March 2, 2009
Happy Monday, folks! The big news this week is the release of Movable Type 4.24. Both a security and a feature release, this version is considered a mandatory upgrade. Here are a few details you should know, straight from the official announcement:
- Release Type: Security Release. This update fixes a serious potential vulnerability which has not yet been exploited in the wild.
- Mandatory? Yes, this is a mandatory security upgrade.
- Performance Implications: None.
- Plugins Affected: None. Your current plugins should continue to work as expected.
- Templates Affected: None.
- System Requirements: This release has no new or additional system requirements.
- Licensing considerations: None. MT 4.24 is a free update for users of any version of MT 4.x.
- Upgrade Fatigue: No further mandatory updates are planned for Movable Type 4.2.
Tags: custom fields, food blogs, Movable Type, Movable Type Monday, password, plugin, upgrade
January 21, 2009
As a quick update from the information in Downadup Worm Infection: Cyber Attacks on the Rise in 2009 and Security and Hacking: Protect Thyself and Thy WordPress Blog concerning the still spreading Downadup worm, ComputerWorld and others are reporting that the Downadup worm now infects 1 in every 16 PCs for an estimated current total of over 9 million infections.
It now has its own Wikipedia page called Conficker as the worm is also known as Downup, Downadup, Conficker, and Kido.
According to the Wikipedia article, the computer work first appeared in October 2008 but spread fast after the first of the year. It specifically targets Microsoft Windows and Windows Server services using Windows 2000, Windows XP, Windows Vista, Windows Server 2003 and Windows Server 2008. It has infected a few governments and hospitals, but mostly corporate computer networks.
On October 15, 2008 Microsoft released a patch to fix the bug. Heise Online estimated that it had infected 2.5 million PCs by January 15, 2009, while The Guardian estimated 3.5 million infected PCs. By January 16, 2009, an antivirus software vendor reported that Conficker had infected almost 9 million PCs making it one of the most widespread infections in recent times. Conficker is reported to be one of the largest botnets created because 30 percent of Windows computers do not have a Microsoft Windows patch released in October 2008.
The virus can spread through websites and USB drives, like flash drives, cameras, portable hard drives, and other USB connecting devices that trigger AutoRun, so Microsoft is recommending people upgrade their Windows programs and turn off AutoRun. read more
Tags: antivirus, blog security, conficker, downadup, downup, hackers, infection, kido, password, Security, virus, worm