Engadget http://www.engadget.com Engadget http://www.blogsmithmedia.com/www.engadget.com/media/feedlogo.gif Engadget http://www.engadget.com en-us Copyright 2012 Weblogs, Inc. The contents of this feed are available for non-commercial use only. Blogsmith http://www.blogsmith.com/<![CDATA[Stuxnet pinned on US and Israel as an out-of-control creation]]>http://www.engadget.com/2012/06/01/stuxnet-pinned-on-us-and-israel-as-an-out-of-control-creation/http://www.engadget.com/2012/06/01/stuxnet-pinned-on-us-and-israel-as-an-out-of-control-creation/http://www.engadget.com/2012/06/01/stuxnet-pinned-on-us-and-israel-as-an-out-of-control-creation/#comments Stuxnet pinned on US and Israel as an outofcontrol creation

Ever since Stuxnet was discovered, most of the accusing fingers have been pointed at the US, Israel or both, whether or not there was any evidence; it was hard to ignore malware that seemed tailor-made for wrecking Iranian centrifuges and slowing down the country's nuclear development. As it turns out, Occam's Razor is in full effect. An exposé from the New York Times matter-of-factly claims that the US and Israel coded Stuxnet as part of a cyberwar op, Olympic Games, and snuck it on to a USB thumb drive that infected computers at the Natanz nuclear facility. The reason we know about the infection at all, insiders say, is that it got out of control: someone modified the code or otherwise got it to spread through an infected PC carried outside, pushing Obama to either double down (which he did) or back off. Despite all its connections, the newspaper couldn't confirm whether or not the new Flame malware attack is another US creation. Tipsters did, however, deny that Flame is part of the Olympic Games push -- raising the possibility that there are other agencies at work.

[Image credit: David Holt, Flickr]

Stuxnet pinned on US and Israel as an out-of-control creation originally appeared on Engadget on Fri, 01 Jun 2012 14:48:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>cyber warCyberWarflameflash driveFlashDriveinfectioninternetiranisraelmalwarenatanznuclear powernuclear power plantnuclear weaponsnuclear weapons programNuclearPowerNuclearPowerPlantNuclearWeaponsNuclearWeaponsProgramoccams razorOccamsRazorolympic gamesOlympicGamespresident bushpresident obamaPresidentBushPresidentObamastuxnetthumb driveThumbDriveunited statesUnitedStatesususavirusFri, 01 Jun 2012 14:48:00 EST<![CDATA[White House announces anti-botnet initiative]]>http://www.engadget.com/2012/05/30/white-house-anti-botnet-initiative/http://www.engadget.com/2012/05/30/white-house-anti-botnet-initiative/http://www.engadget.com/2012/05/30/white-house-anti-botnet-initiative/#comments White House announces anti-botnet initiative

The White House has been drumming up momentum for tighter internet privacy laws for a while now, and today it's furthering that online safety agenda with a new initiative for combating botnets. Washington just announced a pilot program for fighting viruses, citing a whopping five million PCs infected worldwide this year. The program will use principles outlined by the Industry Botnet Group, with the main goal being to educate internet users on the dangers of cyberspace while preventing botnets from spreading by sharing data about infected computers. The White House is working with the Information Sharing and Analysis Center to develop and implement the "botnet pilot," presumably to enact those anti-virus principles.

White House announces anti-botnet initiative originally appeared on Engadget on Wed, 30 May 2012 22:51:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>anti-virusbotnetbotnetsComputer Viruscomputer virusesComputerVirusComputerVirusesIndustry Botnet GroupIndustryBotnetGroupInformation Sharing and Analysis CenterInformationSharingAndAnalysisCenterinternet privacyInternetPrivacyvirusvirusesviruses computingVirusesComputingwhite houseWhiteHouseWed, 30 May 2012 22:51:00 EST<![CDATA[Exploit uses firewalls to hijack smartphones, turns friends into foes]]>http://www.engadget.com/2012/05/22/exploit-uses-firewalls-to-hijack-smartphones/http://www.engadget.com/2012/05/22/exploit-uses-firewalls-to-hijack-smartphones/http://www.engadget.com/2012/05/22/exploit-uses-firewalls-to-hijack-smartphones/#comments Image

Normally, firewalls at cellular carriers are your best friends, screening out malware before it ever touches your phone. University of Michigan computer science researchers have found that those first lines of defense could be your enemy through a new exploit. As long as a small piece of malware sits on a device, that handset can infer TCP data packet sequence numbers coming from the firewall and hijack a phone's internet traffic with phishing sites, fake messages or other rogue code. The trick works on at least 48 carriers that use firewalls from Check Point, Cisco, Juniper and other networking heavy hitters -- AT&T being one of those providers. Carriers can turn the sequences off, although there are consequences to that as well. The only surefire solution is to either run antivirus apps if you're on a mobile OS like Android or else to run a platform that doesn't allow running unsigned apps at all, like iOS or Windows Phone. Whether or not the exploit is a serious threat is still far from certain, but we'll get a better sense of the risk on May 22nd, when Z. Morley Mao and Zhiyun Qian step up to the podium at an IEEE security symposium and deliver their findings.

Exploit uses firewalls to hijack smartphones, turns friends into foes originally appeared on Engadget on Tue, 22 May 2012 03:18:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>androidATTcellphonecellphonescheck pointCheckPointCiscoCisco SystemsCiscoSystemsexploitfirewallfirewallsgooglegoogle androidGoogleAndroidieeeJuniperjuniper networksJuniperNetworksmalwaremobilepostcrossnetwork firewallnetwork routingNetworkFirewallnetworkingNetworkRoutingpacketpacketsPhishphishingresearchresearchersrouterTCPTCP IPTcpIpuniversity of michiganUniversityOfMichiganvirusvirusesTue, 22 May 2012 03:18:00 EST<![CDATA[Researchers use virus's rogue traits to create electricity from motion]]>http://www.engadget.com/2012/05/15/researchers-use-viruss-rogue-traits-to-create-electricity-from/http://www.engadget.com/2012/05/15/researchers-use-viruss-rogue-traits-to-create-electricity-from/http://www.engadget.com/2012/05/15/researchers-use-viruss-rogue-traits-to-create-electricity-from/#comments berkeley-labs-piezoelectrics-from-virus

Viruses are the swarming bullies of biology, but it turns out their alarming self-replication could one day power your iPod. We've seen them in batteries before, but researchers at Berkeley Labs have now coated electrodes with modified M13 bacteriophage, a harmless bacteria-eating virus, to create the first ever organic piezoelectric material -- which can convert force to electricity. The team explained that such a substance would be non-toxic, organize naturally into thin layers and self-regenerate, giving it a possible advantage over chemical options. In theory, by attaching a thin film of it to your shoes, power could be generated when walking, lending volts to the myriad electronics we pack around nowadays. To see a finger-powered video demo of our frequent-enemies making themselves useful for a change, stroll on past the break.

Continue reading Researchers use virus's rogue traits to create electricity from motion

Researchers use virus's rogue traits to create electricity from motion originally appeared on Engadget on Tue, 15 May 2012 17:41:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>bacteriophagebacteriophagesBerkeleyBerkeley LabsBerkeleyLabsBioElectricbioelectric technologyBioelectricTechnologyelectricityenergyforcegreengreen technologyGreenTechnologypiezopiezoelectricpowerpower generationPowerGenerationrenewable energyRenewableEnergyvirusTue, 15 May 2012 17:41:00 EST<![CDATA[Apple issues Leopard update with Flashback removal tool]]>http://www.engadget.com/2012/05/15/apple-issues-leopard-update-with-flashback-removal-tool/http://www.engadget.com/2012/05/15/apple-issues-leopard-update-with-flashback-removal-tool/http://www.engadget.com/2012/05/15/apple-issues-leopard-update-with-flashback-removal-tool/#comments Apple issues Leopard update with Flashback removal tool

Folks still rocking Apple's Leopard may have been feeling left out after Lion and Snow Leopard both got an update for addressing that Flashback malware. If you're one of them, you'll be glad to know that Apple has finally issued a Leopard fix that comes with a removal tool for the vulnerability afflicting its big cats. In addition to a 1.23MB Flashback update, Apple also released a second 1.11MB fix for Leopard that disables versions of Adobe Flash Player that don't have the requisite security updates. Both should further whittle down the number of Apple computers affected by the Flashback trojan. For the actual updates, feel free to pounce on the source links below.

