January 2nd, 2009

Posted by Jason Perlow

In round two of Perlow gets a Bott Beating, I am educated by our esteemed Windows expert that you don’t need a “Run” function in the Windows Vista or Windows 7 Start Menu because “The Windows Key” combined with “R” is the same function. Wow, I didn’t know that. Really.

I have to admit here, this is probably not something that is unique to actual computer experts who have been using PC’s prior to 1981.  I’m sure plenty of people have no idea what the Windows Key does.

Click on the “Read the rest of this entry” link below for more.

The Windows key was introduced by Microsoft in Windows 95. At the time, most PC’s used the IBM AT 101 key layout. It was only a few years later that many keyboard manufacturers and PC makers started to license its use and that it became standard. Still,  many of us never got into the use of the Windows Key. I informally polled a number of real veterans this cialis soft tablets morning — most of which have been using PCs 20 years or more — and most of them don’t use the Windows key. Some of them, like former PC Magazine Editor In Chief Bill Machrone, use CTRL-ESC instead.

I personally own a number of keyboards manufactured by UNICOMP, which is the company that bought the rights to produce the original IBM buckling-spring AT keyboards. They aren’t cheap, their basic model, which is a 101-key model which has no “Windows” key, is  $69. They do also make a model with the Windows Key, but I don’t own any. They are incedibly durable keyboards, and if you are someone who writes a great deal or who lusts after a good-ol style IBM keyboard, I highly reccomend them.

September 24th, 2008

Posted by Dancho Danchev

In what is slowly turning into a endless loop of hacktivism activities, Bill O’Reilly’s BillOreilly.com has been compromised during the weekend, with personal details including passwords in plain text for 205 of the site’s members already leaking across Internet forums, as a response to his remarks regarding Wikileaks as a “one of those despicable, slimy, scummy websites” which recently published private information of Sarah Palin’s private email.

On Friday, Wikileaks issued the following press release :

“Fox News demagogue, Bill O’Reilly, has been hacked and the details passed to Wikileaks. Wikileaks has been informed the hack was a response to the pundit’s scurrilous attacks over the Sarah Palin’s email story–including on Wikileaks and other members of the press, Hacktivists, thumbing their noses at the pundit, took control of O’Reilly’s main site, BillOReilly.com. According to our source, the security protecting O’Reilly’s site and subscribers was “non-existent”.

The following image, submitted to Wikileaks and confirmed by Wikileaks staff, offers proof of the hack. The image, clearly obtained from BillOreilly.com’s administrative interface, shows a detailed list — including passwords — of BillOreilly.com subscribers. Although Wikileaks has only released one page, it must be assumed that Bill O’Reilly’s entire subscriber list is, as of now, in the public domain.”

How did they do it “this time”?

According to the article at Wikileaks, the hacktivists seem to have been brute forcing the URL for the administration panel, and once successfully finding it, access the unencrypted data :

“According to Marston, the hackers were able to access the list by trying a large number of variations of the website’s administrative URL. He said all affected members have received an email and a phone call informing them of the breach and urging them to change their password. The site has since been completely locked down, Marston said.”

Moreover, it’s also worth pointing out that the passwords were stored unencrypted, evidence of the practice can also be seen within the screenshots of the admin panel. As far as the website’s administrative URL is concerned, it has since been changed once it leaked online (w3.billoreilly.com/pg/jsp/admin/managecustomers/newpremiummembers.jsp), which isn’t excluding the opportunity for abuse of the subscribers email addresses in spear phishing attacks, “for starters” since some of the users have already admitted of using the same password at different web sites, including PayPal.

The impact of the breach, and the measures taken to notify the victims according to the site :

“The BillOReilly.com site experienced a minor hacking incident on Friday, September 19th, 2008.

** ALL CREDIT CARD INFORMATION FOR EVERY MEMBER IS SAFE
** NO MEMBERS WHO JOINED BEFORE WEDNESDAY, SEPTEMBER 14th, 2008 WERE AFFECTED AT ALL.
** 205 new Premium Members who signed up last week had their name, hometown, email address, & BillOReilly.com password stolen.
** We have contacted those 205 members by email and telephone.
** We are working with the proper authorities to track down the perpetrators. “

Another personal message issued by Bill O’Reilly regarding the process of tracking down the “perpetrators” was posted on Sunday :

“The FBI and Secret Service are close to indicting some of the perpetrators and cialis shelf life we will keep you posted when the arrests are made. All premium members receive the full backing of our legal team and if anyone is hassled in the least, please inform us immediately. In the latest case, no proprietary information was obtained by hackers and we have safeguards in place to protect everyone who does business with us.

Rest assured that we are on this. Our defense of Sarah Palin has led some criminals to attempt to disrupt our enterprise. At this moment federal authorites and our attorneys are compling information against these people. Again, if any person is bothered in any way – please let us know. We stand behind our products but, most importantly, we stand behind you. We’ll get the bad guys. Count on it.

