15-06-07

the ratrace against Apple Iphone has started

Apple is now in a ratrace with the underground. The system that seemed untouchable untill now and that has prided itself at being 'unhackable' and goes on a - sometimes very aggressive - offensive if somebody says he found a way to get access to or control over a mac (remember the wireless driver incident or the month of apple bugs) has finally released a product they can really have fun with.

First of all it is a browser. A browser makes for the moment a connection between the internet and your OS - desktop - harddisk. The internettraffic still has to go through several security checks and can find itself blocked by several limitations but the number of possibilities to reach the OS - desktop or harddisk are nearly unlimited. As long as all the interactions between the internet and the browser aren't seperated (quarantined) it will alsways be a door you can't lock. And firefox, IE or whatever doesn't make any difference. The power of javascript, the millions of lines of code for every possibility of interconnection and the monthly new driveby methods and tools make this difference propaganda, salestalk or just stupidity. This is 2007 and malware code is installing itself on the web in much greater numbers than we ever could imagine.

So Apple wanted to do what Microsoft is trying to stop : Transforming its products for another platform in another code. This doesn't mean that the other platform is less safe or robust. It just means that it is totally different and that it is much easier to make mistakes because you don't necessarily have all the knowledge and history, experience to make it as robust and good as your own code for your own platform.

It is also mindblowing that Apple wanted to launch a browser for windows. Why a browser ? You don't earn any money with browsers, it is a free product and you can only lose. Lose money, time and image. Why didn't they just make a toolbar or a kind of makeover of IE like slimbrowser or theworld ?

Fact is that the ratrace has begun and that the underground is now having fun looking for holes and trying to exploit them, bragging about the codes they already have developed and are keeping by hand.... The big question is not when the first exploit will be published for safari on windows, but for safari on iphone. There will always be more iphones than macs and it will be much more difficult to defend an iphone than a mac (try installing a firewall, antivirus, antispyware, process controller, HIDS, privacyproxy on an iphone or any pda for that matter).

The biggest question will be who will be able to make attackcode that

* sends an email or message (MMS) to friends to also visit the infected website

* sends an email with infecting code

* sends all itunes logon information to another address

* blocks the iphone with encrypted malware and asks 50 dollars for the unblocking code or encrypts all the songs on it

* has an updating function to add new functons

* makes the phone send an sms to a very expensive number or subscribes it without knowing to such expensive services

 

And even as Apple has released a new version that has fixed 3 of the 4 published bugs and exploits, this doesn't change anything. Rumours tell that there are already 14 bugs that were found. That means there are 10 left. If one of those could be remotely exploited..... One out of ten is more than feasable because it is only a browser.

And browsers have by definition always too much power and authority - on a desktop or a pda. They should be in an isolation cell, but no - they are the masters of the place where they are. Even if there are more criminals than writers around.

So just as Microsoft has learned, Apple will now definitely have to install a security team, security website, security communication plan and will have to test everything ten times more before releasing it in the wild and have a clear line of contact with security researchers and build a relationship of respect and cooperation with them, because even if you think you are the smartest kid on the block, you will always forget something or make a mistake.

How big this one was has yet to be seen. But they can't deny that damage has already been done.

10:08 Gepost door technology changes fast not a lot in Algemeen | Permalink | Commentaren (0) |  Facebook |

14-06-07

Free counter with adware-spyware-dialers

http://www.freestat.ws/conditions.htm

 

Possible uses include (but are not limited to) a directory
of the sites using our service, the script inserted in your site web
can be used by us for every purpose of profit, general promotional
uses, any purpose of profit, activx, pay internet,Dialer, Premium
Number, redirect, etc. You agree to use our services at your own risk.

be sure before you click yes on free

12:02 Gepost door technology changes fast not a lot in Algemeen | Permalink | Commentaren (0) |  Facebook |

Safari on windows the hacking hole of Iphone

Some in the industry said that it ain't fair that the Iphone is a closed environment (closed gate) and that other firms can't write apps to place on your iphone.

 

But the solution is writing apps for Safari browser that will run on iphone. That is the news that everybody has been waiting for, including the black hats that are enjoying debugging the lousy written application Safari and trying to perfect their exploit attackcodes.

