Free Republic

No workarounds. Microsoft is warning users runing the Domain Name Service (DNS) look up feature on Windows Server to patch their installations against a critical vulnerability that permits attackers to remotely execute code on affected machines. The vulnerability has been assigned the common vulnerabilities and exploits index term CVE-2015-6125 and affects 32 and 64-bit versions of Windows Server 2008, 2008 R2, 2012 and 2012 R2, and the stripped-down Server Core variants, Microsoft said. Windows Server Technical Preview 3 and 4 are also affected

... Apple today released a substantial update for its iOS mobile operating system, containing bug fixes and multiple patches for remotely exploitable vulnerabilities. No fewer than 50 security flaws are patched in iOS 9.2, 19 of which permitted local and remote execution of arbitrary code without user interaction. The zlib file compression library, CoreMedia Playback media utility, libarchive archival utility and the OpenGL 2D and 3D graphics platform all allowed maliciously crafted websites to run arbitrary code on victims' systems, Apple said in its security advisory. Ten flaws in the WebKit rendering engine, used by Apple's Safari web browser and...

An Obama administration proposal to have some nonprofit charities report the Social Security numbers of donors giving at least $250 in one year is raising concerns about security, government overreach and another episode of IRS targeting. “There´s a big caution here. There´s a big yellow light that should be flashing for a couple of reasons,” Illinois Republican Rep. Peter Roskam tells Fox News. “Number one, the IRS has not demonstrated its capacity to hold this type of information from confidentiality and a security point of view.” The change would impact organizations that fall into the 501 (c)(3) category, which includes

Our team has recently monitored and analysed a new stack of drive-by campaigns which aim to spread the Angler exploit kit by injecting malicious code into compromised web pages. Because of the mechanisms involved and the attackers’ objectives, the campaign is prone to achieve large distribution and affect a big number of PCs and their users. The campaign is carried out by installing a cocktail of malware on the compromised PC. The first payload consists of the notorious data thief Pony, which systematically harvests all usable usernames and passwords from the infected system and sends them to a series of...

President Obama used his address to the nation on ISIS and terrorism to push for gun control. "This is a matter of national security," Obama said from the Oval Office. Watch here: "There are several steps that Congress should take right away. To begin with, Congress should act to make sure no one on a no fly list is able to buy a gun. What could possibly be the argument for allowing a terror suspect to buy a semiautomatic weapon? This is a matter of national security," said the president. "We also need to make it harder for people to...

Obama and the media have met every objection to dumping huge numbers of Syrian migrants, many of whom poll as supporting terrorists, with robotic claims that they will pass a "multi-layered vetting process". All this really means is interviews and a check of databases. If the terrorist doesn't blurt out "Death to America" during the interviews and never showed up on our radar, they're free and clear.

A man masquerading as a member of Congress walked into a secure backstage area without being properly screened and spoke with President Obama at an awards dinner last fall. Five days later, a woman walked backstage unchecked at a gala dinner where Obama was a featured guest. Months after that, two people strolled unnoticed past a Secret Service checkpoint into the first layer of the White House grounds. The incidents were among a half-dozen previously undisclosed security breaches since 2013 that were detailed in an extensive, bipartisan congressional investigation of the inner workings of the Secret Service. In a critical...

Bomb-sniffing dogs at train stations. Metal-detectors in every doorway. Police sharpshooters perched on rooftops. High-tech sensors and cameras capturing every move. Paris? Nope. Super Bowl 50 in Santa Clara.

The best part is when she asks the obvious follow-up -- is a path to legalization "amnesty"? -- and he won't even make eye contact. There's a spectrum of answers to this question on the right, of course: 1. Amnesty is citizenship without preconditions. That's the strictest definition, and naturally the one preferred by Beltway Republicans like Marco Rubio in his Gang of Eight days. (Marco Rubio circa 2010 had a different view.) As long as you're forcing illegals to jump through some sort of hoop, be it learning English, paying back taxes, going to the back of the line,...

The graffiti was found covering fuel tanks of four EasyJet planes at airports which cannot be named for security reasons. The probe comes two weeks after 130 people were killed by twisted Islamic State terrorists in co-ordinated attacks across Paris. Airports in the capital have tightened security since the horrific shootings and bombings amid fears of follow-up attacks. Airline security expert Philip Baum said: "Graffiti in itself won't hurt anybody." "But the ability of anyone to place a prohibited item near fuel tanks is a concern, of course." He added: "We know there are people working in restricted areas of...