Apple issues Leopard update with Flashback removal tool originally appeared on Engadget on Tue, 15 May 2012 04:01:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>10.510.610.7adobe flashAdobeFlashapplebotnetdr. webDr.WebflashbackflashfakejavaJava Virtual MachineJavaVirtualMachineleopardlionmalwareos xOsXpatchsecuritysnow leopardSnowLeopardtrojanupdatevirusTue, 15 May 2012 04:01:00 EST<![CDATA[Around 140,000 Apple machines still infected with Flashback malware, says Symantec]]>http://www.engadget.com/2012/04/18/apple-flashback-virus-infections-update/http://www.engadget.com/2012/04/18/apple-flashback-virus-infections-update/http://www.engadget.com/2012/04/18/apple-flashback-virus-infections-update/#comments Around 140,000 Apple machines still infected with Flashback malware, says Symantec

By now, we're all quite familiar with the Java-driven trojan that's affected thousands of Apple's rigs, and while the numbers seem to have drastically dropped since the first Cupertino fix, there's still a plethora of machines carrying the bug. According to Symantec, the number of infected computers is now at around 140,000, seeing a decline of over 460,000 since April 9th. Still, the security outfit remains puzzled by the fact, as it expected the digits to be somewhere near the 99,000 mark by now. Perhaps this is due to some folks not even being aware of Flashback's existence, or maybe not checking for software updates as often as most of us. Either way, we hope you've already used one of the tools Apple handed you.

Around 140,000 Apple machines still infected with Flashback malware, says Symantec originally appeared on Engadget on Wed, 18 Apr 2012 07:21:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>applebugbugsflashbackflashback malwareFlashbackMalwarejavamalwareos xos x lionOsXOsXLionsecurityvirusWed, 18 Apr 2012 07:21:00 EST<![CDATA[Apple publishes support page for Flashback malware, is working on a fix]]>http://www.engadget.com/2012/04/10/apple-publishes-support-page-for-flashback-malware-is-working-o/http://www.engadget.com/2012/04/10/apple-publishes-support-page-for-flashback-malware-is-working-o/http://www.engadget.com/2012/04/10/apple-publishes-support-page-for-flashback-malware-is-working-o/#comments Apple publishes support page for Flashback malware, is working on a fixAfter the Flashback / Flashfake Mac trojan was exposed by Russian site Dr. Web, Apple has finally responded by publishing a support page about the issue and promising a fix. If you haven't heard by now, the malware exploits a flaw in the Java Virtual Machine, which Oracle pushed a fix for back in February, but Apple didn't patch until a botnet consisting of as many as 650,000 Macs was identified on March 4th. Antivirus maker Kaspersky has confirmed the earlier findings, and released a free tool affected users can run to remove the trojan from their computers. Other than the update already delivered for computers running OS 10.6 and 10.7 Apple recommends users on 10.5 and earlier disable Java in their browser preferences. What isn't mentioned however, is when its fix is incoming or any timetable on its efforts with international ISPs to cut off the IP addresses used by the network. This is not the first time Macs have fallen prey to malware and as their market share grows will likely not be the last, so don't think just opting for OS X is automatically keeping you a step ahead security-wise. Check the links below for more information about what the malware does, and how to get rid of it.

Apple publishes support page for Flashback malware, is working on a fix originally appeared on Engadget on Tue, 10 Apr 2012 21:50:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>10.610.7applebotnetdr. webDr.WebflashbackflashfakejavaJava Virtual MachineJavaVirtualMachinekasperskylionmalwareos xOsXpatchsecuritysnow leopardSnowLeopardtrojanupdatevirusTue, 10 Apr 2012 21:50:00 EST<![CDATA[Google's 'Bouncer' service scans the Android Market for malware, will judge you at the door]]>http://www.engadget.com/2012/02/02/googles-bouncer-service-scans-the-android-market-for-malware/http://www.engadget.com/2012/02/02/googles-bouncer-service-scans-the-android-market-for-malware/http://www.engadget.com/2012/02/02/googles-bouncer-service-scans-the-android-market-for-malware/#comments Google has had its fair share of malware-related problems in the Android Market, but that's hopefully about to change, now that the company has announced a new security-enhancing service. Codenamed "Bouncer," Mountain View's new program sounds pretty simple, in principle: it just automatically scans the Market for malware, without altering the Android user experience, or requiring devs to run through an app approval process. According to Hiroshi Lockheimer, Android's VP of Engineering, Bouncer does this by scanning recently uploaded apps for spyware, trojans or any other lethal components, while looking out for any suspicious behavior that may raise a red flag. The service also runs a simulation of each app using Google's cloud-based infrastructure, and regularly checks up on developer accounts to keep repeat offenders out of the Android Market. Existing apps, it's worth noting, will be subject to the same treatment as their more freshly uploaded counterparts. Lockheimer went on to point out that malware is on the decline in the Market, citing a 40 percent drop between the first and second halves of 2011, and explained some of Android's fundamental security features, including its sandboxing and permission-based systems. Head for the source link below to read the post in full.

Google's 'Bouncer' service scans the Android Market for malware, will judge you at the door originally appeared on Engadget on Thu, 02 Feb 2012 15:30:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>androidandroid marketAndroidMarketappbouncerdevdeveloperdownloadgooglemaliciousmalwaremobilepostcrossmountain viewMountainViewpermissionsSandboxsandboxingsecurityservicevirusThu, 02 Feb 2012 15:30:00 EST<![CDATA[Japan working on powerful cyber weapon, knows best defense is a good offense]]>http://www.engadget.com/2012/01/06/japan-working-on-powerful-cyber-weapon-knows-best-defense-is-a/http://www.engadget.com/2012/01/06/japan-working-on-powerful-cyber-weapon-knows-best-defense-is-a/http://www.engadget.com/2012/01/06/japan-working-on-powerful-cyber-weapon-knows-best-defense-is-a/#comments cyber war The Japanese government has been (relatively) quietly churning away on an advanced new cyber weapon. In the post Stuxnet age it's no surprise that a government would be working on powerful new tools to defend its digital borders, but this particular virus (developed with help from Fujitsu) is raising eyebrows with some over how it accomplishes its goals. Essentially, when it detects an intruding piece of malware, the program follows the virtual trail left behind back to the attack's source -- disabling every machine it encounters along the way. The goal, obviously, is to stop the spread of a malicious piece of code by finding and shutting down, not just the source, but all middleman PCs that are also now potential hosts. In some admittedly extreme scenarios this weapon could potentially spiral out of control, taking out far more computers than intended. Nightmarish hellscapes dominated by computers run amok aside, its definitely interesting and we understand how it might cause some concern. Check out the source for a few more details.

Japan working on powerful cyber weapon, knows best defense is a good offense originally appeared on Engadget on Fri, 06 Jan 2012 07:48:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>cyber defensecyber warfarecyber weaponCyberDefenseCyberWarfareCyberWeapongovernmentjapansecurityvirusFri, 06 Jan 2012 07:48:00 EST<![CDATA[University gets $188 million AMD-based supercomputer, free copy of Norton]]>http://www.engadget.com/2011/11/16/university-gets-188-million-amd-based-supercomputer-free-copy/http://www.engadget.com/2011/11/16/university-gets-188-million-amd-based-supercomputer-free-copy/http://www.engadget.com/2011/11/16/university-gets-188-million-amd-based-supercomputer-free-copy/#comments It used to be that you only needed a bachelor's degree and elbow patches to be taken seriously as an academic, but now it's all about that 50-petaflop supercomputer with 500 petabytes of storage whirring away in the basement. The University of Illinois used to shop with IBM, but it's just about to have a brand new Cray XK6 installed instead, so it can continue providing computing power to the National Science Foundation's Blue Waters project. It's not all about inciting gadget envy, of course: the machine's unlikely truce of AMD Opteron 6200 16-core processors and NVIDIA Tesla GPUs will help more than 25 teams of scientists to model and understand real-world phenomena, from the damage caused by earthquakes to the way viruses to break into cells. Breakthroughs from these projects will -- hopefully, one day -- make the $188 million total cost of Cray's products and services seem like a bargain. Full details in the PR after the break.

