Some guys demonstrated how to crack a wireless network securing with 64bit WEP security in less than 10 minutes. They were using Whoppix 2.7 as the OS.

From the process of cracking, I don’t think it’s hard to learn. Just follow the steps and use some 3rd party WEP cracking applications.

So, my advice to those who is buying any wireless router, it’s better to go for wireless router with WPA security. :)

A stunning blog entry by VOIPWiki revealed that a Chinese company have successfully reverse engineered the famous VOIP software, Skype. Charlie Paglee, blogger of VOIPWiki, received a call to his Skype from his friend who is working in the Chinese company and told him that the call is made through the cloned Skype software.

Picture taken from VOIPWiki.

Quoted:
We talked (on the cloned Skype) for a little over nine minutes before the call dropped. Then I called him back using my Skype and we spoke for another three minutes.

This cloned Skype client is able to use Skype’s network and act as one of the Skype clients. Doing so would possibly cause the current Skype Super Nodes and the network to deteriorate once too many non-Skype clients are being used.

Continue Reading »
Skype Cracked (Actually Reverse Engineered)

We have heard lots of viruses and worms infecting mobile phones nowadays, some even pretend to be antivirus software installed in the mobile phone. Before the situation getting worse, Nokia has come out with a proactive solution which is to install Symantec’s Mobile Security software on its Series 60 and Symbian based phones.

In fact, Nokia and Symantec have come to an agreement to pre-install Mobile Security on Series 60 smart phones.

Quoted:
Mobile Security provide anti-virus protection by closing vulnerable ports. The software’s AutoProtect feature runs a continuing scan that looks for malicious code, and also acts as a firewall. The software can be updated over the wireless network.

Continue Reading »
Antivirus On Nokia Series 60 Smart Phones

There were a few critical security flaws found on both Mozilla Firefox and Microsoft Internet Explorer (IE) web browsers in past few months. Just 2 days ago, another critical flaw was found in IE.

This critical security flaw can be exploited remotely from other PC. Hackers can possibly launch an attack to Windows XP SP2 via the flaw.

Quoted:
Microsoft’s Internet Explorer browser sports a flaw that hackers could use to launch a remote attack on Windows XP SP2, eEye Digital Security said Thursday.

So far, Microsoft has been reluctant to patch its web browser and left at least five other critical unpatched to date, including some reported 15, 46, 129, 134, and 171 days ago. This time, Microsoft still have not patched the latest critical security flaw even though confirmed about the receipt of the report.

Anyway, instead of using a slow-to-get-patched web browser, why not switch to a more secure and better browser, ? :)

Microsoft is planning to release an anti-phishing filter for Internet Explorer 6.0 (IE6) (the version we are using in WinXP). This new feature will further enhance the web browser and make it a more secure one. Microsoft Phishing Filter is suppose to be integrated to the forthcoming IE7, which will be due next year, but now it will be released ahead of originally planned schedule.

Quoted:
The Microsoft Phishing Filter will not only help provide consumers with a dynamic system of warning and protection against potential phishing attacks, but — more important — it will also benefit legitimate ISPs and Web commerce site developers that want to try to ensure that their brands are not being “spoofed” to propagate scams and that their legitimate outreach to customers is not confusing or misinterpreted by filtering software.

Continue Reading »
Microsoft Phishing Filter

Security flaw found in numerous famous applications from big companies, such as Google, MSN, etc. Applications that affected are namely Google Maps, Gmail, AOL’s AIM Mail, Flikr and MSN Virtual Earth and so on.

This security flaw was actually found in a toolkit for developing those affected applications. The toolkit is called CPAINT, which is used to create applications using AJAX, which stands for Asynchronous JavaScript and XML. It is is an approach to putting more dynamic interactivity into Web applications using a combination of HTML, CSS, Document Object Model, JavaScript, and XMLHttpRequest.

Quoted:
The CPAINT flaw could allow an attacker to execute malicious code on a server running CPAINT, or running an application built using CPAINT

The AJAX approach has been adopted by a number of Web developers, the best known of them being Google, whose Google Maps, Google Suggest, Gmail and other applications use AJAX, although Google has since stated that Gmail is not affected. Other high-profile AJAX-based services include Microsoft’s MSN Virtual Earth, Yahoo’s Flickr and AOL’s AIM Mail. Many lesser-known services have also adopted AJAX, such as Swiss mapping service map.search.ch and invoicing program Blinksale.

Continue Reading »
Security Flaw In Google, MSN, Flickr And So On