A retired truck driver flying through Hartsfield-Jackson Atlanta International Airport (ATL) is warning American flyers their experience may not be secure, after he was able to pass a loaded handgun through a Transportation Security Administration checkpoint. Speaking to Britain’s Daily Mail, the flyer says while packing his gun was purely accidental, he feels the TSA should have caught it prior to departure. The incident happened on November 5, as 67-year-old Blake Alford was preparing to fly from ATL to Chicago Midway Airport (MDW). In his bag was a Ruger .38 pistol, loaded with a full magazine of seven hollow-point bullets....

“Anonymity is like virginity. You don't get it back once you've lost it,” writes one Register reader on Microsoft’s latest raid on your privacy.Microsoft pulled a major update for Windows after it blew away the user's privacy settings, allowing app developers and advertisers to glean the user’s identity. But that’s only part of the story, which gets murkier by the day.We already knew Windows 10 Threshold deleted third-party data monitoring tools and cleanup tools, including stalwarts like Spybot and CCleaner. It even disabled Cisco’s VPN software. Just a bug, said Microsoft.Two bugs would be a puzzling coincidence – but something...

Via Live FoxNews.com Video.

Craig Shirley, author of Last Act: The Final Years and Emerging Legacy of Ronald Reagan, is an impressive writer with a vast knowledge of Reagan's terms as president who has nonetheless gotten a very important part of Reagan's legacy wrong. Shirley has written about how Reagan would have reacted to the Paris massacre by enlisting today's "Christian Russia" and "free market China" in a coalition against Islamic terrorism.

Dell has published a guide on how to remove the web security backdoor it installed in its Windows laptops and desktop PCs. This confirms what we all know by now – that Dell was selling computers with a rather embarrassing hole it in their defenses. New models from the XPS, Precision and Inspiron families include a powerful root CA certificate called eDellRoot, which puts the machines' owners at risk of identity theft and banking fraud. The self-signed certificate is bundled with its private key, which is a boon for man-in-the-middle attackers: for example, if an affected Dell connects to a...

Analysis Dell ships Windows computers with software that lets websites slurp up the machine's exact specifications, warranty status, and other details without the user knowing. This information can be used to build a fingerprint that potentially identifies a person while she browses across the web. It can be abused by phishers and scammers, who can quote the information to trick victims into thinking they're talking to a legit Dell employee. And, well, it's just plain rude. A website created by a bloke called Slipstream - previously in these pages for exposing security holes in UK school IT software - shows...

(Reuters) - Major U.S. computer company Dell Inc said on Monday a security hole exists in some of its recently shipped laptops that could make it easy for hackers to access users’ private data. A pre-installed program on some newly purchased Dell laptops that can only be removed manually by consumers makes them vulnerable to cyber intrusions that may allow hackers to read encrypted messages and redirect browser traffic to spoofs of real websites such as Google or those belonging to a bank, among other attacks. . . . . .Dell said it would provide customers with instructions to permanently...

More than nine in every ten Germans support the government increasing security measures on German streets in the wake of the Paris terror attacks. The regular Deutschlandtrend poll by broadcaster ARD showed that 91 percent of Germans support "appropriate security measures" such as the heavier police presence and security checks which were announced in the immediate aftermath of last Friday's Paris terrorist attacks. At the same time, only five percent of those questioned were afraid that such security measures could impinge on their constitutional rights. ...

President Barack Obama is not interested in hearing intelligence information about Islamist groups he does not consider to be terrorists -- even if they're on the U.S. list of designated terrorists, investigative journalist Sharyl Attkisson revealed on the Steve Malzberg Show Thursday. The host of Full Measure told Malzberg that according to sources close to the White House, Obama stubbornly refuses to hear about intelligence surrounding radical Islamic terror groups. "I have talked to people who have worked in the Obama administration who firmly believe he has made up his mind, I would say closed his mind, they say, to...

A Polish prostitute on her way to ply her trade in Boston was plastered on booze and addled by Ambien when she tried to open an exit door on a trans-Atlantic British Airways flight, prosecutors said. Kamila Dolniak, 32, was unable to make her $500 bail yesterday, her lawyer said, after she was arraigned in East Boston Municipal Court on a charge of interfering with an aircraft operation during the London-to-Boston flight Tuesday. Prosecutor Emily Hamrock said Dolniak first drew attention of a flight attendant while attempting to smoke an e-cigarette. She then walked around the cabin aimlessly, saying she...