Can OSX Make Macs Vulnerable To Rootkits?

The software genii at Apple have redesigned their OSX software to allow malware makers to make designer micro-software that can infect Macs with rootkits.

Obviously the feature is one that Apple software experts designed specifically for malware writers, perhaps seeing them as an untapped market.

The bug in the latest version of Apple’s OS X allows attackers root user privileges with a micro code which could be packed into a message.

Security researcher Stefan Esser said that this was the security hole attackers regularly exploit to bypass security protections built into modern operating systems and applications.

The OS X privilege-escalation flaw stems from new error-logging features that Apple added to OS X 10.10. Plainly the software genii did not believe that standard safeguards involving additions to the OS X dynamic linker dyld applied to them because they were protected from harm by Steve Job’s ghost.

This means that attackers to open or create files with root privileges that can reside anywhere in the OS X file system.

“This is obviously a problem, because it allows the creation or opening (for writing) of any file in the filesystem. And because the log file is never closed by dyld and the file is not opened with the close on exec flag the opened file descriptor is inherited by child processes of SUID binaries. This can be easily exploited for privilege-escalation,” Esser said.

The vulnerability is present in both the current 10.10.4 (Yosemite) version of OS X and the current beta version of 10.10.5. Importantly, the current beta version of 10.11 is free of the flaw, an indication that Apple developers may already be aware of the vulnerability.

An Apple spokesman said that engineers are aware of Esser’s post of course they did not say they would do anything about it. They will have to go through the extensional crisis involved in realising that their product was not secure or perfect. Then the security team will have to issue orders, signed in triplicate, sent in, sent back, queried, lost, found, subjected to an internal inquiry, lost again, and finally bury it in soft peat for three months and recycled as firelighters.

Source

Can Oracle Make Money Off Android?

Database outfit Oracle’s moves to try and copyright APIs appear to be part of an attempt for Oracle to make money on Android.

Oracle has asked a U.S. judge for permission to update its copyright lawsuit against Google to include the Android which it claims contains its Java APIs.

Oracle sued Google five years ago and is seeking roughly $1 billion in copyright claims if it manages to convince a court that its APIs are in Android it could up the damages by several billions.

Oracle wrote in a letter to Judge William Alsup on Wednesday that the record of the first trial does not reflect any of these developments in the market, including Google’s dramatically enhanced market position in search engine advertising and the overall financial results from its continuing and expanded infringement.

Last month, the US Supreme Court upheld an appeals court’s ruling that allows Oracle to seek licensing fees for the use of some of the Java language. Google had said it should use Java APIs without paying a fee.

Source

Microsoft Unveils ‘Send’ Mobile App

Microsoft unveiled a mobile-minded alternative to email that’s focused primarily on short, quick messages.

Named Send, the new tool aims to deliver a simple experience much like that offered by text messaging or instant messaging software but without the need to know a co-worker’s mobile number or username. Instead, Send lets users quickly fire off a message to any co-worker using just their email address; no subject line, salutations or signatures are required.

“On my way,” might be one example, or “Are you in the office today?”

The app connects to Office 365 business and school email accounts to find frequent and recent contacts; users need only tap on one to start a conversation. A “Quick Reply” option allows for speedy responses.

That Office 365 connection, meanwhile, also means conversations are synced with Outlook, letting users continue them from anywhere. Messages sent using Send are treated internally like any other work email and comply with an organization’s email compliance policies, Microsoft said.

Send is now available free for iPhone through the Microsoft Garage in the U.S. and Canada. Versions for Windows Phone and Android are coming soon, as are additional IT controls. Currently the app works with Office 365 business and school email accounts, but Microsoft plans to make it more broadly available in the coming months, it said.

Source

Microsoft To Open Source Radio Code

Microsoft has begun to open source some more of its code, this time for the Microsoft Research Software Radio (Sora).

“We believe that a fully open source Sora will better support the research community for more scientific innovation,” said Kun Tan, a senior researcher on the Sora project team.

Sora was created to combat the problem of creating software radio that could keep up with the hardware developments going on around it.

The idea behind it is to run the radio off software on a multi-core PC running a basic operating system. In the example, it uses Windows. But then it would.

A PCIe radio control board is added to the machine with signals processed by the software for transmission and reception, while the RF front-end, with its own memory, interfaces with other devices.

The architecture also supports parallel processing by distributing processing pipelines to multiple cores exclusively for real-time SDR tasks.

Sora has already won a number of awards, and the Sora SDK and API were released in 2011 for academic users. More than 50 institutions now use it for research or courses.

As such, and in line with the groovy open Microsoft ethos, the software has now been completely open sourced, with customizable RF front-ends, customizable RCB with timing control and synchronization, processing accelerators and support for new communication models such as duplex radios.

The Sora source code is now up on GitHub. Use cases already in place include TV whitespace, large scale MIMO and distributed MIMO systems.

