Google's Project Zero has published details of a serious security failing in Symantec and Norton anti-virus products, allowing for simple remote code execution.Google's Project Zero has published details of embarrassing security failings in Symantec and Norton anti-virus products which allow attackers to execute arbitrary malicious code on a system simply by sending an email or hosting a web page.Discovered by Google's Tavis Ormandy as part of the Project Zero security programme, the vulnerabilities in Symantec's products are extremely serious: the anti-virus engine produced by the company suffers from a buffer overflow condition which can be used to execute arbitrary code on the target system as simply as sending an email - even if the target never opens said email.Symnantec has issued a patch which prevents Ormandy's exploit from executing, though concerns are likely to remain for some time with regard to the company's approach to developing supposed security products.Said patch should have already applied to affected systems, though Symantec is advising users to manually run the LiveUpdate tool in order to ensure that the flaw is patched properly and fully.According to Symantec, the company is 'not aware of exploitation of or adverse customer impact from this issue.'
Gillian Anderson has got a her fans all a-tizz down at Twitter with a hint that she might be prepared to fill Daniel Craig's shoes as 007.To secure the role, Anderson will have to beat off stiff competition from Idris Elba, Damian Lewis and Tom Hiddleston - all of whom are in the frame for the job.Hiddleston currently appears to be the front runner, based on his performance in the TV adaptation of The Night Manager.Bookmakers Coral earlier this month suspended betting on the thesp picking up Craig's Walther PPK after a "particularly large" wager sent the odds tumbling to 1-2.He recently told chat show host Graham Norton: "The position isn't vacant as far as I'm aware.Bootnote"Betteridge's law" is applicable to the headline of this article, with the answer being a definitive "no".
In-flight Internet provider Gogo Inc. GOGO 16.35 % took the rare step of canceling a bond sale days after it agreed to terms, saying it was in negotiations with an airline it didn t identify about serving a large portion of its fleet.The six-year bond had carried a low, or junk, credit rating and a 12% interest rate, an attractive rate when compared with 10-year U.S. Treasurys, which are yielding under 2%.Some investors speculated the potential airline deal would improve the company s finances and could help Gogo lower its interest rate when it tries to sell the debt again.But Gogo s move was unusual because the company had announced what was considered positive news.American can decide to terminate its agreement with Gogo for those planes if it deems Gogo s offer less favorable than the competitor, the prospectus said.The market viewed this news that came out in February about Gogo being in some sort of dispute with American as existential, and I think now it s starting to understand there s a lot of battles to be fought in this area, said Matthew Robison, senior analyst at Wunderlich Securities.
A gif showing the Harry Potter actor morphing into Frodo Baggins from Lord of the Rings is freaking millions of internet users out.They are almost indistinguishable — even though, at the age of 35, Wood is a clear 9 years older than his A-list doppelgänger.It s also sparked a host of other gifs, including this absolute gem:The similarity between the duo is obviously not news to Radcliffe, however.We re both kind of short guys with big blue eyes and brown hair, he told Marc Maron s WTF podcast in November, adding that the confusion may also come from having appeared in fantasy movies that came out at the same time.Radcliffe also revealed on the United Kingdom s The Graham Norton Show in 2012 that he a fan once gave him a photo of Wood to sign on the red carpet in Japan for a movie premiere — and he obliged.There is no time in that moment to explain to them in a language that is not their first that this is not me, he said.
You've probably heard of science fiction's Golden Age, that incredible period in the 1940s and '50s when masters of the genre like Isaac Asimov, Robert Heinlein, Andre Norton, and Jack Vance were in their primes."But once I realized that some of the best sci-fi from the 1904-33 period had fallen into utter obscurity, I felt compelled to start an imprint and reissue 10 of the titles that seemed most worthy of resurrecting."What's incredible about looking back on the Radium Age is that you realize so many of the science fiction themes we think of as solidly contemporary—from post-humans and the singularity, to zombie-populated dystopias—actually got their start way back in the early 1900s.But the Radium Age wasn t naive: We find many warnings about dystopian tendencies in the cultural, political, and economic tendencies of the period: Karel Capek and Aldous Huxley worried about the drive towards efficiency in all things that characterized both America and the USSR; Yevgeny Zamyatin and Edgar Rice Burroughs worried about the effects of Soviet-style collectivism on the individual; and Jack London's The Iron Heel 1908 , which is about fascist plutocrats who take over America, feels particularly relevant right now.My takeaway: While remaining cautious about totalizing visions of social harmony, we shouldn t conflate idealistic with naive, nor consider it the opposite of wised-up.Glenn noted that Radium Age sci-fi dealt a lot with evolution, a theory that was even more controversial a century ago than it is today.
