InterZet Customers to Get Outpost Antivirus Free

Proactive antivirus protection now available to 4 million ISP customers as monthly subscription

Outpost AntiVirus Service is now available to the four million customers, including 200 thousand customers of major St. Petersburg ISP InterZet (www.interzet.ru) as part of their basic subscription.

What is Outpost AV Service and why it's free? >>

Keyboard shortcut of the week: Windows 7 Taskbar

After a long hiatus, keyboard shortcut of the week returns to 'Bloody Computer!' This week, we will look at new features of the Windows 7 taskbar.

You can open any program on the taskbar by holding the Windows key [shown right] and pressing the item number on the taskbar. For example, to open Internet Explorer on the following taskbar you would press Windows Key + 1. The calculator is Windows Key + 2, and so on.


If Internet Explorer is already running, pressing Windows Key + 1 will open that session. To start a new instance of the web browser press Shift + Windows Key + 1.

You can also shift focus to the taskbar using Windows Key + T. You can then use the left and right cursor keys to cycle through the items and press Enter to open them.

You can pin new programs to the taskbar by right-clicking on the icon and selecting 'Pin this program to the taskbar'. Once the icon is pinned, you can drag and drop it anywhere you like on the taskbar.

Fraudulent Digital Certificates Could Allow Spoofing since March 16, 2011!

PLEASE INSTALL IMMEDIATELY UPDATE KB2524375 FOR YOUR WINDOWS OS! ACT NOW! Why so? Please read CNet's report.

Microsoft is aware of nine fraudulent digital certificates issued by Comodo, a certification authority present in the Trusted Root Certification Authorities Store on all supported versions of Microsoft Windows.

Comodo advised Microsoft on March 16, 2011 that nine certificates had been signed on behalf of a third party without sufficiently validating its identity. These certificates may be used to spoof content, perform phishing attacks, or perform man-in-the-middle attacks against all Web browser users including users of Internet Explorer.

These certificates affect the following Web properties:

• login.live.com
• mail.google.com
• www.google.com
• login.yahoo.com (3 certificates)
• login.skype.com
• addons.mozilla.org
• "Global Trustee"

Comodo has revoked these certificates, and they are listed in Comodo’s current Certificate Revocation List (CRL). In addition, browsers which have enabled the Online Certificate Status Protocol (OCSP) will interactively validate these certificates and block them from being used.

An update is available for all supported versions of Windows to help address this issue. For more information about this update, see Microsoft Knowledge Base Article 2524375.

Typically, no action is required of customers to install this update, because the majority of customers have automatic updating enabled and this update will be downloaded and installed automatically. For more information, including how to manually install this update, see the Suggested Actions section of this advisory.


Affected and Non-Affected Software

This advisory discusses the following software.Affected Software

Windows XP Service Pack 3

Windows XP Professional x64 Edition Service Pack 2

Windows Server 2003 Service Pack 2

Windows Server 2003 x64 Edition Service Pack 2

Windows Server 2003 with SP2 for Itanium-based Systems

Windows Vista Service Pack 1 and Windows Vista Service Pack 2

Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2

Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2*

Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2*

Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2

Windows 7 for 32-bit Systems and Windows 7 for 32-bit Systems Service Pack 1

Windows 7 for x64-based Systems and Windows 7 for x64-based Systems Service Pack 1

Windows Server 2008 R2 for x64-based Systems and Windows Server 2008 R2 for x64-based Systems Service Pack 1*

Windows Server 2008 R2 for Itanium-based Systems and Windows Server 2008 R2 for Itanium-based Systems Service Pack 1

Public Beta program for Outpost 7.5 — Performance Edition

A preview of new performance gains and additional levels of non-signature detection

Outpost 7.5 product line is available in public beta!

Packed with new functionality and performance improvements, the latest versions of Outpost Security Suite Pro, Outpost Firewall Pro and Outpost Antivirus Pro speed up overall operation and reveal as little resource load as possible for up-to-date security solutions.

Thanks to the consolidation of signature databases in user and kernel modes, Outpost 7.5 reduces memory usage by 45 to 50 percent compared with Outpost 7.0. Apart from great performance, Outpost’s rock-solid defense has been generously supplemented with new non-signature detection algorithms, flexible autorun protection and clipboard content protection — just to name a few.

Download Outpost 7.5 beta now and let us know what you think!

Android 2.0 ,2.1, 2.1.1 WebKit Use-After-Free Exploit

This is the exploit used in my Austin bsides presentation that returns a shell. 
The slides are at http://www.slideshare.net/mjza/bsides
email: mkeith@exploitscience.org

On the road to Outpost 7.5: SmartDecision technology

This time we'll tell you about a new feature comping up in Outpost 7.5 that will facilitate decision-making when resolving security issues and addressing Outpost program alerts.

Whenever an Outpost-protected PC encounters an unknown (unverified) application, Outpost will ask you to determine how to proceed. It’s sometimes hard to know what the right choice is, so we’ve introduced SmartDecision as a replacement for the old SmartAdvisor to help make this process easier.

One of the key novelties in the new product line, SmartDecision steps in to perform non-signature detection by rating every executable file against a number of criteria and determining its authenticity or potential to cause damage. This technology employs multi-level risk measurements and enables Outpost to provide you with visual guidance as to the best way to proceed (allow or block) along with a corresponding window color – red, yellow or green.

An effective non-signature detection algorithm, SmartDecision is designed to reduce your risk of making the wrong choice without eliminating the flexibility enjoyed by power users. Outpost’s 7.5 SmartDecision technology makes queries more transparent and decision-making more reassuring.

You'll be able to judge for yourself in the next couple of weeks! Keep your eyes open for updates.

Pavel Goryakin
Agnitum
 
 
Blogger Templates