I see the Naked Conversations are really going ahead... Small companies seem to be getting infected with the problems that plague the big companies.
Of course this code would be executed on the security context of the logged-on user - so if you don't use your Windows computer as an Administrator the risks are minimised - but still there.
This means that an attacker could create a website with some special code, and without warning, just by visiting the page, a series of commands could be executed on the user's computer. This obviously include things such as deleting files, changing configuration even installing malware such as keyloggers or trojan and bot clients.
On its advisory Microsoft says it is completing development of a cumulative security update for Internet Explorer that addresses the “createTextRange” vulnerability. The security update is now being finalized through testing to ensure quality and application compatibility and is on schedule to be released as part of the April security updates on 11 April 2006, or sooner.
Really I hope this is sooner than later. Can you imagine an entire army of password stealling, spam bots and other malware, installed without the owner's knowledge?
According to Microsoft, customers who use the Microsoft Internet Explorer 7 Beta 2 Preview that was released on 20 March 2006 are not affected by the public reported vulnerability. also users of other browsers such as Firefox are not being affected by this.
This can not be exploited automatically through e-mail or while viewing e-mail in the preview pane while using Outlook or Outlook Express. Customers would have to click on a link that would take them to a malicious Web site, or open an attachment that could exploit the vulnerability to be at risk.
While Microsoft is working on the fix, security firm eEye has released a patch that will secure things for now, but should be removed before installing the permanent fix coming from Microsoft.
Our sessions is entitled From Spare Room to Board Room: Making great ideas into a successful business.
"In this discussion Chris Auld, Mauricio Freitas (that's me) & Rod Drury will discuss their successes and learning experiences with their businesses, their plans for the future and where they see IT and software development going. This is an essential session for any budding business leaders wanting to start or grow a business from their passion in software."
You want to know why? Well, I think the session covers the whole gamut of experiences from the spare bedroom (me, with my decision to leave a large IT organisation to run Geekzone, Microsoft MVP Mobile Devices), Office (Chris Auld, CEO of Kognition, developer of mobility software and processes, Microsoft MVP Mobile Devices), and Boardroom (Rod Drury, entrepeneur, CEO of Aftermail, now part of Quest, Independent Director at Trademe, ex-Microsoft Regional Director and MVP).
If you are interested in .Net in general, and some other Microsoft technologies, check the .Net Code Camp page, check the agenda and join the weekend fun of coding.
I noticed this when reading through my Newsgator subscription and found this:
Of course since then Google has fixed this - the original "hacked" page is now a screenshot on flickr.
By the time I found about this I noticed a few entries on popular link sites, such as Digg.
The Google Blog is now back, and a notice posted by the administrators says "[it] was unavailable for a short time tonight. We quickly learned from our initial investigation that there was no systemwide vulnerability for Blogger. We'll let you know more about what did happen once we finish looking into it."
The blog was mistakenly deleted, which allowed the blog address to be temporarily claimed by another user. The official Google Blog says this was not a hack, and nobody guessed their password. Simply bad operations.
"For example, we were sold on a business plan and told we could use the Blackberry service to read from our corporate email accounts and forward email to our devices - with a slight delay. I'm told it's about 15 minutes, but can be ratcheted down if they detected increased traffic levels. I was also told that if I deleted items on the Blackberry, they'd be deleted on my inbox. Makes sense. I was told the same was true the other way around. That makes even more sense and seems even more critical. After all, you don't want to come back from lunch, sit down at your workstation and delete 50 messages only to find that they're still sitting on your Blackberry later that day."
"Well, guess what? That's not the way it works unless you shell out $5K for their Enterprise version. Yikes. Suddenly the whole experience gets very complicated and very expensive. They already support connecting to your IMAP or POP mailbox. Can't they reconcile deletions bidirectionally? They can. They choose not to."
Of course you have to read the whole post to get the context, but in summary, you only get the benefits if you go for the Enterprise version.
I think more people should read about Windows Mobile and the MSFP.
This is a campaign to help children with cancer. With each donation a new flower will grow, with your name. You can go back to the site to see how the frightening scenario changes, and help the little girl.
Even if you are not in New Zealand, you can still donate to the Child Cancer Foundation by visiting the Fight the Monster website. So, what you all waiting for?
TechTalkBlog features up to date and interesting news items from around the Australian and New Zealand technology and blogging community. Yes, it does include New Zealand bloggers (this blog is listed there too), and they should update their FAQ page to state this.
The site offers a way to improve relevance by allowing readers to give an interesting post a big thumbs up by clicking on the Thumbs Up Icon. When you give a Thumbs Up, you are helping the community by helping TechTalkBlogs work out what are the most interesting stories floating around the local blogosphere.
The feed is updated every 2 hours and is always changing. Microsoft is supporting the initiative.
Bitsdujour.com will offer a "one deal a day" software title, offering one product a day, in a limited quantity, at a big discount - and available for download only.
Ellen, one of the persons involved in this new site, tells me it will have Windows software, with the PDA software throw in now and then (she is one of the marketing people at iliumsoft.com).
I am curious to find out the software titles available - I got a hint for the first one, but not the exact title. The only problem is that to get some of the bargains we based in New Zealand will have to be up at night because of the timezone. If it's like some other "one deal a day" sites the stock generally goes very fast early in the day!
"To hold a pen is to be at war."
"Judge a man by his questions rather than by his answers."
"Common sense is not so common."
"A witty saying proves nothing."
"It is hard to free fools from the chains they revere."
"Prejudices are what fools use for reason."
"I disapprove of what you say, but I will defend to the death your right to say it."
I've downloaded and installed the update, and I am now configuring my Microsoft Exchange Server connection with this device.
The update was really quick, and in less than 10 minutes the device was ready to use again.
We will have a review on-line later this week.