We reported earlier this week on how financial organizations are at risk from third parties with compromised security.
It seems that the same thing applies to software. The latest review by IT security specialist Secunia shows that third-party programs are responsible for 76 percent of the vulnerabilities discovered in the 50 most popular programs in 2013.
Secunia's review looks at the top 50 programs found on private PCs including those approved and maintained by IT departments and on those BYOD devices used with or without permission. Unsurprisingly 66 percent of the top 50 are Microsoft programs, however, they only accounted for 24 percent of the vulnerabilities in 2013.
Let’s face it: Windows 8.1 looks a whole lot different than Windows 7 or Windows XP. I mean, the desktop we all know and love is still there (awesome!) but the Start screen can take some time to get used to. And I thought charms were something that Lucky the Leprechaun served me in a bowl back when I was in elementary school (and occasionally now). If you’re new to Windows 8.1 and look back with fond memories of older versions of Windows, here are five things you can do to make it feel more familiar, or just more like yours.
Piriform Ltd has released Speccy 1.25, a new version of its free Windows system information tool. The headline new feature in version 1.25 -- also available as a standalone portable build -- is its ability to detect ReadyBoost drives.
Version 1.25 also includes a number of networking improvements, better accuracy for disk transfer mode detection and restructured CPU Core data view.
The previous release introduced support for USB storage device detection, allowing users to monitor any USB-connected drives including external hard drives and USB flash drives. Version 1.25 extends this support to include detection of USB drives configured for ReadyBoost, which is used to help boost the performance of low-memory machines.
It was bad enough that FileZilla offers SourceForge installers loaded with garbage software that could easily be viewed as malicious software. Junkware such as "Hotspot Shield" are still bundled with some installers offered by Filezilla.
Now, avast has discovered that malicious versions of FileZilla 3.7.3 and 3.5.3 are being spread. "We have noticed an increased presence of these malware versions of famous open source FTP clients", the firm announces.
The fake software is idential except for one point. Any attempt to update the software through the build in update checker will fail. This is most likely to prevent the malware from being overwritten.
Avast uncovered a hidden "stealer" inside of the code, saying, "The algorithm is part of a malformed FileZilla.exe binary, therefore sending stolen log in details which bypasses the firewall. The whole operation is very quick and quiet. Log in details are sent to attackers from the ongoing FTP connection only once. Malware doesn’t search bookmarks or send any other files or saved connections."
The websites distributing these fake copies of FileZilla seem to all be registered in Russia, using a registrar that hides the client information.
FileZilla has placed a warning on its own website, stating "We do not condone these actions and are taking measures to get the known offenders removed. Note that we cannot in general prevent tainted versions on third-party websites or proof their authenticity, especially since the FileZilla Project promotes beneficial redistribution and modifications of FileZilla in the spirit of free open source software and the GNU General Public License."
On a personal note, if they do not condone these actions; then why are they working with SourceForge and bundling software like Hotspot Shield and other unwanted programs? Previously we posted an article by the Gluster Community about this very subject. Perhaps this occurance will help the FileZilla team to improve their own standards.
Google has identified a nasty bug in Gmail that may have led to the accidental deletion of some messages in your inbox, as well as incorrectly labeling others as spam.
The severity of the bug has caused the search giant to issue an Important Notice which appears at the top of Gmail when some users -- myself included -- log into the webmail service through the web or iOS app. Although the problem has now been fixed, Google suggests you take a look in your Trash and Spam folders. I’ve just done so now, and there are indeed messages in both that shouldn’t be there.
Microsoft had little choice but to relabel its SkyDrive cloud service after losing a trademark dispute with BSkyB, and it's now ready to make that name switch. The newly rebadged OneDrive is functionally identical for existing SkyDrive users, who can go about business as usual. However, there are also promises that this is more than just a cosmetic change. The curious can register at a preview page to be notified when OneDrive launches with "more" than what they've known with SkyDrive. Microsoft isn't saying exactly what users can expect, but it won't hurt to sign up.