Archive for the ‘software’ Category

New NATO video about vulnerability market

Posted on: July 30th, 2013 by No Comments

In a recent video, titled Hackers for Hire, the world’s most powerful military organization looks at the life of hackers who search for vulnerabilities in operating systems and software products, for a bounty paid by their vendors. These hackers find security holes in systems, and tell the developers about them, giving them time to fix the bug and come out with a patch before telling the world about it.

Some other hackers choose the less ethical way, and sell these vulnerability details to the highest bidder on the open market, who may then use these details to exploit the weaknesses. One way or another, there is certainly an increasing market for vulnerabilities, as these bugs are worth a lot of money, according to the video.

The leader of Microsoft’s Security Outreach Team is an ex-hacker, who regularly seeks skilled IT security specialists to improve the company’s research efforts, using a huge talent pool of white hat hackers.

By Gergely Sumegi

Internet security tips – What is Microsoft EMET?

Posted on: July 29th, 2013 by No Comments

As the everyday PC user has more and more software on their computer originating from vendors big and small, the likelihood of an exploitable vulnerability remaining unpatched is ever growing. The developers of your anti-virus software or the vulnerable program might not be able to patch the vulnerability as quickly as they get discovered, but there are some helpful tools to make these vulnerabilities as hard to exploit as possible. One of these tools is Microsoft EMET.

Microsoft EMET stands for Enhanced Mitigation Experience Toolkit, and it is a utility that helps preventing software vulnerabilities from being exploited. EMET is using security mitigation technologies to achieve this goal to make exploitation as difficult as possible, as a possible attacker will face extra obstacles to get through. It can be used with any software, regardless of when it was written and who the author or vendor is; it doesn’t need to be a software product of Microsoft.

EMET can be downloaded from the Microsoft TechNet page, and requires the Microsoft .NET Framework to operate, which can be downloaded from the Download section of Microsoft’s website. The latest version, EMET 4.0 has got a Certificate Trust feature to detect man-in-the-middle attacks leveraging the public key infrastructure.

After installing, EMET must be configured to protect the piece of software you want to be protected. For this, you need to provide the name of the program and its location on your PC. The above mentioned Certificate Trust will need you to provide the list of websites you want to protect. For a detailed introduction please visit where you can download the latest version that comes with a detailed user guide.

By Gergely Sumegi

Why Creative Cloud Is So Unpopular

Posted on: July 25th, 2013 by 2 Comments

Back in May, Adobe announced that Creative Suite 6 would be the last time licenses would be on offer for sale, and that Creative Cloud would be replacing the license concept as a whole. This means that, rather than a one-off purchases, Adobe users now have to pay a monthly subscription in order to use the applications they know and love.

In theory, the idea is quite remarkable. As described on the Adobe website and on the Creative Cloud Facebook page, Adobe users now have every application in the CS suite at their fingers – gone are the days of purchasing separate suites depending on whether you’re a designer or a photographer or a developer. One of Adobe’s ideas is to nourish and develop new talent – so if you’re a photographer interesting in dabbling in the world of web design, then subscribing to Creative Cloud makes it that much easier. Purchasing CC also gives unparalled access to the latest software updates and features, without having to wait for the next version of CS to come out.

However faithful Adobe users are understandably disgruntled by the latest mandatory development. Whilst it’s easy enough for Adobe to claim that they are, quite simply, granting global access to their applications at a slashed fee (let’s face it, Adobe software is unbelievably pricey), it is very apparent that subscribers will be paying more than what they once did in the long run. If you’re a graphic designer and you just want access to Photoshop, InDesign and Illustrator, chances are you’re not entirely interested in the package Creative Cloud offers. The fact that Creative Cloud isn’t available for multi-computer use only adds to frustrations, which are quickly piling up.

If Adobe had listened to its clientforce – and maybe introduced Creative Cloud at a slower speed, rather than catch everyone unawares – then maybe it wouldn’t be facing the negative backlash it is being forced to endure. The fact that Creative Cloud has already been pirated – one of the vulnerabilities Adobe was hoping to quench by phasing out CS – speaks volumes, and only goes to show that it won’t be long before they will be forced to address this issue.