1) "Calling all java-enabled 'mobe users:",
... maybe all at once on a special 900 number from a Caymen Island, nowhere near YOU for 5 quid a minute?
At least the black hats are not pushing the "reset code #", yet afik.
John Leyden from The Register wrote:"A new Java zero-day security vulnerability is already being actively exploited to compromise PCs. The best way to defend against the attacks is to disable any Java browser plugins on your systems."
http://www.theregister.co.uk/2013/01/10/java_0day/
see also http://phys.org/news/2013-01-java-software-peril.html
This may be a sign of how bad the situation truly is.
It made for a headline in Phys.org, a Physics news site!
That article originates from SecureList; quoted below.
https://www.securelist.com/en/blog/2081 … stribution
Kurt Baumgartner, a Kaspersky Lab Expert wrote:"One of the best statements that I have seen in regards to the fairly impractical "just uninstall it" approach was presented by one of the handlers at the ISC Storm Center in today's issue of SANS NewsBites: It seems each time a zero day exploit is found in software, be that Java or otherwise, the industry pundits recommend that people stop using that software. New vulnerabilities will always be discovered in the software we use. If our best defence to a threat is to cause a denial-of-service on ourselves then this in the long term is a no-win strategy for us as an industry. We need to be looking at better ways to defend our systems and data, one good place to start is the 20 Critical Security Controls http://www.sans.org/critical-security-controls/"
2) Tangentially, Firefox20 development builds render Flash content with the built-in HTML5 engine. That will allow many to say goodbye to the official product with it's questionable oft-communicating auto-updater that doesn't auto-update, nor has it had to for some time now (until today that is).
For now, if you absolutely have to render these documents in a browser, they can be rendered via HTML5 & JavaScript (sadly not controllable with NoScript, afik) on Firefox with this mozilla plugin, which is reviewed here.
Krzysztof Kowalczyk's SumatraPDF offers a free standalone application.
3) Also, here is a thought-provoking article by Alexander Gostev, via SecureList, & Kaspersky Labs. Every DriverPack member should become aware of what the issues are. I reason that it is one based upon "collisions" with existing Security Catalogs and other Certificates, though i have no examples. Correct me if i am wrong.
https://www.securelist.com/en/analysis/ … er_Weapons
4) Even Canonical's Ubuntu (& therefore distro's built upon Ubuntu - incl. linuxMint) is now reportedly spying upon users:
http://www.neowin.net/news/richard-stal … g-on-users
I've got my eye on LinuxMint Debian Xfce, so-to-speak, not literally that is.
5) In the ilk of "only Nixon could go to China",
only Google Chairman Eric Schmidt could go to North Korea!
"Stone-Cold State Dept. said so"
http://allthingsd.com/20130112/north-ko … k-on-dude/
6) It all reminds me, in a abstract sense, of the 300+ tonne "slipped" vessel, the alleged outlaw carjacking, gold bar transmuting, fleet-footed Senior Nuclear Operator currently allegedly on the lam, or the tanker's meeting with San Francisco's Bay Bridge!
7) Alright, break's over; we know what we're up against. Let's get Krakken!
After all, it's far better to be proactive, than reactive.
Like with electricity (no pun intended or harmed)
http://www.theregister.co.uk/2013/01/09 … n_rations/.
1.5 kiloWatts? What would Doc. Emmet Brown think?
Slow news week? I think not!
Edit: Now that's how i celebrate a thousandth post! 
Last edited by TechDud (2013-01-15 12:43:29)
