Website is good to go for 5 years

Just a little note I recently updated my website and I changed the renewal for 5 years, thanks to Adsense.  I also Verified my domain:

So Now you don’t have to worry about this being a fake website. I also renewed my hosting for another year. Thanks to Geeknewscentral Promo codes, I saved 20% off of a shared hosting plan. This should make even more Google juice. I am so glad the Google advertising helped pay for this website. If you’ve found this site through google, site and stay a while. This domain will most definitely hit the 5 year mark without much problems. Hope to see you in 10 years!!

Microsoft released KB951847 out of Cycle For January

I woke up this morning and found this was released KB951847.  here is what it is:

kb928563 FIX: The System.Net.HttpWebRequest class may not maintain a persistent connection to a proxy in the .NET Framework 2.0
kb943175 FIX: The XmlSerializer class generates an unexpected result when you use the XmlSerializer class to serialize the numeration attribute in the .NET Framework 2.0

kb943412 FIX: You may experience delays when an operating system shuts down if the computer is running a managed service together with the .NET Framework 2.0
kb943804 FIX: Certain Unicode characters returned by the Application.ExecutablePath property in the .NET Framework 2.0 are displayed as “?”
kb944099 FIX: Error message when you use the SQL Native Client data provider to connect to an instance of SQL Server 2005 that is configured to use database mirroring: “Internal .Net Framework Data Provider error 6″
kb944100 FIX: You cannot access tables that are used in a SQL Server transaction if you end the thread that executes the transaction before the transaction is finished in the .NET Framework 2.0
kb944157 FIX: You may experience a significant delay when you make the first request to an ASP.NET Web application that is running on Windows Server 2003
kb946102 FIX: An ActiveX control will not receive keyboard navigation events when you use a System.Windows.Forms.WebBrowser control to host Web pages
kb946223 FIX: The input language in a text box on the Microsoft Expression Design surface does not function correctly when you change the input language to an East Asian language
kb946411 FIX: When you print an XPS file on a Windows XP Service Pack 2 or Service Pack 3-based computer, the characters in the XPS file print incorrectly
kb946503 FIX: Error message when you use the installer tool to install an assembly that is located on a remote computer: “An exception occurred during the Install phase”
kb946660 FIX: The headers attribute of a cell is rendered incorrectly when the cell is associated with multiple headers in an ASP.NET 2.0 Web application
kb946927 FIX: An installation may fail with error 1935 when an .msi file tries to install many policy files on a computer that has the .NET Framework 2.0 installed
kb947148 FIX: Incorrect methods are called when you call some COM APIs that are included in a .NET Framework 2.0-based 64-bit application
kb947317 FIX: In a Windows Forms application that was built by using the .NET Framework 2.0, the CurrencyManager object triggers additional instances of some events when you delete the last row from a table
kb947461 FIX: An update package is available for the .NET Framework 2.0 Service Pack 1
kb947581 FIX: The value of the “WsdlContractConversionContext.WsdlPortType” property is null in the .NET Framework 3.0 Service Pack 1
kb948233 You receive a System.InvalidOperationException exception error when you run a Microsoft .NET Framework 2.0-based application after you install security update MS 07-040 on a computer
kb948646 FIX: Objects are not serialized correctly when you serialize and deserialize the DataSet objects by using the SerializationFormat.Binary format parameter in a .NET Framework 2.0-based application
kb948815 Availability of the .NET Framework 2.0 post-Service Pack 1 hotfix rollup package for System.Data.dll and System.Data.OracleClient.dll
kb948873 FIX: You may receive a System.Xml.XmlException exception when you use one-way Web methods to communicate with Web services in a .NET Framework 3.0-based application
kb948887 FIX: An exception occurs when a Web application that is based on the .NET Framework 2.0 uses the HttpWebRequest class and receives an HTTP 1.0 response that contains the HTTP status code 401
kb949272 FIX: A Windows Forms application that uses ActiveX controls may crash, and a null reference exception occurs after you install the .NET Framework 2.0 Service Pack 1
kb949777 FIX: Error message if you deploy an executable application to a path that contains escape characters in the .NET Framework 2.0: “Absolute path information is required”
kb950230 FIX: You receive a System.ArgumentException exception error message when you use the Sgen.exe tool and the XmlSerializer JIT compiler to generate an XmlSerializer assembly for a Web service proxy in the .NET Framework 2.0
kb950986 FIX: In the .NET Framework 2.0 Service Pack 1, the ModuleBuilder.GetTypeToken method returns an incorrect token
kb951111 FIX: Warning message when you use the SvcUtil.exe tool to import service metadata in the .NET Framework 3.5: “The policy expression was not fully imported because it exceeded the maximum allowable complexity”
kb951113 FIX: The set of values returned from the row.GetColumnsInError method is empty when a client computer that has the .NET Framework 2.0 installed receives a DataSet object from a WCF service
kb952324 FIX: You cannot download the .application file when you deploy an application by using ClickOnce deployment in a secure environment

