections are in U.S. PCs, but there have been reports from Germany, Spain, France, Italy, Taiwan, Japan, Brazil, Turkey, China, Mexico, Canada, Argentina, and Chile. The worm avoids infecting Ukrainian computers, for some reason, Microsoft said.

Several bots, under the generic name Backdoor:Win32/IRCbot.BH, also are exploiting the security hole. They drop a backdoor Trojan that connects to an IRC server to receive commands.

n response to popular concerns with online credit card fraud, Visa Europe has announced a newly designed credit card, complete with a keypad and digital number display, according to the Daily Mail.

While the credit card is of the usual size and features a credit card number and magnetic strip for use with conventional card readers, it does not have a security code number in the traditional sense. Instead, cardholders will enter their PIN into the keypad, which will then generate a random number on the display. This random number will serve as the cardholder's one-time security code, which can then be entered to make online purchases.

Read More Here