Microsoft has made a number of moves towards open sourcing itself over the past year. Most notably, The .NET Framework at the heart of most Windows programs was offered up to the newly created .NET Foundation.

It was announced yesterday that Google is releasing its Kubernetes code to the Linux Foundation to set up a standardized format for containerization.

Source

Oculus Buys Pepple

Facebook’s Oculus unit announcd that it has agreed to acquire Israeli gesture recognition technology developer Pebbles Interfaces for an undisclosed amount.

The announcement was made in a blog posted by Oculus.

Israel’s Calcalist financial news website said the deal was worth tens of millions of dollars.

While other companies pioneering the virtual reality field focus on full-body movement, Pebbles’ technology detects and tracks hand movement. It is aimed primarily at gamers but also has applications for TV, computers, or smartphone operation while driving.

Recently Pebbles integrated its technology with Oculus glasses, which translate finger gestures into virtual movement through a camera mounted on the glass frame, Calcalist said.

Investors in Pebbles include Chinese mobile phone maker Xiaomi, Israeli venture capital fund Giza and U.S. storage firm SanDisk, Calcalist said.

Source

Is Blackberry Going Android?

BlackBerry Ltd , which has been tight-lipped about its plans to make a mainstream Android smartphone, fueled more speculation about its plans this week when it scooped up two Android-related domain names.

Several blog posts in the last two days have noted that the Canadian handset maker bought the domain names “AndroidSecured.com” and “AndroidSecured.net” this week. That spurred more chatter that it intends to build a device powered by Google Inc’s  Android platform, which powers the vast majority of smartphones sold across the globe.

The purchase of the domain names is particularly interesting since BlackBerry Chief Executive John Chen has declined to confirm a June Reuters report that said the company was planning an Android phone.

Speculation that BlackBerry will embrace Android was also spurred this week by a Digitimes report that said the company plans to roll out several models of Android-based phones.

In the past three weeks, however, Chen has said at least twice that he would only build an Android phone if he can “secure Android”.

BlackBerry downplayed the significance of its domain name purchases in an email on Friday, saying: “BlackBerry frequently registers domain names to support the breadth of our cross-platform portfolio. Android is an important part of our cross-platform enterprise software strategy.”

Indeed, one of the domains, “AndroidSecured.com”, currently redirects users to a BlackBerry enterprise-focused site.

But that has not stopped a barrage of chatter on tech blogs about the purchases being part of BlackBerry’s plan to build its own secure Android, going beyond supporting existing Android phones on its BES12 device-management system. BES12 allows corporate and government clients to secure Android-, iOS-, Windows- and BlackBerry-powered devices on their networks.

Under the leadership of Chen, the Waterloo, Ontario-based company has been pivoting toward software and device management as its recent devices, powered by its BlackBerry 10 software, have failed to win mass appeal. Analysts and tech gurus believe a move to Android could give BlackBerry’s device arm a new lease on life.

Source

PC Sales Continue The Downward Trend

Gartner is reporting the biggest slump in PC sales for almost two years. The second quarter report saw 68.4 million units shifted in the three-month period, a year-on-year reduction of 9.4 percent, and the steepest drop in seven quarters.

What’s more, the prediction is that the next quarter will see a further reduction of 4.4 percent.

It seems that the dislike of Windows 8, coupled with the impending arrival of Windows 10, has battered the sales of new PCs.

The fact that most PC users will be entitled to a free upgrade, coupled with the fact that chip and RAM technology haven’t moved on at a spectacular pace this year, has created a perfect storm among consumers who are waiting it out for their machines to be born again on 29 July (or 30, or 31, or possibly 1 August).

If you’re reading this and thinking ‘It’s just a dying market’ you’re not wrong, but you have only to look at today’s IDC figures to see that this really is made of Microsoft.

IDC is even more pessimistic than Gartner, quoting 66.1 million units, down 11.8 percent year on year.

But more importantly, when drilled down to the OEMs, you can see where the real problem lies. Apple is the only company in the top five not rooted in the Windows ecosystem.

It is also the only manufacturer to see a rise in its market share, and is now the fourth biggest vendor in the world, up 16.1 percent. Acer at number five has seen its share plummet by 25.9 percent.

Things were a bit rosier this time last year, because businesses were migrating away from Windows XP (not all of them, mind). This year, there’s no ballast and a lot of hesitation to see exactly how Windows 10 does before big orders start being deployed in enterprises.

“The price hike of PCs became more apparent in some regions due to a sharp appreciation of the US dollar against local currencies,” said Mikako Kitagawa, principal analyst at Gartner.

“The worldwide PC market experienced unusually positive desk-based growth last year due to the end of Windows XP support. After the XP impact was phased out, there have not been any major growth drivers to stimulate a PC refresh.”

