A quick assessment of the NZ landscape shows that over a sample of 100 of the latest attack signatures (specifically looking at the result of the successful SQL Injection) indicates that there are 68 distinct infections over some 18 “NZ” sites… all IIS5/6 sites. Not good news for some and given that a couple of these sites are in NZ’s “top 100” and would service a not-so-insignificant number of unique browsers.
Note: I’ve performed this assessment out of the google cache so I’d expect that this would be somewhat worse, given SEO (in general) and the timing of google spider visits.
Plenty of details on the dedicated SANS page.
So here is something we don't promote much but is available: Geekzone Subscriptions. In summary Geekzone subscribers have the ability to upload images (handy for forums and blogs), the option to browse Geekzone without advertising and the ability to create and manage their own "by invitation only" private forums on Geekzone.
To make things a bit more interesting we have just changed the private forum limit from one to 15. That's it: each Geekzone Subscriber can create and manage up to 15 private forums, each with its own access list, only visible to those allowed to access the private discussions.
We also have our own e-mail domain available to our users, free of charge. Geekzonemail gives users a Windows Live ID that can be used wherever Windows Live ID are accepted - including Windows Live access, Windows Live Messenger (MSN) and more. It provides Windows Mobile users with push e-mail and you can access your email with Microsoft Outlook Connector or Windows Live Mail Desktop.
I use /n software on the Geekzone server for some IP stuff. The company has some cool piece of software and the subscription gives you access to all components for your development environment.
Of course if you buy I get an extra 3 month in my own subscription. So let's go for it. The promotion code to get your 20% off /n software Red Carpet subscription is "66275696471637D604765656B6A7F6E656E236F6E2E6A7".
Basically the attackers know of an ActiveX with a vulnerability and will try to first install it on your PC to them exploit it. But to make it "invisible" the attacker uses a "safe" ActiveX, such as the Access Snapshot ActiveX.
Why is it safe? Because it is a Microsoft developed and signed ActiveX, which in most cases will install silently on the victim's PC.
Once this "safe" ActiveX is installed, then the attacker can exploit the vulnerability.
So your PC is safe, but not so much. Read more in the Symantec Security Response page.
The response was great. First friends posted here and in the Geekzone forums about their own account status. I also got some of their status through Twitter.
It seemed it was a single incident - so your accounts should be safe.
I contacted Telecom Help Desk via e-mail and received a reply in less than 45 minutes - very good if you ask me. The answer wasn't quite what I expected though, so I had to contact Flickr directly.
At the same time someone in the Telecom team escalated the issue to the Yahoo! Flickr team.
Sometime this morning my account was reprovisioned with the correct PRO status, while some time later Tara from the Yahoo! Flickr team contacted me to say all was in working order. Tara even posted in our Geekzone forums to confirm this.
Seriously, when the account problem showed up I thought this would be a black hole - having to deal with a third party help desk, account issues, etc. But it all worked well, in a really fast way.
Overall great work from Telecom and the Yahoo! team - and in what I think it's great time.
Telecom's original plans were for 850MHz GSM/EDGE in rural areas and 2100MHz WCDMA in the cities.
Let's see what is happening, tomorrow...
Arghhh. When are things going to look good for the Telecom Yahoo!Xtra team and their included premium services? Ive just posted this in our Geekzone forums and contacted Telecom - someone is looking into this now:
Your Flickr Pro account expired on . You have 316 photos but you're now only seeing the last 200!
Perhaps you'd like to renew your Pro account?
You'll even get 3 months free for purchasing before 30 September 2008!
You can learn more here:
No date in the "expired on", and indeed my PRO status is gone. Another storm coming? Or is just my account?
I contacted the Telecom support and received a response, which is obviously not good enough. I don't think I should be contacting Flickr since this is a Telecom service:
I am sorry to hear about your Flickr Pro account has been cancelled. Unfortunately we do not support the Flickr here, I would need to refer your to the help section within www.flickr.com/help/ There is a "contact us" option on this page that maybe your best option.
