Deja vu? Only a day after Microsoft's monthly patch day, a new security hole in Microsoft Office is being exploited in cyberattacks.

These attacks take advantage of a previously unknown vulnerability in PowerPoint for which no patch is available, security experts at Symantec said in an alert issued Wednesday. The flaw might affect Microsoft Office in general, according to the alert.

Microsoft is investigating the issue, it said in an e-mailed statement Thursday. The company is aware of attacks that exploit the flaw, but those are "extremely limited, targeted attacks," it said. For an attack to be successful, users must open a malicious PowerPoint file provided to them, for example via e-mail, Microsoft noted.

It seems like history is repeating itself. Days after last month's "Patch Tuesday," security experts raised the alarm on a "zero-day" flaw in Microsoft's Excel that was being used in targeted attacks. Microsoft released a fix for the Excel vulnerability on Tuesday.

Like the Excel flaw, the PowerPoint vulnerability can allow an attacker to gain complete control over a vulnerable PC, Symantec said. "When a user launches the (malicious) PowerPoint document, the vulnerability is triggered. Successful exploitation of this issue leads to remote code execution," Symantec said in its alert. 

Existing support documents and content, however, will continue to be available through the Microsoft Support Product Solution Center Web site. This Web site will continue to host a wealth of previous How-to, Troubleshooting, and Configuration content for anyone who may need self-service.

Microsoft is retiring support for these products because they are outdated and can expose customers to security risks. We recommend that customers who are still running Windows 98 or Windows Me upgrade to a newer, more secure Microsoft operating system, such as Windows XP, as soon as possible.

Customers who upgrade to Windows XP report improved security, richer functionality, and increased productivity.
End of support for Windows XP Service Pack 1

On October 10, 2006, Microsoft will end all public assisted support for Windows XP Service Pack1 (SP1). After this date, Microsoft will no longer provide any incident support options or security updates for this retired service pack under the policies defined by the Microsoft Support Lifecycle policy.

To enhance the security of your computer and to continue to receive updates for Windows XP, we recommend you upgrade your computer, for free, to Windows XP Service Pack 2 (SP2).

Check the Microsoft page for more information.
http://www.microsoft.com/windows/support/endofsupport.mspx

But these days, operating a modern-era fireworks production is much more like Hollywood in the sky. Orchestrating the shows that will take place over the next few days requires artistry, a fanatical interest in safety, and a healthy dose of geek, to boot.

Eric Tucker, the lead creator for the Fourth of July fireworks show in Boston that is broadcast on ABC, is planning a show that will be exactly 22 minutes and 32 seconds long. For every minute of pyrotechnical splendor, however, at least four hours of planning has been done – and that doesn't include the time it took him to test fireworks in Europe and Asia, as well as actually set up the firing equipment. He started planning nearly four months ago.

"It costs more than you think and less than it's worth," Tucker said. "I don't talk about how much but it's a very large production. It's one of the largest in the country. There's a lot of pressure every year to do it."

Most of the major fireworks shows, including Tucker's, will be choreographed with a program called Show Director by Infinity Visions. The PC-based software has been available since 1996 and will be used in San Francisco, New York, Chicago, and all of the major theme parks including Universal Studios, Disneyland and Disney World, Six Flags and Paramount Parks.

PointerSo what are your favorite pieces of fireworks music? The editors of PC Magazine picked their favorite tracks -- click here to read them and talk about yours.

Software Makes Fireworks' Booms BeautifulThe software allows firing cues to be placed at certain times, superimposed against the waveform of the music that will be played; fireworks can be used to emphasize themes, provide percussion, or simply create effects that complement the music. Once the show is choreographed, the instructional files are uploaded into the firing machines, and the programmers can step back and simply push "play". The computer sends the appropriate signals down a web of cables to the firing modules, which in turn are connected to the shells. Like all major productions, preparation is key.

"Once you lock up the code and the controllers start spinning, they're just going to run their program, so you just watch to see if anything goes wrong and you can adjust something -- or at least you can duck," Tucker said.

The show uses back-up redundancy systems and sub-networks that don't rely on a single network as a point of failure.

Tucker uses firing equipment designed by Pyrodigital Consultants, Inc., the company that designed the first digital firing machine in 1982. The original machine ran on DOS programs before Show Director came along. Prior to the invention of digital machines, firing equipment was manual, requiring someone to stand there with headphones on, firing according to the cues on a tape. Continued...http://www.pcmag.com/article2/0,1895,1984167,00.asp

Attention all runners, cyclists, rollerbladers, walkers or anyone who routinely likes to take jaunts around the park or neighborhood and would like to get a little geeky about it. By geeky, I mean streamline your excursions and suck all the data you can from the experience. "That’s the way I roll” and with this week's download, you can too!

