go to sections menu

The Technology blog and podcast

This is for the technology blog and podcast Commentary, articles, and podcasts

header picture for Ingegno theme

You are here: general-updates-and-announcements

Go to Homepage [0], contents or to navigation menu



This month’s patch Tuesday postings

Hello folks,

While Shaun covered his thoughts on the patch Tuesday problems, I do want to go ahead and give you some postings of articles from Trend Micro and Krebs On Security. Instead of bashing what we must do now to protect ourselves, be happy that companies are patching and trying their best to make their software as secure as possible.

We need to remember that writing software is hard. We can tell users to ditch Adobe, move to Lynux, use the Mac, don’t bother with antivirus, and other aspects of things that are opinion, and I don’t mind that, but we must remember that people come to get information and opinion, and just saying that its no good isn’t solving the issues we must face.

It did not impress me to have to post about the school district paying $28,000 to get their files back, but this is where we are. While I plan to let Shaun post and give his opinion, we need to understand that this is our world today. Nothing is safe anymore, and I will do my best to give you revelant articles of interest like the two linked. Keep the opinions coming, and lets see how we can do this together.

Comments Off on This month’s patch Tuesday postings

patch grind day

Hi all.
Yes its patch grind day.
Its not patch tuesday because that would honor all the patches.
And I am not in a honoring mood.
So we start with the respectable to the entirely fucked over.
1. codecguide klite meta 12.78 is out.
2. new versions of adobe flash and adobe reader are out.
In addition I had a lot of issues getting the latest updates as the update pages for get.adobe.com likes to refresh all day long and you can’t seem to allow it through script because it does this.
Even with noscript off, its impossible.
I was able to get flash fine but today it took me several tries to get the latest adobe reader from their ftp server.
3. ms nondates.
Yes non dates.
The only actual update is an important dos attack on lsass.exe and you need to recieve special data its unclear how you would actually recieve this however.
The other 2 I won’t mention at all.
In one case, elivation of privilage and a few other things.
In both cases you need to open infected files.
Ie click something, ie social enginiering.
In other words, if you are smart and don’t click these are not even needed.
You will get them in your roleup anyway.
In win10 the most critical issue is that if you incert input devices of a same time they wouldn’t work and now they do.
Supprise, supprise, there are issues.
If you use 2 moniters for a 3d program the system will just go screwy.
Thanks microsoft.
There is another little issue but still.
Teamtalk is at 5.2 stable.
There are a few more extras like that.
I was happy things didn’t take as long to get but as usual I am not impressed with the shit microsoft is putting out why don’t they try to be creative.
You will have noticed I left the edge and ie updates out of the article.
This is because there are always edge and ie updates as well as flash updates in win10.
My responce is big fucking wow!
In the latest insider it looks like there are some regressions in performance and also the fact edge again doesn’t work.
Which is why I say I am happy I use 7 and not fucked up 10.
In fact 10 seems more screwed as it goes on.
Eventually I will have to use it but till then well.

Comments Off on patch grind day

further to the cardless password story

Hi.
I just read further to this that hackers for cardless password transactions are using the fake sms trick again.
You do have to go to a fake site to get your stuff harvested.
The only good news out of this is they are using the same old tricks again.
Sms hacks are one of the easiest and oldest way to get users, most of us should be wized up to this nusence.
Its just one more thing to delete.

Comments Off on further to the cardless password story

comments on the blog and something interesting

Hi.
Well today I read somewhere that hmd in china has aquired nokia.
The new nokia 6 has a 16 mgeapixel on the back and an 8 on the front 4gb ram, 64 gb internal storage by default.
Fingerprint scanner and the latest android os.
Its only in china though which is a pitty, its described as mid range.

