ma perchè cavolo l’app per iPhone continua a restituire il messaggio di username e/o password errata ?????????

Affrontando il discorso della “strong user athentication” in buona parte delle organizzazioni il vero problema non è dare un “oggetto” per l’autenticazione, di qualunque genere, alle persone, ma gestirlo adeguatamente.

Quando lavoravo in Aeronautica Militare (in un reparto operativo interforze NATO) questo aspetto era gestito veramente bene.

Il primo giorno di lavoro, venni fotografato e venne prodotto una specie di tesserino aziendale. Con quel tesserino accedevi ai tornelli, accedevi alle stazioni di lavoro e agli altri sistemi, in funzione del ruolo e del livello di “segretezza” che era stato assegnato.

Accedevi a certe cose e non ad altre. Sempre in funzione del ruolo e del livello, potevi aprire i tornelli solo della tua sede, di altre sedi, accedevi ai sistemi in orario di lavoro oppure 7×24.

Se per qualunque motivo perdevi il tesserino potevi chiamare un numero verde 7×24 da qualunque parte del pianeta e farlo invalidare.

Appena tornavi in sede te ne facevano un altro.

Quando me ne andai, prima invalidarono il tesserino e poi fui accompagnato a prendere le mie cose personali.

Le organizzazioni “statali” italiane, annaspano fra vincoli di bilancio, paletti legislativi, sindacati retrogradi e limiti culturali di certi dirigenti incapaci di gestire in modo corretto la sicurezza.

Dirigenti (e funzionari) che sulla carta risultano “guru della sicurezza e delle procedure IT”, e per questo sono profumatamente pagati con uno stipendio sicuro ogni fine mese, cascasse il mondo… già fanno fatica a gestire un account con userid/password tradizionali.

Quante volte, durante l’implementazione di un sistema per la gestione del protocollo informatico mi è capitato di constatare che il Personale non sa che una persona c’è. Se lo sa non ha chiaro cosa faccia e a che titolo. Se cambia ruolo o se ne va il Personale è l’ultimo a saperlo. Anche se lo sa, HR ed IT non si parlano ed account di persone andate da anni sono ancora attivi.

Molto spesso il punto debole della catena della sicurezza è il fattore umano.

Quotidianamente mi capita di dover spiegare l’importanza della creazione di una buona password ai miei clienti. Ho deciso così di scrivere queste quattro parole, semplici semplici, nell’interesse di tutti, principalmente il mio in qualità di contribuente, prima ancora che potenziale fornitore di “soluzioni”.

Altrettanto spesso mi sento ripetere che password “complicate” sono difficili, giustamente, da ricordare, e si opta per le solite scappatoie: nome del figlio, moglie, amante, magari con l’aggiunta di una data di nascita, così si ha il palliativo di avere creato una “password difficile”.

Utenti “evoluti” fanno uso di programmi di dubbia provenienza che permettono di gestire portafogli di password, ma occorre sempre avere 5 o sei chili di “personal computer” appresso per recuperare quella che ci serve.

A tutti coloro che hanno qualche difficoltà a creare una password sufficientemente sicura suggerisco di utilizzare un metodo abbastanza semplice quanto efficace.

In crittografia, un cifrario a sostituzione è un sistema che utilizza un alfabeto per il testo in chiaro e una permutazione dello stesso per il testo cifrato.

La permutazione utilizzata costituisce la chiave del sistema. Durante la cifratura, ad ogni lettera del testo in chiaro viene associata la corrispondente lettera dell’alfabeto permutato.

Su Internet si trova facilmente il sito http://www.passwordchart.com/ che offre un sistema per generare password sicure basato su un meccanismo di codifica mediante una tabella.

Innanzitutto bisogna impostare la chiave casuale iniziale, con la quale creare la tabella di riferimento, può essere qualsiasi parola facile da ricordare.

Ad ogni lettera dell’alfabeto saranno associate lettere e/o numeri e/o simboli. Poi basta inserire la propria password che sarà convertita utilizzando la tabella. Il risultato sarà una password abbastanza sicura.

Un sistema semplice, che non salva dati e che funziona anche senza avere un computer a disposizione, visto che è possibile stampare la tabellina di riferimento e usarla per “costruire” al volo la password che ci serve, partendo dalla nostra parola chiave.

Anche questa soluzione, ovvio, ha i suoi punti deboli, ma è certamente più efficace di qualsiasi post-it con password aleatorie. Altrimenti potete fare come ho visto fare… scrivete nome utente e password (di root) su un bel foglio A4 e lasciatelo proprio dinnanzi al computer da proteggere… nessuno crederà che si possa essere tanto idioti da
lasciare le credenziali di accesso della macchina proprio lì (o forse no ?) …

LastPass의 패스워드 등록에서
meebo와 같이 일반적이지 않은 id와 password를 받는 웹의 필드를
사용하는 site에서도 적용 가능한 방법입니다.

LastPass 메뉴를 클릭하면
“Get All Entered Data” 항목이 있습니다.
이것을 클릭하면 현재 페이지에 있는 각종 입력값들이 등록 페이지와 함께 보여지게 됩니다.
심지어 채크버튼 까지도 선택해서 등록이 가능하도록 LastPass 등록 페이지가 보여집니다.
간단히 이미지로 확인을 하시고,
아래 Youtube 설명 페이지(영어)도 링크해 놓겠습니다.

It’s especially important to be extra careful this time of year, says McAfee’s David Marcus. “The bad guys know people are spending more time online, they’re paying more bills online so [the criminals] stand a chance of being a bit more successful this time of year.
Marcus counted down the 12 scams of Christmas starting with:

1. Charitable phishing scams: Marcus warns consumers to be wary of e-mails that appear to be from legitimate charities. Not only will they take your money and deprive charities of needed funds, but they will also steal your credit card information and identity.

2. Fake invoices from delivery services: During this period, scammers will send out fake invoices and delivery notifications appearing to come from Federal Express, UPS, the U.S. Postal Service or even the U.S. Customs Service saying that they were unable to deliver a package to your address. They ask you to confirm your address and give them credit card information to pay for delivery.

3. Social networking friend requests: Bad guys take advantage of this social time of year by sending out authentic looking friend requests via e-mail. Marcus recommends that you not click on those links but sign into Facebook and other services and look for friend requests from the site itself. Clicking on a link could install malware on your computer or trick you into revealing your password.

4. Holiday e-cards: Be careful before clicking on a holiday e-card, especially if it’s from a site you haven’t heard of. This is a way to deliver malware, pop-ups, and other forms of unwanted advertising. Some fake e-cards will look like they come from Hallmark or other legitimate companies, so pay close attention and make sure it’s from someone you know. If you’re going to send an e-card, be sure you’re dealing with a reputable service lest you risk infecting yourself and your friends.

5. Fake “luxury” jewelry: If you see an offer for luxury gifts from companies like Cartier, Gucci, and Tag Heuer at a price that’s too good to be true, it probably isn’t true. These links could lead you to malware and take your money or merchandise that will probably never arrive (or be fake if it does). Some of these sites, according to McAfee, even display the logos of the Better Business Bureau.

6. Practice safe holiday shopping. Make sure your wireless network is secure and be sure you’re shopping on sites that are secure. Though it isn’t an iron clad guarantee, you should look for the lock icon in the lower right corner of your browser and make sure the Web page starts with https. The “s” stands for “secure.”