As you can see this fixes 30 things in this one service pack.  I see one or t wo things that might be exploitable and that is why they released this out early.  The ones that I see are Like the ActiveX controls.   I don’t know why but this is for all systems on windows or at least it doesn’t say anything other wise.  This is .net frame work and should be installed quickly as possible.   You should also consider making a new Autopatch ISO to install into all the necessary computers.  Also if you haven’t installed a Free Anti-virus or goodFree  Firewall now is a good time to install them also.  I would expect this to Service Pack to have to reboot your system but other than that you should be fine.

*UPDATE*

Do you have the Obama Worm?

So I sit here reading about the Obama Worm from PcWorld. Asking myself what type of worm this is? Here’s what I do know, it isn’t a malicious intent but it does look like it is something someone thought of this to test out their skills and to make people laugh. This however isn’t a well made worm, it seems to slow down systems after awhile and prevents loading up of programs. The Odds of you getting this worm is like Dieing in an Airplane or Very slim according to some researchers.

It seems to be spreading through USB and therefore should prevent this by disabling Autorun features in your machine, also you should limit the use of external storage devices whenever possible to help prevent infection.  Although currently it seems that the worm isn’t detected by any anti-virus software t right now.  There is a screen capture of the Obama Worm in case anyone wanted to see what it looks like.

A fan wants to Release Windows 7 Now : My Security Concerns

After reading about this from Kelly Poe) to find out the site he put up and I am quite impressed.    Here are few things that I am concerned about starting with the website.

I love the idea and all but I am quite concerned with the privacy of my email account.  I don’t know if you have to submit your email account but I would caution people not enter one until the site says what it will do with your email address.

Now that being said that’s the only thing I can think of when it comes to security for your email address, you don’t want to someone to give out your email address to spammers. That would just make it even worse for your email account.   You could however use a 10 min Email account to use but that might make it harder for Microsoft to contact you if they want to verify these accounts!!

Now my main concern is Windows 7  right now and Security.   You know the Conflicker/Conflickr/Downadup Worm is currently loose on the internet.  It uses the the Ms 08-067 Exploit and currently Windows 7  does not protect against this Worm in fact Microsoft has released information that you would need to install the updates manually to fix this problem.

Phishing sites pop up for IRS!

Well, this just came to light with The Spywareguide blog. I’ve seen some activity about Where’s my refund lately and I thought I tell you how to make sure you’re on the right site. If you’re expecting a refund check the OFFICIAL SITE. The Official Site is http://www.irs.gov and nothing else. If you want to find out about some of the most common Phishing attempts check out the Phishing advice from the IRS.

The Spyware Guide blog talks about sites that looks to be IRS but are actually just phishing for information.  Some of the ones they talk about are:

gicrisis.org/data/refundtax/SearchTAXERR.php

irs-2009.com/refund/refunds.html

collectrefund-irs.com/refund/refunds.html

cimaonline.ca/application/Internal/Revenue/Service/pas.php?certegy_vm=trueportlet_change_1_actionOverrideFchaseonlineFchangeFprocessDetails_windowLabel_portlet_process_pageLabel_page_process

jklabs.cz/phpayv2/admin/import/.secure/www.irs.gov/get-refund/refunds.php?Where_is_my_refund&Get_Refund

Although this list will most likely change this is just starting for people who filed there income tax. Some things to Remember are:

