The malicious JavaScript in question only served the exploit code to browsers whose language was either English (U.S.), Chinese (China), Chinese (Taiwan), Japanese, Korean, or Russian. Once the initial checks passed, the JavaScript proceeded to load an Adobe Flash file named “today.swf.” This file ultimately triggered a heap spray in IE and downloaded a file named “xsainfo.jpg.”
More details of the vulnerability are available at the CERT Knowledgebase ( VU#154201). Here’s the full technical description:
Mass-blocking IP addresses with ipset
It has been shown, the hash approach as implemented by ipset clearly beats traditional mass-rule-blocking. It extends netfilter in a very useful way by decreasing the average response time. In the average over all samples made, IP sets are over 11 times faster. To conclude, let me show you another plot, this time I compared the ipset and iptables approaches within the same graph. The yellow bar shows ipset delays, the red bar does so for iptables.
via Mass-blocking IP addresses with ipset » daemonkeeper’s purgatory.
MK802 II Mini PC Now Costs as Much as Raspberry Pi Model B. Let’s Compare Them!
If you just look at the hardware specs, there’s no comparison, and MK802 II provides much better value than the Raspberry Pi with a much faster CPU, more RAM, internal storage and more. Only the GPU processing power may be subject to debate, but I don’t really have data to make a proper comparison. So if you just want to run the device as a media player for example, I’d just go with MK802 II since you’ll get a smoother experience and more video codecs are supported. The only caveat is that you’ll have to use Android (and see the status bar during video playback), as although Linux video support is available, it’s not ready for prime time, and never will.
via MK802 II Mini PC Now Costs as Much as Raspberry Pi Model B. Let’s Compare Them!.
China Says It Now Has 1.104B Mobile Users, While Mobile Communications Revenue Totaled $116.26B Over First 11 Months of 2012
The rapid growth of the Chinese smartphone market means that it is set to top the U.S. iOS and Android install base next year. According to a research report by Flurry released last month, China currently has 167 million iOS or Android devices, compared to 181 million in the U.S.
Google Apps Moving Onto Microsoft’s Business Turf
One big reason is price. Google charges $50 a year for each person using its product, a price that has not changed since it made its commercial debut, even though Google has added features. In 2012, for example, Google added the ability to work on a computer not connected to the Internet, as well as security and data management that comply with more stringent European standards. That made it much easier to sell the product to multinationals and companies in Europe.
via Google Apps Moving Onto Microsoft’s Business Turf – NYTimes.com.
World’s longest high-speed rail line opens connecting Beijing with southern China
The opening of the new line brings the total distance covered by China’s high-speed railway system to more than 9,300 km (5,800 miles) — about half its 2015 target of 18,000 km.
Germanys first Spam protection database
Here are 4 things that we recommend in order to stay off the UCEPROTECT-Blacklists and the Backscatterer List:
1. Do not use abusive techniques on your systems, and also tell your customers with their own servers not to do so.
The following techniques are considered abusive, even though some seem to have become very popular.
Sender callouts (also known as Sender Verify or SAV) or any other kind of Backscatter.
via UCEPROTECT®-Network – Germanys first Spam protection database.
2. Ensure that large amounts of garbage cannot be sent through your mailservers / smarthosts.
3. Ensure that your dynamic / dialups / homeusers cannot be abused as spam zombies.
4. Get clue about new customers, secure your servers and prevent open relays and open proxies at your dedicated line customers and at customers with static IP addresses.
A Microsoft Research Project Offloads GPS Data and Calculations to the Cloud to Save Battery Life.
The biggest power hog inside a smartphone is the GPS chip. This component can take 30 seconds just to acquire the satellite data necessary to get the information it needs for an initial location fix; it then has to churn through the downloaded codes to calculate its location precisely.
Microsoft researchers reduced that power consumption dramatically by offloading some of the work to the cloud.
Acer Plans to Launch $99 Tablet
At seven inches with a 1024 x 600 resolution screen and 1.2GHz dual-core processor, the so-called Iconia B1 tablet will have somewhat similar specs to Amazon.com Inc. AMZN +0.66%’s Kindle Fire and the Barnes & Noble Inc. BKS -0.66%’s Nook Color. But Acer plans to undercut those best-selling tablets’ $139 price tag by offering the Iconia B1 for around $99, the person said. The final shelf price will be determined country-by-country.
NASA plans to `lasso’ asteroid and turn it into space station
The craft would then turn on its thrusters, using an estimated 300kg of propellant, to stop the asteroid in its tracks and tow it into a gravitationally neutral spot.
From here space explorers would have a stationary base from which to launch trips deeper into space.
via NASA plans to `lasso’ asteroid and turn it into space station – The Times of India.
George Bailey lassos the moon.