Continue reading University gets $188 million AMD-based supercomputer, free copy of Norton

University gets $188 million AMD-based supercomputer, free copy of Norton originally appeared on Engadget on Wed, 16 Nov 2011 08:19:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>AMDAMD Opteron 6200AmdOpteron6200blue watersblue waters projectBlueWatersBlueWatersProjectCrayCray Xk6CrayXk6earthquakesNational Science FoundationNationalScienceFoundationnvidianvidia teslaNvidiaTeslaOpteronresearchsupercomputeruniversity of illinoisUniversityOfIllinoisvirusvirusesWed, 16 Nov 2011 08:19:00 EST<![CDATA[Windows 8 gets automatic updates, enforced restarts after 72 hours of polite harassment]]>http://www.engadget.com/2011/11/15/windows-8-gets-automatic-updates-enforced-restarts-after-72-hou/http://www.engadget.com/2011/11/15/windows-8-gets-automatic-updates-enforced-restarts-after-72-hou/http://www.engadget.com/2011/11/15/windows-8-gets-automatic-updates-enforced-restarts-after-72-hou/#comments
Windows 8 is renaming the second week of every month. After "Patch Tuesday" comes "Gentle reminder Wednesday," "Polite yet firm suggestion Thursday" and "Automatic restart Friday". In order to keep everyone's system secure, Windows Update will download patches in the background before adding a notification on your lock screen that you're due a restart. If you haven't managed it within 72 hours, you'll be given a 15 minute warning to save your work and close up before it forces the shutdown -- unless you're watching a movie or conducting a presentation, it'll lie in wait for your next idle period to do it. With this system, you'll only have to complete the procedure once a month and can plan your schedule accordingly. The only time the system will deviate is when a security threat like a blaster worm appears, at which point Microsoft will ensure you're restarting as soon as a fix is available. What, you didn't know that "keeping end-users on their toes" was a feature?

Windows 8 gets automatic updates, enforced restarts after 72 hours of polite harassment originally appeared on Engadget on Tue, 15 Nov 2011 11:33:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>Automatic RestartAutomatic UpdatesAutomaticRestartAutomaticUpdatesBlaster WormBlasterWormBug FixesBugFixesMalwareMetroMetro UIMetroUiPatch TuesdayPatchTuesdaySecurityVirusVirus ProtectionVirusProtectionWin 8Win8WindowsWindows 8Windows 8 UpdateWindows UpdateWindows UpdatesWindows8Windows8UpdateWindowsUpdateWindowsUpdatesWUTue, 15 Nov 2011 11:33:00 EST<![CDATA[US government to beat back botnets with a cybersecurity code of conduct]]>http://www.engadget.com/2011/09/23/us-government-to-beat-back-botnets-with-a-cybersecurity-code-of/http://www.engadget.com/2011/09/23/us-government-to-beat-back-botnets-with-a-cybersecurity-code-of/http://www.engadget.com/2011/09/23/us-government-to-beat-back-botnets-with-a-cybersecurity-code-of/#comments Old Uncle Sam seems determined to crack down on botnets, but he still needs a little help figuring out how to do so. On Wednesday, the Department of Homeland Security and National Institute of Standards and Technology (NIST) published a request for information, inviting companies from internet and IT companies to contribute their ideas to a voluntary "code of conduct" for ISPs to follow when facing a botnet infestation. The move comes as an apparent response to a June "Green Paper" on cybersecurity, in which the Department of Commerce's Internet Policy Task Force called for a unified code of best practices to help ISPs navigate through particularly treacherous waters. At this point, the NIST is still open to suggestions from the public, though Ars Technica reports that it's giving special consideration to two models adopted overseas. Australia's iCode program, for example, calls for providers to reroute requests from shady-looking systems to a site devoted to malware removal. The agency is also taking a hard look at an initiative (diagrammed above) from Japan's Cyber Clean Center, which has installed so-called "honeypot" devices at various ISPs, allowing them to easily detect and source any attacks, while automatically notifying their customers via e-mail. There are, however, some lingering concerns, as the NIST would need to find funding for its forthcoming initiative, whether it comes from the public sector, corporations or some sort of public-private partnership. Plus, some are worried that anti-botnet programs may inadvertently reveal consumers' personal information, while others are openly wondering whether OS-makers should be involved, as well. The code's public comment period will end on November 4th, but you can find more information at the source link, below.

US government to beat back botnets with a cybersecurity code of conduct originally appeared on Engadget on Fri, 23 Sep 2011 14:34:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>attackaustraliabotnetcode of conductCodeOfConductcyber attackcyber clean centerCyberAttackCyberCleanCenterddosdepartment of homeland securityDepartmentOfHomelandSecuritydistributed denial of serviceDistributedDenialOfServicegovernmentinternet service providerInternetServiceProviderISPjapanmalwarenational institute of standards and technologyNationalInstituteOfStandardsAndTechnologyNISTpersonal informationPersonalInformationsecurityspamspambotUS governmentUsGovernmentvirusvoluntaryvoluntary codeVoluntaryCodeFri, 23 Sep 2011 14:34:00 EST<![CDATA[Microsoft to malware: your AutoRunning days on Windows are numbered]]>http://www.engadget.com/2011/06/18/microsoft-to-malware-your-autorunning-days-on-windows-are-numbe/http://www.engadget.com/2011/06/18/microsoft-to-malware-your-autorunning-days-on-windows-are-numbe/http://www.engadget.com/2011/06/18/microsoft-to-malware-your-autorunning-days-on-windows-are-numbe/#comments Beware, malware. The Windows AutoRun updates for Vista and XP SP3 that Microsoft released in February have so far proven successful in thwarting your file corrupting ways. Although Windows 7 was updated to disable AutoPlay within AutoRun for USB drives -- freezing the ability for a virus to exploit it -- the aforementioned versions had remained vulnerable up until right after January. Fast-forward to the period between February and May of this year, and the updates have reduced the number of incidents by 1.3 million compared to the three months prior for the supported Vista and XP builds. Amazingly, when stacked against May of last year, there was also a 68 percent decline in the amount of incidents reported across all builds of Windows using Microsoft's Malicious Software Remove Tool. There's another fancy graph after the break to help illustrate, and you'll find two more along with a full breakdown by hitting the source link down under.

Continue reading Microsoft to malware: your AutoRunning days on Windows are numbered

Microsoft to malware: your AutoRunning days on Windows are numbered originally appeared on Engadget on Sat, 18 Jun 2011 21:17:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>auto runautoplayAutoRuncomputer securityComputerSecurityconfickerexploitflash driveFlashDrivemalwaremicrosoftmsrtsecuritythumbdriveupdateusbusb driveUsbDrivevirusvistavunerabilitywindowswindows updatewindows vistawindows xpWindowsUpdateWindowsVistaWindowsXpxpxp sp3XpSp3Sat, 18 Jun 2011 21:17:00 EST<![CDATA[Don't bring your computer viruses to Japan, because they're illegal now]]>http://www.engadget.com/2011/06/17/dont-bring-your-computer-viruses-to-japan-because-theyre-ille/http://www.engadget.com/2011/06/17/dont-bring-your-computer-viruses-to-japan-because-theyre-ille/http://www.engadget.com/2011/06/17/dont-bring-your-computer-viruses-to-japan-because-theyre-ille/#comments Tired of getting swamped with spam and malware? Just pack your things and catch the next flight to Japan, where computer viruses are now considered illegal. Under the country's new legislation, anyone convicted of creating or distributing viruses could face up to three years in prison, or a maximum fine of ¥500,000 (about $6,200). It's all part of Japan's efforts to comply with the Convention on Cybercrime -- an international treaty that requires member governments to criminalize hacking, child pornography, and other terrible things. Privacy advocates, however, have already raised concerns over some stipulations that would allow investigators to seize data from PCs hooked up to allegedly criminal networks, and to retain any suspicious e-mail logs for up to 60 days. In an attempt to quell these fears, the Judicial Affairs Committee tacked a resolution on to the bill calling for police to exercise these powers only when they really, really need to.