You can generally access information about your refund 72 hours after IRS acknowledges receipt of your e-filed return, or three to four weeks after mailing a paper return

Via IRS.GOV

People coming from Sites that don’t exist

So I woke up today checking out my sites, and looking outside.   So As I was checking my Stats for my blog.  I cam across a referring site that brought Supposedly Two people to my site.  I looked at the URL for the site:

• http://trojan.fiftystatesclassifiedads.com/index.php

So after seeing the “trojan” Prefix and I am wondering if this was an attempt by Malware to infect my domain.   So I go check this domain out.   I got to it and I get a 404.  I then do a Cache Check with OPENDNS.  I also Then decided to see if it was even Registered domain by the doing a Whois.  So I am opening this up to people who might know.   I did do some research and here’s wha I’ve found out so far.

According to How2hack, they talk about how people want privacy and that it might be someone who does not want to be found.  I tend to agree with them, Privacy for Privacy sake is good but if you want to be private you would you even be checking out websites knowing people will want to find out who really is coming to your site.  The How2Hack site also talks about how this might happen and I see where they are coming from.

‘Life Owner’ won’t delete your data!

I received this email from a friend and wanted to talk about this:

VERY IMPORTANT , PLEASE READ THIS

Anyone-using Internet mail such as Yahoo, Hotmail,
AOL and so on.

This information arrived this morning,
Direct from both Microsoft and Norton

Please send it to everybody you know who has
access to the Internet.

You may receive an apparently harmless e-mail titled ‘Mail Server Report’

If you open either file, a message will appear on your screen saying:
‘It is too late now, your life is no longer beautiful.’

Subsequently you will LOSE EVERYTHING IN YOUR PC,
And the person who sent it to you will gain access to your
name, e-mail and password.

This is a new virus which started to circulate on Saturday afternoon.
AOLhas already confirmed the severity, and the anti virus software’s are not capable of destroying it.

The virus has been created by a hacker who calls himself
‘life owner’.

PLEASE SEND A COPY OF THIS E-MAIL
TO ALL YOUR FRIENDS, And ask them to
PASS IT ON IMMEDIATELY!

THIS HAS BEEN CONFIRMED BY SNOPES.

http://www.snopes.com/computer/virus/mailserver.asp

Valentine’s Day Brings More Malware!

Panda Labs talks about this new technique where it tries to install W32/Waledac.C.worm under the thought of someone special. It sends out email to people hoping to click links such as:

• hxxp://goodnewsreview.com
• hxxp://worldnewseye.com
• hxxp://www.spacemynews.com
• hxxp://www.worldnewsdot.com
• hxxp://www.worldtracknews.com
• hxxp://www.wapcitynews.com
• hxxp://linkworldnews.com
• hxxp://goodnewsdigital.com
• hxxp://waleprojekt.com
• hxxp://expowale.com
• hxxp://topwale.com
• hxxp://waleonline.com
• hxxp://goodnewsdigital.com
• hxxp://wapcitynews.com
• hxxp://bestgoodnews.com
• hxxp://spacemynews.com
• hxxp://linkworldnews.com

Once your at the site,  clicking on the hearts you would then download an file that is the worm!!  SO here are some things to remember.

If you don’t know the person, then it’s probably spam.   If you know the person you need to ask them before you run the program.   You also need to scan any downloads before you run them.  Go to my Malware Page and get a free Anti-virus and Firewall.  For the likely possibility this worm seems to search the computer and harvest email addresses, you should also warn the person who email you the link to let them know that they are infected.

MikeTechSHow Listener Roundtable Jan 24, 2009

We had a great discussion on Windows 7 Beta and I wanted to post this so people can download it and check it out themselves.    You have an idea for the next round table, just leave a comment and I’ll let Mike know.   I enjoyed this one so much and can’t wait for the next one!!

