SAFARI 3.1 FOR WINDOWS VIOLATES ITS OWN EULA, VULNERABLE TO HACK

Recoiledsnake writes "The new Safari 3.1 for Windows has been hit with two 'highly critical'(as rated by Secunia) vulnerabilities that can result in execution of arbitrary code. The first is due to an improper handling of the buffer for long filenames of files being downloaded, and the second can result in successful spoofing of websites and phishing. This comes close on the heels of criticism of Apple for offering Safari as a update for approximately 500 million users of iTunes on Windows by default, and reports of crashes. There are currently no patches or workarounds available except the advice to stay clear of 'untrusted' sites." Further, Wormfan writes "The latest version of Safari for Windows makes a mockery of end user licensing agreements by only allowing the installation of Safari for Windows on Apple labeled hardware, thereby excluding most Windows PCs."

Read more of this story at Slashdot.

ONE BILLION " RFID" CARDS VULNERABLE TO HACK

Even as RFID tech grows more and more ubiquitous, fears about its safety and security haven't dwindled -- which is why we're just disappointed, not surprised, to learn that over 1 billion RFID cards based on the Mifare Classic RFID chip are now at risk. Two different teams of security researchers managed to crack the encryption on the cards, which form the basis of a national payment system in the Netherlands and are used widely in other applications around the world. With the encryption broken, hackers can now make perfect clones of the cards, spoiling all that radio-frequency fun. There's no word on how easy that actually is yet, however -- one of the two hacks will be demonstrated later this week, and the other is being kept secret -- but still, it might be time to go back to cash and bump-proof locks, eh?

Continue Reading Here.
Read more!