Xanda's Blog !~!

1st April 2009 – Selamat Menyambut Conficker.C Al-Mubarak

Mar
31

has been observing increasing trend of IT security related discussion and information sharing about a worm variant called Conficker.C on the internet. It is expected that the enhanced version of previous worm variant Conficker.A and Conficker.B will trigger on the coming 1st of April. Security researchers believe, the latest outbreak of Conficker variant C began first spreading at roughly 6 p.m. PST, 4 March 2009 (5 March UTC). would like to highlight that this is not a new outbreak nor a new piece of malware. Removal and mitigation strategies were highlighted in our previous advisory.

[">Read more]

Quiz : Can You Spot the Differences

Mar
27

Storage Fest

Mar
26

I’ve got all these in one month++ time. I gave 1 to my mom already. So, ini yang tinggal. Bukan nak kira size, brand or harga, tapi sentimental value yang ada padanye 🙂

Detects Adobe Flash flaws with SWFScan

Mar
24

HP SWFScan, a free tool developed by HP Web Security Research Group, will automatically find security vulnerabilities in applications built on the Flash platform.

HP is offering SWFScan because:

  • HP’s research shows that developers is increasingly implementing applications built on the Adobe Flash platform without the required security expertise.
  • As a result, HP is seeing a proliferation of insecure applications being deployed on the web.
  • A vulnerable application built on the Flash platform widens your website’s attack surface creating more opportunity for malicious hackers.

How SWFScan works and what vulnerabilities it finds:

  • Decompiles applications built on the Adobe Flash platform to extract the ActionScript code and statically analyzes it to identify security issues such as information disclosure.
  • Identifies and reports insecure programming and deployment practices and suggests solutions.
  • Enables you to audit third party applications without requiring access to the source code.

Dowload this free tool to help your team find Flash vulnerabilities in your web applications.

Yauba : The World’s First Privacy Safe Search Engine

Mar
13

Yauba is a brand new search engine from India. One of the important features of Yauba is its stress of user’s privacy and security. Yauba operates in complete incognito mode and does not collect any personal data and another thing is, it can be used as WEB PROXY!

Most search engines try to gather and record as much information about their users as possible. They (or their parent companies) operate massive server farms with even more massive databases that secretly record your entire search history, your private contacts, the identity of your family and friends, your personal emails, your conversations and chats, your browsing habits, your physical location, details on the software you use on your computer, your IP address, and much much more. This is no exaggeration. Indeed, if you ever saw exactly how much most search engines actually know about your private details, you would be completely shocked.

At Yauba, we completely reject the view that search engines somehow need to keep mountains of data on their own users. Instead, we take the exact opposite approach. We do everything we can to protect the privacy of our users.

  • This is why we do not keep any record of any of your search terms, browsing habits or any other personally identifiable information.
  • This is why we automatically delete any and every piece of personally identifiable information from our servers on a continuous basis.
  • This is why we can have the shortest privacy policy (9 words) of any major Internet service in the world.
  • This is why you can visit almost every Internet site through the main Yauba service on a completely anonymous basis (with the only exception of file types that use other external third party software or plug-ins for downloading or playing).

Lets give Yauba a try at http://www.yauba.com/