Security firm RSA attacked using Excel-Flash one-two sucker punch

RSA attacked using Flash vulnerability
It has emerged that the underlying cause of RSA's SecurID gaffe was the recently-reported zero-day vulnerability found in Adobe's Flash Player.

The exploit, which used specially-crafted Flash embedding in Excel spreadsheets, was first reported on March 15 and has since been fixed. RSA was hacked sometime in the first half of March when an employee was successfully spear phished and opened an infected spreadsheet. As soon as the spreadsheet was opened, an advanced persistent threat (APT) -- a backdoor Trojan -- called Poison Ivy was installed. From there, the attackers basically had free reign of RSA's internal network, which led to the eventual dissemination of data pertaining to RSA's two-factor authenticators.

The attack is reminiscent of the APTs used in the China vs. Google attacks from last year -- and indeed, Uri Rivner, the head of new technologies at RSA is quick to point out that that other big companies are being attacked, too: "The number of enterprises hit by APTs grows by the month; and the range of APT targets includes just about every industry. Unofficial tallies number dozens of mega corporations attacked [...] These companies deploy any imaginable combination of state-of-the-art perimeter and end-point security controls, and use all imaginable combinations of security operations and security controls. Yet still the determined attackers find their way in."

What we'd like to know, though, is whether the attack on RSA was caused by Adobe's lackadaisical approach to patching Flash -- or was it the other way around? Was it the RSA attack that first brought the zero-day vulnerability to Adobe's attention?

Security firm RSA attacked using Excel-Flash one-two sucker punch originally appeared on Download Squad on Wed, 06 Apr 2011 06:55:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments

Source: http://downloadsquad.switched.com/2011/04/06/security-firm-rsa-attacked-using-excel-flash-one-two-sucker-punc/

QUEST SOFTWARE JDA SOFTWARE GROUP OPENWAVE SYSTEMS EASTMAN KODAK CO VARIAN SEMICONDUCTOR EQUIPMENT ASSOCIATES ORACLE ZORAN

Engadget Podcast 306 - 08.17.2012

Here at the Engadget Podcast, we're all about the little guys: the Joe The Plumbers of the technology world, the underdogs fighting for their sweet little piece of the silicon-flavored pie: hardware homebrewers, ROM writers, and circuit slicers. But sometimes, we gotta give it up to the Grand Old Parties that lay the stones upon which the rest of the economy is paved: here we pay tribute to HP; we bow at the altar of Samsung; we come bearing gifts for Microsoft; we welcome to the Billionaire Boys Club Instagram and its infinitely-scrolling photo maps. Because sometimes, just sometimes, you gotta pour one out for the OGs.

Hosts: Tim Stevens, Brian Heater, Dana Wollman
Producer: Trent Wolbe
Music: Orbital - Never

02:20 - Samsung Galaxy Note 10.1 review
11:52 - Samsung Galaxy Note 10.1 getting its Jelly Bean on later this year
13:25 - Samsung: 10 million Galaxy Notes have been sold, worldwide
17:50 - Microsoft Surface for Windows RT tablet coming October 26th for $199?
23:35 - HP says Surface has not changed its relationship with Microsoft, promises more tablet details 'pretty soon'
26:34 - Windows 8 RTM: what's new in the final build of Windows 8?
41:44 - Instagram 3.0 adds Photo Maps, infinite scrolling and speed improvements (video)
43:26 - Verizon's LTE network hits 34 new markets tomorrow, set to cover over 75 percent of the US
45:08 - Nokia and Microsoft announce September 5th Windows Phone event
46:48 - webOS team becomes Gram, isn't heavy on mission statements
47:50 - PlayStation Mobile detailed: different screens, same games


Hear the podcast



Subscribe to the podcast

[iTunes] Subscribe to the Podcast directly in iTunes (enhanced AAC).
[RSS MP3] Add the Engadget Podcast feed (in MP3) to your RSS aggregator and have the show delivered automatically.
[RSS AAC] Add the Engadget Podcast feed (in enhanced AAC) to your RSS aggregator.
[Zune] Subscribe to the Podcast directly in the Zune Marketplace.

