AutoComplete not only makes it easier for you to automatically fill in forms and logon to secure sites – it also makes it easier for Trojans and hackers to gain access to your personal data and logon credentials. Here’s how to clear the sensitive data stored by AutoComplete and how to disable the feature to protect yourself from compromise.
1. Open the Firefox browser.
2. From the Firefox menu, select ‘Tools’
3. Select ‘Options’
4. Click ‘Privacy’
5. Click ‘Saved Forms’
It has long been supposed that the GSM mobile phone system was pretty secure and safe from hackers, well, it is, ish… Needless to say that there are ways and means for well-resourced and connected spooks and security agencies, but to date it has been beyond the ability of the average backyard nosey parker, but maybe not for much longer.
Engadget reports that Chris Paget, who has a track record for breaking supposedly secure technology in a helpful way of course, he’s one of the good guys. He has revealed what could be a sizeable flaw in 2G GSM.
At the recent DefCon security conference he was able to trick a number of mobile phone users into making calls through his laptop.
The idea appears to be absurdly simple. Basically he set up his laptop connected to a couple of small antennas as a phoney (pun intended) mobile base station, indistinguishable to phones and most users from the real thing. His kit exploited a feature in the GSM system that tells the phone to log onto the base station with the strongest signal. More »
In their hunt for market dominance, social networks Facebook, Google Buzz, and Microsoft Live are redefining what social means and in the process, straining the bounds of personal privacy.
Facebook, the big daddy of these three, has made quiet changes to its privacy settings, ones that members need to understand if they are going to manage the distribution of their personal information.
I find Facebook useful, mostly as a way to stay in touch with a select set of my friends and former co-workers. It’s not my public soapbox nor a window into my personal life, left open to the world for that, I have blogs and Twitter.
As much as I like Facebook, it has a flaw that I’ll never see in my blogs and hopefully never see with Twitter. It seems the proprietors of Facebook find it necessary, desirable, or profitable to change member privacy settings, usually with little notice to members. In every case I can think of, privacy settings have become more relaxed more open, if you will. More »
The disclosure of a back door allowing bad guys to repeatedly guess Gmail passwords should remind us all to protect our accounts with long and strong character strings.
There’s a straightforward way to protect your online accounts use signin phrases that are easy for you to remember but hard for others to guess.
The latest vulnerability affecting Gmail accounts was recently revealed by security researcher Vicente Aguilera Díaz in a posting on the Full Disclosure security list. (Aguilera previously revealed a Gmail flaw known as session-riding, which Google subsequently fixed, as reported by WS contributing editor Scott Spanbauer)
According to Aguilera’s new security alert, Google allows anyone with a Gmail account to guess another Gmail user’s password 100 times every two hours, or 1,200 times per day. No “captcha” keeps hacker bots from guessing passwords in this way. Worst of all: If a hacker controls, say, 100 Gmail accounts, 120,000 guesses can be made per day. Because Gmail accounts are free, many hackers control far more than 100 accounts, of course. More »