A new report suggests as much as 93 percent of all phishing emails that look to trick users into clicking a nefarious link or open a dangerous attachment, attempt to install ransomware on the user s system.Adware, spyware, and other forms of nasty software have been prevalent for the better part of two decades.Protect all your hardware with Norton Security PremiumMainly it s because ransomware is easy.If a user pays up, you have money instantly.If you look at the price point of paying the ransom, it is rarely more than 1 or 2 bitcoin, that s $400 to $800, maybe $1,000 depending on the exchange rate, said Brendan Griffin, a threat intelligence manager at PhishMe.The report also suggests that ransomware is becoming easier to manage and distribute too, with ready-made kits allowing even those with little programming knowledge the chance to send out file-encrypting programs into the wild.
You ve got to fight the good fight for the music and what s best for the song.The Skulls collective instincts are indeed spot-on.And because of the Pixies thing, we thought, Well, he s not going to be too conservative.We were laughing about it: If anyone knew what we were doing in here … What s the line in that song — You protest too much.We can really play with it, and I m really looking forward to where that leads us.Things may not be ideal right now, but we could argue that when we put our first record out, people were sharing videos of our first gigs and our first concert in America, which were all filmed and all put up on YouTube, and I reckon a lot of people discovered us by seeing that content.
Culture wars, generation shift... hipstersSince the publication of the Agile Manifesto, there s been a steady acceptance that Agile is the way to go when it comes to software development.The old waterfall method was seen as something rather quaint and old-fashioned, the equivalent of hanging onto your vinyl LPs when the rest of the world was downloading onto their iPods.According to Gartner's IT Key Metrics Data, waterfall methods were employed on 56 per cent of development projects in 2015.The hold-up with agile is not due to technical issues – agile deployment remains the best option for most software projects – rather cultural obstacles need to be overcome.It s a resistance others have noticed.Although, he says, that he s never worked in a wholly agile environment.
ANALYSIS: Facebook founder and CEO Mark Zuckerberg made a mistake that many, perhaps most, people make and reused passwords for some social networking sites.To some extent, the breach that got Facebook s Mark Zuckerberg was more an amusing lesson than a catastrophe.For years, I ve used the password manager from Mandylion Labs for things that are really important.Most of them work in the background, and a few will audit your passwords and tell you if you have duplicates and then will help you find a new password and make changes.Unlike some competing products, it works on Windows and Mac computers but also runs on Linux and Unix machines and supports a wide range of mobile devices running iOS, Android, Windows and others.Symantec which owns Norton makes its VIP Access Manager for enterprises, which is designed to work with a variety of directory management services, including Lightweight Directory Access Protocol LDAP and Active Directory.
Check out the rest of the deals below, too.FeaturedDell Vostro 3900 Intel Core i5-4460 Quad-Core Win7 Pro Desktop for $329 use code: 379VOSTRO and VOSTRODEAL - list price $827.14 .DBPower 300A Portable USB Cart Jump Starter w/ 8,000mAh Battery for $26.88 use code: XHXFO8KL - list price $34.99 Norton Security Deluxe Software 5 Devices 1-Year PC/Mac 99 for $19.99 use code: SAVE20NOW - list price $39.99 .Laptop and desktop computersDell Inspiron 15 7559 Intel Core i5 Quad-Core 1080p Laptop w/ 4GB GTX 960m for $699.99 use code: 50OFF699 - list price $799.99 .Dell Latitude 3000 Intel Core i7 Dual-Core Skylake 15.6" Laptop w/ GT 920m 2GB for $739 use code: DELL$100 - list price $1199 .DBPower 400A Portable USB Cart Jump Starter w/ 12,000mAh Battery for $43.88 use code: XHXFO8KL - list price $56.99 .
On this day in 1984, a little movie called Ghostbusters opened in American theaters.Now, 32 years later, Paul Feig s re-imagined, female-led remake is ramping up its promotional campaign ahead of its July 15 release.Instead of a new trailer, though, Sony rolled out five new featurettes, one on each of the Ghostbusters—Abby Yates Melissa McCarthy , Erin Gilbert Kristen Wiig , Jillian Holtzmann Kate McKinnon , and Patty Tolan Leslie Jones —and the Ecto-1 played by a classic Cadillac hearse .It s not a ton of new footage, but the featurettes do reveal that the women know their Patrick Swayze film references including Road House , that Tywin Lannister Charles Dance plays Erin s boss at Columbia University, and that Patty isn t just an MTA worker—she s a big-time New York history buff.In short, the new Ghostbusters is still a month away, but now we know a little bit more about who we re gonna call.Twitter W. W. Norton & Company Feral Rites.