On another topic pg13 published this link

So you want to get a virus, what happens if you run this file, what will happen.
If you are curious and want to click that attachment now you can.
Well figuratively.
These guys do it just for fun in a controled environment I think they use a vm.
If you have listened to pg13 they are humorous guys anyway.
They always do everything including the bad endings of games and laugh at them till they burst.
They tried this once before, but for whatever reason their live server malfunctioned and nothing was ever recorded.
Now they are doing it again and this time they have a file.
Ofcause this is being done with online participation through their live irc chat and twitter feeds so users can chime in and see what whatever does what.
I know we usually talk about being secure but if you like me
want to blow off a bit and wander why bother, this will both tell you how dangerous a bit of malware can be but also enjoy the funny side of it as they trash a vm.
A vertual machine or vm for all readers that don’t know is a vertual image of an os so it can get destroyed and created at will if you have the image for it.
It can also be backed up easily so you could back it up, then destroy it.
I am not sure if they are using another physical or a vm but they use vms all the time.
Its also worth noting that they are not in the same studio, both are in different places and communication is via nv remote or other remote software and the teamtalk chat client.
So there are some artifacts but for the most part it sounds like they are just there and its in 3d audio to.
I have not listened to the file as of yet only downloaded it but I will be listening to see what they do.

Comments Off on comments on the blog and something interesting

comments on the posts this week

Hi jared.
Well for the first article, hackers and hacking will be used for everything including elections, its human nature.
Will it be a problem, not more so than usual, ie, people still rob banks and cause murders no matter what we do it will never ever die.
Will this hacking hospitals be a problem, probably if we don’t get our a into g and move it where it needs to be.
In the long term it will be another procedure we will have to deal with sometimes we get lucky, but we probably won’t be lucky, will people get hurt, my question is when people rob a bank there is a chance someone will get hurt this is no different its the curse on tech.
2. the school thing.
I am unsure what to think but at university, my brother and several in his class got a major virus, it was easy to kill but the dammage it did required another hijack tool to be run to get rid of the program that was trying to install all the time, and with this done, there was dammage to some drive locations and I had to get something to fix that.
Universities are a prime way to get infected people leave and loose their usb flash drives all the time so my brother tells me.
While setting up for some classes I got to talk to one of their tech admins.
They were certainly all over security, mostly prevention not removal.
I asked so what if you get a virus, his responce, was, well every summester we reformat all computers.
And every year we refresh ane reformat older backups to.
Why I asked.
He then said that with so many computers if ever a virus got in and it often does, tracking it is impossible because to much ground to cover.
I don’t see much we can do about this.
With the cloud being used, the only thing I can think of is making sure no one can take usb sticks or drives into university and bann their use.
This includes the teachers and admins unless allowed by request or something.
Certainly if students stopped bringing them in they would never get lost.
Universities and school are always big target though thats never changed and has been round since before the net.
What is interesting is you got an email about it.
If I was a hacker that is one way I’d deliver ransomware at someone.
I mean send an email as admin and say, that we have been hacked and to open a page explaining it.
Load the ransomware in the background.
And once loaded do whatever.

Comments (1)

Wakerupper closing

Hi folks,

Some time ago, on a past podcast, I talked a bit about a service called wakerupper. I remember them because they had reminder system where it can be stopped after a certain time. My other ones don’t work that way for repeating events. I needed to use it because I needed to do something for a limited time, and wanted it to expire after a certain date. Sadly, two things happened:

  • I could not pick from any saved messages, even after installing flash:
  • In doing some looking at their site, somewhere, it said they were closing but would honor those who had credit to spend.

Read directly from their site from this link.

I did enjoy the service while i did use them. While I had a few issues, I stopped using them for a multitude of reasons, none of which was about the service itself. I had other multiple needs, and I’ll revisit the services I use now for various reasons.

There aren’t many services out there, and some are claiming to be free but end up paid after all.

I thought I’d pass this along, been meaning to write about this, but thought of it after my reminder expired.

questions? Do ask in the comments, or E-mail.

