Firefox update 18 gets an update, but no security problems this time

Firefox users will probably notice that the recently-released version 18 has received a mini-update.

Mozilla's flagship product thus hits 18.0.1.

The good news is that the 21 security fixes that appeared in version 18 haven't needed any fixes of their own.

The new point release mops up three bugs, all of them no doubt annoying to those affected, but none of them security related.

The first fix is for a fault that could prevent automatic proxy configuration.

Proxies are widely deployed in the corporate world as a powerful web security tool. Instead of letting your browser fetch content directly from external websites, many organisations make you connect to a proxy server at the edge of the network instead. The proxy fetches the content, weeds out the dodgy or unwanted stuff, and passes on the rest.

If your browser can't find the right proxy to use, it probably won't be able to browse at all. So proxy autoconfiguration is vital in the business world. Not surprising that Mozilla fixed this fault fast.

The second fix sorts out a bug that can cause the Unity3D browser plugin to crash.

Unity is a games ecosystem, so this fix is much more important at home than at work.

Unless you work for a games company, of course.

The last fix deals with a problem in the newly-added support for Apple's super-high-resolution screens. If you had two screens, one of which wasn't hi-res, browser content could appear on the wrong one.

That's the lot.

It's nice to have a browser update that largely deals with cosmetics rather than patching against known vulnerabilities or in-the-wild exploits.

Having said that, the Unity-related bug was a crash in the strlen()function. Almost certainly not an exploitable crash, but it does sound like incorrect memory usage.

Might as well apply the fix, then, even if you are neither a corporate user nor a gamer.

Read More

Make your face place singer psy

you can do that with this link her

Read More

Thader of dangerous virus spreads and hacking your personal information

Today Pattani report of several people on the virus spreads in the form of daonlondr for vlc

And this dangerous virus which as follows as soon as you agree to download the deployment in your computer

Read More

Jettisoning Java: Damned if You Do, Damned if You Don't

For many businesses, disabling Java to guard against a zero-day attack is easier said than done. The consequences of falling victim to an exploit are high -- but the consequences of losing Java functionality can be high as well. "This means a tremendous disruption to your company's operations," noted A.N. Ananth, CEO of EventTracker.

The U.S. Department of Homeland Security is urging computer users to disable or uninstallJava due to a serious flaw in Runtime Environment (JRE) 7.

The DHS' Computer Emergency Readiness Team warned Thursday evening that it was being exploited in the wild and could allow an attacker to execute arbitrary code on vulnerable systems.
CERT recommended that Java be disabled in Web browsers. It pointed users to the Solutionsection of the US-CERT Alert and to the Oracle Technical Note Setting the Security Level of the Java Client for information on how to do that.

Another Zero-Day Alarm

The warning is bad news for Java, which has been the target of more than its fair share of zero-day exploits.
"I've said it before and I'll say it again; if you don't need Java, disable it," Andrew Storms, director of security operations for nCircle, told TechNewsWorld.
"It's a drive-by bug, so little user interaction is necessary, and people won't even know they've been attacked until it's too late," he explained. "Although current attacks are focused on Windows, this bug isn't operating system specific, so no one will be safe for long -- especially since major exploit kits now include attacks."
The potential consequences of exploit are high, noted Tyler Shields, senior security researcher at Veracode.
An attack "can lead to theft of sensitive data, use of the compromised computer as a zombie or botnet node, and continued attacker persistence on the system," he told TechNewsWorld.

What to Do?

The obvious solution is to follow CERT's warning and turn off Java. Many consumers probably don't know if they are using it or not in their browsers, but "if you aren't sure, find out now and turn it off," said Storms.
Users can follow these links to turn off Java browser plugins

• How to turn off the Java plugin in Firefox



• How to turn off the Java plugin in Chrome
  
• How to turn off the Java plugin in Safari

Low Compliance Expected

Unfortunately, many consumers and businesses are not likely to take this advice. If they did, they wouldn't be able to view sites they need or like for work or play.
In short, the suggested workaround "is conceptually difficult and likely to not be implemented by many end users unless they are forced to comply," Shields said.
It may be more difficult for businesses to disable Java than for consumers.
"Many companies have used Java as a primary component to their websites and internal Web-based applications," Jerry Irvine, CIO of Prescient Solutions, told TechNewsWorld. "For these companies, balancing the risk with the requirement of continuing to perform day-to-day functions is a major issue."
If you disable Java blindly, you're going to break a lot of functionality, A.N. Ananth, CEO ofEventTracker, told TechNewsWorld.
"This means a tremendous disruption to your company's operations," he said. "Government organizations may be able to consider this, but commercial ones will cringe at the prospect."

Risk Assessment Time

Still, some sort of analysis of the pros and cons of ditching Java is necessary, Ananth continued.
"When confronted with a vulnerability -- today it's an attack on Java, tomorrow it will be something else -- the systemic response needs to be an assessment of the risk to the enterprise, starting with the most critical systems," he explained.
"If this assessment shows that you're vulnerable to an attack no matter what you do, and the risk of loss is beyond the threshold of acceptance -- then sure, consider disabling Java," Ananth said.
Basically, none of the choices confronting businesses that have applications reliant on Java are palatable, nCircle's Storms said. "The continuing stream of serious Java bugs has got to be discouraging for businesses that rely on it -- it certainly makes alternatives like HTML5 look more attractive."