Leaders from six local companies plus the UC Santa Cruz Genomics Institute talked about how their operations use Amazon's cloud computing business, known as Amazon Web Services, which arrived in Santa Cruz quietly a year ago."They do everything we need better than everyone else," he said, noting Amazon Web Services has FedRamp security certification, which can save time and staff from conducting redundant agency assessments."I knew it was going to be cheaper," he said.For JoeBen Bevirt, Joby Aviation founder, who aims to fly a unpiloted four-person air taxi this summer, Amazon's attraction is the computing capability as his engineers research ways to improve propeller efficiency.Tech veteran Devon Heron said he was most impressed to hear Justin Laing unveil his 2-week-old startup, CrankLogic, which has four bike shops with 12 locations using his product powered by Looker and running on Amazon Web Services to give retailers data they can use to improve their business.------ c 2016 the Santa Cruz Sentinel Scotts Valley, Calif. Visit the Santa Cruz Sentinel Scotts Valley, Calif. at www.santacruzsentinel.com Distributed by Tribune Content Agency, LLC.
Ricky Gervais dropped big news during an interview on SiriusXM s Opie with Jim Norton Show on Tuesday: The comedian announced that David Brent: Life on the Road, his film spinoff of the British TV version of The Office, will stream on Netflix.Netflix have bought out the rest of the world again.Not surprisingly, he was clearly thrilled that Netflix had made its move.I want to do tours off the back of it.David Brent: Life on the Road will bring back Gervais hilarious Office character 15 years after the events of the series.While Netflix will stream the film in many parts of the world, distribution in the U.K., Australia, and New Zealand will be managed by Entertainment One, which co-financed the film along with BBC.
One of its products is an SSL Visibility Appliance, which sits in the middle of encrypted traffic flows in order to identify threats such as botnet communications, data exfiltration by hackers and so on .Last month Blue Coat was accused of misusing an intermediate certificate authority, backed by root certificate authority Symantec.The conflict between being simultaneously a certificate authority and certificate exploiter is huge, said Rob Graham of Errata Security, the developer of BlackICE intrusion prevention software.On the other hand, Blue Coat is a natural fit for AV anti-virus , letting customers AV scan things otherwise encrypted with SSL.Traditionally Symantec s security sales were split more or less evenly between corporate and consumers sales through its Norton line.Although the shift towards the enterprise strategy is clear, Symantec has no immediate plans to sell its consumer unit, which remains profitable, Reuters reports.
Norton Security Premium 2016They say you get what you pay for and while that s certainly true most of the time, bargain hunters know that you can get top-of-the-line products at great prices if you know where to look.Of course, if you follow the BGR Deals team and you re reading this post, you obviously know exactly where to look.For one day only, however, you can get a Norton Security Premium license that will work on 10 devices for just $28.The deal applies on a download code or a physical key card, and it s over at midnight tonight.Here s what you need to know about Norton:Norton Security Premium secures up to 10 PCs, Macs, iOS & Android devices, and includes parental controls to help your kids explore their online world safely, with 25GB of secure cloud PC storageInstantly download and receive your activation code to be protected in minutes – Antivirus is included, and your protection is always up-to-date to defend against spyware, malware, and unsafe websites, while safeguarding your identity and online transactionsNorton consistently outperforms the competition in independent, head-to-head tests; Winner of AV-TEST s coveted Best Protection Award and 37 time winner of PC Magazine Editor s Choice AwardPlease note that if you have an existing Norton subscription, your old subscription days do not get added to this new subscription, so it s best to activate your new subscription when the old one is about to expireInstalls in minutes, rated highest in usability, includes unlimited 24/7 access to a Norton technician, and offers a 100% guarantee that helps keep you virus free or your money back!Norton Security Premium – 10 Devices Download Code : $27.99Norton Security Premium – 10 Devices Key Card : $27.99 with free Prime shippingFollow @BGRDeals on Twitter to keep up with the latest and greatest deals we find around the web