Comments Off on Wakerupper closing

an unexpected update

Hi all.
This is unexpected.
Today after many months so many that I thought that they had stopped production the last update being june 2015 realtech have broken silence and released the basic hd audio chipset update.
This version is 2.80 up from 2.77.
Why is this important, aren’t realtech just the cheap stupid hardware in the computers?
It is but it just happens to be in just about every computer these days that uses intel chips at least.
So if you are having a problem with things then this is finally the official non manufacturer spaciffic universal realtech card update.
Next amd have released an update to their display drivers.
It was first catalist 14 then 15 then omiga and now crimson live series.
For all of us that uses standard cards, it appears that amd has debunked its autoupdater and included it in the crimson installer.
Once you get the minimalistic installer and run that it will download an update, then you can update the system with that.
So happy the dates no longer reflect 9 februrary 2015 anymore.
I thought we were left in the dust with amd to.
Again why is this important, it means that some of these cards especially those of us with 10 and having to use standard ms drivers may not have to, and that finally major manufacturers are catching up to things.
The advantage of the amd driversets is that the drivers include everything in them.
One package will update all amd hardware mostly and now it appears autodetection is part of that package.
Finally my toshiba reported an update in win7 saying intel system for 7 8 and 9 series.
Again this is important, it may only be a basic internal ms chip installer update but it does mean especially with a lot of quads on the market that the duelcore is still alive.
With all the terrorists, security breaches, etc, if anything if you are a geek and want to thank someone other than a god or jesus then thank whoever that backward compatability even for your 3-6 year old unit may still be active in some way.
For myself I am hoping this fixes things on the system which has been having issues with some display for a little while.
laters all

Comments Off on an unexpected update

linked in breech

Hi.
Well this came off one of my feeds yesterday, but linkedin was hacked.
Someone lifted 117 million entries from their database although highly encripted were still able to get access somehow.
Email and password combos have been sold online aparently.

Comments (1)

this weeks updates and articles

Hi all.
In reverse order here are the updates and news.
It seems that yahoo hasn’t learned a bit, they just released the fact 1 billion had their data and identity stolen from 2013 it was discovered during the 2014 hack investigation and could indanger their deal with verisen.
I am not supprised with this record I do think yahoo is ruined.
In another bit of news, if you have a second generation watch and find that the new update does not exist then read on.
If you were unlucky and now have a red exclamation on your watch, call apple, and take the watch to apple so you can buy a new one.
Yeah aparently with watch gen2 units, the watchos 3.1 update released on monday bricked all watches in that class.
So if you have it with your new gen2 and chances are you do, apple will replace it free for you.
The update was pulled down within a day and won’t be up till they fix whatever is buggy.
Update wise.
Released in no order we have klite mega codec 12.7 series 12.71 is the latest.
Adobe services updated database.
Flash player now up to series 24.
ccleaner up to 5.25.
The standard roleup for all the remote invasions windows and office seem to have, same deal nothing new here.
See my other blog for other news.

Comments Off on this weeks updates and articles

Countdown to Zero Day: Stuxnet and the Launch of the World’s First Digital Weapon

Here’s my next book and its a tech book. I posted it to the books blog, but thought you all should have it too.


Countdown to Zero Day: Stuxnet and the Launch of the World’s First Digital Weapon
by Kim Zetter

Top cybersecurity journalist Kim Zetter tells the story behind the virus that sabotaged Iran’s nuclear efforts and shows how its existence has ushered in a new age of warfare—one in which a digital attack can have the same destructive capability as a megaton bomb.

 

In January 2010, inspectors with the International Atomic Energy Agency noticed that centrifuges at an Iranian uranium enrichment plant were failing at an unprecedented rate. The cause was a complete mystery—apparently as much to the technicians replacing the centrifuges as to the inspectors observing them.

 

Then, five months later, a seemingly unrelated event occurred: A computer security firm in Belarus was called in to troubleshoot some computers in Iran that were crashing and rebooting repeatedly.

 

 At first, the firm’s programmers believed the malicious code on the machines was a simple, routine piece of malware. But as they and other experts around the world investigated, they discovered a mysterious virus of unparalleled complexity.

 

They had, they soon learned, stumbled upon the world’s first digital weapon. For Stuxnet, as it came to be known, was unlike any other virus or worm built before: Rather than simply hijacking targeted computers or stealing information from them, it escaped the digital realm to wreak actual, physical destruction on a nuclear facility. 

 

In these pages, Wired journalist Kim Zetter draws on her extensive sources and expertise to tell the story behind Stuxnet’s planning, execution, and discovery, covering its genesis in the corridors of Bush’s White House and its unleashing on systems in Iran—and telling the spectacular, unlikely tale of the security geeks who managed to unravel a sabotage campaign years in the making.