Don't bring your computer viruses to Japan, because they're illegal now originally appeared on Engadget on Fri, 17 Jun 2011 13:33:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>computer virusComputerVirusconvention on cybercrimeConventionOnCybercrimecourtcrimecybercrimehackillegaljapanjapaneselawmalwareparliamentpolicepoliticsprivacysecurityspamtreatyvirusFri, 17 Jun 2011 13:33:00 EST<![CDATA[Apple cracks down on MacDefender, prevents malware downloads with daily quarantine list]]>http://www.engadget.com/2011/06/01/apple-cracks-down-on-macdefender-prevents-malware-downloads-wit/http://www.engadget.com/2011/06/01/apple-cracks-down-on-macdefender-prevents-malware-downloads-wit/http://www.engadget.com/2011/06/01/apple-cracks-down-on-macdefender-prevents-malware-downloads-wit/#comments Preconceptions aside, Apple products do occasionally spread viruses, and not just the biological kind, which is why Cupertino saw fit to equip Mac OS X 10.6 Snow Leopard with a quarantine function to safely set malware aside. This week, however, Apple's kicking those digital white blood cells into high gear, updating that quarantine list daily with a new background process. The company's primarily got its crosshairs on the recent MacDefender scare, of course, but on the off-chance malware starts coming out of the woodwork, it sounds like you won't have to wait for a formal security update to be forewarned of the dangers. If privacy's your primary concern, however, you can also opt-out -- take a gander at our source links to see how it's done.

[Thanks, Jake]

Apple cracks down on MacDefender, prevents malware downloads with daily quarantine list originally appeared on Engadget on Wed, 01 Jun 2011 08:22:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>antivirusAppledailyMacmalwareOS XOsXquarantinesecuritySnow LeopardSnowLeopardupdateupdatesvirusvirusesWed, 01 Jun 2011 08:22:00 EST<![CDATA[MIT's genetically modified viruses boost solar-cell efficiency by herding nanotubes]]>http://www.engadget.com/2011/04/27/mits-genetically-modified-viruses-boost-solar-cell-efficiency-b/http://www.engadget.com/2011/04/27/mits-genetically-modified-viruses-boost-solar-cell-efficiency-b/http://www.engadget.com/2011/04/27/mits-genetically-modified-viruses-boost-solar-cell-efficiency-b/#comments
The wizards of MIT have done it again. Having checked artificial leaves and Operabots off the to-do list, they've moved on to improving the efficiency of solar cells. Their technique combines a genetically modified version of the M13 virus with carbon nanotubes, which have already been shown to increase efficiency. Unfortunately, some nanotubes enhance solar cell performance, while others inhibit it - and both types tend to clump together, negating their benefits. The modified M13 virus, however, can separate the two types as well as prevent clumping; we've seen similar use of the Tobacco mosaic virus to build better electrodes. Adding virus-built structures to dye-sensitized solar cells increased power conversion efficiency by almost one-third and, with only one additional step in the manufacturing process required, the new approach could be rapidly taken up by existing production facilities. MIT: proving once again that viruses are good for more than just smiting your enemies.

MIT's genetically modified viruses boost solar-cell efficiency by herding nanotubes originally appeared on Engadget on Wed, 27 Apr 2011 19:17:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>energyGreenTechGreenTechnologiesGreenTechnologym.i.t.massachusetts institute of technologyMassachusettsInstituteOfTechnologyMITnanorodNanoRodsnanotechnologynanotubenanotubesnanowirenanowiressolarsolar powerSolarPowervirusvirusesWed, 27 Apr 2011 19:17:00 EST<![CDATA[Visualized: preconceived notions about personal computer security]]>http://www.engadget.com/2011/03/24/visualized-preconceived-notions-about-personal-computer-securit/http://www.engadget.com/2011/03/24/visualized-preconceived-notions-about-personal-computer-securit/http://www.engadget.com/2011/03/24/visualized-preconceived-notions-about-personal-computer-securit/#comments See that chart up there? That's a beautiful visualization of a dozen folk models surrounding the idea of home computer security, devised by Michigan State's own Rick Wash. To construct it (as well pen the textual explanations to back it), he interviewed a number of computer users with varying levels of sophistication, with the goal being to find out how normal Earthlings interpreted potential threats to their PC. His findings? A vast amount of home PCs are frequently insecure because "they are administered by untrained, unskilled users." He also found that PCs remain largely at risk despite a blossoming network of preventative software and advice, and almost certainly received an A for his efforts. Hit the source link for more, but only after you've spiffed up, thrown on a pair of spectacles and kicked one foot up on the coffee table that sits in front of you.

Visualized: preconceived notions about personal computer security originally appeared on Engadget on Thu, 24 Mar 2011 13:23:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>artbotnethackhackerhackingmaliciousmalwareMichigan StateMichiganStatemodelmodelssecurityspywaretrojanuniversityvirusvisualizedwormThu, 24 Mar 2011 13:23:00 EST<![CDATA[Creeper, the first computer virus, is 40 years young today]]>http://www.engadget.com/2011/03/17/creeper-the-first-computer-virus-is-40-years-young-today/http://www.engadget.com/2011/03/17/creeper-the-first-computer-virus-is-40-years-young-today/http://www.engadget.com/2011/03/17/creeper-the-first-computer-virus-is-40-years-young-today/#comments
Forty years ago today is considered by many to be the birthday of the first computer virus. Of course, in the early 1970s they weren't called computer viruses, but that doesn't make Bob Thomas's handiwork any less special. Creeper (named after a character in the old Scooby Doo cartoons) spread from BBN Technologies' DEC PDP-10 through Arpanet, displaying the message: "I'm the creeper, catch me if you can!" and messing with people's printers. One notable difference between this and the majority of viruses was the fact that it deleted old versions as it replicated itself. Incidentally, that would make 2011 the fortieth anniversary of the first antivirus software: called, appropriately enough, Reaper.

Creeper, the first computer virus, is 40 years young today originally appeared on Engadget on Thu, 17 Mar 2011 19:34:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>antivirusarpaarpanetbbnbbn technologiesBbnTechnologiesbob thomasBobThomascreeperreaperscooby dooScoobyDoosecuritytrojan horseTrojanHorsevirusThu, 17 Mar 2011 19:34:00 EST<![CDATA[Thanko's USB kitty mask might get you noticed]]>http://www.engadget.com/2011/02/03/thankos-usb-kitty-mask-might-get-you-noticed/http://www.engadget.com/2011/02/03/thankos-usb-kitty-mask-might-get-you-noticed/http://www.engadget.com/2011/02/03/thankos-usb-kitty-mask-might-get-you-noticed/#comments You know why he's so happy? Because he's Japanese, and being Japanese is awesome. Trains run on time, robots do the work, and you get to wear kitty-faced masks with a USB- or battery-powered fan to circulate the atmosphere in front of your air holes... and nobody cares. ¥1,980 (about $24), or ¥2,190 gift wrapped for someone special.

Thanko's USB kitty mask might get you noticed originally appeared on Engadget on Thu, 03 Feb 2011 04:24:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>catcat maskCatMaskdiseasefangermsjapankittymaskthankousb maskUsbMaskvirusThu, 03 Feb 2011 04:24:00 EST<![CDATA[AT&T, Verizon, RIM get serious about security for mobile devices]]>http://www.engadget.com/2010/12/23/atandt-verizon-rim-get-serious-about-security-for-mobile-devices/http://www.engadget.com/2010/12/23/atandt-verizon-rim-get-serious-about-security-for-mobile-devices/http://www.engadget.com/2010/12/23/atandt-verizon-rim-get-serious-about-security-for-mobile-devices/#comments As commonplace as smartphones have become, it's about time that carriers and manufacturers start getting serious about mobile security (and no, we don't mean iPhone tethers). According to a recent Wall Street Journal article, Verizon is currently working with Lookout, a San Francisco-based company known for remote backup and geolocation apps for BlackBerry, Android, and Windows Mobile devices, while RIM has recently announced a little something called BlackBerry Protect, which promises to lock or even wipe a misplaced phone, pinpoint the thing on a map, and make regularly-scheduled wireless backups. By far the most ambitious plans in the article, however, belong to AT&T, which -- aside from recent deals with MobileIron and McAfee -- is currently opening a new mobile security lab in New York City. From here, the company will research malware, worms, viruses, and other threats as they develop in the mobile sphere. "Everyone is realizing that this is an uncontrolled environment," said AT&T chief security officer Edward G. Amoroso. "We don't want to have the same problems that we had with PCs."