Amazon DealsWe re starting this week off with our strongest daily deals post in a long time.Maybe the first day of summer inspired us or maybe we just got lucky and found some particularly hot deals when we dug through more than 450 of them this morning.Whatever the case, our readers end up being the biggest winners here, and that s what we re aiming for.Included in today s post are two gadgets that can potentially save you hundreds or even thousands of dollars.The first is a cable modem that will knock $120 off your annual internet bill when you buy it and return your rented cable modem.ZeroEdge 2.4- inch 135 View Angle, Full HD 1080P with G-Sensor Car Dashboard Camera Bundle with 16GB TF Card: $49.99 with free Prime shipping: $129.99 with free Prime shipping choose price from other sellers section ARRIS SURFboard SB6190 DOCSIS 3.0 Cable ModemDJI Phantom 3 Standard Quadcopter Aircraft with 3-Axis Gimbal and 2.7k Camera – Bundle with Spare Battery: $658.59 with free Prime shippingVeho Muvi Drone UAV Quadcopter with 1080p HD built in camera, Satellite Navigation and Live view APP: $499.00 with free Prime shippingToshiba CB35-B3340 13.3 Inch Chromebook Intel Celeron, 4GB, 16GB SSD, Silver Full HD-Screen: $260.93 with free Prime shippingAcer Chromebook 14, Aluminum, 14-inch Full HD, Intel Celeron Quad-Core N3160, 4GB LPDDR3, 32GB: $273.99 with free Prime shippingTurbot 3-Coils QI Wireless Charger Pad for All QI-Enabled Devices-Black: $22.99 with free Prime shippingDeal of the Day: PC Components and Accessories Ivation 1.7 Liter 7-Cup Precision-Temp Stainless Steel Cordless Electric Tea Kettle: $49.99 with free Prime shippingNorton Security Premium – 10 Devices Download Code TCP 60 Watt Equivalent 6-pack, A19 LED Light Bulbs, Non-Dimmable Soft White, LA1027KND6: $17.99 with free Prime shippingMAGINOVO Bluetooth Headphones: $27.99 with free Prime shippingFollow @BGRDeals on Twitter to keep up with the latest and greatest deals we find around the web
News: 64 percent of people assume that their information is safe on public wi-fi networks, such as those in airports, hotels and cafes.Public wi-fi networks are posing an increasingly significant security threat, but consumers are largely unaware of the dangers.When made aware of the risk, some of consumers' top priorities were unauthorised access to financial information, noted by 84 percent, and to their personal photos and videos, noted by 73 percent.This mentality ignores the extensive dangers presented by fake and unsecured wi-fi hotspots, which can be deployed by hackers in public spaces to try and capture information from unsuspecting mobile device users.Norton launched an Android and iOS subscription app which provides protection against hackers on these networks"We know many consumers believe that using a password to access public Wi-Fi means their information is safe, but that's not necessarily the case," said Nick Shaw, Vice President and General Manager at Norton EMEA."Norton WiFi Privacy helps protect information, such as passwords and credit card numbers, and denies access to hackers who may be eavesdropping on the same network."
Symantec report says people are aware of the dangers of public Wi-Fi but can t gauge security.And some take the risk anywayWi-Fi users are aware of the dangers of sharing personal information across public networks, but many place far more faith in the security of hotspots than they should – putting their credentials at risk.Research from Symantec found two thirds of respondents can t tell the difference between secure and insecure Wi-Fi networks despite four fifths aware of the dangers.Indeed, as many as a quarter of the UK s most popular Android applications transmit data over an unencrypted connection.But even despite this awareness three quarters fear having their passwords sold more than having intimidate pictures of themselves shared online , 78 percent admitted to sharing sensitive information over a public Wi-Fi network and more than a half have logged in on unsecured networks.We know many consumers believe that using a password to access public Wi-Fi means their information is safe, but that s not necessarily the case, said Nick Shaw, general manager of Symantec s Norton antivirus product, who suggests a Virtual Private Network, such as its own, can help protect people on unsecured networks.
"These vulnerabilities are as bad as it gets," Tavis Ormandy, a researcher with Google's Project Zero, wrote in a blog post.In certain cases on Windows, vulnerable code is even loaded into the kernel, resulting in remote kernel memory corruption."The post was published shortly after Symantec issued its own advisory, which listed 17 Symantec enterprise products and eight Norton consumer and small business products being affected.Ormandy warned that the vulnerability is unusually easy to exploit, allowing the exploits to spread virally from machine to machine over a targeted network, or potentially over the Internet at large.The flaws reside in the engine the products use to reverse the compression tools malware developers use to conceal their malicious payloads.The lack of updates came even though vulnerabilities had been found in some of the aging code and in some cases the disclosures were accompanied by publicly available exploits.
Google blasts AV security with 'patch or pay the price' red alertScores or thousands, or millions of enterprise and home Symantec users are open to remote compromise through multiple now-patched where possible wormable remote code execution holes described by Google as 'as bad as it gets'.The flaws are "100 percent" reliable against Symantec's Norton Antivirus and Endpoint according to renowned hacker Tavis Ormandy from Google's Project Zero initiative."They don t require any user interaction, they affect the default configuration, and the software runs at the highest privilege levels possible."The company also used code for its decomposer that was derived from open source libraries such as libmspack and unrarsrc which had not been updated for some seven years.It says it has added "additional checks" to its secure development lifecycle to spot similar flaws in the future, adding it has not seen in-the-wild attacks.Follow a multi-layered approach to security.
More

Top