Featured Posts

[APK] Seeder entropy generator to provide significant... I found this on the XDA website. It works amazingly well for all rooted Android phones. It will speed up your phone and prevent lagging. Made my HTC Sensation feel a lot more responsive. Hey everyone, So, I was experiencing significant lag as we all do from time to time, and decided I was going to get to the bottom of it. After tracing and debugging for hours, I...

Read more

Sky Go Android App released It certainly has been a long time coming and even though it comes with strings, Sky's "Sky Go" app has finally been released for Android. Don't get too excited just yet though. Sky Go will only work on supported Android devices running 2.2x and 2.3x. Not only that but to "ensure that our rights contracts are fully upheld we are also unable to support any Android devices...

Read more

Fixing the issue of the Asus Transformer TF101 not charging, SOLVED!Fixing the issue of the Asus Transformer TF101 not... I purchased an ASUS Transformer TF101 a few months ago and I have been very happy with it. That was until recently. When I plugged it in it would no longer charge. I read on multiple forums that this was a common issue for Transformer owners and some fixes included putting the transformer plug into the freezer to cool it down and also to bend the pins slightly to try to...

Read more

Google’s response to Siri is codenamed Majel, could... Interesting. I've not tried Siri nor do I know anyone that has an iPhone 4GS that can give me reports on it. By all accounts it's the dogs nutsack so hopefully this app will be just as good. Google’s response to Siri is codenamed Majel, could be released by end of year | Android and Me.

Read more

Carrier IQ: How the Widespread Rootkit Can Track Everything on Your Phone, and How to Remove ItCarrier IQ: How the Widespread Rootkit Can Track Everything... This post is especially for the paranoid amongst us. Recently an Android Developer discovered a rootkit called Carrier IQ that is capable of logging everything you do and worst of all it comes pre-installed on almost all smartphones, including Android, iPhone and Blackberry. Click on the link below for more information Carrier IQ: How the Widespread Rootkit Can Track...

Read more

SSH Tunnel – keeping you safe online

2

Posted on 22-09-2011 | By: admin

Category : Android, General, Internet, LAN

Tags: , , , , , , , , ,

I own a HTC Desire HD and I find it extremely handy when it comes to banking online or checking out my social networks.

With the emergence of software such as Firesheep and Faceniff I feel that mobile security is more paramount than ever.

This is where SSH Tunnel comes in. SSH Tunnel allows you to connect to a secure SSH (secure shell) server and pipe all your internet traffic through an encrypted tunnel. Some of the main downfalls of SSH Tunnel are that you need a rooted Android phone, access to a SSH server and a little bit of technical knowledge.

If you are interested in more leave a comment and I can discuss it in more detail.

Google users targeted by forged security certificate – Technology, Business – Independent.ie

Posted on 30-08-2011 | By: admin

Category : Chromium

Tags: , , ,

Security researchers have discovered a forged internet security certificate designed to allow hackers to spy on Google users’ private emails and other communications.

The forgery was first reported by an Iranian web user, which has raised fears it may be part of efforts by the government in Tehran to monitor dissidents.

The “man in the middle” attack also further undermines general confidence in the Secure Sockets Layer SSL, a security protocol used to authenticate all kinds of sensitive internet traffic, including online banking. SSL certificates are meant to act as an independent third party to verify that communication between a website and a browser are secure.

The forgery was issued to the unknown attackers on 10 July by DigiNotar, a Dutch SSL certificate authority. For more than two months it would have allowed them to set up fake versions of Google websites that appeared genuine to users and their web browsers. This would in turn have allowed the hackers to collect usernames and passwords for their targets’ genuine Google accounts.

The forged certificate was valid for google.com and all its sub-domains, including mail.google.com.“Today, when I tried to login to my Gmail account I saw a certificate warning in Chrome,” said alibo, a Google user who said he was in Iran and was first to report the attack.

Chrome has details of Google’s genuine security certificates built-in, so it was able to detect the forgery when a fake website presented it to alibos browser.

“I think my ISP or my government did this attack,” he added.The Electronic Frontier Foundation, a digital rights group based in San Francisco, said the incident demonstrated fundamental problems with SSL and the dozens of authorities such as DigiNotar that are trusted to issue certificates.

“The certificate authority system was created decades ago in an era when the biggest on-line security concern was thought to be protecting users from having their credit card numbers intercepted by petty criminals,” the EFF said.

“Today internet users rely on this system to protect their privacy against nation-states. We doubt it can bear this burden.”

In a similar incident earlier this year systems at Comodo, another certificate authority, were found to have been hacked and forced to issue forged certificates for Google, Microsoft, Skype and Yahoo! services. The firm said evidence indicated its attackers were based in Iran.

It is unclear how DigiNotar’s attackers persuaded it to issue the forged google.com certificate, and the firm has not commented. The major browser makers – Google, Microsoft and Mozilla – all said they would use software patches to revoke the firm’s authority to issue SSL certificates.

Google said in a statement: “Were pleased that the security measures in Chrome protected the user and brought this attack to the publics attention.”While we investigate, we plan to block any sites whose certificates were signed by DigiNotar.”

via Google users targeted by forged security certificate – Technology, Business – Independent.ie.

Chinese Magical Hard-Drive

Posted on 08-04-2011 | By: admin

Category : Uncategorized

Tags: , , , ,

Scamming the customer Chinese style! At least it’s not as bad as my mate paying $50 for a ‘camcorder’ in San Francisco and finding out he was actually sold a bottle of piss!

Founder’s Blog – Jitbit: Chinese Magical Hard-Drive.

Buffer Overflow Exploit in Action

Posted on 06-04-2011 | By: admin

Category : Internet, Microsoft

Tags: , , , , ,

The link below shows why you should always keep your security patches up-to-date and also not click on any attachment regardless of whether it is a PDF file, a Word document or anything else from someone that you don’t know.

In the case outlined below the exploit was able to evade anti virus and malware scanners so as you can see the next best form of defense is common sense.

Beware the article is kinda technical so it might be a bit over the head of some non techy folk.

Buffer Overflow Exploit in Action – Imperva Data Security Blog.