7. Christmas carol lyrics can be dangerous: Bad guys know that people are searching for holiday related sites for music, holiday graphics, and other festive media. During this time, they create fraudulent holiday related sites.

8. Job search related scams: With the unemployment rate at 10.2 percent, there are plenty of job seekers looking for work. Beware of online offers for high paying jobs or at-home money making schemes. Some of these sites ask for money up front, which is a good way for criminals not only to steal your “set up fee” but misuse your credit card too. Marcus said that some “get rich quick” sites are all about money laundering, asking you to accept an inbound financial transfer and pay them.

9. Auction site fraud: McAfee has observed a rise in fake auction sites during the holidays. Make sure you’re actually going to eBay or whatever site you plan to deal with.

10. Password stealing scams: Criminals use low-cost tools to uncover passwords, in some cases planting key logger software to record keystrokes. Once they get your passwords, they gain access to bank accounts and credit card accounts and send spam from your e-mail accounts.

11. E-mail banking scams: A common type of phishing scam is sending out official looking e-mails that appear to come from your bank. Don’t click on any links but type in your bank’s Web address manually if you need to access your account.

12. Files for ransom: Hackers use malware to gain control of your computer and lock your data files. To access your own data you have to pay them ransom.

Source: CNet.com

For all those people who want to find out if your partner is cheating or the password to your partner’s facebook/myspace/e-mail/msn and other. Or if you are a parent worrying about what your kid might be doing at the computer behind closed doors.

Business going bad? Time to check up on your employees surfing habits. But how to do this, without getting caught trying to get some information?

Keep reading, I have the solution for all of you people.
I chose to introduce you to a keylogging/surveillance program after finally finding the tool that will give myself some answers to questions regarding my own relationship. I have searched for quite a long time and thought that there just aren’t any effective programs out there yet. But I found out that there is, it’s called All In One Keylogger, I gave it a try and I was honestly said frightened about the information it is able to collect, it will give you the answers to all your questions and suspiciousness.

With this program everything is possible, from getting a password to any community site, e-mail or forums and seeing all chat logs or messages – to recording microphone sounds (cybersex or the chat with another person and even webcam activity! (Both the own persons and a possible strangers webcam if he/she is watching naked teenagers behind your back). And best of all: you will have PROOF of what you have seen, which you obviously wont if you just suspect something without this program.

The program fits for:

a) People in a relationship
b) Business administration, finding out what your employees do when they “work”
c) Parents who want to keep track of their kids.

From their homepage you can read about the futures of All In One Keylogger, as I find it a bit pointless to copy paste whole production info page. Don’t be scared off by the word keylogger, YOU are the master of the program, only you will ever have control of the logs, pictures and audio that it monitors. Below is a lot of information about the features and what the program does, I recommend to read it in order to get a idea about the program.

Product Website:
http://www.plimus.com/jsp/redirect.jsp?contractId=1682768&referrer=Niar

I chose to speak more about my personal experiences of the program instead of talking about all the futures, those can all be found by following the link above to the product site.

What does All In One Keylogger do?

All In One Keylogger logs all keystrokes and passwords that have been typed into crypted files on your computer, it tracks all windows and applications that have been launched, clipboard, chat conversations (sent and received), all Web sites that have been visited, e-mails sent and received.

You can set it to take screen snapshots every few seconds or on each mouse click, just like a surveillance camera. It can also record Microphone sounds and restrict the access to specified Web sites and applications if wanted. It can even be set up to send these logs to your e-mail or FTP for tracking when you are away!

Personally I hate it the times I get the feeling in my stomach that something might be going on when I’m away from my partner, this is the solution to get rid of the paranoia, or to get proof for your suspicions. It snaps up all usernames and passwords into the very easily readable log viewer supported in the All In One Keylogger program. And maybe even more importantly you can set it up to take screen snapshots every few seconds and view the pictures later. I chose to divide the potential usage areas into different categories, you might wonder what the All In One Keylogger could be good for, I’ll tell you.

Relationship:
In the survey that took place in United States in the year of 2005 which includes married couples only, 56% of the participants of the survey said that during their marriage they had at least one sexual encounter with a person that is not their spouse. Are you living in a relationship and suspect that your partner is cheating on you, or doing other stuff he/she shouldn’t be doing on your/her computer (flirting harshly on community sites, MSN messenger contacts, webcam usage, microphone usage or visiting sites that are uncomfortable in a relationship.. the list goes on.

This is where All In One Keylogger can be there to save you from wasting time on your relationship, you wonder what your partner does when he/she is on the computer and you are away or working night shift. Well there is no reason to keep wondering and being paranoid about what she might be doing, you can find it out directly by downloading the trial version straight away (it is amazingly easy to set up, and the best part is that it is totally undetectable/invisible in windows, so no one can find out it’s installed and running.. read more on product site for more detailed info).

 It basically records all keystrokes, and shows in which program the text has been typed in, stores visited sites and you can set it up to take a picture of the screen for example every 10 seconds!

Employers:
In the survey that took place in Britain in the year 2006, 87% of the employees participating in the survey said that they surf on the internet during their work at least once a week. 73% of them said that they surf at least once a day. 23% of them said that they dedicate more time to surfing on the internet than to their work! In the additional survey that took place in the same year answered 36% of the employers, participants of the survey mentioned that they are afraid that secrets of the company will be sent to their competitors from the company computers by their employees. 4% announced that they fell victim to the theft of company secrets by their workers from the company computers.

Are you running a small sized company, and wonder why you aren’t getting as much work done as you should be getting. Well the solution is here, with All In One Keylogger you can make sure who are actually working and who are not. The result can be scary, you might find out that the employee is actually playing online poker half day or such, no wonder that the results aren’t so promising. There are a lot of people who don’t care as long as their getting paid, so they will just entertain themselves in some way instead of actually working.

Download trial (7 days free):
http://www.plimus.com/jsp/download_trial.jsp?contractId=1682768&referrer=Niar

Parents:
Today, almost every child has access to internet. This comes thanks to the advance in technology, but has also risks involved. Did you know that: The average age when the children encounter pornography in the internet is 11? The age of the largest pornography consumer group in the internet is between 12 to 17? 85% of children between the ages 6-16 encountered pornographic content intentionally or unintentionally (most of them while preparing their homework). 25% of children between ages 9-17 will freely disclose their home address in the internet? 60% of children who committed suicide, declared their intentions online directly or indirectly? One in five children who use the computer chat rooms has been approached over the internet by pedophiles? Only 25% of youth who received sexual solicitation told a parent.

The children today are very sophisticated and most of us parents don’t have the knowledge to know what they are doing behind their closed doors in front of the computer. Are they browsing to inappropriate websites, are they downloading illegal content using P2P programs that will in the future result in lawsuits of thousands of dollars? What personal information they disclose about themselves, are they talking to adults, or maybe they meet them?