Miketechshow Listener Roundtable

[If your at my post, Hover over link to listen to it]

• Mike Smith – Host of The Miketechshow Podcast
• Paul – Tech-LinkBlog
• Daniel – Podcast Reviews Podcast
• Norbert – Totally Cool Tech Podcast
• Winston Wolf

Show Links -

• Windows 7 Beta
• VMware
• Microsoft Virtual PC 2007
• AVG Free AV for Windows 7 Beta
• Windows PowerShell

Please feel free and visit the Miketechshow website, and if you like his site please come back.  Don’t forget to visit the Miketechshow Forums and check it out.  Who knows you might be able to help someone out from time to time.

Brace for Impact, Brace for Botnet! (Conflicker Worm)

The Worm that has infected 6% of Personal Computers is starting to build into something totally different.  According to some Researchers, they are saying this has to happen soon. And I’ll quote:

In any case, today seems better than the day before and we think that growth of Downadup has been curbed. Disinfection of the worm remains a challenge.

[Via F-secure]

Although this sounds like it has stopped, I don’t think so I am sure the worm will get even bigger.   I don’t think it has been curbed we might have a rest period before the Worms tries again.

“Why is it taking so long?” asked Huger. “That’s what we’re all asking.” He couldn’t recall an attack of this size with such a long lag time between the initial attacks and follow-on downloads of more malware to the hijacked systems.

[Via PcWorld]

Now We know this exploit is being patched as quickly as possible in some areas of the industry but that leaves the question?  What isn’t being patched, I am guess the next stage of this worm is mutant into a new worm much like the way it tries to communicate to download new software or instruction.   I believe it will be using a newer exploit so that it can infect even more computers.   I also think it will be a botnet and so does others.

Looks Like Monster.com and UsaJobs.gov was Hacked : Change your PW!!

As is the case with many companies that maintain large databases of information, Monster is the target of illegal attempts to access and extract information from its database. We recently learned our database was illegally accessed and certain contact and account data were taken, including Monster user IDs and passwords, email addresses, names, phone numbers, and some basic demographic data. The information accessed does not include resumes. Monster does not generally collect – and the accessed information does not include – sensitive data such as social security numbers or personal financial data.

As a further precaution, we want to remind you that an email address could be used to target “phishing” emails. Monster will never send an unsolicited email asking you to confirm your username and password, nor will Monster ask you to download any software, “tool” or “access agreement” in order to use your Monster account.
[Via Monster.com]

UsaJobs.Gov is a partner with Monster.com so You should think about changing your Password.    They Also think this will be used for Phishing, if you have any doubts to the authenticity of email.  I’d suggest doing a google search on the company or name of the person who emailed you that way you can be well informaed before you do decide how you will handle it.   Also Remember most times if they ask you download software, it is probably Malware and should be scanned by your Anti-virus software.

Pirated iWork’09 — Shows users they’ll not smart!!

Pirated Version of iLife 2009 for Macintosh users are getting hit hard by a Virus.  These users seem to think they are immune to viruses or trojans, and install software without second thoughts.  Now I know this isn’t funny to some but at least 20,000 have been macintosh computers have been infected by this little OSX.Trojan.iServices.A.  Now did Apple help this out by making people think the OSX was immune to Viruses?  Some reports are saying this little Trojan is hard to get rid off.  Intego puts out a security Alert for this little Trojan.  Microsoft should jump on this like a hot knife through butter with there ad campaigns.  I would be laughing all the way to the mall.  No longer are Macintosh’s  safe from viruses, Trojans, or Spyware.

So you think you have the Trojan? I do not know how to get it off the system because I am a PC user, but I just had to comment on this and make sure people knew what was happening in the world of malware.   I’d suggest checking out my anti-virus-and-anit-spyware-resources/” target=”_blank”>Malware Resource page and maybe there you’d find something that will work for you in removing this trojan.  Although it cost 79$, Mac users need to start using more common sense with their computers and not download software from untrusted sites. Security should be brought to the forefront when it comes to Apple.

Alarming results are coming from the Conflicker Worm

Today I’ve been doing research because I surprised how many people have searched for the Conflicker Worm/Virus and I wanted to point just how bad this is getting.     I was looking on Twitter about this some more and here is what I found out:

Over a million conflicker hosts: Are you responsible for any of them? (http: //tinyurl.com/awpeep

[Via twitter  Hevnsnt]

Now I went there and he seemed to of added “)” to the URL so I took that out and here’s the URL to check this out.  I went there and saw all these IP(Internet Protocols) and it claims that it is over a MILLION.  I don’t know if it is true because I stopped the list of IP’s due to the size of list.