I can confirm that your Xtra account is all active and can see no reason why you shouldn't have a valid Flickr account.
UPDATE: After talking to someone at Telecom New Zealand the case was escalated to Yahoo! in the U.S. It looks like there aren't any other cases of accounts being cancelled so let's see how it goes - waiting for my account to be reinstated.
UPDATE: The Flickr team at some point reprovisioned the account and it is all fine again. Also their team member Tara posted in the forums to confirm this was ok.
The Anti Counterfeiting Trade Agreement (ACTA) is being negotiated internationally by some nations, including New Zealand, and it affects everyone's lives in many countries, including New Zealand, Australia, the U.S, Mexico and E.U.
This is what the InternetNZ distributed to its members and I recommend you read the InternetNZ ACTA submission:
ACTA seeks to impose a raft of enforcement measures which have the potential to further erode citizens’ fair-use rights in respect of digital copyrighted material.
For instance, a global legal regime for Internet distribution of copyright protected works may be introduced.
To date, negotiations have been held behind closed doors and publicly-available information is scant, with the exception of an ACTA discussion document leaked online.
In response to a call for submissions from the Ministry of Economic Development, InternetNZ filed a submission in July that expressed a range of concerns the Society has with Internetrelated aspects understood to be under consideration.
For example, ACTA may see the introduction of procedures enabling rights holders to expeditiously obtain information from ISPs identifying alleged infringers, and could also introduce remedies against circumvention of technological protection measures.
InternetNZ Executive Director Keith Davidson questions the need for New Zealand to be discussing Internet provisions as part of ACTA.
“We already have legislation - the Copyright (New Technologies) Amendment Act 2008 - that covers off the illegal distribution of digital sound and video recordings via the Internet. The Act also deals with circumvention of technological prevention measures and with repeat digital copyright infringers.
“Further, the Act has only recently been passed, with many of its newly-amended and introduced provisions yet to take root and be fully tested,” he says.
InternetNZ believes that the proposed ACTA Internet distribution and information technology provisions, if implemented, will do little to strengthen New Zealand’s existing measures against digital copyright infringement.
The Society is also concerned that they may coincidentally further restrict what should be the legitimate use of digital content by New Zealanders.
“We strongly urge the Government to adopt a wait-and-see approach with respect to the effectiveness of New Zealand’s amended Copyright Act before committing to sweeping multilateral digital copyright enforcement measures as part of ACTA,” says Davidson.
In terms of page views we had 25.72% increase (total traffic), with 45.04% increase in our New Zealand traffic.
This comes from a Unique Browsers increase of 8.37% (total traffic) and 19.33% (New Zealand traffic).
Great stuff! Thanks to all our users, thanks to our moderators, thanks to everyone!
It looks like people are always complaining about Vodafone's customer services (ref 1, 2, 3). I have experience their "customer service" myself before porting my number out to Telecom.
The most common issue seems to be customer services people promising to fix things and not doing it. Or promising to call back and not doing it. Or people sending e-mails to Vodafone and no receiving a reply.
Every week I receive one or another email from someone trying to contact Vodafone to solve account problems. Why they contact Geekzone instead of Vodafone is something else to discuss - blame "browse by Google" - but I read some interesting stories, mostly people complaining about requests to the customer services not being actioned.
It seems the main problem is "not doing it". Well, "not doing it" doesn't cut, specially now that Vodafone is charging prepay customer $1 per call to their help desk when a human being is involved (and don't worry, you don't count - it's the human being on the other side of the line).
Of course problems happens with other operators and Internet providers - actually it happens so much that an industry body was created to help resolve problems that are not solved.
The Telecommunications Dispute Resolution (TDR) is here to help. There are rules you must follow. Before going and filling a complaint you should read How the Process Works and How to Make a Complaint.
The TDR issues a quarterly report of its activities. In its second report you find that Billing and Credit are 45% of the complaints, with Service/Product Deliver coming in second with 31%. Customer Services comes in third with 11% and Network Performance is fhourth with 8%.
Perhaps after you lodge a formal complaint Vodafone and others will fix their customer services?