AT&T, Verizon, RIM get serious about security for mobile devices originally appeared on Engadget on Thu, 23 Dec 2010 13:22:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>androidattblackberryblackberry protectBlackberryProtectcellphoneslookoutmalwaremcafeemobilemobileironrimsecuritysoftwareverizonvirusvzwwindows mobileWindowsMobilewormThu, 23 Dec 2010 13:22:00 EST<![CDATA[Scientists attempt to predict flu spread, give ZigBee radios to 700 high school students]]>http://www.engadget.com/2010/12/20/scientists-attempt-to-predict-flu-spread-give-zigbee-radios-to/http://www.engadget.com/2010/12/20/scientists-attempt-to-predict-flu-spread-give-zigbee-radios-to/http://www.engadget.com/2010/12/20/scientists-attempt-to-predict-flu-spread-give-zigbee-radios-to/#comments This is the Crossbow TelosB wireless remote platform, and it did an important job for science in January of last year -- it monitored the close proximity interactions among 788 students and staff at one US high school to track a virtual flu. After collecting over 762,000 sneeze-worthy anecdotes among the module-toting teachers and teens, Stanford researchers ran 788,000 simulations charting the path the virus might take and methods the school might try to keep it in line. Sadly, the scientists didn't manage to come up with any easy answers, as virtual vaccination seemed to work equally well (or poorly) no matter who got the drugs, but that if only we could actually monitor individuals in real life as easily as in a study, prevention would be much easier. But who will bell the cat, when it's so much less political to ionize?

Scientists attempt to predict flu spread, give ZigBee radios to 700 high school students originally appeared on Engadget on Mon, 20 Dec 2010 08:43:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>802.15.4coldcrossbowdiseaseflugermshealthIEEE 802.15.4Ieee802.15.4infectioninfectionsoutbreaksciencesicksicknessspreadstanfordStanford UniversityStanfordUniversitytelosbTPR2400viruszigbeeMon, 20 Dec 2010 08:43:00 EST<![CDATA[World's smallest battery uses a single nanowire, plant-eating virus could improve Li-ion cells tenfold]]>http://www.engadget.com/2010/12/12/worlds-smallest-battery-uses-a-single-nanowire-plant-eating-vi/http://www.engadget.com/2010/12/12/worlds-smallest-battery-uses-a-single-nanowire-plant-eating-vi/http://www.engadget.com/2010/12/12/worlds-smallest-battery-uses-a-single-nanowire-plant-eating-vi/#comments When it comes to building better batteries, building electrodes with greater surface area is key, and scientists are looking to exotic methods to attract the tiny particles they need. We've already seen graphene and carbon nanotubes soak up those electrons, but the University of Maryland has another idea -- they're using the Tobacco mosaic virus (TMV) to generate usable patterns of nanorods on the surface of existing metal electrodes. By simply modifying the germ and letting it do its thing, then coating the surface with a conductive film, they're generating ten times the energy capacity of a standard lithium-ion battery while simultaneously rendering the nasty vegetarian bug inert.

Meanwhile, the Center for Integrated Nanotechnologies (CINT) at Sandia Labs was more curious how these tiny charges actually work without confusing the forest for the trees, so to speak, so a team of scientists set about constructing the world's smallest battery. Using a single tin dioxide nanowire as anode, a chunk of lithium cobalt dioxide as cathode, and piping some liquid electrolyte in between, they took a microscopic video of the charging process. See it in all its grey, goopy glory right after the break.

Continue reading World's smallest battery uses a single nanowire, plant-eating virus could improve Li-ion cells tenfold

World's smallest battery uses a single nanowire, plant-eating virus could improve Li-ion cells tenfold originally appeared on Engadget on Sun, 12 Dec 2010 10:19:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>batteriesbatteryCenter for Integrated NanotechnologiesCenterForIntegratedNanotechnologiesCINTenergynanorodNanoRodsnanotechnologynanotubenanotubesnanowirenanowiresSandiasciencetobacco mosaic virusTobaccoMosaicVirusUniversity of MarylandUniversityOfMarylandvideovirusSun, 12 Dec 2010 10:19:00 EST<![CDATA[Mac malware survey finds mostly incompatible nasties]]>http://www.engadget.com/2010/11/24/mac-malware-survey-finds-mostly-incompatible-nasties/http://www.engadget.com/2010/11/24/mac-malware-survey-finds-mostly-incompatible-nasties/http://www.engadget.com/2010/11/24/mac-malware-survey-finds-mostly-incompatible-nasties/#comments See that chart there? That's a lovely graphic conjured up by Sophos, a company that makes ends meet by offering anti-virus software. The company just so happens to also have a flavor for OS X, and based on data culled from 150,000 users, it looks as if 50,000 machines had at least one piece of malware onboard. 'Course, a sizable chunk of these listed (Mal/ASFDldr-A and Mal/Conficker-A, for example) won't even run on OS X, so having them on one's HDD does little more than take up a section of space that could otherwise be used to archive a digital image of Aunt Mary. Graham Cluley, senior technology consultant at Sophos, even stated that Sophos doesn't "see as much Mac malware as Windows malware... by a long shot," but given that its Mac edition software is totally free, you might as well give it a look if you're suddenly stricken with paranoia.

Mac malware survey finds mostly incompatible nasties originally appeared on Engadget on Wed, 24 Nov 2010 16:33:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>applemacmalwareos xOsXsecuritysoftwaresophossurveyvirusWed, 24 Nov 2010 16:33:00 EST<![CDATA[One million Chinese cellphone users reportedly infected with zombie virus]]>http://www.engadget.com/2010/11/11/one-million-chinese-cellphone-users-reportedly-infected-with-zom/http://www.engadget.com/2010/11/11/one-million-chinese-cellphone-users-reportedly-infected-with-zom/http://www.engadget.com/2010/11/11/one-million-chinese-cellphone-users-reportedly-infected-with-zom/#commentsViruses have been making the rounds on cellphones for quite a while now, but it looks like China has now been hit by a particularly troublesome one. According to Shanghai Daily, a so-called zombie virus disguised as an anti-virus app has infected more than one million cellphone users in the country, and it's left users' phones vulnerable to the malicious hackers that created the virus. They've naturally taken advantage of that access to not only spread the virus further, but cash in by spamming the phones with money-making links and other general annoyances -- all of which has also added up to about $300,000 a day in added text message charges for the users affected. What's more, while authorities have apparently tracked down the company that created the anti-virus application, it apparently insists that it had nothing to do with the virus, and that it's actually a victim of it as well.

One million Chinese cellphone users reportedly infected with zombie virus originally appeared on Engadget on Thu, 11 Nov 2010 16:44:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>cellphonecellphone viruscellphonesCellphoneViruschinaviruszombiezombie virusZombieVirusThu, 11 Nov 2010 16:44:00 EST<![CDATA[Report warns of the increased use of SEO Poisoning to spread malware]]>http://www.engadget.com/2010/11/10/report-warns-of-the-increased-use-of-seo-poisoning-to-spread-mal/http://www.engadget.com/2010/11/10/report-warns-of-the-increased-use-of-seo-poisoning-to-spread-mal/http://www.engadget.com/2010/11/10/report-warns-of-the-increased-use-of-seo-poisoning-to-spread-mal/#comments
You'll undoubtedly be excited to know that the Internet security firm Websense has recently released its annual Threat Report. Other than trying to scare you into buying every single product the company has ever released, the paper highlights the growing problem of Black Hat SEO, or SEO Poisoning, which (if done right) sends malware-ridden links closer to the top of your Google search results. According to Network World, some 22.4 percent of Google searches performed since June produced malicious URLs (such as fake antivirus sites or malware downloads) as part of the top 100 search results, as opposed to 13.7 percent in the second half of 2009. It seems that the old model of cyber-attacks, involving peer-to-peer virus infection, is becoming increasingly ineffective as anti-virus companies step up their game, causing nogoodniks to rely on search results, websites, and zero-day attacks. That said, there is a silver lining: as Network World goes on to explain, these days you are actually less likely to get malware from "adult content" sites than in previous years. Or should we say, that's good news for your "friend" or "co-worker."

