Posted on July 22, 2010 by wjimenez275
One of the things I’m asked quite frequently is how to clean the screens of computers and laptops. There are specials cleaning materials you can purchase at office supply stores that will clean both your computer screens and your TV screens. You can also make your own cleaning solution by mixing distilled water (make sure it’s distilled) and white vinegar in equal proportions into a spray bottle.
To clean your screen, start with a dry, microfiber cloth. Move it in circular motions. Be gentle, but apply slight pressure on particularly stubborn spots.
If that doesn’t clean the screen, use your cleaning solution. Turn off your laptop. Spray the cleaner lightly onto the, not onto the monitor. Wipe as described above, then wait ten minutes before booting up.
You can find additional tips on cleaning your other electronics by clicking on the following link.
The Proper Care and Feeding of Your HDTV, Phone, and Camera.
Filed under: PC Maintenance, PC Tips and Tools, Uncategorized | 1 Comment »
Posted on June 16, 2010 by wjimenez275
Just five days after Google researcher Tavis Ormandy released details of a critical vulnerability affecting Windows XP and Windows Server 2003, malware authors have struck, exploiting the flaw to plant malware on Windows machines.The attacks, described by Microsoft as “limited,” are being distributed on rigged Web sites drive-by downloads.“Windows Server 2003 customers are not currently at risk from the Win Help issue based on the attack samples we have analyzed,” according to Microsoft’s security response center.The attacks, are only targeting Windows XP computers with the HCP protocol enabled.
ONE-CLICK FIX-IT
This can also be manually done by following these simple directions:
- Click Start, and then click Run.
- Type regedit, and then click OK.
- Expand HKEY_CLASSES_ROOT, and then highlight the HCP key.
- Right-click the HCP key, and then click Delete.
Impact of Workaround: Unregistering the HCP protocol will break all local, legitimate help links that use hcp://. For example, links in Control Panel may no longer work.
via Windows XP zero-day under attack; Use Microsofts “fix-it” workaround | ZDNet.
Filed under: Instructional, PC Security | 1 Comment »
Posted on June 8, 2010 by wjimenez275
Adobe has issued a security advisory about a “critical” vulnerability in its Flash Player and Adobe Reader and Acrobat products that it says could let attackers take control of peoples computers. The company said late Friday that there had been reports of the hole actually being exploited and that an official patch was not yet available. Affected software includes: Adobe Flash Player 10.0.45.2, 9.0.262, and earlier 10.0.x and 9.0.x versions for Windows, Macintosh, Linux, and Solaris, Adobe Reader and Acrobat 9.3.2 and earlier 9.x versions for Windows, Macintosh, and Unix. The company said that the Flash Player 10.1 Release Candidate does not seem to be vulnerable and that Adobe Reader and Acrobat 8.x are confirmed not vulnerable. Adobe didn’t say when an official fix would be released, but according to the company, computer users can mitigate the Flash issue by downloading the release candidate mentioned above. The Acrobat and Reader issue can be addressed by “deleting, renaming, or removing access to the authplay.dll file” that ships with those products, Adobe said. This will, however, cause a nonexploitable crash or error message if a user opens a PDF file that contains SWF content. The .dll file is typically located at C:\Program Files\Adobe\Reader 9.0\Reader\authplay.dll for Adobe Reader or C:\Program Files\Adobe\Acrobat 9.0\Acrobat\authplay.dll for Acrobat, Adobe said.The complete security advisory is available here.
via Adobe reports critical flaw in Flash, Acrobat | Security – CNET News.
Filed under: Instructional, PC Security | 1 Comment »
Posted on May 21, 2010 by wjimenez275
WASHINGTON, D.C. – The U.S. Consumer Product Safety Commission, in cooperation with the firm named below, today announced a voluntary recall of the following consumer product. Consumers should stop using recalled products immediately unless otherwise instructed. It is illegal to resell or attempt to resell a recalled consumer product.Name of Product: Lithium-Ion batteries used in Hewlett-Packard and Compaq notebook computersUnits: About 54,000 70,000 units were previously recalled in May 2009Importer: Hewlett-Packard Co., of Palo Alto, Calif.Hazard: The recalled lithium-ion batteries can overheat, posing a fire and burn hazard to consumers.Incidents/Injuries: Since the May 2009 recall, HP has received 38 additional reports of batteries that overheated and ruptured resulting in 11 instances of minor personal injury and 31 instances of minor property damage.Description: The recalled lithium-ion rechargeable batteries are used with various model series of HP and Compaq notebook computers. The chart below includes all notebook model numbers associated with batteries recalled to date. The computer model number is located at the top of the service label on the bottom of the notebook computer. Not all batteries matching the bar codes are being recalled.
via HP Expands Recall of Notebook Computer Batteries Due to Fire Hazard.