I also wanted to talk about the rate at which people are finding this site due to the conflicker virus/worm infecting their systems.     As you can see it is steadily increasing as more and more people are trying to find out how to get rid of this very pesky infestation.   See below for some good resources to get this annoyance.

Microsoft to Cut 5,000 Jobs Starting Today:

There are reports that Microsoft will start laying people off starting Today Jan 22, 2009.

Microsoft said it will cut up to 5,000 jobs in research and development, marketing, sales, finance, legal, human resources and IT over the next 18 months. The first 1,400 jobs will be cut Thursday.

[ViaPcWorld]

I really hate to see this happen but I did suspect this to happen.   I get a feeling this isn’t the last we will see of Microsoft doing something like this.   I would suspect it will become even more than 5,000 jobs.  I will take a guess and say 16,000 will be the total or close to it. If you want to see the other layoffs I’ve talked here are few:

• Google Search
• Largest Employer : University of Pittsburgh Medical Center is planning layoffs!!
• Mahalo Lay’s off around 10% of it’s workforce!!
• Viacom and ATT layoff some people. (12,850 People)

I have several differnent articles about the layoffs but I did speculate they will lay off 16,000 people so I am sure it will happen in the next few months.  Only time will tell!!!

Spammers defies Bill Gates ‘magic Solution’

Sopho’s published statistics and I thought I would talk about it here.   Bill Gates promised to have a Magic Solution 5 Years ago.   Sophos Also provide a Chart of the Dirty Dozen:

Sopho’s also is claiming that “US retains its crown as spam king“.    I don’t think so because of the the Other 32.4%.   The US can’t be the main culprit to spam.    So What was this ‘Magic Solution’ that they promised 5 years ago?

Microsoft has two techniques in mind for solving the spam issue, both based on the premise of changing the economics of email to place a greater burden on the sender.

[Via CBR]

Microsoft did have some good ideas but they wouldn’t work for right now because the first part of the ‘magic Solution’ was to add  mathmatical question to each and every email we sent out.   I know that this wasn’t going to work because hackers have already created a systems to get around the captcha verification.

Apple’s Not immune after all

In a recent post from the San Internet Storm Center:

Apple

• APPLE-SA-2009-01-21 QuickTime 7.6: Multiple vulnerabilities all them referencing “arbitrary code execution”. (CVE-2009-0001, CVE-2009-0002, CVE-2009-0003, CVE-2009-0004, CVE-2009-0005,CVE-2009-0006, and CVE-2009-0007)
• APPLE-SA-2009-01-21 QuickTime MPEG-2 Playback Component: arbitrary code execution. (CVE-2009-0008)

Apple has said they will not say yes or no to this report and that they will be investigating this fully. I’ve been saying Apple needs to get it’s head out of the sand. According to Apple these effect both Mac’s and Microsoft so they are a software related vulnerability. Soon or later someone will want to create a botnet and infect Macintosh’s with virus or even a worm just to show apple that they could. In a recent article from PcWorld, They talk about a Trojan called OSX.RSPlug.D. This will just increase the fact that they are going to start targeting a OSX because of the lack security. Apple, Needs to get it together and start patching just as much as Microsoft.

Security Researchers warn of potential flaws in Windows

I read an article today from Techworld. I wanted to Discuss this in detail. I also found some links that suggest that Techworld is right.

Andrew Storms, director of security operations at nCircle Network Security, speculated that the latest bugs were found by researchers using information disclosed in SMB fixes Microsoft released in October and November.[va Techworld]

According to my investigation, and I have been looking. I found a few SMB Vulnerabilities. One of them is CVE-2008-4835 and CVE-2008-4834. These two are capable of Remote Code Execution, and are Consider very High on the Impact list and all.

So Did people find these exploits or vulnerabilities from the last MS 08-067 patch? I would have to conclude it is a real possibility.

