Securelist / Blog
Securelist / Blog
  • Adobe Incubates Flash Runtime for Firefox

    The Adobe AIR and Adobe Flash Player Incubator program updated their Flash Platform runtime beta program to version 5, delivered as Flash Player version 11.2.300.130. It includes a "sandboxed" version of the 32-bit Flash Player they are calling "Protected Mode for Mozilla Firefox on Windows 7 and Windows Vista systems". It has been over a year since Adobe discussed the Internet Explorer ActiveX Protected Mode version release on their ASSET blog, and the version running on Google Chrome was sandboxed too.

    Adobe is building on the successes that they have seen in their Adobe Reader X software. Its sandbox technology has substantially raised the bar for driving up the costs of "offensive research", resulting in a dearth of Itw exploits on Reader X. As in "none" in 2011. This trend reflects 2011 targeted attack activity that we’ve observed. 2011 APT related attacks nailed outdated versions of Adobe Flash software delivered as "authplay.dll" in Adobe Reader v8.x and v9.x and the general Flash component "NPSWF32.dll" used by older versions of Microsoft Office and other applications. Adobe X just wasn't hit. IE Protected Mode wasn't hit. Chrome sandboxed Flash wasn't hit. If there are incident handlers out there that saw a different story, please let me know.

  • Malicious ads on security websites
        Perhaps the worst possible scenario is when a bank website is hosting malicious ads: you never know what can be installed and when on your computer if you click on the ad banners. Something similar happens with security websites hosting malicious ads. They are supposed to be for security information. The people browsing such sites trust the content to be safe, but in actual fact because of the ad banners the resources may be anything but trustworthy.

  • Will Google Bouncer definitely remove all malware from the Android Market?
    Will the Bouncer be effective in addressing the malware problems with Android apps? First of all, this is a good and really necessary move Google is taking, however the solution will be only partial. Based on the public information around this service, all apps will be scanned for known malware. Basically that means a multi-scanner or something similar will be used, so the quality of malware detection will depend greatly on what AV engines Google will use to analyze apps. Not all AV engines have the same quality, so there is a possibility some malicious apps won't be detected as malicious. The second step offered by Google is emulation. It's a good approach, however it can also be cheated by anti-emulation tricks or a malicious app can be programmed to behave differently once an emulation is detected, making the app appear to be non-threatening.  So, basically the same malware tricks used to bypass Windows security can be implemented now on Android.
    Is it still a good idea to use a mobile security program for protection even with Bouncer in place? Yes, for sure it's a good idea. The situation is many people download apps not only from the official Android Market, but also from third-party sources.  Nobody knows for certain what kind of apps are out there on private market stores, run by people not affiliated with Google. Additionally as we mentioned if Google's multi-scanner won't count on all AV engines but only some of them, it's certainly good to use AV detection on your phone as a second opinion for anything that might have slipped past Google’s scanner.
    Are there ways for hackers to sneak infected apps into the store despite Bouncer? Yes and one of them is by hacking well known and trustful developers accounts. In fact I believe that will happen in the near feature. I say this because of Google says it will check all new developers account. If a developer is already known and trusted by Google, that developer account will be a prime target for cybercriminals. Also, even though we haven’t seen it happen yet, we know cybercriminals can start developing apps that work differently in specific geographic zones. For example, an app could be designed to only behave maliciously if it detects a Latin American carrier…if the same app is used by a US carrier, no malicious behavior will be detected. That's also an anti-emulation trick which can be exploited by cybercriminals in order to avoid Bouncer detection.
 
SpywareGuide Articles
Articles on Spyware, Adware, Malware and privacy in general
SpywareGuide Articles
  • DATA-THEFT WORM TARGETING GOOGLE'S ORKUT
    FaceTime Security Labs announced the discovery of a worm that steals users? banking details, usernames and passwords. The worm, known as MW.Orc, is propagating through Orkut, Google?s social networking site, as users launch an executable file disguised as a JPEG. Google has a temporary fix in place
  • The Digital Underground: Interview with RinCe
    This is Part TWO of a series of write-ups focusing on the recent threat to E-Commerce systems via potential IM (Instant Messaging) attack vectors and more besides, by way of a remotely installed administration tool and custom-built scripts, designed to find vulnerabilities in third-party payment sys
  • Property Values, Satellite Maps and Zillow
    A new service called Zillow allows you to easily access the value of your home...and your neighbors and even their neighbors. SpywareGuide articles are sponsored by FaceTime Communications, providing solutions for securing and controlling IM, P2P and Spyware Greynets.
5 Things That Annoy Internet Users PDF Print E-mail
User Rating: / 0
PoorBest 
Submitted by:  Luke Petterson
 
With Internet use comes frustration. There is inevitably going to be situations that annoy you to no end when using the Internet for both work or play. This is my list, I am sure you can relate!