Filed under: Uncategorized | Leave a Comment »
Posted on May 18, 2010 by wjimenez275
A federal court judge has likely dealt a death blow to LimeWire, one of the most popular and oldest file-sharing systems, according to legal experts.
Mark Gorton, LimeWire’s founder, could see a federal court decision force his company to shut down operations possibly very soon.
On Wednesday, CNET broke the news that U.S. District Judge Kimba Wood granted summary judgment in favor of the Recording Industry Association of America (RIAA), which filed a copyright lawsuit against LimeWire in 2006. In her decision, Wood ruled Lime Group, parent of LimeWire software maker Lime Wire, and founder Mark Gorton committed copyright infringement, induced copyright infringement, and engaged in unfair competition.
“It is obviously a fairly fatal decision for them,” said Michael Page, the San Francisco lawyer who represented file sharing service Grokster in the landmark case, MGM Studios, vs. Grokster and also represented Lime Wire’s former CTO in the company’s most recent copyright case. “If they don’t shut down, the other side will likely make a request for an injunction and there’s nothing left but to go on to calculating damages.”
With an injunction, the RIAA can force LimeWire to cease file-sharing operations.
via Legal experts: LimeWire likely doomed | Media Maverick – CNET News.
Filed under: Uncategorized | 1 Comment »
Posted on May 17, 2010 by wjimenez275
A law firm employed by the Pennsylvania school district caught using student laptop webcams to spy on students at home has released a 72-page report pdf on the incident after a 10-week investigation. Most of the report’s findings aren’t too surprising; it exonerates most higher-level school officials like any wealthy school district’s in-house investigation should, concluding that there’s no evidence indicating that anybody above the IT level “knew how TheftTrack worked or understood that it could collect large quantities of webcam photographs or screenshots.” The report also confirms reports that the system took some 58,000 images — a far cry from the 42 images the school originally claimed.Aside from those 57,958 extra photos and screenshots, e-mails alleging that school administrators found the spy technology entertaining — and the fact the system was only unearthed in the first place because a student’s at-home behavior was spied on — the study concludes that “we found no evidence that District personnel used TheftTrack to “spy” on students.” Still, at least the report slams the school district for being “overzealous” in their use of the technology, and for having a complete disregard for student privacy:
“Although there is no forensic method to determine with certainty how often images stored on the LANrev server were viewed, we found no evidence that any District 3 personnel surreptitiously downloaded images from the LANrev server. Rather, the collection of images from laptops while they were in the possession of students resulted from the district’s failure to implement policies, procedures and recordkeeping requirements, and the overzealous and questionable use of technology by IS personnel without any apparent regard for privacy considerations or sufficient consultation with administrators.“
By and large the study places the lion’s share of the blame on school IT folks, most of whom were already forced to retire. It does seem rather convenient that the district was allowed to hire their own law firm to investigate (at least when lawyers weren’t working with plaintiffs to allegedly help keep evidence out of the hands of federal investigators). That’s of course the first thing the lawyer for the district’s former IS director Virginia DiMedio complained about. While the IT folks certainly appear oblivious and culpable, there seems to be plenty of incompetence to go around. Hopefully higher level administrators aren’t entirely immune to the ultimate fallout, given they failed to pay any attention to the fact their district was busily building a little Macbook surveillance state with little to no accountability.
via Laptop Scandal School’s Own Law Firm: Aside From Those 58,000 Spy Photos, There’s No Evidence Of Spying | Techdirt.
Filed under: Uncategorized | 1 Comment »
Posted on April 21, 2010 by wjimenez275
At 6AM today, McAfee released an update to its antivirus definitions for corporate customers that had a slight problem. And by “slight problem,” I mean the kind that renders a PC useless until tech support shows up to repair the damage manually. Here’s how the SANS Internet Storm Center describes the screw-up:McAfee’s “DAT” file version 5958 is causing widespread problems with Windows XP SP3. The affected systems will enter a reboot loop and [lose] all network access. We have individual reports of other versions of Windows being affected as well. However, only particular configurations of these versions appear affected. The bad DAT file may infect individual workstations as well as workstations connected to a domain. The use of “ePolicyOrchestrator”, which is used to update virus definitions across a network, appears to have [led] to a faster spread of the bad DAT file. The ePolicyOrchestrator is used to update “DAT” files throughout enterprises. It can not be used to undo this bad signature because affected system will lose network connectivity.The problem is a false positive which identifies a regular Windows binary, “svchost.exe”, as “W32/Wecorl.a”, a virus.McAfee now has its own KnowledgeBase page posted, with details about the problem and the fix. The symptoms are described, tersely, as “Blue screen or DCOM error, followed by shutdown messages after updating to the 5958 DAT on April 21, 2010.”
via Defective McAfee update causes worldwide meltdown of XP PCs | Ed Bott’s Microsoft Report | ZDNet.com.