Although Microsoft did patch those holes this month.  I grow to wonder just how much these hackers keeping the IT professionals on there toes.    I hope people updated their system to prevent another worm because you don’t want the worm like Downadup Do you?  I am sure there will be a worm or a virus that will exploit this in time, and I think sooner or later someone will use this just like the other one.

More Information on the downadup Worm

If your working to get rid of this Downadup Worm, F-secure is giving out a free removal tool to help with that task.   According to F-Secure Worm:W32/Downadup.gen description which Talks about how bad this worm is.

Due to companies not updating the MS 08-067 patch, it is the primary way for this worm to get onto a system.

Graham Cluely’s Blog ask a question and got quite a few answers from the users. The results of the poll are 53% believe the hackers are to blame, and 30% think the System Administrators are to blame, and 17% think Microsoft is to blame for this worm.

I have a mix feelings over who is to be blamed for this worm. I think the person who wrote this, did it for a specific reason. We can’t expect any software we use to be 100% safe, even Macintosh are not 100% safe. Microsoft isn’t to be blamed because they tried to patch this as quickly as they could. I know that companies have a hard time keeping up with Microsoft updates, and they really can’t be blamed. I think Hackers are always going to make a virus just because they can. That’s in there nature and we will never be really rid of the virus or worm writers. They are in it for the Money, to boast, to take control of, or steal sensitive information. Windows being the Alpha Dog, people are always going to test the waters because of that.

Barack Obama isn’t leaving the White House!

In a story from Sophos, some e-mails are going around saying that Barack Obama is not going to be president or that he will not be inauguration.   Sopho’s also makes a great comparison for the two sites and it does try to look like the official site.

Which if you click on the “Continue Reading” link it will try to send a file “Speech.exe” which is W32/Waled-Gen or Mal/WaledPak-A.   It is a fake site to look like the real site, it is never a good idea on clicking on links that looks real. For those of you who want to watch the Inauguration online I would suggest Hulu:

You can watch it happen when it happens. So sit back relax and enjoy the show!!

How Serious is the Downadup.b/Conflicker Worm?

In there latest post F-secure has updated how many people are infect and I’ll quote:

Today’s calculation is a total of 8,976,038 infections worldwide and 353,495 unique IP addresses.

That’s a quite a big difference compared to our last number — there will be a follow up post coming soon to explain the methodology.

[Via F-secure]

F-secure has noticed it went up from 3,521,230 infections worldwide. This Worm has doubled in over a day.  So I have done some twitter searching to see if anyone has recently tweeted about this and I find this one comment:

WTF? suddenly my antivirus is popping with warnings about a W32.Downadup.B … but I havent received any attachs or installed anything!

[Via Twitter Mklopez]

I’d thought I show you how important it is for you to get ready for a very hard fight ahead of yourselves.  You see this hasn’t even begun with this worm.

Here’s are some of the tweets:

2 customers, have this conflicker.worm problem and we are trying every possible solution but nothing turned out to be solved

[Via Twitter  Candegger]

Does Apple’s Steve Jobs Have HIV?

After a sudden announcement that he was taking a leave of absence from Apple due to all the controversy of his health?  We must ask our selves why?   I came across a website with a picture of Steve Jobs results about having HIV.   I must ask Is this likely?

With any operation, There is a chance of?

As you know when you have an operation you have a chance of dieing, of blood transfusion, of complication from the surgery, or a multitude of possible outcomes.  We don’t know happen during surgery for Pancreatic Cancer and he probably had blood transfusion also.  So what did happen during the surgery?  That is a very good question.

We know he wrote a letter to all the employees of Apple:

Team,

I am sure all of you saw my letter last week sharing something very personal with the Apple community. Unfortunately, the curiosity over my personal health continues to be a distraction not only for me and my family, but everyone else at Apple as well. In addition, during the past week I have learned that my health-related issues are more complex than I originally thought.

Admins are shaking in there boots due to the Ms 09-001 Patch

I have to talk about this because this is a big deal.   According to Techworld and I’ll quote:

“This one scares me – a lot,” says Eric Schultze, CTO of Shavlik Technologies. “It is a lot like Blaster and Sasser. It is the same exploit vector. If I am an attacker and I can touch NetBios then I can execute code with no credentials.”