 

Breaking in through the backdoor..... which looks like a door but has no door.

 

Will iphone - safari be the wake-up call for Macintosh that every techfirms needs a security strategy, whatever the hype.

11:39 Gepost door technology changes fast not a lot in Algemeen | Permalink | Commentaren (0) |  Facebook |

Patching a lot

Install windows patches

http://isc.sans.org/diary.html?storyid=2964&rss

goto  http://update.microsoft.com

 

Des-install Safari on windows

for the moment already 14 known bugs have been found

 

Sun servers and installation need an patch-update

 

Update also Yahoo Messenger for which already attackcode is installed on tens of servers around the web

11:34 Gepost door technology changes fast not a lot in Algemeen | Permalink | Commentaren (0) |  Facebook |

Your Belgian passport may be read by any RFID hacker

Last year the Belgian government introduced new passport with a RFID chip in it. But instead of learning something about the security problems and initiatives that were taken in the US after research and the uproar, they just went ahead. They didn't even wanna listen to the FEDICT because they all knew best and would do it all by themselves as big boys. Children playing with lego's yes or kids with the anarchist cookbook and blowing themselves up.

 

When the first uproar about this started they said that the second generation of Belgian passports would be better protected. THIS IS NOT THE CASE as new research shows (may I congratulate these Belgian researchers and may I hope more will come - bugs in the EID for example ? to give a hint).

 

So what will that prove. That anyone near you in for example an airport with an RFID receiver can read the data (even your signature) on your passport, which could maybe be used for impersonation or false documents. Maybe this is the first big hole in our identification system that will make ID-theft against Belgian possible.

 

The Belgian researchers are calling to withdraw immediately all the Belgian Passports of the first generation and to make the international norms even more stricter. That is clearly not enough, every IT project with security risks must be turned inside out before releasing it.

 

It is easier to hold an European conference on Cybercrime than to respect a best practices with your own IT services and technology.

 

http://www.dice.ucl.ac.be/crypto/passport/index.html

11:04 Gepost door technology changes fast not a lot in Algemeen | Permalink | Commentaren (0) |  Facebook |

13-06-07

delcampe.net vergat de backup

Ze moesten een operatie op de servers doen omdat ze sinds geruime tijd problemen hadden met hun sql databases. Deze Belgische onderneming is immers uitgegroeid tot een bijna Amazon voor verzamelaars alleen is hun IT infrastructuur in handen geweest van hobbyisten dan ter allerlaatste ondersteund door specialisten.

 

Aangezien ze geen scaling, backup en mirroring of proxying hadden gedaan was de crash dan ook fataal. Bijna een heel weekend offline en dan moeten terugkomen met een backup van meer dan een week geleden. In feite verder dan een week geleden want vb als je het aantal pagina's vergelijkt voor de crash met na de crash dan zijn er bij heel wat opzoekingsopdrachten tientallen objecten verdwenen.

 

Het is spijtig dat zo'n Belgisch pronkstuk van internetontwikkeling geen beroep heeft kunnen doen op professionele hosting diensten zoals die van Amazon, zelfs al zijn die in verhouding spotgoedkoop. Het is trouwens spijtig dat er zoals in de VS geen investeerders en startup consultants zich reeds geruime tijd met de firma bezighouden en hen met advies bijstaan zodat ze even snel kunnen groeien en hun immer snel groeiend klantenbestand kunnen blijven voorzien van een gegarandeerd professionele dienstverlening.

13:27 Gepost door technology changes fast not a lot in Algemeen | Permalink | Commentaren (0) |  Facebook |

spa blogt .... niet meer

Er zijn zo van die ideeën die van in het begin gedoemd zijn om te mislukken.

http://www.spablogt.be  wou een goed afgesloten forum worden voor ingeschrevenen - als het werkte - om commentaren en blogposts te wisselen. Dit paterachtig gedoe heeft er echter toe geleid dat het nooit van de grond komt. En over de huidige crisis binnen de spa lees je daar ook al niets. Terwijl je in de intentie heel wat anders leest.

googlebooksbad_010

 

misschien volgende keer anders en beter ?

13:07 Gepost door technology changes fast not a lot in Algemeen | Permalink | Commentaren (0) |  Facebook |