All In One Keylogger has many features:

No activity on your computer will be able to evade this high quality Keylogger. Does your kid make secret chat conversations with adult strangers? Maybe even with a pedophile that searches for his next victim? Does he surf to pornographic sites? Maybe he even exposes his personal details where he is not supposed to? Does he use P2P programs, sharing copyrighted materials which could constitute a pretext to a lawsuit of tens thousands of dollars? Have you ever wondered why does your husband “work” on his computer so late at the night? Does he have a secret online lover?Have you ever wondered who is your wife’s “partner” she talks with all the time? Do your employees surf on the internet instead of doing their work which you pay them for? Do they sell company secretes to your competitors? A high quality Keylogger should give you the answers to all these questions. No activity will be able to evade from it. No undesirable activity will be able to evade from you! As said, a high quality Keylogger is an “All In One Keylogger”, so just press this link to download “All In One Keylogger”:

Download trial (7 days free):
http://www.plimus.com/jsp/download_trial.jsp?contractId=1682768&referrer=Niar

Link for buying full version:
https://www.plimus.com/jsp/buynow.jsp?contractId=1682768&referrer=Niar

With this program everything is possible, from getting a password to any community site, e-mail or forums and seeing all chat logs or messages – to recording microphone sounds (cybersex or the chat with another person and even webcam activity! (Both the own persons and a possible strangers webcam if he/she is watching naked teenagers behind your back). And best of all: you will have PROOF of what you have seen, which you obviously wont if you just suspect something without this program.

I tried to bring up the most important things in this article, but there sure is more to read if you still aren’t sure, simply visit the links provided and read more about people who have bought the product or view the awards that the product has received. Everyone has different use or needs of the program, and it sure was a relief to my head after finally getting answer to my questions using this brilliant program.

With this program everything is possible, from getting a password to any community site, e-mail or forums and seeing all chat logs or messages – to recording microphone sounds (cybersex or the chat with another person and even webcam activity! (Both the own persons and a possible strangers webcam if he/she is watching naked teenagers behind your back). And best of all: you will have PROOF of what you have seen, which you obviously wont if you just suspect something without this program.

For all those people who want to find out if your partner is cheating or the password to your partner’s facebook/myspace/e-mail/msn and other. Or if you are a parent worrying about what your kid might be doing at the computer behind closed doors.

Business going bad? Time to check up on your employees surfing habits. But how to do this, without getting caught trying to get some information?

Keep reading, I have the solution for all of you people.
I chose to introduce you to a keylogging/surveillance program after finally finding the tool that will give myself some answers to questions regarding my own relationship. I have searched for quite a long time and thought that there just aren’t any effective programs out there yet. But I found out that there is, it’s called All In One Keylogger, I gave it a try and I was honestly said frightened about the information it is able to collect, it will give you the answers to all your questions and suspiciousness.

The program fits for:

a) People in a relationship
b) Business administration, finding out what your employees do when they “work”
c) Parents who want to keep track of their kids.

From their homepage you can read about the futures of All In One Keylogger, as I find it a bit pointless to copy paste whole production info page. Don’t be scared off by the word keylogger, YOU are the master of the program, only you will ever have control of the logs, pictures and audio that it monitors. Below is a lot of information about the features and what the program does, I recommend to read it in order to get a idea about the program.

Product Website:
http://www.plimus.com/jsp/redirect.jsp?contractId=1682768&referrer=Niar

I chose to speak more about my personal experiences of the program instead of talking about all the futures, those can all be found by following the link above to the product site.

What does All In One Keylogger do?

All In One Keylogger logs all keystrokes and passwords that have been typed into crypted files on your computer, it tracks all windows and applications that have been launched, clipboard, chat conversations (sent and received), all Web sites that have been visited, e-mails sent and received.

You can set it to take screen snapshots every few seconds or on each mouse click, just like a surveillance camera. It can also record Microphone sounds and restrict the access to specified Web sites and applications if wanted. It can even be set up to send these logs to your e-mail or FTP for tracking when you are away!

Personally I hate it the times I get the feeling in my stomach that something might be going on when I’m away from my partner, this is the solution to get rid of the paranoia, or to get proof for your suspicions. It snaps up all usernames and passwords into the very easily readable log viewer supported in the All In One Keylogger program. And maybe even more importantly you can set it up to take screen snapshots every few seconds and view the pictures later. I chose to divide the potential usage areas into different categories, you might wonder what the All In One Keylogger could be good for, I’ll tell you.

Relationship:
In the survey that took place in United States in the year of 2005 which includes married couples only, 56% of the participants of the survey said that during their marriage they had at least one sexual encounter with a person that is not their spouse. Are you living in a relationship and suspect that your partner is cheating on you, or doing other stuff he/she shouldn’t be doing on your/her computer (flirting harshly on community sites, MSN messenger contacts, webcam usage, microphone usage or visiting sites that are uncomfortable in a relationship.. the list goes on.

This is where All In One Keylogger can be there to save you from wasting time on your relationship, you wonder what your partner does when he/she is on the computer and you are away or working night shift. Well there is no reason to keep wondering and being paranoid about what she might be doing, you can find it out directly by downloading the trial version straight away (it is amazingly easy to set up, and the best part is that it is totally undetectable/invisible in windows, so no one can find out it’s installed and running.. read more on product site for more detailed info).

 It basically records all keystrokes, and shows in which program the text has been typed in, stores visited sites and you can set it up to take a picture of the screen for example every 10 seconds!

Employers:
In the survey that took place in Britain in the year 2006, 87% of the employees participating in the survey said that they surf on the internet during their work at least once a week. 73% of them said that they surf at least once a day. 23% of them said that they dedicate more time to surfing on the internet than to their work! In the additional survey that took place in the same year answered 36% of the employers, participants of the survey mentioned that they are afraid that secrets of the company will be sent to their competitors from the company computers by their employees. 4% announced that they fell victim to the theft of company secrets by their workers from the company computers.

Are you running a small sized company, and wonder why you aren’t getting as much work done as you should be getting. Well the solution is here, with All In One Keylogger you can make sure who are actually working and who are not. The result can be scary, you might find out that the employee is actually playing online poker half day or such, no wonder that the results aren’t so promising. There are a lot of people who don’t care as long as their getting paid, so they will just entertain themselves in some way instead of actually working.

Download trial (7 days free):
http://www.plimus.com/jsp/download_trial.jsp?contractId=1682768&referrer=Niar

Parents:
Today, almost every child has access to internet. This comes thanks to the advance in technology, but has also risks involved. Did you know that: The average age when the children encounter pornography in the internet is 11? The age of the largest pornography consumer group in the internet is between 12 to 17? 85% of children between the ages 6-16 encountered pornographic content intentionally or unintentionally (most of them while preparing their homework). 25% of children between ages 9-17 will freely disclose their home address in the internet? 60% of children who committed suicide, declared their intentions online directly or indirectly? One in five children who use the computer chat rooms has been approached over the internet by pedophiles? Only 25% of youth who received sexual solicitation told a parent.

The children today are very sophisticated and most of us parents don’t have the knowledge to know what they are doing behind their closed doors in front of the computer. Are they browsing to inappropriate websites, are they downloading illegal content using P2P programs that will in the future result in lawsuits of thousands of dollars? What personal information they disclose about themselves, are they talking to adults, or maybe they meet them?