#5 - Email Spam

I'm starting this off at #5 because spam can be addressed somewhat easily these days with some of the better spam filtering services that are available. Spam is still out there though, and it's still very annoying.

Trying to prevent spam and trying to deal with spam that is already being sent your way will probably take up some of your valuable time if you use email to any degree. Plus, those people that are new to email might be put off by spam, or even the stigma surrounding it, and might even be scared of the Internet without even really getting into it because of this fear. Not a good thing.

#4 - Pop-up or Annoying Ads

I don't think ads on the Internet are bad as a whole. People need to make money on the Internet and ads help do that. Ads can be implemented in a good way too, but in a lot of cases they are implemented in an annoying fashion.

What I don't like, and what most Internet users will find frustrating is the highly obtrusive ads that either pop-up or have other highly annoying behaviors such as sliding in on the screen or even crashing a browser for some reason. The wrong type of ad implementation, even on a good web site, can just flat out kill the user experience.

#3 - Hard-to-use Online Forms

How many times have you tried to fill out a form on a web site only to get the form to error somehow? This can result from not putting enough characters in your username, forgetting to fill a required field, or any number of other requirements that the form employs. After trying to submit a form for the first time unsuccessfully you might end up needing to either re-fill a bunch of fields, or you might even manage to completely reset the form contents. Very annoying!

Many web sites have horrible form usability. Some forms don't tell you what is required while entering data, leaving you to find out that you entered something incorrectly only after you try to submit the form. Web forms should always let the user know what to expect!

In some cases a web form might somehow manage to erase data that you took 5-10 minutes to carefully fill out. This can also be very annoying and waste your time.

In other cases a web form might have wacky tab ordering. When you hit the tab key the cursor might not jump to the next logical field. This can get annoying really fast too!

I don't know how many times I've become frustrated with the usability of a web form. Usually it's the larger forms that frustrate me when they don't work right, but any size form can set me off if it's unusable. Granted, there are many web sites that implement forms very well, but you will always run into web forms that will test your patience at some point. It's just part of using the Internet.

#2 - Too Many User Accounts and Passwords

I have a spreadsheet (yes, a spreadsheet) to manage my various Internet accounts and passwords. This spreadsheet probably houses over a hundred different username/password combinations for many different web sites. Online banking, eBay, blog sites, web forum accounts... the list goes on and on.

I am sure that I am not alone.

Any Internet user that likes to interact with web sites will compile a large list of accounts to remember and keep track of. This can get to be very annoying after a while, especially if you have a bad habit of not keeping your records updated properly like I do!

#1 - Internet Connection Interruptions and Outages

There really is nothing more annoying than an Internet connection dropping when you need it to work. Considering the short attention span of most Internet users, including myself, I would say that even 1-2 minutes of downtime on an Internet connection is enough to drive somebody insane and crazy.

People use the Internet because information can be accessed very quickly and efficiently. It is very annoying when a spotty Internet connection interrupts this convenience.

All in all, there are probably a lot more situations that can frustrate or annoy Internet users to no end. At the end of the day, patience prevails, even on the Internet. Next time you are being annoyed by something Internet related just take a deep breath, relax, and keep on trucking!


About the Author

Luke Petterson is a long-time computer user and risk taker, which has led him to many interesting computer-related situations, good and bad.

Visit Luke's blog, Smart Computer Use?, at smartcomputeruse.com to read about daily computer over-use and all of the situations that can arise from it.

 Originally submitted at:   http://www.goarticles.com/cgi-bin/showa.cgi?C=1138207
 
 

Latest Virus Threats

Recent Posts

Article Archives