Report warns of the increased use of SEO Poisoning to spread malware originally appeared on Engadget on Wed, 10 Nov 2010 16:34:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>black hat seoBlackHatSeointernetmalwarenetworkingsecurityseoseo poisoningSeoPoisoningtrojanvirusWed, 10 Nov 2010 16:34:00 EST<![CDATA[Shocker! Cellphone touchscreens are dirty]]>http://www.engadget.com/2010/10/15/shocker-touchscreen-cellphones-are-dirty/http://www.engadget.com/2010/10/15/shocker-touchscreen-cellphones-are-dirty/http://www.engadget.com/2010/10/15/shocker-touchscreen-cellphones-are-dirty/#comments If you have even the slightest inclination towards Mysophobia then please, do yourself a favor and stop reading now. A Stanford University study found that if you put a virus on a touchscreen surface then about 30 percent of it will make the jump to the fingertips of anyone who touches it. From there it goes into the eyes, mouth, or nose -- whichever face-hole is in most urgent need of a rub. And just to drive the point home, the Sacramento Bee adds this little nugget from an unspecified British study: "Mobile phones harbor 18 times more bacteria than a flush handle in a typical men's restroom." Eww. You know, sometimes it's best not to know how the sausage is made.

Shocker! Cellphone touchscreens are dirty originally appeared on Engadget on Fri, 15 Oct 2010 05:53:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>bacteriagermsshockerstanfordStanford UniversityStanfordUniversitystudytouchscreenvirusFri, 15 Oct 2010 05:53:00 EST<![CDATA[Microsoft declares 'open season' on botnets, beats Waledac in court]]>http://www.engadget.com/2010/09/13/microsoft-declares-open-season-on-botnets-beats-waledac-in-co/http://www.engadget.com/2010/09/13/microsoft-declares-open-season-on-botnets-beats-waledac-in-co/http://www.engadget.com/2010/09/13/microsoft-declares-open-season-on-botnets-beats-waledac-in-co/#comments
When we heard that Microsoft was appealing to a higher power to shut down the Waledac botnet, we assumed that meant lighting candles at St. Francis Parish -- instead, the company went to the courts. At its prime, Waledac was estimated to have infected upwards of 90,000 machines, which in turn sent out approximately 1.5 billion pieces of spam a day (about one percent of the world's total). In February, District Court Judge Leonie Brinkema issued a temporary restraining order taking the 276 domains that the perps used for the network's command and control structure offline, and earlier this month the act was finalized with the U.S. District Court of Eastern Virginia granting a motion that, according to USA Today, "[effectively] gives Microsoft permanent ownership" of the domains. Although the defendants didn't come forward, Microsoft lawyers were able to prove that they were indeed aware of the case -- it seems that not only did they launch a DDOS attack against Microsoft's law firm, they also threatened a researcher involved in the case. Of course, since the worm can also operate in peer-to-peer mode there's no telling how many infected machines are still out there, but at the very least the botnet has been crippled -- and now companies like Microsoft have proven legal recourse if they are targeted by domains (at least ones registered in the US). "It's open season on botnets," said Microsoft senior attorney Richard Boscovich Sr. "The hunting licenses have been handed out, and we're coming back for more."

Microsoft declares 'open season' on botnets, beats Waledac in court originally appeared on Engadget on Mon, 13 Sep 2010 19:31:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>botnetcomputer viruscomputer wormComputerVirusComputerWormcourtinternetlawsuitlegalmicrosoftsecurityspamtrojanviruswaledacMon, 13 Sep 2010 19:31:00 EST<![CDATA[Did malware cause the crash of Spanair Flight JK 5022? (update)]]>http://www.engadget.com/2010/08/23/did-malware-cause-the-crash-of-spanair-flight-jk-5022/http://www.engadget.com/2010/08/23/did-malware-cause-the-crash-of-spanair-flight-jk-5022/http://www.engadget.com/2010/08/23/did-malware-cause-the-crash-of-spanair-flight-jk-5022/#comments
The inquiry into the August 2008 crash of Spanair Flight JK 5022 at Barajas Airport in Madrid took a bizarre turn recently when Spanish daily El Pais reported that the server that the airline used to track technical problems on aircraft contained malware. Although the flaps and slats were not in the proper position for takeoff, the crew was never alerted -- causing the flight to go down moments after takeoff, killing all but 18 of the 172 on board. That's not to say that human error wasn't a factor: as well as causing an audible alarm, the problem should have been spotted by the mechanic or airport maintenance chief, both of whom are under investigation. Space stations, power grids, and now airline safety systems? Please, people -- keep your antivirus software up to date.

Update: Of the many possibilities that could have brought down JK 5022, it turns out malware was pretty low on the list -- ZDNet's Ed Bott reports that it was a maintenance computer at the airline's HQ that was infected, and the plane itself (an MD-82) uses a takeoff warning system that predates airplane computerization, and was thus not susceptible to viruses.

Did malware cause the crash of Spanair Flight JK 5022? (update) originally appeared on Engadget on Mon, 23 Aug 2010 17:18:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>airlineairplaneBarajas AirportBarajasAirportcrashFlight JK 5022FlightJk5022jetmadridmalwareplane crashPlaneCrashsafetyspainSpanairSpanair Flight JK 5022SpanairFlightJk5022transportationvirusMon, 23 Aug 2010 17:18:00 EST<![CDATA[Samsung Wave shipping with infected microSD card (confirmed, limited to first run)]]>http://www.engadget.com/2010/06/02/samsung-wave-shipping-with-infected-microsd-card/http://www.engadget.com/2010/06/02/samsung-wave-shipping-with-infected-microsd-card/http://www.engadget.com/2010/06/02/samsung-wave-shipping-with-infected-microsd-card/#comments Did you get a Samsung Wave today, or perhaps early last week? You might not want to connect it to your computer, just in case. We're hearing anecdotal reports that the 1GB microSD card shipped with certain German units includes a nasty surprise: it automatically installs the trojan Win32/Heur using the file "slmvsrv.exe." While we're not sure exactly what the virus does or if it's widespread, there's no point in finding out the hard way, right? Install a good antivirus program and then format that sucker, or better yet, simply drop in a larger microSDHC card. Don't forget this thing plays DivX HD, people -- you're going to need more than a single gigabyte of storage.

Update: Samsung HQ got in touch with MobileBurn to confirm the existence of the virus in shipping S8500 Wave handsets, but said that the outbreak was confined to the German market's initial production run and all other shipments are A-OK. Still, there's no harm in disabling autorun before connecting one to your PC, eh?

Samsung Wave shipping with infected microSD card (confirmed, limited to first run) originally appeared on Engadget on Wed, 02 Jun 2010 07:10:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>badamicroSDmicroSD cardMicrosdCardrumors8500S8500 WaveS8500WaveSamsungSamsung BadaSamsung WaveSamsungBadaSamsungWaveslmvsrvslmvsrv.exeviruswaveWave s8500WaveS8500Win32heurWed, 02 Jun 2010 07:10:00 EST<![CDATA[British scientist becomes first human 'infected' with a computer virus]]>http://www.engadget.com/2010/05/26/british-scientist-becomes-first-human-infected-with-a-computer/http://www.engadget.com/2010/05/26/british-scientist-becomes-first-human-infected-with-a-computer/http://www.engadget.com/2010/05/26/british-scientist-becomes-first-human-infected-with-a-computer/#comments Sure, a cybernetic-filled, dystopian future may sound nice and cheery, but what happens when all your snazzy implants get infected with a computer virus? That's what one brave researcher at the University of Reading is attempting to find out, and he's now actually gone so far as to willingly "infect" himself in the name of science. As you might expect, however, this is all this very much a proof of concept, but Dr. Mark Gasson says that the infected RFID chip in his hand was indeed able to pass on the virus to an external control device in his trials, and he warns that the eventual real world implications could be far more dire. Gasson is particularly concerned when it comes to medical implants, which he says could potentially become infected by other implants in the body, and even pass on the "infection" to other people. Head on past the break for the BBC's report, and try not to be too startled by the Dalek in the room.