Download the podcast

LISTEN (MP3)
LISTEN (AAC)

Contact the podcast

Send your questions to @tim_stevens.
Leave us a voicemail: (423) 438-3005 (GADGET-3005)
E-mail us: podcast at engadget dot com


ee

Filed under:

Engadget Podcast 306 - 08.17.2012 originally appeared on Engadget on Fri, 17 Aug 2012 08:45:00 EDT. Please see our terms for use of feeds.

Permalink   |   | Email this | Comments

Source: http://www.engadget.com/2012/08/17/engadget-podcast-306-08-17-2012/

LAM RESEARCH MEMC ELECTRONIC MATERIALS APPLIED MATERIALS F5 NETWORKS DST SYSTEMS EMC LAM RESEARCH

VMware adds Mozy to its cloud and virtualization empire

mozy vmware
Mozy is one of the most popular cloud backup services around, with more than one million users storing around 70 petabytes of data. Its popularity apparently put it on the acquisition radar of VMware -- which has now made Mozy part of its virtualization empire.

VMware's official blog post makes it clear that the company wasn't so much interested in Mozy as a consumer offering. Rather, it's the inner workings of Mozy which piqued VMware's curiosity. CTO Steve Herrod says, "Over the past 5 years, Mozy has built one of the best examples of a globally distributed, large-scale cloud offering." He adds that the move will allow VMware to "further ramp our own cloud-related learning and accelerate new IP, scale, and capabilities" of its existing offerings.

Existing Mozy customers don't need to worry, of course. VMware has pledged to continue running Mozy's service without interruption.

VMware adds Mozy to its cloud and virtualization empire originally appeared on Download Squad on Tue, 05 Apr 2011 11:00:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments

Source: http://downloadsquad.switched.com/2011/04/05/vmware-takes-over-operation-of-mozy/

SPSS TOTAL SYSTEM SERVICES ELECTRONIC DATA SYSTEMS MICROCHIP TECHNOLOGY INTERDIGITAL COMMUNICATIONS NETWORK APPLIANCE DIEBOLD

Gadget Lab Show: Reviewing Samsung’s Galaxy Note 10.1

This week on the Gadget Lab show, Wired reviews editor Michael Calore and staff writer Nathan Olivarez-Giles take a look at the Galaxy Note 10.1.

The new Note is Samsung’s latest tablet and, as the name of the slate may have tipped you off to, it’s the first to feature an S Pen stylus, which allows users to draw or take handwritten notes on the device using a handful of Note optimized apps. Aside from that, the Note 10.1′s big bragging point is a quad-core processor and 2GB of RAM. But, while that’s impressive on paper, the real-world result wasn’t much of a tangible performance gain.

So, what else did Michael and Nathan think of the Note 10.1? Check out the video of the show up above to find out.

Like the show? You can also get the Gadget Lab video podcast via iTunes, or if you don’t want to be distracted by our beautiful mugs, check out the Gadget Lab audio podcast. Prefer RSS? You can subscribe to the Gadget Lab video or audio podcast feeds.

Or listen to the audio below:

Gadget Lab audio podcast #168

Source: http://www.wired.com/gadgetlab/2012/08/gadget-lab-podcast-show-samsung-galaxy-note-10-1/

SONUS NETWORKS GOOGLE QLOGIC EARTHLINK NETGEAR MISCROSOFT OFFICE NATIONAL SEMICONDUCTOR

iMore show 306: iPad mini mockups and meltdowns

Georgia, Rene, and Seth talk yet more Apple television rumors, go deep on the iPad mini mockups, argue about Siri and the iPod touch, and pre-order their iPhone pre-order thoughts. Oh, and the air conditioning, live stream, and screen sharing all trifectafail! This is the iMore show!

iPad mini

iPhone 5

iOS 6

Community

Hosts

Credits

You can reach all of us on Twitter @iMore, or you can email us at podcast@imore.com

For all our podcasts -- audio and video -- including the iMore show, ZEN and TECH, Iterate, and more, see MobileNations.com/shows

