Koopface Virally Infects Facebook

Million’s of Facebook users are in danger zone.

Koopface is a new computer virus spread through Facebook message system. It will send the message from the infected person’s profile to his friends, the subject line is like “you look just awesome in this new movie” it will open into another website to watch the movie after clicking the website it shows a message to need an updated Adobe Flash Player. But the virus will download while updating Flash Player.

Infected systems have the possibilities of stolen Credit card numbers. “Only a very small
percentage of Facebook users have been affected, and we’re working quickly to update our security systems to minimize any further impact,” – Barry Schnitt, the Facebook spokesman in Palo Alto.

My thoughts: it is inevitable that a social network will be used to launch a new viral epidemic

WPA Encryption Cracked in 15 Minutes

While the WEP-encrypted Wi-Fi networks have been easily broken for quite some time now, latest reports indicate that the more secure WPA or WPA2 encryption systems are also vulnerable.

Security researchers claim that are able to partially crack the Wi-Fi Protected Access (WPA) encryption standard used to protect data on many wireless networks in just few minutes. The attack will be discussed at the PacSec conference in Tokyo next week. Researchers will give a live demonstration of cracking the WPA encryption in order to read data being sent from a router to a laptop computer.

Key parameter of this attempt is to break the Temporal Key Integrity Protocol (TKIP) key, used by WPA. This can be achieved in just 15 minutes, the researchers claim. And that’s exactly the interesting part of the story. Until now, the TKIP could be cracked using what’s known as a dictionary attack. The attacker cracked the encryption by sending massive trial requests to the wireless device in an effort to finally guess the key used to secure the wireless data. But this procedure required increased computational resources and time.

Free: Comodo Internet Security Suite

Comodo’s president Melih Abdulhayoglu believes that “Safe computing on the Internet should be a right, not a privilege.” He continues, “We are offering an advanced, intelligent Internet Security package at no
charge in order to promote a safer, trusted Internet for everyone
.”

The program’s main window is uncluttered and informative, providing a vitals like the status of protection systems and updates, and the present level of network activity. It also features links to quickly lock down your system or set the program to install mode (which tells it ramp down the activity alerts temporarily).

Its main program window presents the three major defense components: Antivirus, Firewall, and Defense+. Configuration options are plentiful on all three. The virus scanner supports automatic updates, flexible scheduling, multiple scanning profiles, excluded directories and files, and detailed logging.

As you’d expect, the firewall offers a myriad of rule and configuration options. Granting and revoking trust from applications, ports, and networks is a clear, simple process. Novice users will either want to leave the default settings alone or spend some time reading the detailed (and user-friendly) help files, as a couple of wrong clicks can quickly create networking headaches. An active connections screen is also available and it presents information similar to Sysinternals’ TCPview, providing insight as to which applications are transmitting or receiving data.

During the first launch, Comodo does a good job of determining which applications are safe to approve. Alerts are color coded, so novice users should pay special attention to any that appear in a red window.

What interested me most about CIS was the Defense+ system. It provides another layer of protection against malware, allowing users to specify trusted software vendors and files, folders, and registry keys that are to be protected. Any modifications to these files or keys (by a hijacker, for example) can’t occur unless authorized.

Adding a file, process, or driver to the blocked list makes it impossible to access by any user or process – unlike protected files, to which you can selectively grant permission. The program does its best to recognize new files automatically, but unknown ones are added to a pending list, which allows you query Comodo’s master database for more information or submit files for review.

Comodo Internet Security is exceeding my expectations, and I would recommend it for anyone that is after a unified solution for malware, virus, and intrusion defense. It’s a much more complete solution than other free apps like AVG, Avast, and Avira.

Install note: by default, Comodo will install the Ask toolbar and change your home page. Pay attention to the screens, and deselect them if you’re not interested.

Extend Your Firefox

As you may or may not know, Firefox has the potential to be far more interactive than the initial installation. What do I mean by this exactly? With Firefox you can write to your blog, sync your bookmarks to a server, download videos from YouTube, and more. Sure, you may be able to pull off some of these tricks with IE7 or Opera, but not near as easy as you could with Firefox, as Firefox was developed with such intentions. Here are my reccomendations to make Firefox the most secure and interactive browser on your system:

1. Scribefire

ScribeFire is a full-featured blog editor that integrates with your browser and lets you easily post to your blog. Techtronic uses ScribeFire for all blog entries  😉  ScribeFire can also integrate revenue based ad’s to help you generate revenues (in which Techtronic does not utilize).