Read More

Facebook Rolls Out Free Voice Calling to US iPhone Users

iPhone users in the U.S. now can speak to each other directly for free through Facebook's Messenger app, an extension of a recent test rollout conducted in Canada. Voice carriers have little to fear just yet, said Andreas Scherer, managing partner at Salto Partners. However, "the world largest social media platform could easily become the world largest wireless provider."

Facebook rolled out free voice calling in the U.S. through the Facebook Messenger app for iPhone on Wednesday -- with little fanfare or formality.

There was no grand announcement -- media outlets noticed the new development and after inquiries, Facebook said it was an extension of the VoIP in Messenger test it launched earlier this year in Canada.
The feature works within the Facebook Messenger app on the iPhone. Users can place a call to contacts from the conversation list if that person has Messenger for iOS as well -- not just the Facebook app. The call goes over data networks or WiFi, instead of the voice service the carrier provides.
A Facebook spokesperson was not immediately available to comment for this story.

A Cutting-Edge Move

It is a savvy move on Facebook's part, Paul Levinson, professor of communications and media studies at Fordham University, told MacNewsWorld.
"By doing this, Facebook is instantly allying itself with the cutting edge of the smartphone revolution -- a revolution in which it needs to be more of an active participant, rather than just a destination to reach on the phone."
The free part of the offering is bound to be attractive to users with unlimited data plans, Bruce White, professor of computer information systems at Quinnipiac University told MacNewsWorld. "What is especially appealing to this is that instead of using your voice minutes, it uses your unlimited data access"

Sometimes You Want to Hear a Voice

The offering also fills a hole in social-media communication that, for all its popularity, is still quite noticeable: sometimes people want to talk, not just hit "Like" or make clever comments about posts.
"Let's look at a scenario," White said. "You are on Facebook and one of your close friends has just posted that they are engaged. You can post "congratulations" to them on Facebook, but you really want to talk to them. So, with a click, you call them through this new service."
Plus, he continued, it is faster than the alternative, which is reading the announcement, then pulling out the phone, finding the friend's number and so on.
For Facebook, the app has the advantage of keeping users on the site that much longer, he added.

Facebook vs. the Carriers

In short, the move appears to be initial steps for a larger wireless play by Facebook. Carriers won't likely be impacted in the short term but the long-term possibilities may cause them some sleepless nights, Andreas Scherer, managing partner at Salto Partners, told MacNewsWorld.
"If Facebook is able to deliver this capability on all major mobile platforms and allows its users at some point to call to any phone number -- landline, mobile or otherwise -- then the world largest social media platform could easily become the world largest wireless provider," he said.
"Current carriers would be marginalized by simply delivering the bandwidth to enable a user experience that is created, enhanced and owned by Facebook," according to Scherer.

The Drawbacks

That day -- if it comes at all, though -- is far off, at least based on what Facebook is currently offering. The new service has a number of limitations, starting with the fact that it is only available to iPhone users, Andy Abramson, CEO of Comunicano, told MacNewsWorld. Also, to connect, both parties need to be using the Messenger app.
"The biggest hurdle, and why this won't be a threat to mobile operators, is unlike Skype, if the person you want to reach isn't online, there's no outbound calling to a landline or mobile as there's no interaction with the information on how to reach you from inside your Facebook profile."
What this offers Facebook users is instant voice if the person is online and available, Abramson said. "This type of presence-based calling has been around for a very long time so I don't see it as breakthrough."

Read More

PrivacyFix new addition to Chrome prevent Google, Facebook and more than 1000 other site be tracked

All Internet users spend all their time browsing and radish free services, search, social networks, games, news ... But someday msadl zalat entered these sites that they offer their services for free?

The idea is very simple: you are currently browsing the site, the site collects information about you (what sites you visit and your interests) then converts this information into a plethora of ads that you see on the side or at the top of any page, so will the site you're visiting that their ads will excite you wetgdbek clickable, so you made easy tool to make money through advertising.

PrivacyFix a new tool on the Google Chrome help user protect privacy online, where companies like Google, Facebook and other websites from tracking your online activity and full control of your privacy settings, also it ensures the protection of your personal information from leakage while communicating with friends via social networks.

Tool is exciting you to your settings on the sites you visit and especially Facebook and Google, and give you the opportunity to change it ltvazei any trace of these sites, you can control the privacy settings easily by pressing the key fix tool to show the user interface contains settings for privacy on Facebook and Google as well as other information, it is possible to take advantage of this tool in case the user wants to block the possibility of cross's button (like) in Facebook and you are using various locations in their pages. Thus ensure safe surfing without tracking your activities on the Internet.

Read More

The first disk SSD in the world with a capacity of 2 terabytes

"Foremay" American company specializing in the design and development of type SSD storage drive, my external storage with a capacity of 2 terabytes.

The company said that the first CD "TC166 ″ final, they custom II intended for industrial uses" SC199.1″, the first external storage disk type SSD with SATA in the world up to 2TB,

"Foremay" disk thickness not exceeding 9.5 mm allow use instead of traditional storage disks on laptop computers.

It should be noted that the company did not reveal the price or the date of these discs on the market.

Read More