Bill O’Reilly
9/21/08″

Who’s claimed responsibility? 4chan members planning at Ebaumsworld using “secret words” :

“According to my source this is a common tactic among the secret hacking group hidden amongst the users of ebaumsworld. he states “yeah we will start planning on 4chan so ebaums doesnt get in trouble…we use secret words and stuff to let the others know who we are” when i asked why he was telling me all this he said “man this has just gone too far.. at first it was a joke then we found out that the same usernames and passwords worked for those peoples paypal accounts and im afraid of what they will do.”

It appears that the “forum fraction” is also planning a DDoS attack against BillOreilly.com according to this interview, which wouldn’t be the first time the site has been under DDoS attack, and definitely not the last. From an analyst’s perspective, nation2nation hacktivism conflicts always provide the best and most accurate understanding of a particular’s country’s capabilities into this space, compared to hacktivism actions basically sticking to the standard practices as DDoS attacks, which just like any tip of the iceberg receive most of the attention due to the ease of measuring their impact next to the rest of the hacktivism tactics used.

The bottom line – good time to point out why you shouldn’t use the same password on different web services, and that the big picture having to do with Wikileak’s vision of a little less secrecy, and a little bit more transparency, ultimately better serves the world and gives power to the people whose collective consciousness, if not brainwashed, is supposed to be shaping the way we live.

March 3rd, 2008

Posted by Ed Bott

I’ve been using Windows for nearly two decades, and during that time I’ve tried hundreds of programs. Most come and go, but a handful have stood the test of time for me by solving a particular problem particularly well.

In this article and accompanying gallery, I list 10 Windows programs I use every day. Every one adds a feature that makes Windows easier to use or can help make you more productive. Each one comes from a company that has proven its ability to support the product and improve it over time. I’ve been using every program on this list for long enough to recommend it without reservation.

Most of the programs in this list are free; for those that aren’t a trial version is available. All of the programs in this list run on Windows XP Service Pack 2 and Windows Vista (and most run on other editions as well). I’ve devoted one full page to each program, with info and download links and enough details to help you decide whether it’s something you want to try. I’ve also provided screen shots for each program cialis sales online to help you see what I’m talking about.

Process Explorer (Sysinternals/Microsoft) The most amazing diagnostic tool ever, created by Microsoft Distinguished Fellow Mark Russinovich. If you use Task Manager, you should replace it with this free alternative, which does so much more.

RoboForm (Siber Systems) Create strong passwords, save them, and automatically fill them in using Firefox or IE. If you’re frustrated by passwords, this is your answer.

Keyfinder (Magical Jelly Bean Software) If you had to reinstall Windows tomorrow, do you know where your product ID is? If the answer is no, get this tiny free utility, which finds product IDs for dozens of popular programs (including Windows and Office) and lets you print or save the results.

ClipMate Clipboard Extender (ThornSoft Development) When I set up a new PC, this is the first program I install. It’s that good. I save thousands of keystrokes a year thanks to this gem of a utility.

FeedDemon for Windows (NewsGator Technologies) The best damn RSS reader in the Windows world. Period. And it’s now free.

Windows Live Photo Gallery (Microsoft) You’ll have to search for it, but this updated version of the Windows Photo Gallery that debuted in Vista is worth the hunt. If you’ve chosen to steer clear of Vista, no worries: It works in XP too.

Allway Sync (Usov Lab) This powerful tool synchronizes the contents of folders over a network or to external storage and is an ideal complement to most backup programs.

SnagIt (TechSmith) As a technology writer, I use this screen capture program nearly every day. Even after six years, I’m still discovering new tricks it can do.

IE7 Pro If you use IE7, you need this free add-on, which provides ad blocking, tab management, inline search, crash recovery, and all the other features Microsoft left out.

FinePrint (FinePrint Software) Over the years, I can’t even imagine how many trees I’ve spared with the help of this program. If you print more than a few pages a month, you have to try this.

 TrueCrypt

cialis sale hspace=”7″ vspace=”3″ width=”120″ height=”85″ align=”left” /> Protect your sensitive data with this free open-source disk encryption software that creates a virtual encrypted disk within a file and mounts it as a real disk.

 Hotspot Shield

cialis reviews src=”http://www.hotspotshield.com/images/hss-logo.gif” border=”0″ alt=”Hotspot Shield” title=”http://ct.zdnet.com/clicks?t=73158203-fcda8243b2af06197976dd4e0ab0dea0-bf&brand=ZDNET&s=5″ hspace=”7″ vspace=”3″ width=”120″ height=”120″ align=”left” /> Hotspot Shield is free software that ensures anonymous and censor-free internet usage by encrypting all communications to and from your computer to protect you from online spying.