Catch up on stories from the past week (and beyond) at the Slashdot story archive


Forgot your password?
Back for a limited time - Get 15% off sitewide on Slashdot Deals with coupon code "BLACKFRIDAY" (some exclusions apply)". ×

ITunes 8 a Real Killer App; Taking Down Vista 735

CWmike writes "Apple 's latest version of iTunes crashes Windows Vista when an iPod or iPhone is connected to the PC, scores of users have reported on Apple's support forum. Plug in and Vista crashes and shows the 'blue screen of death.' The errors began showing up immediately after updating iTunes to Version 8.0, which Apple released Tuesday as part of its iPod refresh. 'I just installed iTunes 8 over my iTunes 7 on Vista [and] now whenever I plug in my iPod, I get a blue screen death. Three times so far. Even if it is plugged in on boot, I get a blue screen," said a user identified as 'sambeckett' on the support forum about 90 minutes after Apple CEO Steve Jobs wrapped up the iPod launch."

Vista's Security Rendered Completely Useless 415

scribbles89 sends in a story that originally ran in SearchSecurity; it sounds like it could be a game-changer. "While this may seem like any standard security hole, other researchers say that the work is a major breakthrough and there is very little that Microsoft can do to fix the problems. These attacks work differently than other security exploits, as they aren't based on any new Windows vulnerabilities, but instead take advantage of the way Microsoft chose to guard Vista's fundamental architecture. According to Dino Dai Zovi..., 'the genius of this is that it's completely reusable. They have attacks that let them load chosen content to a chosen location with chosen permissions. That's completely game over.'" Update: 08/08 14:23 GMT by KD : Changed the link, as the story first linked had been lifted without attribution.
Social Networks

A Cautionary Tale of Open Source Social Technologies 330

eweekhickins writes "The 'country' drop-down menu on one organization's donations pages omits Israel as a country and includes 'Palestine.' Among other things, this means that Israelis can't donate to the organization from these pages; it also presents the risk of a PR nightmare for the organization. This EWeek story cautions that while basic Web 2.0 technologies combined with open source can be incredibly powerful and productive, they can also lead to disastrous results for an organization that isn't paying close enough attention."

Gaining System-Level Access To Vista 412

An anonymous reader writes "This video shows a method by which a user can use a Linux distro called BackTrack to gain system access to Windows Vista without logging into Windows or knowing the username or password for any accounts. To accomplish this, the user renames cmd.exe to Utilman.exe — this is the program that brings up the Accessibility options for users without sight or with limited vision. The attack takes advantage of the fact that the Utility Manager can be invoked before the user logs into the system. The user gains System access, which is a level higher than Administrator. The person who discovered this security hole claims that XP, 2000, 2003 and NT are not vulnerable to it; only Windows Vista is."

New Malware Report Hits Vista's Security Image 258

An anonymous reader recommends a Computerworld article on a new report from Australian security vendor PC Tools. The company released figures on malware detection by its ThreatFire product, and in its user base 27% of Vista machines were compromised by at least one instance of malware. From the article: "In total, Vista suffered 121,380 instances of malware from its 190,000 user base, a rate of malware detection per system [that] is proportionally lower than that of XP, which saw 1,319,144 malware infections from a user base of 1,297,828 machines, but it indicates a problem that is worse than Microsoft has been admitting to." Microsoft hasn't responded yet to this report.

US State Dept. Loses Anti-Terrorist Program Laptops 223

Stony Stevenson writes "It has surfaced that the US State Department can't account for up to about 1,000 laptops, perhaps as many as 400 of which belonged to the department's Anti-Terrorism Assistance Program. Internal auditors found that the department lost track of $30 million worth of computer equipment, 'the vast majority of which... perhaps as much as 99 percent,' were laptops, according to one official. Another official calculated that the average State Department laptop costs US$3,000 and figured that meant as many as 1,000 laptops might be astray — not 10,000 laptops as the US$30 million figure suggests. They're obviously not very good at maths."

Last-Minute Glitch Holds Up Windows XP SP3 162

An anonymous reader sends word that Microsoft Windows XP SP3, which had been scheduled to hit the Web today, was pulled back at the last minute. SP3 apparently broke a Microsoft application, Microsoft Dynamics Retail Management System. Their solution is to set up a filter to make sure that no system running the affected software will get automatically updated; once the filter is in place, SP3 will be released to the Web. A fix for the incompatibility will follow.

Aging Security Vulnerability Still Allows PC Takeover 282

Jackson writes "Adam Boileau, a security consultant based in New Zealand has released a tool that can unlock Windows computers in seconds without the need for a password. By connecting a Linux machine to a Firewire port on the target machine, the tool can then modify Windows' password protection code and render it ineffective. Boileau said he did not release the tool publicly in 2006 because 'Microsoft was a little cagey about exactly whether Firewire memory access was a real security issue or not and we didn't want to cause any real trouble'. But now that a couple of years have passed and the issue has not resolved, Boileau decided to release the tool on his website."
It's funny.  Laugh.

Half of SCO's Accountants Quit 371

Groklaw Reader writes "Apparently, SCO's lawyers were working overtime last Sunday, because they wrote a quick plea to the bankruptcy court for permission to hire accounting temps. Why? Approximately half of SCO's finance department has resigned or been fired. Two who resigned had over ten years of experience each. One can only assume that they know what's about to happen to SCO."

Cybersquatter Faces Jail Time For Wire Fraud 55

coondoggie writes to mention that a Las Vegas man faces about 20 years in prison today after pleading guilty in a case where he impersonated intellectual property lawyers and tried to bully owners out of their domain names. "According to the FBI, David Scali is charged with registering an e-mail account under an alias and then sending e-mails in which he claimed to be the intellectual property lawyer. In the e-mails, which were sent in late June and early July of 2006, Scali threatened to file $100,000 trademark infringement lawsuits against the owners of various Internet website names unless they gave up their domain name registrations within two days."

How many Bavarian Illuminati does it take to screw in a lightbulb? Three: one to screw it in, and one to confuse the issue.