2. DownThemAll!

DownThemAll is all you can desire from a download manager: it features

an advanced accelerator that increases speed up to 400% and it allows you to pause and resume downloads at any time. DownThemAll is great for pornaholics, as you can download all images from a page in a single click.

3. Foxmarks Bookmark Synchronizer

If you use Firefox on more than one computer, you’ll want Foxmarks. Install Foxmarks on each computer, and it will work silently in the background to keep your bookmarks synchronized. You can also log in to my.foxmarks.com to manage your bookmarks from any computer.

4. Video DownloadHelper

The easy way to download and convert Web videos from hundreds of YouTube-like sites. VDH is also capable of converting FLV files in your browser to AVI files on your computer.

5. Adblock Plus

Ever been annoyed by all those ads and banners on the internet that often take longer to download than everything else on the page? Install Adblock Plus now and get rid of them. This definitely helps speed up MySpace at times.

6.WebMail Notifier

WebMail Notifier checks your webmail accounts and notifies the number of unread emails… Supports : gmail, yahoo, hotmail, daum, naver, empas, nate and more.

7. GooglePreview

Inserts preview images (thumbnails) of web sites into the Google and Yahoo search results pages.

8. Web of Trust aka WOT

WOT, Web of Trust, warns you about risky websites that try to scam visitors, deliver malware or send spam. Protect your computer against online threats by using WOT as your front-line layer of protection when browsing or searching in unfamiliar territory.

9. Feedly

Feedly is a new kind of RSS start page which weaves Google Reader, Digg, and Delicious into a more fun, magazine-like user experience. The integration with Twitter, Yahoo Mail, Gmail, Friendfeed and Delicious
makes sharing a breeze. You can get up to speed quickly by importing your existing Netvibes, Bloglines or MyYahoo accounts, your bookmarks or an OPML file.

10. Mozilla Firefox

LOL…. It would not possible to use the listed extensions if you do not actually have the browser installed. If you have yet to try Firefox, there is no better time to start than now.

Firefox to add “Private Browsing”

The Mozilla Firefox dev team is looking to add “private browsing” to Firefox version 3.1 by the end of the year.

The goal will be to store as much data from private browsing sessions
as possible in memory to avoid writing to the hard drive. Information
that users save explicitly – bookmarks, for example – will still be
written to the disk.

For users interested in being able to add private browsing functionality to Firefox for now, there is Stealthier.

In the Wild: VirtuMonde

I decided to add the title of “In the Wild” to the “Security” category. ITW focuses on internet security threats such as viruses, adware, spyware, and malware.

 

VirtuMonde is perhaps one of the most popular viruses of our modern age, changing form more often than any other variation in the wild.

It is widespread mainly via earlier or outdated versions of the JAVA runtime enviroment, infecting Browser Helper Objects, DLL files, WinLogon, and Explorer (exe). Infection is fairly easy to contract, as most virus and adware protections do not detect VirtuMonde until after the moment after infection. By then infection spreads quick and hard.

While VirtuMonde does not inflict damaging results (hard drive loss, etc), it does nearly disable Windows ability to function. Sure signs of infection include the hammering of advertising ads triggered for Sysprotect, Storage Protector, AntiSpyware Master, and WinFixer. Unfortuately, none of the advertised programs will rid your system of Monde. Monde also affects search triggers and many web sites rendering them not to load (Google, Hi5, Yahoo).

As Monde evolves often, it is hard for developers to create protection against the new strains of Monde.

Even more unfortunate is that it may not be worth the time and effort to successfully clean Monde from your system, as tracks left behind do leave their impact. But it is possible to remove Monde if you do see the signs right away.

Upon a recent infection to my personal system, I was able to rid Monde from my system. My computer acted as if it had done a 360 toward fatal sickness. This made me suspect a virus, where as I ran Spybot. Spybot identified Monde…. I knew it was bad when I got the results.

Restarting my system immediately via the hard reset button (logging off of Windows correctly via the shut down command will infect your system more as WinLogin is called and executes higher infection.

The trick is to go to safe mode. In safe mode run the following tools: AVG Anti-Virus, Spybot S&D, Malwarebytes’ Anti-Malware, and VundoFix. One program or another may tell you that infected files can not be deleted and give you the option to delete on reboot: this is okay. Keep going in to Safe Mode to perform all scans over and over until the infection does not reappear. This may take 2 to 5 times.