company of three, black peppermint tea

Tag: facebook

by cloudier

Ortolan Bunting

For centuries, a rite of passage for French gourmets has been the eating of the Ortolan. These tiny birds—captured alive, force-fed, then drowned in Armagnac—were roasted whole and eaten that way, bones and all, while the diner draped his head with a linen napkin to preserve the precious aromas and, some believe, to hide from God.

64% of all Microsoft vulnerabilities for 2009 mitigated by Least Privilege accounts

  • Cybercrime is not driven by the use of zero day flaws, but by the millions of people using the Internet with outdated software – It’s a simple fact that has so far contributed to the rise and rise of some of the most prolific botnets, and outdated flaws within popular applications remain the main vehicle for Zeus crimeware infections. Naturally, there are campaigns that exclusively rely on recently published flaws, but the window of opportunity offered by those would be closed sooner than the one of all the outdated applications running on the same PC, combined. It’s the cybercriminal’s mentality of traffic optimization for malicious purposes, (See example: Money Mule Recruitment Campaign Serving Adobe/Client-Side Exploits), that offers the highest probability of infection.
  • Microsoft OS/software specific vulnerabilities are only a part of the drive-by exploits cocktail served by web malware exploitation kits – You would be surprised to know how many people are so obsessed with “Patch Tuesday” that they exclude the decent number of outdated browser plugins and third-party software installed on their PCs. The result? A false feeling of security, which combined with an outdated situational awareness on how modern web malware exploitation kits work, leads to a successful drive-by attack. It shouldn’t come to as a surprise that, not only did malicious PDF files comprise 80 percent of all exploits for 2009, but also, the use of Microsoft Office files for targeted attacks is declining. Two years ago, Microsoft in fact confirmed this trend – Microsoft: Third party apps killing our security.

Malicious PDF files comprised 80 percent of all exploits for 2009

Therefore, the increasing use of malicious PDFs can also be interpreted as the direct result of the millions of users using outdated and exploitable Adobe products, with the only preference a malicious attacker could have in this case remaining the incentive based on the 99% penetration of Adobe Flash on Internet-enabled PCs. But how is the possible that with such a high market share, ScanSafe’s report shows that Adobe Acrobat/Reader exploits grew while the use of Flash exploits declined?

Read the rest of this entry »

Advertisements

for some reason this post has a lot of stuff on drugs

by cloudier

Watch this.

1, 2, 3

At first I felt that it started off a bit slow, but halfway through the first episode as the documentary started to dig into Cabramatta’s heroin problem (80s-90s) and how poverty drives immigrant children into drug dealing it became really interesting.

Read the rest of this entry »

facebook/privacy

by cloudier

Facebook: Threats to Privacy [pdf]

The FAQ and Privacy Policy are actually in direct contradiction on this point. The FAQ states that “We don’t
distribute your user information to third parties.” The Privacy Policy, on the other hand, states that “we may share
your information with third parties, including responsible companies with which we have a relationship.” The Facebook
then lists reasons that they may share information, including legal requests and “facilitating their business.” Although
the policy could be construed to imply they will not share information, it is certainly not clearly stated, and a strict reading would imply that Facebook can share information with third parties.

more links: 1 2 3 4

there are other people who like jacky fisher

by bezzle

It’s the beard.  Probably.

Facebook

by cloudier

I hate Facebook because of it’s preponderance on the internet. Some apps, services, whatever you want to call them don’t offer conventional accounts and instead utilise your Facebook account. I would understand if they were meta-y applications, like w/ and it’s relationship with twitter, but most of those Facebook-linked-only services aren’t meta-y services.

This pisses me off seeing as I’m part of the disregarded minority but its not a bad business decision apart from how reliant you would be on Facebook’s services.