Just days after possible security vulnerabilities were reported in the iPhone, researchers at Independent Security Evaluators in Baltimore have reported that a vulnerability in the Safari browser, used in the iPhone, could be exploited by rogue websites to gain full access to the phone. This could potentially provide full administrative access to the phone allowing access [...]
Archive for July, 2007
Staying on the Microsoft theme, MSDN have published guidelines for sidebar gadget developers in order to avoid Cross Site Scripting (XSS) vulnerabilities. As gadgets are built from HTML, JavaScript, and potentially ActiveX controls, they are a prime candidate for XSS vulnerabilities. Bare this in mind before installing the latest gadget you have found on the [...]
iPhone Web Vulnerabilities
18Jul07The Help Net Security site details some security vulnerabilities that exist in the current iPhone email and web client software. These include the email client not showing the URL of an embedded link, making phishing attacks easier, and the ability to get the phone to dial from a web link or Java script - although [...]
Following the launch of Microsoft’s Windows Defender and Forefront Client Security products, Microsoft have launched a Malware Protection Centre which details the top email, desktop and adware threats, as well as a Malware Encyclopedia covering the various types of malware and their use.
Microsoft Technet has also released a Malware Removal Starter Kit which details the steps [...]
A survey by Evans Data of more than 400 developers and IT managers in North America found that the number of developers targeting Windows for their applications declined by 12% from a year ago, while Linux development rose by 34%.
However, Windows development still forms the majority of the market at 64.8%, and Linux development only [...]
Linux blasts into space
03Jul07Wind River Systems, Inc. has been selected by Honeywell Aerospace to support the development of NASA’s New Millennium Program Space Technology 8 (ST8) Dependable Multiprocessor. The contract marks the first time a Linux platform has been selected by Honeywell for a space mission.
Reported by TechNews.
ComputerWeekly reports some statitiscs from the aniti-virus vendor Sophos that web pages on ligitimate sites are being infected by malware at the rate of almost 30,000 a day. Sophos research shows the top ten web-based malware as:
Mal/Iframe 64.0%
Mal/ObfJS 10.1%
Troj/Psyme 3.8%
Troj/Fujif 3.1%
Troj/Decdec 2.7%
VBS/Redlof 2.5%
Mal/Packer 1.1%
Troj/Ifradv 1.0%
VBS/Haptime 1.0%
Mal/Zlob 0.9%
Others 9.8%
Guy Kawasaki has posted an interesting article on his blog detailing the creation of his Web 2.0 venture called Truemors, which cost the grand total of $12,107.09 in setup costs. What’s intriguing is how the legal fees were actually greater than the software development expenses. It proves that it has never been easier to setup [...]
