peppermintesse: (Happy Mac)
What is "iBotnet"?

Last January, malicious programs, called trojans were found hidden in pirated copies of Apple Computer’s iWork ’09 and Adobe Photoshop CS4 posted on some peer to peer (P2P) networks. We do not believe that these threats are widespread or likely to affect the average user. However, users are advised to run a good quality internet security suite and to download software directly from the software publisher or from reputable software distributors and resellers.

There's a bit more in the article (which I am, by the way, dying to edit for errors). No, it's not believed to be widespread; you have to install this on purpose; it creates a botnet; and it doesn't spread on its own. This is NOTHING compared to Downadup/Conficker or Virut on Windows machines, so don't panic, Mac weenies. Just spreadin' the awareness.
peppermintesse: (Happy Mac)
A lot of new threats use AutoPlay/AutoRun as an attack vector. One of my co-workers recommended doing the following to prevent this from happening. Of course, disabling AutoPlay/AutoRun is a better option. (ETA: Windows only.)

  1. At the root of your thumb drive (or C: drive, whichever drive, etc...), create a folder/directory.

  2. Name it autorun.inf.

  3. Within this folder, create a plain text file. It doesn't need to have anything in it, and it doesn't really matter what you name it.

  4. Right-click, choose Properties.

  5. Near the bottom, put a check in front of where it says Read Only.

  6. Close the file.

  7. Ta da! \o/

At this point, threats (viruses, trojans, worms, etc) are not smart enough to be able to delete a folder with a file in it*. If it can't write over autorun.inf, it can't propagate that way.

(* = Yet. :P )
peppermintesse: (Sad Mac)
Via Computerworld: FAQ: How to protect your PC against the Downadup worm.

The high points:

- Patch your OS
- Use strong passwords
- Disable autorun/autoplay

Read the article though!
peppermintesse: (Happy Mac)
My co-worker Brian is selling his car. If I had the money, I'd probably buy it myself. He takes very good care of this vehicle and needs to sell it before he can buy the one he wants.

2000 Saturn SL2 w/extra studded snow tires, 90k miles, 27/38 MPG!! - $4000

(Told him I'd spread the word.)

ETA: Price reduced! Check out the ad!!!
peppermintesse: (Sad Mac)
Microsoft Security Bulletin MS08-067 – Critical
Vulnerability in Server Service Could Allow Remote Code Execution (958644)

This security update is rated Critical for all supported editions of Microsoft Windows 2000, Windows XP, Windows Server 2003, and rated Important for all supported editions of Windows Vista and Windows Server 2008.

Microsoft recommends that customers apply the update immediately.
peppermintesse: (Sad Mac)
Anatomy of a Malware Scam

XP Antivirus, in this case, not a virus as such, but an insidious lookalike 'scareware' with convincing-looking 'scans' and warnings (and even a fairly authentic looking Windows Security Center, save the grammar errors), designed to get you to hand over your credit card information.

The article is a real eye-opener; the author installed it into a virtual machine, so he includes screenshots.

Red Alert

Jul. 23rd, 2008 01:36 pm
peppermintesse: (Sad Mac)
If you get an email that appears to come from UPS about an package sent that couldn't be delivered:


No, REALLY. It is bad news.
peppermintesse: (Sad Mac)
What might possibly be the first "scareware" site for Macs: MacSweeper, which offers to scan your Mac for security risks and then will fix them... for a price.

In at least one instance an F-Secure researcher visited the MacSweeper site and clicked a button labeled "Free scan." The scan highlighted Mac-related problems, even though the researcher was using a PC.

Uh, yeah.

A user on one of Apple's discussion boards wrote that their Safari browser kept redirecting to the MacSweeper site, a sign that malicious scripts may be involved.


In short: keep away from this piece of crap site / "software".
peppermintesse: (Happy Mac)
I have been saved from heart-less displays while using Firefox 2.0+ on the Mac.

If you don't see a heart here --> ♥ <-- then you can use these steps to fix it!

  1. Firefox > Preferences… > Content tab
  2. Under the Fonts & Colors section, click on Advanced….
  3. Click on the drop down next to Fonts for: and choose Japanese. (Yes. Japanese. See note below.)
  4. Next to Serif, choose "MS P明朝" or "Osaka". ("Osaka" did not seem to work for me, and I also set Sans Serif to "MS P明朝" --that was the one that made the difference for me. I also changed the sizes to 16 to make them a bit bigger.)
  5. Change Default Character Encoding to Western (MacRoman).
  6. Change Fonts For: back to Western (or whatever you use).
  7. Ta da! You should see hearts now.