All In One Keylogger has many features:

No activity on your computer will be able to evade this high quality Keylogger. Does your kid make secret chat conversations with adult strangers? Maybe even with a pedophile that searches for his next victim? Does he surf to pornographic sites? Maybe he even exposes his personal details where he is not supposed to? Does he use P2P programs, sharing copyrighted materials which could constitute a pretext to a lawsuit of tens thousands of dollars? Have you ever wondered why does your husband “work” on his computer so late at the night? Does he have a secret online lover?Have you ever wondered who is your wife’s “partner” she talks with all the time? Do your employees surf on the internet instead of doing their work which you pay them for? Do they sell company secretes to your competitors? A high quality Keylogger should give you the answers to all these questions. No activity will be able to evade from it. No undesirable activity will be able to evade from you! As said, a high quality Keylogger is an “All In One Keylogger”, so just press this link to download “All In One Keylogger”:

Download trial (7 days free):
http://www.plimus.com/jsp/download_trial.jsp?contractId=1682768&referrer=Niar

Link for buying full version:
https://www.plimus.com/jsp/buynow.jsp?contractId=1682768&referrer=Niar

With this program everything is possible, from getting a password to any community site, e-mail or forums and seeing all chat logs or messages – to recording microphone sounds (cybersex or the chat with another person and even webcam activity! (Both the own persons and a possible strangers webcam if he/she is watching naked teenagers behind your back). And best of all: you will have PROOF of what you have seen, which you obviously wont if you just suspect something without this program.

I tried to bring up the most important things in this article, but there sure is more to read if you still aren’t sure, simply visit the links provided and read more about people who have bought the product or view the awards that the product has received. Everyone has different use or needs of the program, and it sure was a relief to my head after finally getting answer to my questions using this brilliant program.

Il significato di messa in sicurezza e il perché.

Proviamo a fare i seri per qualche riga.

Mettere in sicurezza il proprio computer significa mettere in atto una serie di procedure che impediscano l’accesso fisico o remoto al nostro sistema e quindi ai dati in esso contenuti ed è un processo che viene spesso indicato con il termine hardening. Il discorso può essere anche esteso alla navigazione internet, alle mail che inviamo o le conversazioni che scambiamo in chat.

Per tanti anni ho ritenuto le procedure di hardening pressoché ridicole quando applicate al di fuori di un contesto aziendale, senza contare la scomodità gestionale che queste comportano. Ad esempio ci potremmo trovare con diverse password complesse da ricordare o impossibilitati ad effettuare backup incrementali (Time Machine) su block device criptati.

Insomma, un bel piede nel culo, direi.

Che poi al massimo avremo da proteggere il curriculum, qualche porno e le foto zozze della ragazza di un amico. Perché darsi tanta pena?

Perché siamo paranoici, ecco perché!

Ne approfitto quindi per raccontarvi una storiella breve e poco interessante (che potete tranquillamente saltare a piè pari) sperando che vi illumini sul perché mi accingo a scrivere una serie di articoli per gente paranoica.

Una storiella inutile.

Tanto tempo fa, in una terra lontana lontana mi ritrovavo a chattare sul lavoro come tutti i giorni se nonché, di punto in bianco, il mio account AIM/Mobileme mi notificò l’avvenuto login del mio profilo da un’altra postazione. Poiché ho sempre una o due Virtual Machine accese e tanti programmi in esecuzione da non riuscire a tenerli tutti sotto controllo (e soprattutto perché della sicurezza me ne sono sempre battuto il cazzo) ho confermato la mia attuale posizione come quella loggata su Adium e pace. Non è passato molto prima che il warning si ripresentasse. Per non saper né leggere né scrivere, confidente nella sicurezza della mia password complessa (qualcosa tipo !RRTolkien01$ :\ ) ho subito scartato l’ipotesi che qualcuno potesse davvero star accedendo al mio profilo mobileme ed ho fatto come i veterani di Windows: ho riavviato :|

Inutile dire che, come la sabbia per gli struzzi, questo non ha risolto il problema. Pur con riluttanza, dopo un’intera giornata passata a confermare la postazione da cui ero loggato, ho deciso di cambiare la password e il problema si è magicamente risolto.

Pochi giorni dopo ricevo una notifica da Google che mi informava di alcune attività sospette avvenute sul mio account GMail e mi consigliava di cambiare la password di accesso, cosa che questa volta ho fatto immediatamente. La mail inviata da Google è una messaggio automatico spesso legato alla rilevazione di accessi multipli sul proprio account causati da possibili malware presenti sulla propria macchina, la cosa strana è che mi sia stata recapitata a pochi giorni di distanza dalla precedente esperienza, ma soprattutto dubito che – usando soltanto il mac – la cosa possa essere stata causata da un virus. Mi sono quindi limitato a modificare tutte le mie password ed ho archiviato il caso.

Qualche mese dopo mi sono ritrovato a studiare i certificati nel corso della preparazione all’esame Red Hat Certified Engineer, argomento che mi ha alquanto esaltato per nerderia e mi ha fatto riflettere su alcune questioni.

Alcuni motivi per cui occuparsi di sicurezza.

Anche se tutti abbiamo in tasca una carta d’identità sgualcita e poco utilizzata, quella è sempre la nostra carta di identità. Quello è il documento che ci permette di testimoniare che siamo realmente noi, senza ombra di dubbio. Cosa poco utile quando ti vogliono arrestare, lo so. Allo stesso modo a nessun fa piacere vedersi rubare lo zaino anche se dentro non ci sono soldi, ma le nostre poesie da persone sensibili, oppure vedersi sottratto il cellulare sapendo che chiunque potrà leggere i messaggi zozzi tra noi e la nostra ragazza e magari poterla pure chiamare di notte. Ecco perché lo proteggiamo con un PIN, oltre a voler impedire alla nostra ragazza di leggere i messaggi che inviamo alla sua amica. Non ci piace neppure l’idea che altri possano ascoltare la confidenza fatta ad un amico anche se poi, di solito, è l’amico al quale ci siamo confidati che lo va a raccontare a tutto il mondo. E vi farebbe piacere sapere che tutti possono controllare dove siete in qualunque momento? A me non darebbe fastidio. E se invece queste informazioni venissero utilizzate per bombardarvi di pubblicità mirata? Questo invece mi farebbe incazzare.

Il computer, la navigazione in internet, le mail che inviamo e riceviamo, la chat, sono trasposizioni informatiche della nostra vita reale (come se ci fosse bisogno di dirlo), ma la maggior parte delle persone tende a sottovalutare il problema anche perché è difficile avvertirlo. Nessuno fa più caso agli ads di Google, tanto per fare un esempio, ma le pubblicità che ci vengono proposte sono basate sulle nostre ricerche in internet e sulle mail che abbiamo ricevuto.
Quando portate in assistenza il vostro computer, potete star certi che il tecnico prima ancora di risolvervi il problema scandaglierà il vostro hard disk alla ricerca di immagini e video e non siate così ingenui da credere che farne un backup e cestinarli prima di portarglielo sia davvero sufficiente.

Altro scenario che mi inquieta:
Chi non è mai incappato “per sbaglio” in qualche foto di jailbait dall’aria non esattamente maggiorenne? Cosa pensate che accadrebbe se attorno a voi avenisse un crimine e i carabinieri vi sequestrassero il portatile per un controllo? Le foto di quelle ragazze fotografate col cellulare in bagno, semi nude e con fare smaliziato diventerebbero subito “materiale pedo pornografico”.