IDC’s Loren Loverde, VP of worldwide PC trackers and forecasting, said: “We’re expecting the Windows 10 launch to go relatively well, though many users will opt for a free OS upgrade rather than buying a new PC.

“Competition from 2-in-1 devices and phones remains an issue, but the economic environment has had a larger impact lately, and that should stabilize or improve going forward.”

Meanwhile, Apple, despite having a tiny market share for its OS X operating system at just 7.5 percent, according to this month’s Netmarketshare figures, has managed to avoid being the winner or loser OEM by being the referee, which is a nice trick if you can do it.

Both analyst firms see the top three remaining as Lenovo, HP and Dell. Nothing to see there.

Source

Microsoft Drops Ad Business

Microsoft Corp that it will hand over its display advertising business to AOL Inc and sell some map-generating technology to ride-hailing app company Uber, as it scales back on unprofitable operations.

The moves mean Microsoft will focus on its growing search advertising business based on its Bing search engine, and displaying maps on its Windows devices rather than generating the maps themselves.

Microsoft, which employs hundreds of people in its display ad business around the world, said those employees would be offered the chance to transfer to AOL and that it was not making any layoffs.

The world’s largest software company no longer breaks out results for its online operations, chiefly its MSN web portal and Bing, but they have lost more than $10 billion over the past five years. Chief Executive Satya Nadella has said Bing will turn a profit next fiscal year.

“Today’s news is evidence of Microsoft’s increased focus on our strengths: in this case, search and search advertising and building great content and consumer services,” saidMicrosoft in a statement.

Under a 10-year deal struck with AOL, now a unit of Verizon Communications Inc ,AOL will sell display ads on MSN, Outlook.com, Xbox, Skype and in some apps in major countries. As part of the deal, Bing will become the search engine behind web searches onAOL starting next year.

Microsoft also struck a multi-year extension to its existing deal with AppNexus, which provides the tech platform for buyers to purchase online ads.

Microsoft and Uber did not disclose financial terms of their deal, under which Uber will take over the part of Microsoft’s mapping unit that works on imagery acquisition and map data processing. Uber will offer jobs to the 100 or so Microsoft employees working in that area, according to a source familiar with the deal.

Source

Yahoo Beefs Up Mobile Search

Yahoo is beefing up its search service on mobile devices, following Google’s lead by highlighting content such as images, videos and reviews ahead of regular search results

The changes will apply to Yahoo search on the mobile web in the U.S., in browsers such as Safari and Chrome. Yahoo’s mobile app and desktop site already provide some additional content within results.

A search on the mobile web for Barack Obama, for instance, displays information about him from Wikipedia, such as his height and birth date, as well as links to news, images and YouTube videos. In one search Thursday, the videos included some curious choices, including “Barack Obama is Illuminati.”

Google already highlights a variety of content related to search queries, including news and related tweets, as well as links to other services like Maps. Microsoft’s Bing does something similar.

Because Yahoo is playing catch-up, the changes might not attract many new users, but they could help it retain people who use Yahoo for mobile searches today.

In the last quarter of 2014, mobile accounted for half of Yahoo’s search traffic in North America, up from 32 percent during the same period in 2013, according to research firm eMarketer.

Source

Will Blackberry Embrace Android?

BlackBerry Ltd’s move to embrace Android, although geared towards lifting revenue from its software and device management segment, could inadvertently give its device arm a new lease on life.

“From the standpoint of marketing, this is a great way for BlackBerry to get visibility. It really doesn’t hurt them much, and the upside is high,” said Rob Enderle, who runs technology consulting firm Enderle Group.

Enderle and other financial and tech analysts agree that the move by BlackBerry does present its own set of challenges as the company would have to support two platforms and potentially put some resources into marketing an Android device, but with little to lose most agree it comes with little downside.

“If Android has one significant weakness it is security and that’s just the thing that BlackBerry can fix, so it could play out pretty well and I am actually quite surprised that they did not try this sooner,” said Enderle, adding that BlackBerry has to deliver a compelling device in order for the gambit to work.

Reuters reported last week that BlackBerry was considering a move to test run Android on its upcoming slider device, as part of a bid to convince potential corporate and government clients that its device management system, BES12, is truly able of manage and secure not just BlackBerry devices, but also devices powered by Google’s Android, Apple’s iOS and Microsoft’s Windows operating system.

“In order for BES12 to succeed it has to be viewed by all as platform agnostic, and what better way to demonstrate that other than by doing it yourself,” said Ramon Llamas, an analyst with technology research firm IDC.

BlackBerry, which once dominated the smartphone market, has seen its market share drop to under 1 percent, as the iPhone and a slew of Android devices from Samsung have captured market share. John Chen, a turnaround expert brought in to fix its slide, is now pivoting BlackBerry to focus more on its well-regarded software and device management business.

Source

« Previous Page — Next Page »