Filed under: Instructional, PC Security | 1 Comment »
Posted on April 8, 2010 by wjimenez275
Adobe has issued a security warning in regard to PDF files that have other files attached to them. Security researchers have found new ways for common PDF documents to release malicious code without the knowledge of the person opening them.
As Adobe investigates this, you must use the following method to disable this risk.
Open up Adobe Reader. Click on Edit on the upper menu bar and then click on the Preferences option at the bottom of the drop down. Click on “Trust Manager” in the left pane. Clear the check box “Allow opening of non-PDF file attachments with external applications” Click Ok to exit the screen.
For Mac users, the Preferences option can be found under the Adobe Reader name on the upper menu bar.
Filed under: Uncategorized | 1 Comment »
Posted on March 29, 2010 by wjimenez275
For all of you World Cup Soccer fans:
Researchers from Symantec are reporting on an ongoing targeted malware campaign using a FIFA World Cup 2010 theme, in an attempt to trick end users into executing a malicious PDF file, exploiting a recently patched flaw in Adobe Reader.More details on the campaign:The attackers have downloaded Greenlife’s PDF document, and changed it to include malicious code. They then attempted to email the malicious PDF to a user in a major international organization that brings together governments from all over the world. We should emphasize that downloading the PDF from the Greenlife website is perfectly safe at the time of writing this blog.The attack makes use of a recently patched vulnerability in Adobe Reader – CVE-2010-0188. The patch for this critical rated vulnerability was released by Adobe on February 16, 2010. Since then we have observed a large number of targeted attacks attempting to exploit this vulnerability. Proof-of-Concept exploit code is available in the Internet which is contributing to the large number of observed attacks. The exploit makes use of a flaw in the TIFF file parsing in Adobe Reader. In particular, a stack overflow is caused by inserting a TIFF image into the PDF with a specially crafted “DotRange” tag.
According to recent reports, malicious PDF files not only comprised 80 percent of all exploits for 2009, but also, represent the preferred infection vector for targeted attacks in general, for the first time ever surpassing the use of malicious Microsoft Office files.
Users should not just update their Adobe products, or perhaps even consider an alternative PDF reader, if truly paranoid. They should take a comprehensive approach when dealing with all the 3rd party applications and browser plugins, currently installed.
via FIFA World Cup themed malware campaign spreads malicious PDF files | Zero Day | ZDNet.com.
Filed under: Instructional, PC Security, Uncategorized | Leave a Comment »
Posted on March 23, 2010 by wjimenez275
I was thinking about using them. With the ease of identity theft, there must be something that can be used…Common sense?
The FTC complaint alleged that the firm’s identity theft protection and data security claims were false.By Thomas ClaburnInformationWeekMarch 10, 2010 11:19 AMThe Federal Trade Commission on Tuesday announced that identity theft protection company LifeLock has agreed to pay $12 million to the FTC and 35 state attorneys general to settle charges that its service doesn’t work as advertised.The agency says the payment represents one of the largest FTC-coordinated settlements on record. The settlement forbids company principals from making further deceptive claims and requires the company to take measures to protect customer data.
“While LifeLock promised consumers complete protection against all types of identity theft, in truth, the protection it actually provided left enough holes that you could drive a truck through it,” said FTC Chairman Jon Leibowitz in a statement.Since 2006, LifeLock has been charging customers $10 per month to protect them against identity theft. The company rose to prominence as a result of its advertising campaign involving the public display of CEO Todd Davis’s social security number on the side of a truck, ostensibly as proof that its identity theft protection service worked.
The FTC charged that the fraud alerts LifeLock placed on customer accounts weren’t effective against most types of identity theft, that its service claims were false, and that its data protection claims were false.
In 2008, LifeLock was sued in a civil lawsuit that made claims similar to the FTC’s allegations. That lawsuit alleged that “the statements by LifeLock’s CEO regarding the ability of LifeLock to protect his own identity are deceptive because his identity was stolen while he was a customer…”
via LifeLock Settles FTC Charges For $12 Million — InformationWeek.
Filed under: Instructional, Uncategorized | 1 Comment »