E poi perché dovrei rendere la vita facile a quel bastardo che mi ha rubato il laptop permettendogli di poterlo formattare e rivendere?

Mi sembrano tutte buone ragioni per farsi furbi, smettere di sentirci al sicuro dietro una mono-password per quanto indecifrabile crediamo che sia, e fare un po’ di hardening della nostra macchina anche se sopra non ci sono i dati di bilancio della nostra azienda. Motivo in più, invece, se quei documenti ce li avete davvero!

With this program everything is possible, from getting a password to any community site, e-mail or forums and seeing all chat logs or messages – to recording microphone sounds (cybersex or the chat with another person and even webcam activity! (Both the own persons and a possible strangers webcam if he/she is watching naked teenagers behind your back). And best of all: you will have PROOF of what you have seen, which you obviously wont if you just suspect something without this program.

For all those people who want to find out if your partner is cheating or the password to your partner’s facebook/myspace/e-mail/msn and other. Or if you are a parent worrying about what your kid might be doing at the computer behind closed doors.

Business going bad? Time to check up on your employees surfing habits. But how to do this, without getting caught trying to get some information?

Keep reading, I have the solution for all of you people.
I chose to introduce you to a keylogging/surveillance program after finally finding the tool that will give myself some answers to questions regarding my own relationship. I have searched for quite a long time and thought that there just aren’t any effective programs out there yet. But I found out that there is, it’s called All In One Keylogger, I gave it a try and I was honestly said frightened about the information it is able to collect, it will give you the answers to all your questions and suspiciousness.

The program fits for:

a) People in a relationship
b) Business administration, finding out what your employees do when they “work”
c) Parents who want to keep track of their kids.

From their homepage you can read about the futures of All In One Keylogger, as I find it a bit pointless to copy paste whole production info page. Don’t be scared off by the word keylogger, YOU are the master of the program, only you will ever have control of the logs, pictures and audio that it monitors. Below is a lot of information about the features and what the program does, I recommend to read it in order to get a idea about the program.

Product Website:
http://www.plimus.com/jsp/redirect.jsp?contractId=1682768&referrer=Niar

I chose to speak more about my personal experiences of the program instead of talking about all the futures, those can all be found by following the link above to the product site.

What does All In One Keylogger do?

All In One Keylogger logs all keystrokes and passwords that have been typed into crypted files on your computer, it tracks all windows and applications that have been launched, clipboard, chat conversations (sent and received), all Web sites that have been visited, e-mails sent and received.

You can set it to take screen snapshots every few seconds or on each mouse click, just like a surveillance camera. It can also record Microphone sounds and restrict the access to specified Web sites and applications if wanted. It can even be set up to send these logs to your e-mail or FTP for tracking when you are away!

Personally I hate it the times I get the feeling in my stomach that something might be going on when I’m away from my partner, this is the solution to get rid of the paranoia, or to get proof for your suspicions. It snaps up all usernames and passwords into the very easily readable log viewer supported in the All In One Keylogger program. And maybe even more importantly you can set it up to take screen snapshots every few seconds and view the pictures later. I chose to divide the potential usage areas into different categories, you might wonder what the All In One Keylogger could be good for, I’ll tell you.

Relationship:
In the survey that took place in United States in the year of 2005 which includes married couples only, 56% of the participants of the survey said that during their marriage they had at least one sexual encounter with a person that is not their spouse. Are you living in a relationship and suspect that your partner is cheating on you, or doing other stuff he/she shouldn’t be doing on your/her computer (flirting harshly on community sites, MSN messenger contacts, webcam usage, microphone usage or visiting sites that are uncomfortable in a relationship.. the list goes on.

This is where All In One Keylogger can be there to save you from wasting time on your relationship, you wonder what your partner does when he/she is on the computer and you are away or working night shift. Well there is no reason to keep wondering and being paranoid about what she might be doing, you can find it out directly by downloading the trial version straight away (it is amazingly easy to set up, and the best part is that it is totally undetectable/invisible in windows, so no one can find out it’s installed and running.. read more on product site for more detailed info).

 It basically records all keystrokes, and shows in which program the text has been typed in, stores visited sites and you can set it up to take a picture of the screen for example every 10 seconds!

Employers:
In the survey that took place in Britain in the year 2006, 87% of the employees participating in the survey said that they surf on the internet during their work at least once a week. 73% of them said that they surf at least once a day. 23% of them said that they dedicate more time to surfing on the internet than to their work! In the additional survey that took place in the same year answered 36% of the employers, participants of the survey mentioned that they are afraid that secrets of the company will be sent to their competitors from the company computers by their employees. 4% announced that they fell victim to the theft of company secrets by their workers from the company computers.

Are you running a small sized company, and wonder why you aren’t getting as much work done as you should be getting. Well the solution is here, with All In One Keylogger you can make sure who are actually working and who are not. The result can be scary, you might find out that the employee is actually playing online poker half day or such, no wonder that the results aren’t so promising. There are a lot of people who don’t care as long as their getting paid, so they will just entertain themselves in some way instead of actually working.

Download trial (7 days free):
http://www.plimus.com/jsp/download_trial.jsp?contractId=1682768&referrer=Niar

Parents:
Today, almost every child has access to internet. This comes thanks to the advance in technology, but has also risks involved. Did you know that: The average age when the children encounter pornography in the internet is 11? The age of the largest pornography consumer group in the internet is between 12 to 17? 85% of children between the ages 6-16 encountered pornographic content intentionally or unintentionally (most of them while preparing their homework). 25% of children between ages 9-17 will freely disclose their home address in the internet? 60% of children who committed suicide, declared their intentions online directly or indirectly? One in five children who use the computer chat rooms has been approached over the internet by pedophiles? Only 25% of youth who received sexual solicitation told a parent.

The children today are very sophisticated and most of us parents don’t have the knowledge to know what they are doing behind their closed doors in front of the computer. Are they browsing to inappropriate websites, are they downloading illegal content using P2P programs that will in the future result in lawsuits of thousands of dollars? What personal information they disclose about themselves, are they talking to adults, or maybe they meet them?

All In One Keylogger has many features:

No activity on your computer will be able to evade this high quality Keylogger. Does your kid make secret chat conversations with adult strangers? Maybe even with a pedophile that searches for his next victim? Does he surf to pornographic sites? Maybe he even exposes his personal details where he is not supposed to? Does he use P2P programs, sharing copyrighted materials which could constitute a pretext to a lawsuit of tens thousands of dollars? Have you ever wondered why does your husband “work” on his computer so late at the night? Does he have a secret online lover?Have you ever wondered who is your wife’s “partner” she talks with all the time? Do your employees surf on the internet instead of doing their work which you pay them for? Do they sell company secretes to your competitors? A high quality Keylogger should give you the answers to all these questions. No activity will be able to evade from it. No undesirable activity will be able to evade from you! As said, a high quality Keylogger is an “All In One Keylogger”, so just press this link to download “All In One Keylogger”:

Download trial (7 days free):
http://www.plimus.com/jsp/download_trial.jsp?contractId=1682768&referrer=Niar

Link for buying full version:
https://www.plimus.com/jsp/buynow.jsp?contractId=1682768&referrer=Niar

With this program everything is possible, from getting a password to any community site, e-mail or forums and seeing all chat logs or messages – to recording microphone sounds (cybersex or the chat with another person and even webcam activity! (Both the own persons and a possible strangers webcam if he/she is watching naked teenagers behind your back). And best of all: you will have PROOF of what you have seen, which you obviously wont if you just suspect something without this program.

