×
Communications

Widespread Compromise Of Yahoo-Backed Email In New Zealand 47

Posted by timothy from the spam-is-best-in-sushi dept.
First time accepted submitter Bitsy Boffin writes "Xtra, the largest ISP in New Zealand, which outsources email provision to Yahoo, has in the last two days been subject to a widespread email compromise, causing potentially thousands of accounts to send spam messages to every address in their webmail address books. Discussion at Geekzone centers around this potentially being a continuation of the Yahoo XSS exploit. While Telecom NZ, the owners of Xtra internet service provider indicate that the problem was "resolved", reports of spam from its members continue unabated. Telecom NZ are advising those affected to change their passwords."
Cloud

Mega Vulnerability Reward Program Starts Payouts: 7 Bugs Fixed In First Week 41

Posted by timothy from the paid-in-bitcoins-of-course dept.
An anonymous reader writes "If you're a hacker or a security researcher, this is a reminder that you don't have to take on Google's or Mozilla's software to get paid for finding a bug. In its first week, the Mega vulnerability reward program has already confirmed and fixed seven bugs, showing that Dotcom really does put his money where his mouth is. Although Mega hasn't shared how much money it paid out in the first week, how many bug submissions were made, or even who found which bugs, the company did briefly detail the discovered security holes. It also confirmed that the program is here to stay and urged those participating to find more severe bugs."
Bug

What To Do When an Advised BIOS Upgrade Is Bad? 467

Posted by timothy from the wishful-thinking dept.
Bomarc writes "Twice now I've been advised to 'flash the BIOS to the latest,' once by a (major) hard drive controller maker (RAID); once by an OEM (who listed the update as 'critical,' and has removed older versions of the BIOS). Both times, the update has bricked an expensive piece of equipment. Both times, the response after the failed flash was 'It's not our problem, it's out of warranty.' Given that they recommended / advised that the unit be upgraded, shouldn't they shoulder the responsibility of BIOS upgrade failure? Also, if their design had sockets rather than soldering on parts, one could R/R the faulty part (BIOS chip), rather than going to eBay and praying. Am I the only one that has experienced this type of problem? Have you been advised to upgrade a BIOS (firmware); and the upgrade bricked the part or system? If so, what did you do? Should I name the companies?"
Bug

Six Months Without Adobe Flash, and I Feel Fine 393

Posted by timothy from the alternatives-emerge-in-a-wait-no dept.
Reader hessian six months ago de-installed the Adobe Flash player on all of his browsers, probably a prudent move in light of various recent vulnerabilities. "This provoked some shock and incredulity from others. After all, Flash has been an essential content interpreter for over a decade. It filled the gap between an underdeveloped JavaScript and the need for media content like animation, video and so on." But it turns out that life sans Flash can still be worth living. Are there things you rely on that make Flash hard to give up?

Slashdot Top Deals