HuckleCom - Slashdot User

Submission + - How to Crack Microsoft Windows Vista in 1 Minute

Submitted by HuckleCom on Tuesday June 12, 2007 @10:29AM

HuckleCom writes: An article on F-Secure offers insight to a new vital issue with Vista security. It seems as though physical security doesn't matter anymore.

From TFA:
"Did you know that the Command Prompt tool found in Vista's System Recovery Options doesn't require a User Name or Password? And that the Command Prompt provides Administrator level access to the hard drive? For multiple versions of Windows? All you need is a Vista Install DVD and you're all set to go.",

F-Secure provides a link to detailed instructions that demonstrates how vital of an issue this really is.

Submission + - Critical flaw in current Firefox discovered

Submitted by HuckleCom on Thursday February 15, 2007 @11:52AM

HuckleCom writes: F-Secure has a blog post regarding the latest version of Firefox and a vulnerability that allows malicious javascript code to manipulate any of your cookies.

From the Blog: "There's a new bug reported in the way Firefox handles writes to the 'location.hostname' DOM property. The vulnerability could potentially allow a malicious website to manipulate the authentication cookies for a third-party site."

From what I can recollect, this seems to be the first vulnerability discovered in the actual current version of Firefox — at least for a good long time.

Submission + - First Vista Service Pack Due Second Half of 2007

Submitted by HuckleCom on Thursday January 25, 2007 @05:08PM

HuckleCom writes: The retail version is not even out the door yet, but Microsoft is already starting to prepare the first major update for its new Vista operating system, according to a letter the company sent this week to business customers.

Windows Vista Service Pack 1 "will be a standard service pack that will include security updates, hotfixes, as well as limited other changes focused on improving quality," according to the letter, which Microsoft sent to customers enrolled in its Technology Adoption Program. You can read the details here.

Submission + - End of RIAA/MPAA frivolousness?

Submitted by on Thursday August 17, 2006 @05:21PM

HuckleCom writes: In light of the seemingly ongoing subpoenas from the RIAA and MPAA, who have the finger pointed at a person behind a computer working a P2P program and in light of ongoing Windows vulnerabilities, I ask this question:

What would happen in the rise of a virus/worm/trojan that would tap into BitTorrent trackers or use raw connections to different P2P networks and download random music and video?

It seems we don't sue people for taking a fraction of a part of a DDoS attack through unknowingly installing a virus. Could the release of something like this be the end of RIAA/MPAA lawsuits because individuals may claim inadvertent downloads?

Slashdot Top Deals