Source: http://feedproxy.google.com/~r/TheIphoneBlog/~3/7wl5KwSVbgo/story01.htm

INTERNATIONAL RECTIFIER MICROSOFT ECLIPSYS APPLE COMPUTER GRUPO IUSACELL ALLTEL KLATENCOR

Protect Your iPhone’s Screen with the Aegis

Most cases protect the sides and backs of your iPhone 4/4S, but they usually leave the screen open and vulnerable.  The Aegis for iPhone 4/4S from TopKase has a shutter that slides over the screen when you aren’t using the phone.  The case and the shutter are made of anodized aluminum, with eight internal shock-absorbing silicone pads and a microfiber lining on the back of the sliding shutter to clean your screen.  The case adds only 1.3 ounces to the weight of the iPhone, and it measures 4.72″ x 2.59″ x 0.59″.  Although not all colors are in stock at the moment, available case colors are Silver, Jet Black, Baby Pink, Cherry Pink, Ruby Red, Electric Blue, Royal Purple with either silver or black accents on the sliders.  The Aegis sells for $59.95.

Filed in categories: Cases and Covers, iPhone, iPad, iPod related, News

Tagged: ,

Protect Your iPhone’s Screen with the Aegis originally appeared on The Gadgeteer on August 14, 2012 at 12:00 pm.

Sony’s Launches New E-reader (Reminding All That Sony Makes E-readers)

The awkwardly named PRS-T2R takes on the Kindle and Nook. Photo: Sony

Sony announced its new ereader today — and, no, you’re not reading an article lifted from TheOnion. In an ereader landscape thoroughly dominated by Amazon and Barnes & Noble, Sony continues to vie for the smallest scraps of relevance. This won’t be an easy sell for the company, as the PRS-T2 is priced higher than the comparable Kindle Touch and Nook Simple Touch, and lacks the powerhouse book libraries of Amazon and Barnes & Noble.

The PRS-T2 features a 6-inch touchscreen inside a 6.75-inch enclosure. Available now, the digital reader connects to Sony’s Reader Store for books, and supports ePub and PDF files. The ePub feature, an open standard for self-publishing, is something the Kindle is sorely lacking, and the SD card slot is a welcome addition. But are these two features enough to woo consumers?

At $129, the new ereader has already lost the price war. The Nook Simple Touch is $99, while the Kindle Touch with special offers (ads) is $99. The add-free Kindle Touch does clock in at $139, $10 more than the PRS-T2, so Sony does beat Amazon’s price for consumers who refuse to be inundated with ads while their e-readers sleep on coffee tables.

The PRS-T2 also features a one-button solution to borrowing books from libraries that support the Overdrive book lending system. This is a welcome change from the Kindle’s method of sending books from a computer.

The stylus and drawing capabilities of previous Sony ereaders get upgrades as well — users can now draw directly on the pages of books. Still, drawing capabilities and quick access to library books won’t solve Sony’s biggest obstacles: almost non-existant mainstream mindshare, and a book catalog that can’t compare to those of the two heavyweights.

Amazon’s online store is a juggernaut. It will be tough for Sony to convince customers eschew ebooks from the same company that already sells them video games, deodorant and Blu-rays. Tackling the Barnes & Noble ecosystem would be only slightly easier.

And finally, where’s the light? The Nook Simple Touch with Glow Light is an already great e-reader made outstanding thanks to its illuminated screen. Amazon is expected to release a Kindle that glows in the coming months. For Sony to release an e-ink e-reader without built-in lighting seems completely self-defeating.

Source: http://www.wired.com/gadgetlab/2012/08/sony-ereader-takes-on-nook-kindle/

NOKIA DISCOVER FINANCIAL SERVICES GOOGLE NOVELLUS SYSTEMS SYNNEX QIMONDA LEVEL 3 COMMUNICATIONS

ChromeLite: experience the ASCII Web of yesteryear

ChromeLite ASCII extension
Have you ever wondered what the Web was like before the Mosaic Web browser? If you were born in the last 20-odd years, or you only discovered your inner geek recently, did you miss out on monochrome monitors and the dial-up BBS era? Well, here's your chance to get a sneak peek at history: grab the ChromeLite extension and marvel as the entire Web is transformed into ASCII characters.

