I was shocked today when I want to login to my site, ZoneAlarm Pro gave me warning, Firefox want to send password to Bloglah.com. Huh? When did I want to send password to Bloglah.com. I want to send password to CypherHackz.Net so I can login to my site. I talking to myself.
I denied the request and Firefox sent me back to Wordpress login prompt. I type in my user and password and try to login again. ZoneAlarm warned me with the same question. Hey! Not Bloglah.com but I want to login to CypherHackz.Net…
There is something wrong with my Firefox I thought. I close Firefox and try to login from Opera. Still get the same warning from ZoneAlarm. So the problem is not from Firefox. But my computer.
Read more…
After the release new patches for Firefox, 12 flaws discovered have been patched. Five of the patches issued in Firefox 1.5.0.4 were labeled “critical”. Mozilla has released four security updates to the 1.5 edition since it was made available last November.
Why you need to update your Firefox?
You need to update your Firefox because multiple vulnerabilities have been reported in Firefox. HTTP response smuggling attacks, could allow malicious code writer to steal login cookies or other sensitive data if the user has an account at the spoofed website.
Beside than that, hackers can run buffer overflaw to unpatch Firefox that would allow them plant malicious code on victim’s computer. Other flaws could let attacker run malicious JavaScript without the user’s permission.
I have updated my Firefox to the latest version. How about you? 
More Info: Mozilla Fixes 12 Flaws in Firefox Browser
Kaspersky AntiVirus 6 won the Computer Shopper Best Buy Award for this June edition of Computer Shopper. Ease of use, good perform in detection, easy to update and reasonable price are the things that make Kaspersky 6 worth to get the award.
Kaspersky 6 which released this 15th May 2006, was tested against other leading antivirus programs for the first time in UK.
Once install, you can leave Kaspersky 6 do it works. A reviewer commented: “An updated, friendly interface gives access to lots of options; many suitable for advanced users. However, if you don’t want to get your hands dirty playing with advanced settings or exporting virus scan reports in CSV format, you don’t have to. Simply install the software, let it update itself, and it scans your system regularly. A single slider selects one of three security levels.”
The reviewer add: “Perfectly, as it turned out. It was one of only three products tested to detect every sample. Interestingly, the other two (F-Secure and Steganos AntiVirus) also use Kaspersky Anti-Virus technology.”
More Info: Kaspersky® Anti-Virus 6.0 wins first Best Buy Award from Computer Shopper
Cypher says: I currently using KAV 5. Will upgrade it when KAV 6 support local folder update.
Based on Kaspersky researchers report, they found a new virus that attack StarOffice. They named it “Stardust”. Stardust is the first virus that created to infect StarOffice and/or OpenOffice. Written in Star Basic, the macro virus download an image (adult content) from the Internet and open it as a new document.
Kaspersky said, they will add up more information about Stardust in their Virus Encyclopedia very soon.
More Info: Virus.StarOffice.Stardust.a
This is kind of old news. But attention to all Skype users. Download the latest Skype update for your Skype software because a flaw has been found by Australian security firm.
Security-Assessment.com has discovered with the install of Windows-based Skype client. The flaw is dangeorus because an attacker can retrieve files from other Skype users through unauthenticated connections due to a flaw in the URI(Uniform Resource Identifiers). Skype was notified about the flaw earlier this month (May) and promptly issued a patch. General vulnerability dissemination was made on 22 May by Security-Assessment.com.
More Info: Australian company uncovers Skype flaw
According to research conduct by eEye, a vulnerability remote exploit has been found in Symantec Antivirus product. The flaw does not require any user interaction for exploitation and can compromise the systems. With this exploit, the affected system allow for the execution of malicious code with SYSTEM level access. Symantec software that affected with this vulnerability are Symantect Antivirus 10.x, Symantect Client Security 3.x and maybe other products also affeted with this exploit.
Source: eEye Digital Security
Cypher says: Fortunately I use Kaspersky on my comp. 