[via Techworld]

Now This is due to the fact of what is happening with an update that came a few months ago the MS 08 – 067 that still people haven’t patched their systems.  According to F-secure the Downadup/Conflicker has grown overnight by a million computers being infected.

Now why are they scared of the recent patch (MS 09-001), because of so many vectors of infection, you don’t need any credentials.  The virus  does not  need to know any passwords or user names to gain access.  Just like the Downadup variant that is hitting the internet right now, this virus tries to access accounts by guessing weak passwords or even putting itself on flash drives or other mobile media to get other systems infected.

Microsoft issues 1 Major update 1-13-09

Well it has been release Microsoft issued an update to the system:

Vulnerabilities in SMB Could Allow Remote Code Execution

Microsoft Security Bulletin MS09-001 – Critical (KB958687)

This security update resolves several privately reported vulnerabilities in Microsoft Server Message Block (SMB) Protocol. The vulnerabilities could allow remote code execution on affected systems. An attacker who successfully exploited these vulnerabilities could install programs; view, change, or delete data; or create new accounts with full user rights. Firewall best practices and standard default firewall configurations can help protect networks from attacks that originate outside the enterprise perimeter. Best practices recommend that systems that are connected to the Internet have a minimal number of ports exposed.

This is one of those updates you really need to install as soon as you can.   You should also get a free firewall or buy one.  I looks to be a vulnerability in the ports and if you’d have a firewall besides windows you should be safe but that is besides the point.   If you are security congenious then you should install this update ASAP.  If your worried this will effect you system then you will need to backup your system before you do this update.  If you feel you’ve might of been infected with this Vulnerability you could always go get a free antivirus program and scan your system.  This is the sure way of fighting a Virus and making sure your safe, although people argue that Paid virus programs are quicker to be updated with virus databases, it’s all in the matter of preferences.

Blasting the Downadup.b/Conflicker back to the Stone-age!

It has been talked about the last few days where there is a worm hitting the computers who haven’t done the Microsoft Update MS08-067 which was release out of cycle and still have some systems has not been patched.  It has also been reported that it is spreading around the internet really quickly.   According to Computer World:

The worm, which was first reported by Panda and other security companies on Dec. 31, 2008, exploits a vulnerability in the Windows Server service that’s part of all currently supported versions of Microsoft’s operating system, including Windows 2000, XP, Vista, Server 2003 and Server 2008.

[via Computer World]

It seems Microsoft has scolded people who haven’t patched for the October emergency update. Accusing users of playing “Russian Roulette“  and scolding them for not promptly updating their system to remove the vulnerability.

Symantec Blogged about this security of this program and how it was a variant of Downadup.b.  It also talks about how they are seeing an even more increase on this worm that was supposed to be patched by people who use Windows 2000 Server.

Windows 7 Beta — Unexpected results

Now know people’s thoughts on the EULA of Windows 7 Beta. Now let’s talk about this according to a blog post From Windows Vista Places :

No benchmarks allowed. As in previous beta releases of Microsoft operating systems, the license agreement includes a prohibition on speed tests:

You may not disclose the results of any benchmark tests of the software to any third party without Microsoft’s prior written approval.

[Windows Vista Place]

Now We know people have put this through there test and I am sure any technology magazine has done the same. If I know people they will be doing this no matter what the EULA (End User License Agreement) has to say. Although if Microsoft was worried about Third Party’s from finding out this software it wouldn’t be to hard for them to get there hands on a key and the ISO after all it was released to the public and that means anyone could get a copy.

I wouldn’t be surprised if Apple or even some Linux Enthusiast did there own test on this OS. I serious doubt that Microsoft will come after people over this because they have made it public but let’s go in and talk some things.

Do you want a Windows 7 Beta key?

Update See bottom:

I recently got 3 beta keys for Windows 7 Beta. I decide we are going to have some fun. IF you want one of the 2 beta keys here is how you do it. I want you to twitter it up on twitter. I would like you to make a Tinyurl using your twitter account so I know who sent the most people my way. Here’s how you do it:

Go to Tinyurl.com then you put this page in and tell it you want it to be made with your twitter name without the @ sign(it would look like this : http://tinyurl.com/twitterusername). The 2 most Referrers to come to my site in this weekend and leave a comment will get a reply from my twitter account saying they won and asking for there email account. I want as many people to see this as possible. If you want a beta key for Windows 7 then advertise people to come to my site and find out how they could win themselves. I only have two extra Beta keys. I used one right now to activate this Windows Beta but I will give the other two away for who ever brings in the 2 most people to my site.

