‘Stegano’ Malvertising Exposes Millions To Hacking
December 13, 2016 by admin
Filed under Around The Net
Comments Off on ‘Stegano’ Malvertising Exposes Millions To Hacking
Since October, millions of internet users have been exposed to malicious code embedded in the pixels from tainted banner ads designed to install Trojans and spyware, according to security firm ESET.
The attack campaign, called Stegano, has been spreading from malicious ads in a “number of reputable news websites,” ESET said in a Tuesday blog post. It’s been preying on Internet Explorer users by scanning for vulnerabilities in Adobe Flash and then exploiting them.
The attack is designed to infect victims with malware that can steal email password credentials through its keylogging and screenshot grabbing features, among others.
The attack is also hard to detect. To infect their victims, the hackers were essentially poisoning the pixels used in the tainted banner ads, ESET said in a separate post.
The hackers concealed their malicious coding in the parameters controlling the pixels’ transparency on the banner ad. This allowed their attack to go unnoticed by the legitimate advertising networks.
Victims will typically see a banner ad for a product called “Browser Defense” or “Broxu.” But in reality, the ad is also designed to run Javascript that will secretly open a new browser window to a malicious website designed to exploit vulnerabilities in Flash that will help carry out the rest of the attack.
Hackers have used similar so-called malvertising tactics to secretly serve malicious coding over legitimate online advertising networks. It’s an attack method that has proven to be a successful at quickly spreading malware to potentially millions.
The makers behind the Stegano attack were also careful to create safeguards to prevent detection, ESET said. For instance, the banner ads will alternate between serving a malicious version or a clean version, depending on the settings run on the victim’s computer. It will also check for any security products or virtualization software on the machine before proceeding with the attack.
ESET declined to name the news websites that were found unknowingly displaying the malicious ads, but cautioned that the attack was widespread, and could have been hosted through other popular sites as well.
Source-http://www.thegurureview.net/aroundnet-category/stegano-malvertising-ads-expose-millions-of-online-users-to-hacking.html
Does M$ Have A Strategy For Windows?
As we reported earlier today, Microsoft CEO Satya Nadella proclaimed the virtues of its cloud computing platform.
But he didn’t say very much about Windows at all.
And, according to Seeking Alpha financial analyst Mark Hibben in a note to his clients, it’s almost as if Nadella has given up the ghost on the now long in the tooth operating system.
He didn’t say much about smartphones either but admitted that Windows 10 won’t hit the one billion user mark.
But there are another billion and a bit people out there who are using previous versions of Windows and Hibben thinks that that’s Microsoft should really take advantage of that opportunity.
Hibben thinks that while Nadella is practically creaming himself about the cloud the same sort of urges don’t seem to apply to Windows.
Windows phone revenues have fallen 71 percent compared to the same period last year and Microsoft seems to lack a strategy for smartphones in the future.
So has Microsoft given up on Windows? That, surely, can’t be the case.
Courtesy-Fud
Windows 10 Passes 20% User Share Mark
For the first time since its debut, Windows 10 accounted for more than one-fifth of the visits to sites tracked by the Digital Analytics Program (DAP), which mines traffic to more than 4,000 websites on over 400 different domains maintained by U.S. government agencies, such as the Internal Revenue Service and the National Weather Service.
The bulk of the visits to DAP websites originate in the U.S.
So far Windows 10 has recorded 20.2% of visits in March by Windows PCs, smartphones and tablets. That was a one-percentage point increase from February and more than two percentage points above January’s.
Although Microsoft irregularly trumpets the number of devices running Windows 10 — the last time was nearly three months ago — data from DAP and metrics vendors like Net Applications and StatCounter are the only publicly available sources for monitoring Windows 10 adoption.
But these external measurements are rough at best.
A case in point: Because overall traffic to DAP websites plummets on weekends — total visits by Windows devices on Saturday and Sunday are typically less than half that of a weekday — Windows 10 may be unrepresented, as more Windows PCs used during the work week are business machines, which predominantly run the corporate standard, Windows 7.
Microsoft has just over four months left to boost Windows 10 adoption by pushing the free upgrade to eligible Windows 7 and 8.1 devices. That deal is set to expire July 29, on the one-year anniversary of Windows 10′s launch.
Windows 10 adoption growth has slowed each month this year. At the pace of past three months, Windows 10 should account for approximately 26% of DAP’s traffic by the end of July. (Other data sources have repeatedly portrayed global adoption of Windows 10 at lower rates than in the U.S.)
Will that match whatever goal Microsoft set when it decided to give away upgrades? Microsoft’s not saying, and even if it did, there would be no way to verify any claim.
