Security Alerts

Browser Plugin Vulnerability Alerts

Normally, I don’t re-post from my Firefox Blog, but these browsers plugin vulnerabilities affect other browsers (such as Chrome & Safari) besides Firefox. Dangerous vulnerability in latest Java version Version: Java 7 Update 10 Issue: Can be used for Cyber attacks (even on fully patched Windows machines) Recommend Action: Browser plugin should be disabled or sandboxed (see Work Around below)) Work Around: For those who MUST have Java, use Firefox 17 is or newer. The Java plugin will be installed but ‘sandboxed’. The plugin will not execute/run until the user gives permission ‘click to play‘ on a per site basis. The user will…

Read More

Mozilla Enables Click To Play for Java

Java Release 7 Update 11 (released January 13, 2013) fixes this issue. More info here. In response to the recent news about the major vulnerability found in Java 7 Update 10, Mozilla has enabled click to play for recent versions of Java on all platforms (Java 7u9, 7u10, 6u37, 6u38). This is being done automatically for users who are using Firefox 17 or newer. The Click To Play feature ensures that the Java plugin will not load unless a user specifically clicks to enable the plugin. This protects users against drive-by exploitation, one of the most common exploit techniques used to compromise vulnerable users….

Read More

Dangerous vulnerability in latest Java version

Java Release 7 Update 11 (released January 13, 2013) fixes this issue. More info here. ” The latest Java version, Java 7 Update 10 contains a critical security vulnerability which is reportedly already being used for large scale cyberattacks. Users who have Java installed on their computers should deactivate the Java plugin in their browsers without delay. …” Source: The H Security: News and Features More  Dangerous vulnerability in latest Java version

Read More

Manage Java on your PC

Windows “JavaRa is a sweet little program that allows you to manage Java on your PC. It comes with functionality to uninstall old Java versions, update the Java Runtime Environment (JRE) to the latest version, install the latest version of Java, and perform a number of other features related to Oracle’s Java technology.“JavaRa 2.0 has just been released by its author, … “ Source: Ghacks.net JavaRa 2.0: manage Java on your PC Go get it.

Read More

I have come to the realization now, that I should except any software I download and install to try and sneak bloatware or Malware on to my system. This can be in the form of a browser toolbar or some type of ‘security software’ or Windows optimizer. Avast! has their WebRep extension that is installed into all the browsers on your system. This is suppose to tell you how reputable a site is when you are doing a Google search. Java is partnering now with McCrappy McAfee. Waterfox now serves up a bunch of stuff from AVG unless you go hunting around the custom install…

Read More

Protect Against the New Actively Exploited Java Vulnerability

This is cross-platform. ” Security researchers have proposed several methods for users to protect their computers from ongoing attacks that target a new and yet-to-be-patched vulnerability in all versions of Java Runtime Environment 7.…“The new vulnerability is considered extremely critical and can be exploited to execute malicious code on a system by simply visiting a maliciously crafted Web page from a Web browser that has the Java plug-in enabled… “ Source: PCWorld Business CenterMore  Six Ways to Protect Against the New Actively Exploited Java Vulnerability

Read More

ALERT: As of version 15 released on August 29th, Waterfox now comes with bloatware and will attempt to install said bloatware without your knowledge or permission. Read more: Waterfox 15 & AVG. Linux and Mac users have enjoyed having a 64-bit versions of Firefox available to them for nearly the past two years. However, for us Windows users, Mozilla has been teasing us and/or dragging their feet with 64-Bit Firefox. As a point of clarification I should say that there has been since Firefox 4 (may be even further back) 64-bit Windows builds on the Nightly Developmental channel. These are not official releases and have never made…

Read More

I recently added Mint 13 to my former Vista Machine which now also runs Windows 7. Mint seemed to have installed fine and I was able to run the MDN ProfileManager for Firefox (still having issues getting it to work for Thunderbird, but not that big of a deal). Everything seemed fine until one night my wireless internet adapter was giving me troubles on my main Windows 7 machine. Since Linux does not support most wireless adapters I was going to boot into Windows on the other machine and see if I could get the adapter to work on that…

Read More

New Flash Update adds Bloatware

Just updated my plugins on my main machine as advised in our post yesterday. When I ran the Adobe Flash Installer,I was asked about how to install updates then when it went to install I noticed it was also installing McAfee Security Scan Plus. I canceled the install (which also deletes the installer file) and went back into Firefox and re-downloaded the installer. Upon running again the first screen was the prompt about how to install updates and then clicking next (or was it continue) takes me to the installation. While it is not unusual for these plugins to come with bloatware,…

Read More

Internet Gets a Hall of Fame

Interesting read.        GENEVA, Switzerland — The best revolutionaries eventually find themselves hailed in tributes and enshrined in museums.     So it’s almost inevitable that nearly 30 years after the official birthdate of the internet, some of the net’s best-known pioneers, radicals, and troublemakers are being inducted into the Internet Society’s Hall of Fame… “ More Source:  Epicenter | Wired.com Address : The Internet Gets a Hall of Fame (Including Al Gore!) April 23, 2012 Go get it.

Read More