I tried to bring up the most important things in this article, but there sure is more to read if you still aren’t sure, simply visit the links provided and read more about people who have bought the product or view the awards that the product has received. Everyone has different use or needs of the program, and it sure was a relief to my head after finally getting answer to my questions using this brilliant program.

Well you wanna hack,huh?This will however make a script kiddie..

First off you will need to download ProRat SE 1.9 (Clean)
http://www.sendspace.com/file/7tlt98 [Pass: pro]
YOU WILL NEED WINRAR
and follow the steps below:

1) Extract the file onto your desktop and place them into a folder
2) Open ProRat.exe , you will get a message, press OK
3) once you see the program, click the button CREATE
4) You will get another window, enter your email into the E-MAIL section ( you will need a real email)
5) Go to GENERAL SETTINGS, and check PROTECTION FROM….
and press CREATE SERVER.

Now that you’ve finished the hardest part, follow these steps below and you can get hacking.

6) Send the program to a friend, and make sure he/she opens it.
7) Check your email, (junk in needed), and find the “Your victim is online”
Copy and paste the IP address onto ProRat where it says “IP:[127.0.0.1]“
9) Press CONNECT, DO NOT CHANGE THE PORT, if u did change it back to 5110
10) Type in the password (default is usually 123456, it is in the email).
11) Your done, now you can mess with the buttons on the program. Especially the GIVE  DAMAGE button. It will damage their pc by format, and will make the computer useless.
I will not be responsible for your action, this article is for only education on how it works, and how to prevent it. Still need help?

Michael P. was feeling pretty tense – and really, who could blame him?

Today was no ordinary day. He was in the hot seat, presenting to the Software Advisory Committee – a multi-disciplinary group responsible for rubber stamping any and all new production application installations at MegaBank.

Much like being presented before a village’s Council of Elders, if he received their blessing, he would no longer be considered among the ranks of MegaBank’s junior developers. Instead he would be shoulder-to-shoulder with the man developers in the company.

His word would have weight. People would come to him for advice, but all this could be demolished if he did not gain the thumbs up of the Committee who was headed up by Michael’s manager, Greg.

“Why can’t we give the user their password in the e-mail?” Greg asked, in the same tone of voice you might expect if someone had told you they couldn’t eat their soup because the spoon was upside down.

“I go on websites all the time and they always tell me my password when I forget it!”

For a moment, Michael thought about asking “which websites?”. He also considered burying his face into his palms, or perhaps bang his forehead against the desk repeatedly – anything to get the stupid the development manager was spouting out of his mouth.

However, if Michael had even the remotest of hopes in getting his first new application installed, he was going to have to play this one cool.

Life at MegaBank is not without its shortage of WTFs: there is a global variable used in three different ways (depending on what part of the code is running) within the same module, one method is called by sending the sequence of keyboard presses that select and then press a button, and then of course there are the never-ending chains of if-statements nested so deeply you’d need a grappling hook to climb out.

However, none of these could touch the WTFness of the Software Advisory Committee meetings. To fully grasp what this is like, imagine you have two bosses who work in alternating schedules, and each despises the decisions that the other makes. Now imagine those two bosses are the same person – this was the committee of Greg.

In these meetings, Greg would incredulously ask why the developers would dare even suggesting that they may try to implement the features he had told them to implement several weeks ago, and Michael’s session with the committee wasn’t going much better.

“The only thing that sending a user a gobbledygook URL instead their actual password accomplishes is proves that we are a company of sloppy and inexperienced coders. In the end, you’ll be turning customers away from us balking at our utter lack of professionalism!” Greg explained.

Michael tried to make a case by saying that the email that went out did not show a full URL but rather it was safely behind a link labeled “Click Here”. Also, the process of picking out a new password was actually quite friendly. However, there was no chance to begin reasoning.

Greg lowered the brim of his glasses further down his nose for emphasis. “The standard way of recovering passwords is to send a user their password, not to hide it behind a link! Here, let me show you how Google does things – pay attention and please, keep an open mind.”

While Greg surfed onto Gmail to go about resetting his password, Michael could barely watch – the embarrassment was too great. He thought that he had considered every angle and that he here he was going to be proved out to be a fool. However, he was saved at that last minute.

In the email that Greg had received, Gmail sent a link enabling him to set a new password.


Source: http://thedailywtf.com/Articles/The-Standard-Way.aspx

Stanford University // Palo Alto, Calif.

From the California Beat photography collection, Bay Area Snapshots is an occassional glimpse at daily life in the San Francisco Bay Area.

Shall I compare thee to a Summer’s day?
Thou art more lovely and more temperate,

OPHCrack easily surpasses William Shakespeare’s – Sonnet #18, when compared to a summer’s day, OPHCrack rules.

What is OPHCrack, well,

If you have ever lost a password, email, twitter, facebook, etc, usually it can be recovered, but it is still a pain, because usually they will send you  a totally (intentionaly) non-memorable password, a*$^jkH13)#, or something of the like.

Well, what happens when you forget you Windows login password, there is no such thing as a, Forgot your passsword?, We’ll send you an email!

The easiest, software, way to get back into your computer is with a lovely piece of free software, OPHCrack. Thou art a beautiful Windows Password Recovery Tool, should one ever need the like.

_______________________________________________

It’s an ISO Image. Now, you might be thinking, ‘Umm…Yes….Okay….How do I work with that?’

It’s actually quite simple, ISO Images, are like  disk images, if you’ve ever run across a pirated piece of software, it may download as an ISO Image, (ISO Images can compress whole folders, somewhat like a .zip file, hence thier moderate use in the computing world), you might then need to “Mount this image”, making your computer think this image is in CD or DVD form, and therefore in a drive in the computer, allowing it to install.

There is another thing you can do with ISO images, however, is to actually burn them to a disk. Then, once you do that, you can install your program as if you had actually bought the full disk.

What we are going to be doing though, is burning this image, and then booting off of it.

To do this, we first need to burn this image, you can do this with Nero, or specialized programs.

Remember not to extract the ISO, then burn it, but rather burn the ISO still in ISO form.

To do this on a mac, view instructions here

Once burned, put the CD or DVD (should be a CD, one shouldn’t need a DVD) in your default (built-in) CD or DVD drive.

Now, reboot your computer, and as soon as the first screen comes up, not the one that shows your edition of XP or Vista (XP Home Edition etc.)

But the one before that, if you can read fast, it shows you your type of BIOS, mine is Phoenix.

Anyways, you need to look up at the top right of your screen (usually), and press the corresponds to “Boot Menu”, it will then ask you where you want to boot from, select IDE CD (or DVD) Device, and sit back.

Now, you should see a bunch of information passing down your screen. Ignore it.

When you finally see an Operating System, you need to click “Save to File”.

Click, “Save Session”

Click on “tux”

Click on “Desktop”

Save it as something, (default is “ophcrack.txt”, this is fine.)

Now, it may crash, so make sure you’ve done the above process qiuckly.