Source- http://www.thegurureview.net/computing-category/windows-10-passes-20-user-share-mark.html
Is Yahoo Growing?
July 9, 2015 by admin
Filed under Around The Net
Comments Off on Is Yahoo Growing?
Yahoo’s share gains since November from a partnership with Mozilla may be a clue about whether the search company can gain new users through the just-announced contract to change Internet Explorer’s and Chrome’s default search through installations of Oracle’s Java.
Although the news of the Yahoo-Oracle partnership got the lion’s share of attention, CEO Marissa Mayer also used last week’s shareholder meeting to mention the Mozilla pact.
The five-year contract with Mozilla, the maker of Firefox, has boosted Yahoo’s share of the U.S. search market, but growth has stalled for the last three months, according to measurement company comScore.
On Wednesday, Mayer asserted that the Mozilla deal — negotiated last fall — was “profitable,” but didn’t provide any numbers to back that up. Neither Yahoo nor Mozilla has disclosed how much the former paid to become Firefox’s default search engine in the U.S.
By comScore’s measurement, Yahoo accounted for 12.7% of all U.S. searches in May, the same share it controlled in both March and April. Although that was 2.5 percentage points higher than in November 2014 — before Firefox began urging users to accept Yahoo as the default — and represented a six-month increase of 25%, May’s share was down from the January peak of 13%.
From all indications, Yahoo has gotten as much out of the Firefox deal as it will likely get. The flip-side is that Yahoo has hung onto most of what it grabbed from Google — Firefox’s previous default — even as Google has tried to get users to return.
For May, comScore pegged Google’s share at 64.1%, down one-tenth of a percentage point from the month prior. Microsoft’s share rose that one-tenth of a point to end May at 20.3%. Because Bing powers Yahoo’s search results, Microsoft’s technology accounted for 31.4% of all U.S. searches, still less than half Google’s 65.2%.
Zeus Attached To Cancer Email Scam
March 28, 2014 by admin
Filed under Around The Net
Comments Off on Zeus Attached To Cancer Email Scam
Thousands of email users have been hit by a sick cancer email hoax that aims to infect the recipients’ computers with Zeus malware.
The email has already hit thousands of inboxes across the UK, and looks like it was sent by the National Institute for Health and Care Excellence (NICE). It features the subject line “Important blood analysis result”.
However, NICE has warned that it did not send the malicious emails, and is urging users not to open them.
NICE chief executive Sir Andrew Dillon said, “A spam email purporting to come from NICE is being sent to members of the public regarding cancer test results.
“This email is likely to cause distress to recipients since it advises that ‘test results’ indicate they may have cancer. This malicious email is not from NICE and we are currently investigating its origin. We take this matter very seriously and have reported it to the police.”
The hoax message requests that users download an attachment that purportedly contains the results of the faux blood analysis.
Security analysis firm Appriver has since claimed that the scam email is carrying Zeus malware that if installed will attempt to steal users’ credentials and take over their PCs.
Appriver senior security specialist Fred Touchette warned, “If the attachment is unzipped and executed the user may see a quick error window pop up and then disappear on their screen.
“What they won’t see is the downloader then taking control of their PC. It immediately begins checking to see if it is being analysed, by making long sleep calls, and checking to see if it is running virtually or in a debugger.
“Next it begins to steal browser cookies and MS Outlook passwords from the system registry. The malware in turn posts this data to a server at 69.76.179.74 with the command /ppp/ta.php, and punches a hole in the firewall to listen for further commands on UDP ports 7263 and 4400.”
LinkedIn Beefs Up
April 2, 2013 by admin
Filed under Around The Net
Comments Off on LinkedIn Beefs Up
LinkedIn has re-tooled its search engine with changes designed to make it easier for members to find information on the business networking site, whose volume of content has increased and grown more diverse in recent years.
Launched in 2003, LinkedIn initially focused on giving professionals a place to feature their resumes and career bios, as well as connect with peers and colleagues, but the site has progressively become more interactive and houses a much larger repository of data beyond individual profiles.
For example, almost 3 million companies have set up corporate pages, more than 1.5 million groups have been created, the site features a jobs section, and individuals and publishers are able to post and share comments and links to articles.
So it’s not surprising for LinkedIn to focus on improving its search engine, which fielded 5.7 billion queries last year.
LinkedIn members have until now had to run separate queries for groups, companies, jobs and other professionals, but that’s changing with the upgraded search engine.
“Now, all you need to do is type what you’re looking for into the search box and you’ll see a comprehensive page of results that pulls content from all across LinkedIn including people, jobs, groups and companies,” Johnathan Podemsky, a LinkedIn product manager, wrote in a blog post on Monday.
