harryjohnston (1118069) writes "If you read this story a few days back you might be excused for thinking Microsoft have abandoned Windows 7 to the dusty shelves of history. Only a few weeks earlier, however, update KB2871997 was released, backporting a number of enterprise-level security enhancements that first appeared in Windows 8.1.
This blog post from last week goes into more detail. It should perhaps be mentioned that many, though not all, of the new features are only useful if you have upgraded your domain controllers to Windows 2012 R2, so this is not an entirely altruistic move on Microsoft's part. (Many enterprises do not have to pay any extra fees to upgrade Windows on the desktop, but do have to buy new licenses to upgrade servers.)" Link to Original Source top
harryjohnston writes "Having been kicked off Groklaw a while back for "ignorance", i.e., having opinions differing from those of the owner, I'm looking for an alternative source of news/commentary about legal issues relating to technology — other than Slashdot itself, of course! Any suggestions?" top
harryjohnston writes "According to the head of the NSA and General Keith Alexander, the best way to improve the nation's cyber defenses is by shifting to a "cloud architecture". Is this a well-reasoned plan or a buzzword-induced hallucination? You decide." Link to Original Source top
harryjohnston writes "Following the introduction of New Zealand's new copyright legislation, which we discussed last week, major ISP Orcon reports that international peer-to-peer traffic has dropped 10%. This might mean that the law is actually working, to some extent, though experts say the effect will probably only be temporary." Link to Original Source top
harryjohnston writes "An outspoken supporter of Indonesia's draconian anti-pornography laws was caught watching porn on his tablet computer in Parliament during a debate about plans to build a new parliamentary building. I'm all in favour of a casual approach to government, but this may be taking it a bit far." Link to Original Source top
harryjohnston (1118069) writes "Sarah Palin is reported as saying that Julian Assange, director of WikiLeaks, should be "pursued with the same urgency we pursue al-Qaeda and Taleban leaders". She also asked whether the US has used "all the cyber tools at our disposal" to shut down the WikiLeaks web site. It isn't clear whether she realizes that such an effort would almost certainly be illegal." Link to Original Source top
harryjohnston (1118069) writes "A resident of Wellington, New Zealand has been jailed for posting a naked photograph of his ex-girlfriend on her Facebook page. This is believed to be a legal first — although since he had also pleaded guilty to threatening to kill, wilful damage, theft and assault, it seems likely that the judge took those into account in deciding on a jail sentence." Link to Original Source top
harryjohnston (1118069) writes "Frank Stajano, ARM lecturer in Ubiquitous Computing Systems at the University of Cambridge, and Paul Wilson, writer/presenter for the popular BBC Three series "The Real Hustle", have written a fascinating technical report (PDF) on the psychology of scam victims, based on the television series but with particular emphasis on how real-world scams (and the psychology behind them) translate into electronic scams, and on what security engineers need to know in order to mitigate the risks." Link to Original Source top
Because of limitations in the client software, this update will be automatically installed unless Automatic Updates is disabled completely, ignoring settings like "Notify me but don't automatically download or install them".
harryjohnston (1118069) writes "Looks as if malware distributors have upped the ante again. Bulk email aimed at tricking people into visiting a web site for a drive-by download is nothing new, but I've never seen this particular, and rather disconcerting, approach before:
"Subject: she has already gone to hospital!!
Listen to me carefully, i don't know what your name is, but i'll find you=
and i'll cripple you, because this is you who tempted her!!! She has already gone to hospital, you're next, this is evidence: [malicious link redacted]"
harryjohnston writes "Cisco appears to have adopted a policy of making people pay for service contracts if they want security updates for Cisco client software. I've been trying to update their VPN software on my home laptop (which I use to connect to the Cisco VPN hardware at my workplace) ever since I realized it had an elevation of privilege vulnerability:
However, Cisco won't provide me with the update because I don't have a service contract with them.
Despite repeated requests, they seem unwilling to provide any explanation of this baffling policy. Their latest response, and I quote verbatim:
"If you don't services contract on your profile and you are guess level access and which guess level access and you will not have any access download any software from Cisco website. If you have any further please contact Cisco.com suppport team or contact us 1 800 553 2447."
On the plus side their product support response time is excellent. The preceding work of art arrived in less than 30 minutes.:-)" top
harryjohnston writes "Alun Jones writes in his blog about Russian security research company Gleg who have publicly demonstrated a vulnerability in RealPlayer, but are allegedly refusing to provide details to RealNetworks unless they pay up.