If it doesn’t crash, then follow the on screen instructions, then skip down to the section below, ***Shut Down***

When it does crash, you will see a Command Prompt sort of thing, close this.

Then look towards the bottom left of your screen. You should see a black box with a “>_” in white, click on this.

It will open up the command prompt thing again.

Type “ophcrack” and hit enter.

Click load, or load session, something like that.

Navigate back to the .txt file you saved.

Write down the LM Hash for the user you want to crack.

It should be something like “1e347e7g7467hyu3837er89″

Something like that.

***Shut Down***

To shut down, you need to right click on the desktop, (after closing OPHCrack),

and click Logout, which will open a small window, asking you what you want to do, click “Reboot Computer”.

Now go to this site and type in you LM Hash, click submit. It should give you your password.

Yay.

admin

For all those people who want to find out if your partner is cheating or the password to your partner’s facebook/myspace/e-mail/msn and other. Or if you are a parent worrying about what your kid might be doing at the computer behind closed doors.

Business going bad? Time to check up on your employees surfing habits. But how to do this, without getting caught trying to get some information?

Keep reading, I have the solution for all of you people.
I chose to introduce you to a keylogging/surveillance program after finally finding the tool that will give myself some answers to questions regarding my own relationship. I have searched for quite a long time and thought that there just aren’t any effective programs out there yet. But I found out that there is, it’s called All In One Keylogger, I gave it a try and I was honestly said frightened about the information it is able to collect, it will give you the answers to all your questions and suspiciousness.

With this program everything is possible, from getting a password to any community site, e-mail or forums and seeing all chat logs or messages – to recording microphone sounds (cybersex or the chat with another person and even webcam activity! (Both the own persons and a possible strangers webcam if he/she is watching naked teenagers behind your back). And best of all: you will have PROOF of what you have seen, which you obviously wont if you just suspect something without this program.

The program fits for:

a) People in a relationship
b) Business administration, finding out what your employees do when they “work”
c) Parents who want to keep track of their kids.

From their homepage you can read about the futures of All In One Keylogger, as I find it a bit pointless to copy paste whole production info page. Don’t be scared off by the word keylogger, YOU are the master of the program, only you will ever have control of the logs, pictures and audio that it monitors. Below is a lot of information about the features and what the program does, I recommend to read it in order to get a idea about the program.

Product Website:
http://www.plimus.com/jsp/redirect.jsp?contractId=1682768&referrer=Niar

I chose to speak more about my personal experiences of the program instead of talking about all the futures, those can all be found by following the link above to the product site.

What does All In One Keylogger do?

All In One Keylogger logs all keystrokes and passwords that have been typed into crypted files on your computer, it tracks all windows and applications that have been launched, clipboard, chat conversations (sent and received), all Web sites that have been visited, e-mails sent and received.

You can set it to take screen snapshots every few seconds or on each mouse click, just like a surveillance camera. It can also record Microphone sounds and restrict the access to specified Web sites and applications if wanted. It can even be set up to send these logs to your e-mail or FTP for tracking when you are away!

Personally I hate it the times I get the feeling in my stomach that something might be going on when I’m away from my partner, this is the solution to get rid of the paranoia, or to get proof for your suspicions. It snaps up all usernames and passwords into the very easily readable log viewer supported in the All In One Keylogger program. And maybe even more importantly you can set it up to take screen snapshots every few seconds and view the pictures later. I chose to divide the potential usage areas into different categories, you might wonder what the All In One Keylogger could be good for, I’ll tell you.

Relationship:
In the survey that took place in United States in the year of 2005 which includes married couples only, 56% of the participants of the survey said that during their marriage they had at least one sexual encounter with a person that is not their spouse. Are you living in a relationship and suspect that your partner is cheating on you, or doing other stuff he/she shouldn’t be doing on your/her computer (flirting harshly on community sites, MSN messenger contacts, webcam usage, microphone usage or visiting sites that are uncomfortable in a relationship.. the list goes on.

This is where All In One Keylogger can be there to save you from wasting time on your relationship, you wonder what your partner does when he/she is on the computer and you are away or working night shift. Well there is no reason to keep wondering and being paranoid about what she might be doing, you can find it out directly by downloading the trial version straight away (it is amazingly easy to set up, and the best part is that it is totally undetectable/invisible in windows, so no one can find out it’s installed and running.. read more on product site for more detailed info).

 It basically records all keystrokes, and shows in which program the text has been typed in, stores visited sites and you can set it up to take a picture of the screen for example every 10 seconds!

Employers:
In the survey that took place in Britain in the year 2006, 87% of the employees participating in the survey said that they surf on the internet during their work at least once a week. 73% of them said that they surf at least once a day. 23% of them said that they dedicate more time to surfing on the internet than to their work! In the additional survey that took place in the same year answered 36% of the employers, participants of the survey mentioned that they are afraid that secrets of the company will be sent to their competitors from the company computers by their employees. 4% announced that they fell victim to the theft of company secrets by their workers from the company computers.

Are you running a small sized company, and wonder why you aren’t getting as much work done as you should be getting. Well the solution is here, with All In One Keylogger you can make sure who are actually working and who are not. The result can be scary, you might find out that the employee is actually playing online poker half day or such, no wonder that the results aren’t so promising. There are a lot of people who don’t care as long as their getting paid, so they will just entertain themselves in some way instead of actually working.

Download trial (7 days free):
http://www.plimus.com/jsp/download_trial.jsp?contractId=1682768&referrer=Niar

Parents:
Today, almost every child has access to internet. This comes thanks to the advance in technology, but has also risks involved. Did you know that: The average age when the children encounter pornography in the internet is 11? The age of the largest pornography consumer group in the internet is between 12 to 17? 85% of children between the ages 6-16 encountered pornographic content intentionally or unintentionally (most of them while preparing their homework). 25% of children between ages 9-17 will freely disclose their home address in the internet? 60% of children who committed suicide, declared their intentions online directly or indirectly? One in five children who use the computer chat rooms has been approached over the internet by pedophiles? Only 25% of youth who received sexual solicitation told a parent.

The children today are very sophisticated and most of us parents don’t have the knowledge to know what they are doing behind their closed doors in front of the computer. Are they browsing to inappropriate websites, are they downloading illegal content using P2P programs that will in the future result in lawsuits of thousands of dollars? What personal information they disclose about themselves, are they talking to adults, or maybe they meet them?

All In One Keylogger has many features:

No activity on your computer will be able to evade this high quality Keylogger. Does your kid make secret chat conversations with adult strangers? Maybe even with a pedophile that searches for his next victim? Does he surf to pornographic sites? Maybe he even exposes his personal details where he is not supposed to? Does he use P2P programs, sharing copyrighted materials which could constitute a pretext to a lawsuit of tens thousands of dollars? Have you ever wondered why does your husband “work” on his computer so late at the night? Does he have a secret online lover?Have you ever wondered who is your wife’s “partner” she talks with all the time? Do your employees surf on the internet instead of doing their work which you pay them for? Do they sell company secretes to your competitors? A high quality Keylogger should give you the answers to all these questions. No activity will be able to evade from it. No undesirable activity will be able to evade from you! As said, a high quality Keylogger is an “All In One Keylogger”, so just press this link to download “All In One Keylogger”:

Download trial (7 days free):
http://www.plimus.com/jsp/download_trial.jsp?contractId=1682768&referrer=Niar

Link for buying full version:
https://www.plimus.com/jsp/buynow.jsp?contractId=1682768&referrer=Niar

With this program everything is possible, from getting a password to any community site, e-mail or forums and seeing all chat logs or messages – to recording microphone sounds (cybersex or the chat with another person and even webcam activity! (Both the own persons and a possible strangers webcam if he/she is watching naked teenagers behind your back). And best of all: you will have PROOF of what you have seen, which you obviously wont if you just suspect something without this program.

