Areas of our digital life that should be left open or kept closed
{ Category Archives }
PC World posted a very useful article about tips on protecting your privacy on Facebook.
Avoid Facebook Disasters
Ignoring Facebook’s privacy options–some of them fairly new and not well known–can trip up the social-networking site’s users in a number of ways. Here are some that everyone who has a Facebook account should be aware of.
Read the full article here.
Just when it appeared Windows and its associated services were looking more stable month after month, Microsoft chose June to tackle a plethora of vulnerabilities including no fewer than 14 that its security engineers believe could be exploitable within the next 30 days.
Read the article at Betanews.com
Ubuntu already featured by default security enhancements developed by the U.S. National Security Agency, but version 9.04 of the Linux distribution now brings seamless file encryption for added protection of critical data. When activated, the option automatically mounts the encrypted home folder without asking for a password, and the user can browse and work with files at normal speed. Should the encrypted folder need to be recovered, there is a hash passphrase.
This new feature could prove useful should the computer gets stolen: in case critical data was not already encrypted through Keepass or Truecrypt, the thief won’t be able to read anything from the home folder. File encryption is not virtually unbreakable, so for added security one should combine all those different layers of security.
This should be something mandatory for all government laptops, which are particularly at risk.
One of the scarier realities about malicious software is that these programs leave ultimate control over victim machines in the hands of the attacker, who could simply decide to order all of the infected machines to self-destruct. Most security experts will tell you that while this so-called “nuclear option” is an available feature in some malware, it is hardly ever used. Disabling infected systems is counterproductive for attackers, who generally focus on hoovering as much personal and financial data as they can from the PCs they control.
Security Fix – ZeusTracker and the Nuclear Option
A flaw in most browsers could allow crackers to trick the application in diplaying a connection as secure when in fact it is not.
Websites that use an enhanced form of digital authentication remain just as vulnerable to a common form of spoofing attack as those that use less costly certificates, two researchers have found.
Researchers poke holes in super duper SSL • The Register