Users can still segment results, so as to see only job results, for example.
The LinkedIn search engine is also gaining auto-complete and suggested-searches functionalities to help people fine-tune query terms. In addition, the search engine will log members’ search queries and “learn” from them in order to deliver more relevant results.
It will also be possible for users to save search queries and be alerted about new or changed search results. The advanced search option has also gained more search filters, including location, company and school.
However, the search engine still doesn’t include content from the company’s SlideShare site, which about 60 million monthly visitors use to upload, share, rate and comment on primarily slide presentations, but also documents, videos and webinars.
Also, the search improvements are being applied to the main site, not to the mobile apps, although doing so is something the company is looking into, according to a spokeswoman.
LinkedIn started to roll out the new search features on Monday, and expects to finish delivering them to every member worldwide in the coming weeks.
As of the end of 2012, LinkedIn had topped 200 million registered members located in more than 200 countries.
Samsung And Yahoo Ink A Deal
November 14, 2012 by admin
Filed under Around The Net
Comments Off on Samsung And Yahoo Ink A Deal
Yahoo announced a deal on Tuesday with Samsung to integrate its Broadcast Interactivity service into the company’s Smart TVs.
The agreement will allow Yahoo to push real-time content alongside TV shows and advertisements on Samsung TVs, such as “subtle, on-screen prompts” that inform viewers of additional content that they can watch.
“With the touch of a remote, connected tablet or phone, Samsung Smart TV viewers can easily surface content or offers related to the TV shows and commercials they are watching,” Samsung said.
TV programmers can use the integration feature to provide Samsung TV customers with “complementary content” such as trivia, additional information about the show being watched and interactive gaming.
Showtime Networks and National Geographic Channel are two of the first TV programming partners that will take advantage of the agreement, Yahoo said.
If TV ads aren’t annoying enough, Yahoo said the partnership also creates new forms of advertising by “extending traditional 30-second commercials into immediate actions”.
In other words, with broadcast interactivity enabled commercials, advertisers can embed “calls-to-action” for downloading apps or digital media, providing coupons, ordering samples, reading reviews or viewing product information. Just in case you really want to know more about that Mr Muscle sink unblocker, or the next JML cleaning gadget that is set to transform your home life forever.
Google Search To Add Default Encryption
October 25, 2011 by admin
Filed under Around The Net
Comments Off on Google Search To Add Default Encryption
Google is implementing over the next few weeks default encryption using SSL on searches for users signing in with their accounts, the company said Tuesday.
The move comes over a year after Google made SSL the default setting for Gmail, and also unveiled an encrypted search service.
“As search becomes an increasingly customized experience, we recognize the growing importance of protecting the personalized search results we deliver,” Google’s product manager, Evelyn Kao said in a blog post on Tuesday.
The encryption is expected to be particularly useful for people using an unsecured Internet connection, such as a Wi-Fi hotspot in an Internet cafe, Kao added.
With Google search over SSL, users get an end-to-end encrypted search channel between their computer and Google. The secured channel helps protect search terms and search results pages from being intercepted by a third party, Google said in a description of SSL search.
Over the next few weeks, users will be redirected to a secure search site when they are signed in with their Google Account. The change encrypts search queries and Google’s
results page.
Users can also navigate directly to the secure search site if they are signed out or don’t have a Google Account.
Google Rewrites Web Pages For Speed
August 2, 2011 by admin
Filed under Around The Net
Comments Off on Google Rewrites Web Pages For Speed
Google has created a hosted service that analyzes Web pages, rewrites their code to make them perform better and serves them up from Google servers.
To use the Page Speed Service, Web publishers must sign up and point their site’s DNS entry to Google. The service grabs the site’s content, optimizes it for speed and delivers the pages to end users.
Visitors will continue to access a site in the same way as before but could see speed enhancements of 25% to 60%, according to Google.
The service is currently being offered free to a limited number of hand-selected webmasters. Google will announce pricing and other details later. Webmasters can sign up to receive information.
Tablets Boosts Corporate Spending on Wi-Fi
Comments Off on Tablets Boosts Corporate Spending on Wi-Fi
The ever increasing popularity of tablets and smartphones has boosted sales of Wi-Fi equipment to new heights as businesses upgrade their wireless networks, analysts reported earlier this month.
Worldwide sales of wireless LAN equipment rose to $769 million in the fourth quarter of 2010, up 28% from the same period in 2009, according to Infonetics Research. Research firm Dell’Oro Group reported that for the full year, wireless network revenue surged by 25%, surpassing $5 billion. Read More……