Per the above linked page, a quote from [ profile] codeman38: For some reason, Firefox thinks that hearts should be rendered in the default Japanese font regardless of the language of the actual page— yes, even if the English font includes a heart symbol, as is the case with, for instance, the latest release of Arial. There is some serious wrongness in its text-rendering routines, needless to say.

(A big thanks (and a multitude of ♥) again to [ profile] umbo for pointing me to this post and for letting me know a fix even existed in the first place!)
peppermintesse: (Sad Mac)
RealPlayer exploit discovered, already being taken advantage of 'in the wild'.

From the weblog: "If you have RealPlayer installed, simply visiting a malicious Web page can put your computer at risk; the player does not need to be running."

ETA: This is a Windows thing, specifically RealPlayer + IE.
peppermintesse: (Curious)
I've already seen this pop up three different times by three different people pointing to a few different sites, but it bears repeating: cat and dog wet food (the "chunk" variety) manufactured by Menu Foods for many different brand names is recalled due to contamination leading to renal failure and death.

Zarq's and Deannie's posts about the subject.

Article on CNN.

The recall lists. Interestingly, Iams is not on the cat food list even though the recall is listed on the Iams website.

I don't buy the "chunk" type food because the girls don't like it, but I checked my cans anyway, and they are in the clear. However, I'll be bringing what to look for when I buy more.

Merrick is looking better and better...


Nov. 7th, 2006 12:24 pm
peppermintesse: (hotai)
I have the distinct impression I'm preaching to the choir with the Americans on my FL, but


Thank you. </Sister Mary Elephant>



Oct. 18th, 2006 07:50 pm
peppermintesse: (Pissed Katchoo)
Swiped wholesale from [ profile] elke_tanzer's post:

LJ has a feed for the latest images posted publicly here:

Someone has set up a community with an automatic script to scrape off any image that is posted publically that meets LJ icon requirements and post them to that community ([ profile] iconscraper). The posts in the community hotlink the original source of the images.


Power can be used for good or evil, people, and hotlinking and bandwidth theft are not on the good side of the scale. But there's so much idiocy going on in the comments on [ profile] iconscraper that it's not worth my time to try to educate anyone over there today. *puts away clue-stick*

However, you can opt out your journal, and prevent images you post publically in your journal from being included in [ profile] iconscraper and similar scripts that are scraping from the latest-img LJ feature. You can also protect communities you mod. All you have to do is opt out of the latest-img thing.

Make sure you're logged into LJ as your journal. Go to the Admin Console at and input
    set latest_optout yes

and click on the execute button.

To protect a community, type
     set for communityname latest_optout yes

and click on the execute button.

Thank you, [ profile] elke_tanzer!!
peppermintesse: (Introverted)
Rather than forward this by email...

"Time and time again, studies have shown paper ballots to be the most reliable of voting systems, especially in comparison to electronic voting machines. Why? Because they leave a paper trail -- a tangible, hand-held record of your vote.

Voter systems that are easier to use shouldn't be harder to trust. Check out DFA's new flash movie about the importance of paper ballots. Watch the movie [60 seconds long, Flash movie -- s] and sign the petition to help protect your vote today.

Thank you."
peppermintesse: (Default)
Yahoo Groups New Policy Update

If you belong to any Yahoo Groups this is important . . .

Yahoo is now using something called "Web Beacons" to track YahooGroup users
around the net and see what you're doing and where you are going -- similar
to cookies, but not cookies. Yahoo is recording every website and every
group you visit.

Take a look at their updated privacy statement:

About half-way down the page, in the section on cookies, you will see a link
that says web beacons.

Click on the phrase web beacons. That will bring you to a paragraph entitled
"Outside the Yahoo Network."

In this section you'll see a little "click here to opt out" link that will
let you "opt-out" of their new method of snooping.

Once you have clicked that link, you are exempted.

Notice the "Success" message on the top of the next page. Be careful because
on that page there is a "Cancel Opt-out" button that, if clicked, will
*undo* the opt-out.


peppermintesse: (Default)

January 2017



RSS Atom

Most Popular Tags

Style Credit

Expand Cut Tags

No cut tags
Page generated Sep. 20th, 2017 07:34 am
Powered by Dreamwidth Studios