[Thanks, Mark S]

Continue reading British scientist becomes first human 'infected' with a computer virus

British scientist becomes first human 'infected' with a computer virus originally appeared on Engadget on Wed, 26 May 2010 14:17:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>cyberneticcyberneticsexperimentgassonimplantimplantsinfectedmark gassonMarkGassonuniversity of readingUniversityOfReadingvideovirusWed, 26 May 2010 14:17:00 EST<![CDATA[McAfee patches customers' hearts with subscription extension, reimbursement for PC repairs]]>http://www.engadget.com/2010/04/27/mcafee-patches-customers-hearts-with-subscription-extension-re/http://www.engadget.com/2010/04/27/mcafee-patches-customers-hearts-with-subscription-extension-re/http://www.engadget.com/2010/04/27/mcafee-patches-customers-hearts-with-subscription-extension-re/#commentsMcAfee's little issue with a security update that sent Windows XP computers far and wide to a screeching halt was fairly unprecedented as far as anti-virus software goes, and it looks like the company is now taking some considerable steps to make up for the mess it created. Not only is it handing out a free two-year subscription extension to all affected customers, but it will soon be starting a program to reimburse "reasonable expenses" that customers have incurred in repairing their PCs. Complete details on that program aren't available just yet, but it will apparently be starting "within a few days," and will involve submitting a reimbursement request to McAfee. Given the number of users involved, however, we've got to guess that McAfee won't be buying folks new PCs, and chances are it'll take quite a while to get your check in the mail, though we'll just have to wait to see exactly what McAfee has planned.

McAfee patches customers' hearts with subscription extension, reimbursement for PC repairs originally appeared on Engadget on Tue, 27 Apr 2010 11:51:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>anti-virusbugerrormcafeesecuritysvchostsvchost.exeviruswindowswindows xpwindows xp sp3WindowsXpWindowsXpSp3Tue, 27 Apr 2010 11:51:00 EST<![CDATA[Botched McAfee update shutting down corporate XP machines worldwide]]>http://www.engadget.com/2010/04/21/mcafee-update--shutting-down-xp-machines/http://www.engadget.com/2010/04/21/mcafee-update--shutting-down-xp-machines/http://www.engadget.com/2010/04/21/mcafee-update--shutting-down-xp-machines/#commentsWe can't officially confirm this yet but, We're hearing from all over that a bad McAfee for Windows XP update is causing computers worldwide to shut down. Apparently DAT update 5958 deletes the svchost.exe file, which then triggers a false-positive in McAfee itself and sets off a chain of uncontrolled restarts and loss of networking functionality. Yeah, wild -- Twitter is basically going nuts, and McAfee's support site appears to be down. There are some fixes floating around out there, but it may be too late -- the final tally of borked PCs today may reach into the millions. We've already heard anecdotally that an Intel facility has been affected, as well as Dish Network call centers, and we're sure there are going to be more reports as the day wears on.

Update: McAfee just sent us a statement -- they've pulled the update from their corporate download servers, and consumers shouldn't be affected.
McAfee is aware that a number of customers have incurred a false positive error due to incorrect malware alerts on Wednesday, April 21. The problem occurs with the 5958 virus definition file (DAT) that was released on April 21 at 2.00 PM GMT+1 (6am Pacific Time).

Our initial investigation indicates that the error can result in moderate to significant performance issues on systems running Windows XP Service Pack 3.

The faulty update has been removed from McAfee download servers for corporate users, preventing any further impact on those customers. We are not aware of significant impact on consumer customers and believe we have effectively limited such occurrence.

McAfee teams are working with the highest priority to support impacted customers and plan to provide an update virus definition file shortly. McAfee apologizes for any inconvenience to our customers
Ouch -- that might be the understatement of the year. We've definitely hearing this affects SP2 as well, we'll keep looking for more.

Update 2: The anecdotal numbers keep rolling in, and they're not small -- 30,000 machines are knocked out here, 60,000 there. Given that the only fixes right now involve techs spending time with each affected machine individually, things could get seriously messy. We'll keep you updated if you keep us updated, okay?

Update 3: Here's an official McAfee fix, although like we said, it requires tech to hit each machine in person. We'll see what the story is for bigger institutions with tens of thousands of seats.

Update 4: We're told the official fix only helps those who haven't been hit with the bug yet, so there's obviously still issues to be sorted out. [Thanks, Tyler.]

[Thanks to everyone who sent this in]

Developing...

Botched McAfee update shutting down corporate XP machines worldwide originally appeared on Engadget on Wed, 21 Apr 2010 13:47:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>breaking newsBreakingNewsbugbugserrormcafeesp3svchostsvchost.exeupdateviruswindowswindows xpwindows xp sp2windows xp sp3WindowsXpWindowsXpSp2WindowsXpSp3xpWed, 21 Apr 2010 13:47:00 EST<![CDATA[Windows 7 is safer when the admin isn't around]]>http://www.engadget.com/2010/03/30/windows-7-is-safer-when-the-admin-isnt-around/http://www.engadget.com/2010/03/30/windows-7-is-safer-when-the-admin-isnt-around/http://www.engadget.com/2010/03/30/windows-7-is-safer-when-the-admin-isnt-around/#comments Not that we necessarily needed a report to tell us this, but the fewer privileges you afford yourself as a Windows user, the more secure your operating system becomes. Such is the conclusion of a new report from BeyondTrust, a company that -- surprise, surprise -- sells software for "privileged access management." The only way we use Windows 7 is as admins and we've never had a moment's bother, but some of you like stats, and others among you might be involved in business, which tends to make people a little more antsy about these things. So for your collective sake, let there be pie charts! The report looks into vulnerabilities disclosed by Microsoft during 2009 and concludes that all 55 reported Microsoft Office issues and 94 percent of the 33 listed for IE could be prevented by simply running a standard user account. Or using better software, presumably. Hit the PDF source for more info -- go on, it's not like you have anything better to do while waiting for the Large Hadron Collider to go boom.

Windows 7 is safer when the admin isn't around originally appeared on Engadget on Tue, 30 Mar 2010 06:44:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>admin rightsadministratorAdminRightsanalysisbeyondtrustdatafigureshacksMicrosoftoperating systemOperatingSystemosOSXresearchsecuritysoftwarestatsvirusvulnerabilitywindowswindows 7Windows7Tue, 30 Mar 2010 06:44:00 EST<![CDATA[Symantec names Shaoxing, China as world's malware capital]]>http://www.engadget.com/2010/03/29/symantec-names-shaoxing-china-worlds-malware-capital/http://www.engadget.com/2010/03/29/symantec-names-shaoxing-china-worlds-malware-capital/http://www.engadget.com/2010/03/29/symantec-names-shaoxing-china-worlds-malware-capital/#comments
It's not the sort of title any city's looking for, but Symantec has now given Shaoxing, China the dubious honor of being the world's malware capital, saying that it accounts for more targeted attacks than any other city. In fact, the company found that while close to 30 percent of all malicious attacks came from China (making it the number one country), 21.3 percent came just from Shaoxing. It was followed by Taipei at 16.5 percent, and London at 14.8 percent. Following China in the country rankings is Romania with 21.1 percent of attempted attacks (most of those are said to be commercial fraud), and the United States at 13.8 percent. That's actually just part of a larger report by Symantec's MessageLabs division, which details everything from the most common types of email attachments (.XLS and .DOC are neck and neck for the lead) to the percentage of emails that contain a virus of phishing attack (one in 358.3 and one in 513.7, respectively). Dive into the PDF linked below for the complete details.

Symantec names Shaoxing, China as world's malware capital originally appeared on Engadget on Mon, 29 Mar 2010 06:41:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>attack attackAttackAttackchinahackerhackingmalwaremalware-gamesmessagelabssecurityshaoxingsymantecvirusMon, 29 Mar 2010 06:41:00 EST<![CDATA[Vodafone Spain replacing microSD cards on 3,000 virus-infected handsets]]>http://www.engadget.com/2010/03/19/vodafone-spain-replacing-microsd-cards-on-3-000-virus-infected-h/http://www.engadget.com/2010/03/19/vodafone-spain-replacing-microsd-cards-on-3-000-virus-infected-h/http://www.engadget.com/2010/03/19/vodafone-spain-replacing-microsd-cards-on-3-000-virus-infected-h/#comments
It looks like the virus-strewn HTC Magic that was recently purchased from Vodafone UK is only the tip of the iceberg. According to Vodafone Spain, some 3,000 users in all may have been exposed to Mariposa malware -- which used the handset's storage to make its way to customer's PCs via USB, leading the company to replace the microSD cards for infected customers. The company also says that the incident is "isolated and local," but with the number of infections rising from one in the UK to 3,000 in Spain in just over a week we wouldn't be surprised this story was just heating up.