Now, ChromeLite isn't really all that functional. For the most part, it simply strips images and converts text into a monospaced terminal font. There are a few Easter eggs inserted -- such as a fun message at the bottom of YouTube (image after the break) -- and some fun ASCII art, but that's about it. Rather oddly, most JavaScript continues to work -- so you can still enjoy Google Instant Search!

ChromeLite was actually made by Google as an April Fools' joke -- and indeed, an annoying 'you can uninstall this!' message appears at the top of every page -- but we're kind of hoping that Google, or another developer, takes ChromeLite and turns it into a real ASCII browsing extension with configurable settings. If anything, it will provide an easy way to save bandwidth and CPU time.

Continue reading ChromeLite: experience the ASCII Web of yesteryear

ChromeLite: experience the ASCII Web of yesteryear originally appeared on Download Squad on Mon, 04 Apr 2011 07:15:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments

Source: http://downloadsquad.switched.com/2011/04/04/chromelite-experience-the-ascii-web-of-yesteryear/

KLATENCOR COMPAL ELECTRONICS VEECO INSTRUMENTS INTUIT ALLIANCE DATA SYSTEMS ATandT KDDI

Microsoft Reveals Windows RT Who's-Who and What's-What

Microsoft has announced that Asus, Lenovo, Samsung and Dell will unveil tablets based on Windows RT by the time it launches the operating system in October. Each is developing a variety of form factors and peripherals, Microsoft said. However, all their Windows RT products will have consistent fast and fluid touch interactions, long battery life and connected standby, the company said, adding that all are thin and light. Windows RT devices will range from ultra-thin products with high-resolution displays to all-in-one PCs with large touchscreen displays.

Source: http://ectnews.com.feedsportal.com/c/34520/f/632000/s/22617fa5/l/0L0Stechnewsworld0N0Crsstory0C7590A20Bhtml/story01.htm

VIRGIN MEDIA LAWSON SOFTWARE MCAFEE MICROSEMI UNISYS TAKETWO INTERACTIVE SOFTWARE SYKES ENTERPRISES INORATED

How The iPad Keeps You Connected with Wi-Fi or 3G

Apple have done a great job of marketing their iPad device. Their strategies have gone a long way in convincing consumers that the device is the best on the market when it comes to browsing the Web or watching online streaming videos. The same can be said of connecting with friends via any social networking services according to the manufacturers.

These claims are backed up with some very sophisticated apps, features and services. The overall opinion of many industry pundits is that the device is a worthy competitor to netbooks. They believe that Steve Jobs and his team did a great job in developing the iPad even though there was a lot of scepticism when it was first launched onto the market.

The device is very fast and easy to use. It has built-in, high-speed 802.11a/b/g/n Wi-Fi which makes downloading files and streaming videos a cinch. Even when there is heavy gateway traffic or too many subscribers using the network, the device copes well making the experience a pleasant one. This is all thanks to the beefed-up Safari app and the latest Wi-Fi standard the device uses.

Apple claims that Safari is the fastest browser around which makes browsing the Internet a simple task that happens at lightening speed. One of the great features the iPad offers users is it’s capability to work on Wi-Fi as well as 3G. This means users will always be able to get on the Internet wherever they happen to be and don’t have to rely on ‘hot spots’ to stay connected.

Most Internet providers these days have 3G service and this means that iPad users can seamlessly swap over from Wi-Fi to 3G in an instant when they need to without having to contact another provider in order to do so.

Whenever an iPad user comes to the end of their surfing minutes, there’s an interactive push notification that pops up to let them know they need to either upgrade to the next data plan or switch to the latest Wi-Fi standard in their vicinity. Of course it goes without saying that the device has it’s own app to monitor and manage data usage.

Source: http://tabletbuzzblog.com/how-the-ipad-keeps-you-connected-with-wi-fi-or-3g/

ARIAN SEMICONDUCTOR EQUIPMENT PRICELINECOM ASUSTEK COMPUTER CISCO SYSTEMS FINISAR NVIDIA SHAW COMMUNICATIONS