Tuesday, April 02, 2013

Saturday, February 09, 2013

Searching For TV News Online

tvnews1
Searching For TV News Online: "“TV News Search and Borrow” allows you to keyword search and then view online and for free, clips from TV news programs from a variety of U.S. sources. You can view 30 second clips (one at a time) or “borrow” complete programs for a fee direct from the Internet Archive."

TV News contains material from a number of networks including ABC, CBS, Fox, NBC, CNBC, Comedy Central, C-SPAN, CNN, MSNBC, and others. Many of the terrestrial network material is recorded from local affiliates in Baltimore, San Francisco, and Washington D.C. So, for a few markets, TV News also provides access to local television coverage.

'via Blog this'

Thursday, January 03, 2013

New IE Zero-Day Attack Bypasses Key Microsoft Security Measures - Dark Reading

New IE Zero-Day Attack Bypasses Key Microsoft Security Measures - Dark Reading: "Microsoft says the vulnerability resides in IE6, IE7, and IE8 only, and that attacks were waged via IE8. After first issuing an alert on the bug over the weekend, Microsoft then released a temporary workaround that prevents the exploitation of the bug. The software giant is currently working on a patch for the flaw.

Security researchers point to cyberespionage attackers possibly out of China as the culprits in the attacks, which targeted the websites of U.S.-based Council on Foreign Policy, as well as Capstone Turbine Corp. But a new Metasploit module using the bug makes attacks more likely against multiple targets, they say.
"At this point, we are aware of two sites, [and] CFR is one of them. I cannot disclose the other one. It is likely we will see more sites getting infected in the coming hours and days," says Ziv Mador, director of security research at Trustwave. Mador says he can't confirm whether the attack came out of China, but describes it as a "sophisticated" attack that employed "memory-spraying" to work around Microsoft's Data Execution Prevention (DEP) and Address Space Layout Randomization (ASLR) features aimed at preventing exploitation.
Aside from the drama of a New Year zero-day attack, the exploits highlight yet another APT-type attack employing drive-by website or so-called "watering hole" techniques. This is not your typical spearphishing APT attack, where the attackers use email to go after users associated in some way with the targeted organization in hopes of gaining a foothold in their networks. With this new attack and previous ones seen in 2012, the attackers poison websites where their potential targets frequent, in hopes of infecting them and getting their foot in the door of the targeted organization."



'via Blog this'