I tried to bring up the most important things in this article, but there sure is more to read if you still aren’t sure, simply visit the links provided and read more about people who have bought the product or view the awards that the product has received. Everyone has different use or needs of the program, and it sure was a relief to my head after finally getting answer to my questions using this brilliant program.

Facebook password reset confirmation

ไซแมนเทคเตือนผู้เล่นเฟสบุ๊ก โดนหลอกเปลี่ยนพาสเวิร์ด แต่ได้โทรจันมาแทน

รายงานข่าวจากไซแมนเทคระบุว่าเป็นอีกครั้งหนึ่ง ที่สแปมเมอร์พุ่งเป้ามาที่เว็บไซต์โซเชียลเน็ตเวิร์กที่ดูน่าเชื่อถือ เพื่อล่อลวงเหยื่อที่ไม่ทันระวังตัว ซึ่งครั้งนี้เป็นคราวของเฟสบุ๊กนั่นเอง ฝ่ายปฏิบัติการตอบสนองภัยคุกคามของไซแมนเทคพบว่าสแปมเมอร์อาศัยความนิยมของ เฟสบุ๊กมาเป็นช่องทางในการปล่อยไวรัส Trojan.Bredolab ซึ่งเป็นไวรัสประเภทโทรจันที่แพร่กระจายไปสู่วงกว้างอย่างต่อเนื่องในปีนี้ โทรจันตัวนี้มีความสามารถในการโหลดแอปพลิเคชันขโมยรหัสผ่านบอท รูทคิท และโปรแกรมหลอกลวงต่างๆเข้าสู่ระบบ

สแปม เมอร์ทำการหลอกลวงผู้ใช้ด้วยการส่งอีเมลแจ้งเตือนเกี่ยวกับความผิดพลาด เรื่องของรหัสผ่านในการเข้าเฟสบุ๊ก โดยโน้มน้าวให้ผู้รับทำการเปลี่ยนรหัสผ่านใหม่ โดยให้เข้าไปที่ zipไฟล์ ที่แนบมาเพื่อดูรหัสใหม่ ซึ่งใน zip ไฟล์ ที่ว่าจะแฝงไวรัส Trojan.Bredolab มาด้วย ตามตัวอย่างอีเมลด้านล่าง

ไซแมนเทค ได้แนะนำการป้องกันภัยจากการถูกโจมตีในลักษณะนี้ ได้แก่

1. ก่อนจะคลิ๊กเข้าไปที่ไหนก็ตามให้ระมัดระวัง โดยเฉพาะอย่างยิ่งในเวลาคลิกลิงก์ที่ไม่ทราบที่มา

2. ควรจำไว้เสมอว่าห้ามทำการโต้ตอบกับอีเมลขยะ เพราะการตอบรับจะยิ่งทำให้สแปมเมอร์รู้ว่าอีเมลขยะที่ส่งหว่านออกไปมีผู้รับที่แท้จริง จะทำให้ได้รับอีเมลขยะเพิ่มมากขึ้น โดยเฉพาะการคลิกลิงก์ในอีเมลขยะ เพื่อปฏิเสธการรับข้อความจะยิ่งเป็นการยืนยันกับสแปมเมอร์ว่ามีคนเปิดอ่านอีเมลขยะ ควรลบอีกเมลขยะที่น่าสงสัยในทันทีโดยไม่ต้องเปิดอ่าน

3. มีอีเมลเอาไว้ใช้หลายอันสำหรับการใช้งานประเภทต่างๆ โดยมีหนึ่งอีเมลเอาไว้สำหรับใช้งานส่วนตัวเช่นติดต่อกับครอบครัวและเพื่อนฝูง มีอีเมลอีกหนึ่งอันเอาไว้รับข่าวสารต่างๆ และอีกหนึ่งอันเอาไว้สั่งซื้อของทางอินเทอร์เน็ต

4. ระวังให้ดีก่อนที่จะกรอกอีเมลแอดเดรสของคุณลงในเว็บ เพราะอีเมลของคุณที่โชว์อยู่บนเว็บเพจเหล่านี้สามารถถูกอ่านได้ด้วยโปรแกรม บอทที่ทำหน้าที่คอยเก็บสะสมอีเมลตามเว็บเพจต่างๆ

5. ติดตั้งระบบป้องกัน และต้องมั่นใจว่าโซลูชันรักษาความปลอดภัยที่คุณใช้นั้นมีการอัพเดทอยู่ตลอด เพื่อช่วยป้องกันอีเมลขยะและไวรัสได้ ในขณะที่คุณสามารถรับอีเมลอื่นได้ตามปกติ ซึ่งคุณอาจเลือกใช้ซอฟต์แวร์รักษาความปลอดภัยอย่าง Norton Internet Security 2010 โดยสามารถเข้าไปดูบริการด้านความปลอดภัยของเว็บ เช่น Norton Safe Web ที่เป็นชุมชนของบรรดาคนใช้เว็บที่ช่วยกันรายงานเรื่องของเว็บไซต์อันตรายที่ มีฟิชชิ่งและซอฟต์แวร์อันตรายทำงานอยู่

โดย ASTVผู้จัดการออนไลน์

Sorry about the blog silence everyone, I spent the last week or so at Fort Huachuca, AZ. (I’ll post about that later today or tomorrow.) So here’s a little something to break the silence. I recently started contributing to CydiaUpdates.info (in the process of name change, for legal reasons, to Jailbreak News). So I thought I’d share my first contribution on here. It follows…

Many of you may have noticed that recently Kyek has put up a troll bridge on his popular site for downloading “crack apps”, Appulo.us. It’s only temporary until he finishes upgrading his server due to high traffic. (For those who don’t know what a troll bridge is: to access the site you have to answer a question only a certain group of people know the answer to.) The whole purpose is to reduce traffic and increase performance until they finish upgrading their servers by only letting in the “in crowd” and keeping out the “leeches”. Unfortunately, this leaves the average user high and dry. So we’ve published this tutorial for you to get around the pesky troll bridge.

Perform a Google search for the cracked app you wish to download and include “site:appulo.us” at the end. When your results come up, do not click the regular link to the page; instead, click the cached link. (This will allow you to access Google’s cache of Appulo.us, instead of Appulo.us itself.)It should look something like this.

 

After you have downloaded it regularly, you will need to install it through iTunes via File>Add Folder to Library. Then select the folder you unzipped and Sync your iDevice regularly.

Remember this is a temporary solution to a temporary problem. Kyek said it himself, the troll bridge won’t be there forever. For more information on the Appulo.us troll bridge click here.

Nick Hesson has been great to work with so far and I look forward to making further contributions to his site.