280279
submission
cottagetrees writes:
Security researcher Roger Thompson has discovered at least a dozen freshly hacked .gov web sites — all cities — hosting driveby-downloaded exploits and malware. Thompson blogged about his discovery here: http://explabs.blogspot.com/ and he posted a YouTube video documenting the hack here:
http://www.youtube.com/watch?v=G_jh8lHb49w
"The attacking pages seem to try one of three things. First they try an exploit to install their malware, and if that doesn't work, they try to trick you into installing a fake codec, and if that
doesn't work, they run a fake antispy scan, and try to convince you that your machine is already compromised, but their software can fix it... just click the install button."
According to the video, updated security patches will protect you from the driveby downloaded exploit, but won't protect victims of the social engineering ploy that tries to get them to download the fake codec, or install the fake anti-spyware.
276563
submission
abhinav13 writes:
With college back on and students enrolling for classes as freshmen, they will now face the daunting task of keeping up with their reading for all sorts of classes. Non-tech/science reading can be conquered by employing the various speed reading techniques but what I have seen that those techniques don't really apply to technical subject books? How does one read a technical book to gain as much as possible from it in a semester? Do you go cover to cover? or read only the "required" subject matter for the class and dont care about the rest? How can I make a decision about what to skip and what to read in a technical/computer science class textbook? I would like to find out how does the slashdot community go through their technical reading?