Vodafone Spain replacing microSD cards on 3,000 virus-infected handsets originally appeared on Engadget on Fri, 19 Mar 2010 13:49:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>androidhtcmagicmalwaremariposaspainukvirusvodafonevodafone spainvodafone ukVodafoneSpainVodafoneUkFri, 19 Mar 2010 13:49:00 EST<![CDATA[Customer greeted with malware on Vodafone-issued HTC Magic (good thing it's discontinued)]]>http://www.engadget.com/2010/03/09/customer-greeted-with-malware-on-vodafone-issued-htc-magic-good/http://www.engadget.com/2010/03/09/customer-greeted-with-malware-on-vodafone-issued-htc-magic-good/http://www.engadget.com/2010/03/09/customer-greeted-with-malware-on-vodafone-issued-htc-magic-good/#comments Crapware's bad enough, but having your life torn asunder simply by plugging in that shiny new (insert USB-connected device here) is an exciting new trend -- viruses find their way into the darnedest places, don't they? It seems an employee at anti-malware firm Panda Research who'd ordered a new Magic off Vodafone UK's site was greeted with no fewer than three nefarious executables upon plugging the device into her PC: a bot client, a password stealer, and a Conficker variant, and running a network sniffer quickly confirmed that the virii were live and ready to do harm as soon as the autorun in the Magic's mounted mass storage was executed on her Windows machine. If this were a widespread issue, we'd certainly have heard about it in other places, so odds are good (as Panda points out) that this was simply a case of HTC or Vodafone doing an awful job of wiping a refurbished set -- but it gives you pause and kind of makes you wish you worked for an anti-malware firm, at least on days when you're plugging in a new phone for the first time. The silver lining, we suppose, is that Vodafone has recently discontinued the Magic, though that creates another problem: the only Android device it currently stocks now is the lowly Tattoo, so the X10 and Nexus One can't come soon enough.

Customer greeted with malware on Vodafone-issued HTC Magic (good thing it's discontinued) originally appeared on Engadget on Tue, 09 Mar 2010 14:33:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>androidconfickerdiscontinuedhtclineagemagicmalwaremariposasapphireukvirusvodafonevodafone ukVodafoneUkTue, 09 Mar 2010 14:33:00 EST<![CDATA[Jailbroken iPhones exposed to second worm, this time malicious]]>http://www.engadget.com/2009/11/23/jailbroken-iphones-exposed-to-second-worm-this-time-malicious/http://www.engadget.com/2009/11/23/jailbroken-iphones-exposed-to-second-worm-this-time-malicious/http://www.engadget.com/2009/11/23/jailbroken-iphones-exposed-to-second-worm-this-time-malicious/#commentsAs inevitable as the sun rising in the East and setting in the West, an innocuous iPhone worm has been transformed into a malicious bank details-stealing virus. The second recorded iPhone infection operates on exactly the same principles as the first, as it targets jailbroken handsets with SSH installed, but this time adds the ability for the hacker to remotely control and access the phone. By throwing up a purported ING Direct login page, he (or she, or they) can collect your online banking credentials and, presumably, all the cash they are supposed to protect. Presently isolated within the Netherlands, this outbreak may spread further still, as it is capable of infecting other jailbroken iPhones on the same WiFi network.

Jailbroken iPhones exposed to second worm, this time malicious originally appeared on Engadget on Mon, 23 Nov 2009 06:40:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>crimefrauding directIngDirectiphonejailbreakjailbrokenlawmaliciousnetherlandsonline bankingOnlineBankingsmartphonesshviruswormMon, 23 Nov 2009 06:40:00 EST<![CDATA[First iPhone worm rickrolls jailbroken phones]]>http://www.engadget.com/2009/11/08/first-iphone-worm-rickrolls-jailbroken-phones/http://www.engadget.com/2009/11/08/first-iphone-worm-rickrolls-jailbroken-phones/http://www.engadget.com/2009/11/08/first-iphone-worm-rickrolls-jailbroken-phones/#comments We sort of knew this would happen as soon as we heard about that iPhone wallpaper hack in the Netherlands -- a hacker named ikex has created what's apparently the first iPhone worm, and it's currently infecting jailbroken iPhones across Australia. The "ikee" worm, as it's being called, takes advantage of the fact that jailbroken iPhones with SSH installed all have the same default root password of "alpine," and once in the system it changes your wallpaper to an image of Rick Astley and then tries to install itself on other jailbroken iPhones on the network. Sophos says it hasn't confirmed any infections outside of Oz, and to be clear, this worm can't get to stock iPhones or jailbreak owners who haven't installed SSH -- but if you're running a hacked phone we'd say you should change that root password just to be safe right away. Get to it, kids.

[Via PMP Today; thanks to everyone who sent this in]

Filed under: ,

First iPhone worm rickrolls jailbroken phones originally appeared on Engadget on Sun, 08 Nov 2009 22:48:00 EST. Please see our terms for use of feeds.

Read | Permalink | Email this | Comments]]>appleaustraliahackikeeikexiphoneiphone osiphone virusiphone wormiphoneosIphoneVirusIphoneWormmalwaremobileoptusrickrollvirusworkwormSun, 08 Nov 2009 22:48:00 EST<![CDATA[First iPhone worm rickrolls jailbroken phones]]>http://www.engadget.com/2009/11/08/first-iphone-worm-rickrolls-jailbroken-phones/http://www.engadget.com/2009/11/08/first-iphone-worm-rickrolls-jailbroken-phones/http://www.engadget.com/2009/11/08/first-iphone-worm-rickrolls-jailbroken-phones/#comments We sort of knew this would happen as soon as we heard about that iPhone wallpaper hack in the Netherlands -- a hacker named ikex has created what's apparently the first iPhone worm, and it's currently infecting jailbroken iPhones across Australia. The "ikee" worm, as it's being called, takes advantage of the fact that jailbroken iPhones with SSH installed all have the same default root password of "alpine," and once in the system it changes your wallpaper to an image of Rick Astley and then tries to install itself on other jailbroken iPhones on the network. Sophos says it hasn't confirmed any infections outside of Oz, and to be clear, this worm can't get to stock iPhones or jailbreak owners who haven't installed SSH -- but if you're running a hacked phone we'd say you should change that root password just to be safe right away. Get to it, kids.

[Thanks to everyone who sent this in]

Filed under:

First iPhone worm rickrolls jailbroken phones originally appeared on Engadget on Sun, 08 Nov 2009 22:48:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments]]>appleaustraliahackikeeikexiphoneiphone virusiphone wormIphoneVirusIphoneWormmalwareoptusrickrollvirusworkwormSun, 08 Nov 2009 22:48:00 EST<![CDATA[Australian power grid attacked by virus, Linux saves the day]]>http://www.engadget.com/2009/10/08/australian-power-grid-attacked-by-virus-linux-saves-the-day/http://www.engadget.com/2009/10/08/australian-power-grid-attacked-by-virus-linux-saves-the-day/http://www.engadget.com/2009/10/08/australian-power-grid-attacked-by-virus-linux-saves-the-day/#comments
This isn't the first time we've heard of an institutional virus outbreak -- even the crew of the International Space Station had a neat little scare not too long ago -- and now various outlets in Australia are reporting that Integral Energy, which supplies energy to homes and businesses in New South Wales and Queensland, has suffered a particularly nasty visit by the W32.Virut.CF virus. When all was said and done, the company had to repair all 1000 of the facility's desktops. Furthermore, the Sydney Morning Herald reports that the company's anti-virus software hadn't been updated since at least February. Between the lack of anti-virus updates and the fact that segregation between the company's main network and the grid was "typically none at all" this story has all the makings of a disaster. Luckily, the grid itself runs on Sun Solaris -- and when control systems became infected, how did they fix the mess? That's right: by replacing them with Linux machines. A word to the wise: they do make anti-virus auto-updates for a reason.

[Via The PC Report]

Filed under: ,

Australian power grid attacked by virus, Linux saves the day originally appeared on Engadget on Thu, 08 Oct 2009 16:46:00 EST. Please see our terms for use of feeds.

Read | Permalink | Email this | Comments]]>australiaelectricitygridIntegral EnergyIntegralEnergylinuxpower gridpower stationPowerGridPowerStationsolarissunvirusThu, 08 Oct 2009 16:46:00 EST