 

But Countdown to Zero Day ranges far beyond Stuxnet itself. Here, Zetter shows us how digital warfare developed in the US. She takes us inside today’s flourishing zero-day “grey markets,” in which intelligence agencies and militaries pay huge sums for the malicious code they need to carry out infiltrations and attacks. She reveals just how vulnerable many of our own critical systems are to Stuxnet-like strikes, from nation-state adversaries and anonymous hackers alike—and shows us just what might happen should our infrastructure be targeted by such an attack.

 

Propelled by Zetter’s unique knowledge and access, and filled with eye-opening explanations of the technologies involved, Countdown to Zero Day
is a comprehensive and prescient portrait of a world at the edge of a new kind of war.

Comments Off on Countdown to Zero Day: Stuxnet and the Launch of the World’s First Digital Weapon

a small add

Hi.
I don’t usually post adds.
www.digital darragh.com is the site, this guy is an irish blogger that has worked with admin stuff.
He is advertising an note app that aparently is secure to the blind.
You will have to pay him 15 euros to get it and you need to email him about it.
Its probably worth a look, 15 euro is ok for a note app.
its round30 nz dollars which is not to bad for a notes app.
A lot of my friends use this and there is a roadmap for it.
On another note, updates for the site moniter and spam plugins on this site have updates, now installed.
Also, wordpress 2017 theme just went on test, works really nice couldn’t find any issues.

Comments Off on a small add

comments for the below posts

Hi.
So social enginiering ransomware makes the rounds.
To be totally honest if you go on adult sites to get your fucking fix and don’t do what I do which is power youtube which I do sometimes in the middle of the night especially with headphones on then its your own fault you get fucked over.
I personally would say to the scammers go for it.
I usually don’t but if you do anything alegal then you get what you deserve!
Next eftpos.
Even chip cards have issues, even the net pay nfc tech is not full proof.
I am sure that someone one day will hack apple pay, the list goes on, nothing to see here.
Shops make mistakes all the time.
As blind people I do think we need to pay attention to the touch pads of our machines.
Yes I say again touch.
While some of the newer machines with a number pad on them and an extra layer of keys have touch pads and an over lay in the first 3 numbers accross the top, some have the old 3 numbers at the top or on the right hand side.
Some of the newer ones don’t have an overlay at all or something like that, its a fucking outrage.
A lot of the new banks don’t even have accessibility built in to their touch enabled machines where half the interface is touch.
And while I am on a fucking flamefest the so called new supermarket and store tills/ donation machines don’t have any feedback at all.
Speech for bits and bobs but not the entire interface.
On the wordpress side, there are only so many plugins that I’d put on there.
And I wouldn’t pay for any other plugins.
A safe bet is anything on the wordpress plugin directory is safe.
And any helper plugins the author in that plugin links to are probably safe.
Anything wordpress recomends is safe to.
You wouldn’t get crazy plugins and anyway you don’t need that many.
Spam, capcha logical maybe, xml search, plugin for podcasts, maybe imbedded links if you want.
Maybe adds if you are in to that thing but really you shouldn’t need to pay for a plugin unless its something you like need or you are in a business situation where you are linking your software which may itself cost then maybe but even so.

Comments Off on comments for the below posts

another update

Hi all.
More updates this week.
For win7 users update preview, quality non security for dotnet roleup and win7 roleup for november 2016.
skype has an update for this month as well as ccleaner.
A little note, if your office is stupid the compatability mode kits are for office versions pre 2007, ie if you load office 2007 you are ok 2010 you are ok but you should kill it for 2013 and on 2016 it may actually screw things up on win10 update found that the hard way.
Other than that, we have reached the 6000 minimal goal on audiogame hub so yay for sonnar interactive.

