Security firm RSA attacked using Excel-Flash one-two sucker punch

RSA attacked using Flash vulnerability
It has emerged that the underlying cause of RSA's SecurID gaffe was the recently-reported zero-day vulnerability found in Adobe's Flash Player.

The exploit, which used specially-crafted Flash embedding in Excel spreadsheets, was first reported on March 15 and has since been fixed. RSA was hacked sometime in the first half of March when an employee was successfully spear phished and opened an infected spreadsheet. As soon as the spreadsheet was opened, an advanced persistent threat (APT) -- a backdoor Trojan -- called Poison Ivy was installed. From there, the attackers basically had free reign of RSA's internal network, which led to the eventual dissemination of data pertaining to RSA's two-factor authenticators.

The attack is reminiscent of the APTs used in the China vs. Google attacks from last year -- and indeed, Uri Rivner, the head of new technologies at RSA is quick to point out that that other big companies are being attacked, too: "The number of enterprises hit by APTs grows by the month; and the range of APT targets includes just about every industry. Unofficial tallies number dozens of mega corporations attacked [...] These companies deploy any imaginable combination of state-of-the-art perimeter and end-point security controls, and use all imaginable combinations of security operations and security controls. Yet still the determined attackers find their way in."

What we'd like to know, though, is whether the attack on RSA was caused by Adobe's lackadaisical approach to patching Flash -- or was it the other way around? Was it the RSA attack that first brought the zero-day vulnerability to Adobe's attention?

Security firm RSA attacked using Excel-Flash one-two sucker punch originally appeared on Download Squad on Wed, 06 Apr 2011 06:55:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments

Source: http://downloadsquad.switched.com/2011/04/06/security-firm-rsa-attacked-using-excel-flash-one-two-sucker-punc/

SI INTERNATIONAL SEAGATE TECHNOLOGY SCIENTIFIC GAMES SANDISK

Seagate GoFlex Thunderbolt Adapter now shipping, snag one for $100

Keeping its Q1 delivery promise, Seagate is now shipping its GoFlex Thunderbolt Adapter for portable drives of the same moniker. We got our mits on this bad boy back at CES, witnessing first-hand the much improved transfer speeds of Intel's tech over the standard USB 2.0 for the smaller external drives. You can snag yours now, via the source link for a whole Benjamin. If you're in need of a refresher before making the investment, hit the gallery below for another peek at our hands-on.

Seagate GoFlex Thunderbolt Adapter now shipping, snag one for $100 originally appeared on Engadget on Wed, 01 Feb 2012 20:22:00 EDT. Please see our terms for use of feeds.

Permalink GigaOM  |  sourceSeagate  | Email this | Comments

Source: http://www.engadget.com/2012/02/01/seagate-goflex-thunderbolt-adapter-now-shipping/

HEARTLAND PAYMENT SYSTEMS GOOGLE GOOGLE FORMFACTOR

LG Spectrum review

Let's just get this out of the way, shall we? If the LG Spectrum looks familiar, you're not imagining things. It may have been a highlight at the company's CES press event last month, but the handset bears more than a passing resemblance to its older, more excitingly-named sibling, the LG Nitro HD -- and, by extension, the globe-trotting Optimus LTE. Beneath their 4.5-inch IPS displays, you'll find virtually identical guts, including a 1.5GHz dual-core processor, 1,830mAh battery and 4GB of internal storage, coupled with a 16GB microSD. There are some important distinctions here, of course -- namely, changes to the phone's shell and, of course, a shift from AT&T to Verizon. So, how does world-weary Optimus fare from its jump to Big Red? Find the answer past the break.

Continue reading LG Spectrum review

LG Spectrum review originally appeared on Engadget on Wed, 01 Feb 2012 16:00:00 EDT. Please see our terms for use of feeds.

Permalink   |   | Email this | Comments


Source: http://feeds.engadget.com/~r/weblogsinc/engadget/~3/4iwzNmbNh9Q/

DIODES INORATED DIEBOLD DELL CYPRESS SEMICONDUCTOR

New Zealand winery uses QR codes and augmented reality app to suggest food pairings

Brancott wine

Brancott Estate, a winery based out of New Zealand, has just launched their first Android and iOS app, and along with it, they've started putting QR codes on all of their wine bottles. When you use the app to scan the code printed on the label with your phone's camera, it offers food pairing suggestions, along with some more elbaorate promotions, like an augmented reality view and a puzzle game. The Brancott Estate app (called "World's Most Curious Bottle") also provides descriptions of  aromas, and some info on the climate in which the grapes were grown for 14 of their wines.

