Robert Hensing's Blog

Software Security . . . and stuff.

November, 2007

  • Click-through cloaking (coming to a hacked site near you).

    So yesterday I became aware of a web site that had been compromised and that was employing a concept known as 'click-through cloaking'. The web site in question can be found by going to Google or Live.com and searching for "open voting foundation". The...
  • Is your Mac laughing at you?

    Very interesting blog post on OSX's coming of age: http://www.robhyndman.com/2007/11/14/ive-been-attacked-by-a-leopard/ It's a very interesting read about the trials and tribulations of a Leopard upgrade that even caught the attention of Fake Steve...
  • Cisco Telepresence Magic

    This is all kinds of awesome: http://www.youtube.com/watch?v=rcfNC_x0VvE
  • More Vista perf / reliability updates (sigh) . . .

    Freaking release SP1 already: http://windowsvistablog.com/blogs/windowsvista/archive/2007/11/12/new-updates-to-windows-vista-available-via-windows-update-this-week.aspx :)
  • Hushmail - not so quiet after all!

    In a previous life I did consulting for various law enfrocement agencies teaching them about how the bad guys they were interested in may be using the Internet to conduct business and keep ahead of the law. Hushmail (and of course encrypted emails in...
  • Symantec, Apple, electronic Jihad - these are a few of my least favorite things

    On vacation so this will be quick. Symantec vulns in their e-mail scanning products means you could get your Exchange server pwn3d anonymously by an attacker sending an email with a malformed file attachment. Seems un-good: http://www.zdnet.com...
  • Overclocking the new 45nm Intel chips to 4Ghz?

    Fascinating article . . . I used to build overclocked systems all the time but haven't really felt the need in a while (not since taking my dual 300mhz Celeron's to 450mhz) . . . recent overclocks haven't seemed to yield much (admittadly I don't stay...
  • US-CERT weekly vulnerability summary, Vista, the meaning of life . . .

    This URL came across one of my RSS feeds today so I had a quick look: http://www.us-cert.gov/cas/bulletins/SB07-309.html So I did a CTRL-F in IE and typed in "Microsoft" and was pleasantly surprised to find no hits . . . so I scrolled down to see what...
  • The second coming of Zune . . .

    Zuneinites unite! http://www.engadget.com/2007/11/12/new-zunes-get-unboxed-reviewed-and-microsoft-firms-up-plans/ Personally I can't wait . . . I'm torn between buying a Zune 80 and a Zune 8 . . . guess I'm going to have to play with each - but I watch...
  • Taiwan vs. China (he said / she said?)

    Taiwan talks about the (no longer secret) Chinese hackers conducting espionage seemingly all over the world and then China outs a Taiwanese hacker? http://www.first.org/newsroom/globalsecurity/168300.html Since this activity has apparently been...
  • How your mom will get owned next year . . .

    http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9049269&intsrc=news_ts_head Hopefully she's running Vista with UAC turned on so that IE runs at low IL, on a machine that supports hardware DEP, as a standard...
  • I make it me?

    Zune acid trip: http://zuneinsider.com/archive/2007/11/01/you-make-it-you-new-zune-ad-campaign-launches-tonight.aspx
  • Geekonomics?

    Looks like an interestingb read: http://www.geekonomicsbook.com/ If you check out his blog it looks like he may touch on some of the 'cyber espionage' that's going on . . . nice to see someone able to distinguish the difference between 'cyber crime...
  • Apple patches 7 more QuickTime vulns . . .

    Unbelievable . . . or sadly - all too believable . . . Apple patches 7 more QT vulns: http://www.computerworld.com/action/article.do?command=viewArticleBasic&articleId=9045599 What I find amazing is that: They don't use severity ratings ...
  • Happy Birthday Vista!!!

    It was one year ago today (November 8th, 2006) that my favorite operating system officially released to manufacturing! http://windowsvistablog.com/blogs/windowsvista/archive/2006/11/08/windows-vista-releases-to-manufacturing.aspx In the first year...