Targeted Attacks via Internet Explorer Confirmed by Microsoft

There is a vulnerability (flaw) which allows targeted attacks via Internet Explorer versions 6 through 11 to be made on MS Windows PC’s.

The attack seems complex to me and probably not easily made against the masses. The ultimate goal of an attacker would be to encourage a PC user to visit dangerous websites.

Microsoft plan to fix the problem with updates distributed in their normal way, i.e. monthly updates.

ITPRO LogoIf you want to find out more you can visit ITPRO here. Some PC’s will be more vulnerable than others depending on what version of Windows is used and whether Outlook, Outlook Express or Windows Mail are viewing an HTML document.

Or you could visit Microsoft here and read Microsoft Security Advisory 2963983, Published: April 26, 2014.

WordPress Vulnerability Affecting Mobiles

WordPress Vulnerability Affecting Mobiles

I just want to pass on knowledge of this WordPress vulnerability affecting mobiles, detected by AVAST, whereby mobile device users are susceptible to redirection. They can be redirected to a malicious web site from WorbPress blogs where the blogger is using a plugin called OptimizePress. NOTE: I am not using that plugin in this blog.

Read all about it in this AVAST Blog Post published on 17th April 2014.

This is the malicious web site so I have not embedded a link to it — http://149.154.152.129.

Reference:

Bank Machines Will Use Windows XP Beyond The MS Deadline

Well, well, well, whose not keeping on top of things then. It looks like all the major banks. This article from ITPRO taken from Reuters points out that some major banks will not have updated their Automatic Telling Machines to Windows 7 by 8th April 2014. This is Microsoft’s published deadline after which there will be no support for the old system. Apparently 95% of the worlds 2.2 million ATMs were using  Windows XP and 2/3 of them will still be using it after the MS deadline. So the banks involved will be paying some large sums of money to MS to keep their systems updated beyond the deadline.

This tells me that these banks have got all their eggs in one basket. They should diversify and have another company’s system running on alternate machines with similar geographic locations. This should be a requirement of bank regulators.

Make Google The Home Page In Windows 7

Introduction

A friend found they had got MSN as their Home page and asked me how they could make Google the Home page in Windows 7.

What They Saw

make google the home page
IE11 showing MSN & the Command Bar with the Tools Menu selected and the Pointer on Internet Options .

I haven’t seen their screen but I would expect it to look like the screen shot above, when they select their Home page, with MSN showing. Here I have recreated their situation and then selected Tools on the Command Bar. In this example the Command Bar is very short and placed at the end of the Favourites Bar. Most of the commands, including Tools, show on a drop-down menu which appears when the chevrons are selected at the right-hand end of the Command Bar. Continue reading “Make Google The Home Page In Windows 7”

Internet Explorer Suggested Sites – Not My Favourites

I don’t necessarily want Internet Explorer Suggested Sites on my Favourites Bar in Internet Explorer. I just want My Favourites. Yes, I’m talking about the Suggested Sites shortcut which appears on the Favourites Bar and defies all attempts to remove it permanently. Deleting the shortcut from the Favourites Bar does not prevent it from returning. Continue reading “Internet Explorer Suggested Sites – Not My Favourites”

Employees Pose Security Risks To Businesses

Employees Pose Security Risks To Businesses

Employees pose security risksTrend Micro says employees pose security risks to businesses by their carelessness. So don’t allow access to your business data through your employees. Data is exposed by Wi-Fi hijacking and by employees losing mobile devices.

Read about it on IT PRO by clicking here.

Drag-n-Drop Context Menu in Windows 7

Drag-n-Drop Context Menu Discovered After Nearly Losing Files

drag-n-drop context menu
A File Icon Being Dragged Across The Desktop

After many years I have just found that there is a specific Drag-n-Drop Context Menu, in Microsoft Windows 7 at least. For much of that time I avoided Drag-n-Drop in favour of Copy and Paste. This discovery came about after I found I was Moving files out of folders accidentally, by using Drag-n-Drop, when all I wanted to do was copy them to other folders. This resulted in me nearly losing some files by moving them out of their original folders. Continue reading “Drag-n-Drop Context Menu in Windows 7”

I Reduced Windows 7 Startup Time To Two Minutes

Introduction

I have wanted a way to get a reduced windows 7 startup time for a while. I was concerned about the time it took from switch on to the point where all apps that start automatically were ready for use. This has generally increased over the years during the time I had previous versions of Windows and on into the time I have had Windows 7.

There are those who would say I have too many apps starting. Well I didn’t buy a cheap computer and that’s what computers are for. To have apps running that a person can use at any time without much notice.

How I Reduced Windows 7 Startup Time

In the hope I would get reduced Windows 7 startup time I bought a Crucial Adrenaline solid state cache in 2012. It was controlled by NVELO Dataplex v1.1.3.0. I questioned how good it was because it still took a long time to start. However if I left it for a while after starting Windows, prior to logging on to my desktop, there was a noticeable improvement on the start-up time for the multitude of programs that loaded after log-on. So I continued to use it.

Yesterday (6th March 2013) I was notified by NVELO of a new version of Dataplex v1.3.0.0. I followed the process carefully to perform the upgrade. After the upgrade, and following restart, there was a very long startup time (5mins or more) while the cache was sorted out. Everything was OK but I didn’t restart again that day.

Today (7th March 2013) I started and the logon screen appeared after 1min 25secs. I logged on by 1min 30secs and my extensive range of icons, toolbars and gadgets had all loaded within 2mins from switch on. It took at least 4mins before. There must have been a problem with the previous version. I don’t think it’s wholly due to the improvements in the new version.

IE9 Zero Day Vulnerability Fixed

For a week now it has been known that there is an IE9 Zero Day Vulnerability.

Get This Zero Day Vulnerability Fixed

Now Microsoft have published a fix which came to me today in the form of an update as follows (for Windows 7):

Cumulative Security Update for Internet Explorer 9 for Windows 7 for x64-based Systems (KB2744842)

Update type: Important

Security issues have been identified that could allow an attacker to compromise a system that is running Microsoft Internet Explorer and gain control over it. You can help protect your system by installing this update from Microsoft. After you install the update, you may have to restart your computer.

More information: http://go.microsoft.com/fwlink/?LinkId=255505

Help and Support: http://support.microsoft.com

Zero Day Vulnerabilities are those which have already been exploited by the time the software developer finds out about them.