While there are plenty of other apps out there that offer a broader selection of wines to reference, not to mention the ability to search by meal, it's not often you see retail products ship with legitimately helpful QR codes on them. For wine in particular, a few third parties have stepped in to provide rich data for wines, namely Cellar Key, which hangs a little QR code around the bottleneck. 

Considering how little I know about wines, quick, in-store references like this can be hugely helpful when picking something out. Even seasoned wine-drinkers will appreciate the added level of detailed information set-ups like this can provide. It's just unfortunate that even after over a decade of being largely available, QR codes still haven't quite caught on. Maybe pairing up with apps will become more of a necessity if they're going to see any real use. I'm also a little worried that as much hype as there is behind NFC, it will end up in the same boat. 

You can download the Android app at the link below, if you're curious. Do you guys use QR codes regularly? What would it take to get you to use them more often?

read more

Source: http://feedproxy.google.com/~r/androidcentral/~3/pT6xMBGPv38/story01.htm

VIRGIN MEDIA VIEWSONIC VERISIGN VERIFONE HOLDINGS

Every Camera Should Be as Beautiful as Nikon's Newest [Design]

The Nikon Coolpix P310 is another point and shoot—except it's completely gorgeous. The boxy design is a matte slate of black perfection. Everyone line is clean, every centimeter accounted for, every button well-placed. Make more things like this. More »


Source: http://feeds.gawker.com/~r/gizmodo/full/~3/-q0sPmeGUE4/every-camera-should-be-as-beautiful-as-nikons-newest

SAIC ROCKWELL AUTOMATION RF MICRO DEVICES RED HAT

YouTube Live now streaming select partners in real time

Not content with limiting its dominance in streaming uploaded videos, YouTube is now ready to take on competitors like Justin.TV and Ustream. The new YouTube Live service is being rolled out to select YouTube partners and will enable real-time broadcasting. In its official announcement, Google states that "The goal is to provide thousands of partners with the capability to live stream from their channels in the months ahead."

You can check out live broadcasts at http://www.youtube.com/live, where you'll also find a schedule of upcoming episodes from beta partners like Revision3 and Destructoid. You're also able to subscribe to YouTube Live broadcasts -- which will ensure you're notified when a new episode is coming up.

YouTube Live now streaming select partners in real time originally appeared on Download Squad on Mon, 11 Apr 2011 08:35:00 EST. Please see our terms for use of feeds.

Permalink | Email this | Comments

Source: http://downloadsquad.switched.com/2011/04/11/youtube-live-now-streaming-select-partners-in-realtime/

NOVELL NETWORK APPLIANCE NETGEAR NCR

Print from Your iOS Device to Any Printer with Lantronix xPrintServer

The xPrintServer “leverages Lantronix‘ patented technologies, along with open industry standards to enable wireless printing to nearly any printer attached to a network.”  You won’t be limited to only certain models from certain manufacturers, and you won’t have to buy any apps on your iPhone or iPad to print.  You simply connect the Lantronix to [...]

Source: http://the-gadgeteer.com/2012/01/30/print-from-your-ios-device-to-any-printer-with-lantronix-xprintserver/

INTERNATIONAL BUSINESS MACHINES (IBM) INTERDIGITAL COMMUNICATIONS INTEL INSIGHT ENTERPRISES

A Set of Cufflinks Fit for MI6

Wondering what to get for the stylish gadget guy this coming Valentine’s Day?  It would be difficult for him not to love these Polished Silver Oval Wifi and 2GB USB Cufflinks from Brookstone.  On the surface, they’re a regular pair of classy polished silver cufflinks, but there’s more than what meets the eye. Each cap can [...]

Source: http://the-gadgeteer.com/2012/01/27/a-set-of-cufflinks-fit-for-mi6/

MENTOR GRAPHICS IMS HEALTH IMATION IKON OFFICE SOLUTIONS

How the iPad has changed the world

The iPad Has Both Changed and Revitalized Reading One area that iPad has made a large impact is reading. Sure the e-Book readers have also had an impact but not in the way that the iPad has. The iPad has done this is by being a platform for brilliant app developers. The apps developed for the iPad have made reading on an electronic device fun. People that, although desktop computer literate, had no idea what an RSS was for, now [...]

Source: http://tabletbuzzblog.com/how-the-ipad-has-changed-the-world-2/

IMATION IKON OFFICE SOLUTIONS IDT IBASIS