Comments Off on another update

Another reason not to not use spotify

Hi.
Well it was inevitable I guess but look at this.
http://www.trustedreviews.com/news/spotify-may-be-killing-your-components-but-there-s-a-fix
The gist of it is that spotify the loved streaming service, is writing data to drives generating the playlist.
This slows performance down and reduces the lifespan of solid state drives.
I think I once hit a snag where a drive broke, actually twice but that was years away.
A normal drive should last about 30 years so we shouldn’t need more than 4 maybe 5 drives in our lives.
Spotify has been writing 1tb of data within a 40 second period.
This has been fixed according to spotify, but on the other hand its a blow to streaming in general.
I have itunes which is fine, it won’t write anything to my drive if its not running.
Its quite shitty but I need it for apps for my devices .
I still like the old go to website and buy drm free mp3s so I can share them with my cds, in my car with my friends and over the net to my other devices.
While a lot of us have streaming units, and smart phones, the majority don’t, net streamers are new and cost a lot and smart phones can also cost.
A lot of people may have dvd players that can handle mp3s, and a lot of us have minisystems that can also handle it.
A lot do have cd players these days.
However for those of us that share a system with a spotify user I don’t want my system to be slowly killed while I am not even using it, would rather get ransomware.

Comments Off on Another reason not to not use spotify

klite updates

Hi all.
On an extra note codecguide klite codecpack 12.53 is out today.

Comments Off on klite updates

updates to audiogame hub and other news

Hi all firstly the kickstarter is live

Secondly the next few things are out.
adobe software, flash and reader are having updates.
Microsoft software has updates, the same updates for the same software
all the time.
Out of these, the vertual hard disk, boot manager, authentication and
logon drivers are updated.
Everything else is the same.
Most of these need a present attacker
In addition for those that care, trump is the new president.
That means that for anyone that wants to buy tickets to world war 3 I
estimate you have a year to do that but if you want to buy tickets to
world war 3 before skynet or someone tries to sell them for you for an
outrageous price, like your soul or something then go and buy them now!

On a serious note, I really hope you guys know what you are doing,
effectively what you have done is install the latest security software
on your home network without reading the manual and following instructions.
Maybe it works and you get used to it, but maybe it crashes.
Good luck.

Comments Off on updates to audiogame hub and other news

small update

Hi all.
This is a small notification to tell you that klite codecs are at 12.50, this is being released before update days on wednesday my time but one has not come for a while.

Comments Off on small update

updates this week

Hi all.
Flash player has an out of band update, and win10 has some out of band security updates and a feature improvement, itunes and icloud have updates and that means the ios line of products are not long to follow.
It also appears that a event for apple has happened but who knows what that actually is.

Comments Off on updates this week

sonnar game update

Hi all prospective audio gamers out there.
Well its been a long long time since a news update.
Before we start, this post is going out to many locations at once.
A few of you may have got shorter posts about whats going on depending on your position on the net and so on.
I know at least 1 or 2 others will get a taylered post asking for something.
With this out of the way.
1. Kickstarter.
Its no secret we need at least 5000 dollars to 50000 dollars of funding.
5000 is minimal for 5 extra games plus another one which will be a full on rpg and which you need to buy.
Right now its not finalised but I will get more info when that comes on stream and thats coming soon.

  1. descussion group.
    the link to join is
    https://groups.io/g/sonnargames
    This will discuss everything related to sonnar interactive I think thats what it is or it may be sonnar, I forget.
    There is a news feed at sonnar.nz
    It is currently offline but should be up tomorrow.
    Also there is a forum on audiogamehub.com which all users are encouraged to join to post issues on etc currently looking for moderators.
    The descussion group is also looking for moderators.
    Email me sm dot everiss at gmail dot com for info.
    Sadly I can’t just put my email as a propper address or I’d get spammed to death!
  2. completion of the hub.
    After a month the compaign will be closed off and attempted completion should be finnished on feburary some time.
    Several new projects are happening in the rpg and adventure airieas.
    I can’t tell our secret formula but I do know that one is a roguelike rpg audio with pictorials for sighted people.
    I will continue to update all of you when more news comes in.
    Oh and before I go, please keep donating and sending fan mail we appreciate it greatly.

Comments Off on sonnar game update

important updates for the month

Hi all.
Well so much security news this week that I didn’t write my own update list.
For all users oricle java 8.11 and 8.12 are out.
Usual consumers can get 8.11 for security those that develop it or are advanced users can get 8.12 with extra features if they know how.
klite has a new update to its codecs as does skype.
For those with newer nvidia and amd video cards those are updated to.

Comments Off on important updates for the month

« Newer PostsOlder Posts »

go to sections menu


navigation menu

go to sections menu