First Impression of Windows 7 Beta!!

As of getting this beta from Windows Download server, and yet having to activate it. I’d thought I share some of my impressions of this Operating System. Although I must make sure you all know this isn’t the final version of Windows 7, and it will undoubtedly go through some major changes before it is over.

As you can see I’ve installed this onto an Intel System 2 core system 1.6ghz and 2 gigs of ram.  I must say that this was a really smooth transition from Vista to Windows 7.   I don’t think it has ever been this good with Vista.   Something that I noticed right off is that now I can have User Account Control Customized.   Yes you’ve heard it right some things you can do with Windows 7 is turn it all the way off(Do not Notify Me) to Always on (Always Notify Me).

With this one I can now not have it Dim all the time when It wants to warn me.  This is the best part of this UAC no longer will I get annoyed every time it warns me.   I’m liking the feature more and more.

Patch list for Patch Tuesday January 2009

I just got the update of what will be patched and what will I expect to be patched, Here is my list of what will be coming on Patch Tuesday, January 13, 2009:

• Update for Windows Mail Junk E-mail Filter [January 2009] (KB905866) – Keeps those junk emails from getting into your system.
  
• Windows Malicious Software Removal Tool – January 2009 (KB890830) — This is a usual thing for Microsoft and should not be messed with.
  
• Windows XP Service Pack 3 (KB936929) – Changes made to the were made for the Metadata but nothing else.
  
• Critical update — Microsoft Windows 2000 Service Pack 4, Windows XP Service Pack 2 and Windows XP Service Pack 3, Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2,  Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2, Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2,Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems.

Microsoft Keynote CES 2009

Some Key topics talk about in this Keynotes are:

Windows 7 — Lighter, Faster, and Reliability. Windows 7 Should boot quicker and faster, and enables cool new interface touch.

Windows 7 — Beta will be available Worldwide on January 9, 2009 and will be available for download on MSDN and Technet.  Also it will be available at : http://www.microsoft.com/windows/windows-7 For those who want to download it from Microsoft directly.

Windows Live Essentials — Windows live Messenger, Mail, and Photo Gallery works with Windows XP, VISTA, and Windows 7. It is available for download worldwide. Dell will also be putting this on their consumer and small business computers.

Windows Mobile — 11 Different Mobile phones.

Verizon Mobile –  Windows Live Search will be available through Verizon and it’s a partnership with Microsoft.

Demo of Windows 7, Live, and Mobile:

Windows 7 will have Windows touch and be able to use net books with Windows 7.

Windows 7 has been designed with the Touch DNA in mind.

Windows Mobile demo with an Panoramic display.

Windows Live Demo –  Various things they discuss here including Photo’s and Silver light.

Windows XBOX:

Macworld 2009 Roundup

I’m not a really big fan of Macintoshes but I thought I’d share with you what happened at Macworld and what is coming out this month after the announcements. So here’s the run down on Macworld Expo 2009:

• 17 Inch Mac Book Pro (Buy it From the Amazon Store) — “$2,799, 2.66 GHz and 4 GB of RAM, 320GB hard drive” and They have a battery exchange program for those who have bad batteries.   Engadget has some really good video’s of this new Laptop.  I also looked around Slashdot did a really good job on the summary of what happened at Macworld.   They are claiming it will be able to run 8 hours on battery but I will wait to see what people say after they get there hands on this.
• I-Life 09 (Buy the older version from Amazon 2008) — Today at Macworld, Apple showed it off.  You can see the photos from Gizmodo and it looks nice.  Some of the stuff this can do is Facial Recognition, also use it with Flickr and Facebook.   Geotag Reversal so it can look up where you took the picture and pin point it on the map for later reference.  I-life 09 will cost 79$ solo or 99$ for Family.