This program, called Gpedometer, was written by a runner who wanted to get a better idea of the distance his various routes were, without lugging around a GPS or a pedometer. He did this by writing a route planner for the incredible Google Maps that allowed him to utilize its capabilities with a mix of other services, providing him with an incredibly useful application. Since Google Maps allows you to zoom in to roof level of almost any region (within the U.S.), you can easily pinpoint where your trek will take you, whether you're going two miles or 20 miles. Once you have the route laid out (which is easy to do with the recording feature that Gpedometer has), you can then calculate the distance you've gone and even estimate how many calories you burned on the trip.

Units - Use the English/metric radio button beneath the distance boxes to choose your units.

Elevation - If you want to view a graph showing the elevation of each point plotted against distance, click the small or large link next to the Elevation heading. (Note that this will only work for U.S. maps. Sorry about that!) Update: Actually, some users report that this works in Canada and the UK as well!

Mile Markers - By default, markers will be placed at the end of each mile or kilometer and at the beginning or end of your course. Use the Turn off markers and Turn on markers links to toggle whether links are shown or not.

There and Back Routes - If your course is a "there and back" type thing, click the Complete there and back route link once you reach the midpoint.

Calorie Counter - If you wish to calculate how many calories you've burned in the course of your run, click the Turn on calorie counter link and enter your weight in the Weight box.

Printing - Click the Print map link to temporarily reformat the screen to make it more suitable for printing.
You can also find resources at the site that will help you with every aspect of the service. These resources include a message board, FAQs, an instruction manual, among other things that should have you plotting courses like Magellan.

So, as I always say, if this is something that you are interested in, please give it a try. This is a wonderful little program that I’m sure a lot of you will find great use for!
You can find Gpedometer at http://www.gmap-pedometer.com/. 

Microsoft faces second WGA lawsuit   By Dawn Kawamoto, CNET News.com
Published on ZDNet News: July 5, 2006
Microsoft has been named in a second lawsuit over its antipiracy Windows Genuine Advantage program, which plaintiffs allege acts as "spyware" on their systems.

Engineered Process Controls, Univex and several other parties filed a class action lawsuit Friday in U.S. District Court in Seattle, alleging Microsoft installed "spyware" on their computers as a "critical security update." The suit comes days after another complaint containing similar allegations was filed in U.S. District Court in Los Angeles.

In this most recent lawsuit, the parties allege Microsoft violated the Computer Fraud and Abuse Act, the Consumer Protection Act, the Computer Spyware Act, and also engaged in intentional misrepresentation of the software program.

Microsoft, however, contends the two lawsuits do not present a fair picture of WGA.

"The two lawsuits appear to be similar in the claims and both are without merit," said Jim Desler, a Microsoft spokesman. "They distort our antipiracy program…and the harm piracy brings to Microsoft and to customers."

Although the WGA feature is designed to validate the authenticity of Windows software installed on a user's PC, it recently raised the ire of some users when Microsoft began delivering the WGA prerelease as a "high priority" item automatically built into Windows updates.

The software, which scans users' hardware and software for information such as their Internet Protocol address, was initially designed to transmit information back to Microsoft every time users booted up their computers. But the software giant has since scaled back the frequency of the transmissions to twice a month and informed users about ways to disable the WGA alerts.

The patches were delivered in seven security bulletins, five of which Microsoft deems "critical," its most serious rating. One of the urgent fixes addresses a flaw in a Windows component that could be used to spread a worm. Other updates deal with Office flaws that have already been used in targeted attacks.

Four updates tackled five Windows-related issues, including a security hole in a Windows component called "mailslot." The flaw poses the most severe risk in Tuesday's bunch, security specialist Symantec said in a statement. By sending a specially crafted network packet, an intruder could use the hole to remotely commandeer a vulnerable computer, without user interaction. The flaw affects Windows 2000, Windows XP and Windows Server 2003, Microsoft said in security bulletin MS06-035.

This means that the "mailslot" flaw could be exploited to launch a worm that could wreak havoc on the Internet. Because the flaw allows malicious code to execute without the PC owner doing anything, such as opening a file, it gives a worm a way to self-replicate.

"This vulnerability is the only worm candidate among the patched vulnerabilities today," Monty IJzerman, senior manager at McAfee Avert Labs said in a statement. Systems running Windows XP with Service Pack 2 and Windows Server 2003 with Service Pack 1 are at a lesser risk to this flaw because the operating systems do not have services listening on mailslots by default, according to Microsoft.

A "mailslot" is a temporary mechanism utilized by applications and operating system processes to facilitate unidirectional data transfer on Windows systems.

An error in the Windows Dynamic Host Configuration Protocol, or DHCP, client on the same systems similarly opens the door to a remote attack via a malicious network packet. However, an attacker has to be on the same subnetwork as the intended target, Microsoft said in bulletin MS06-036.

"Remotely exploitable vulnerabilities can pose a serious threat to organizations because they do not require user interaction and can be attacked from across the Internet," Dave Cole, director of Symantec Security Response, said in a statement.

Three of Microsoft's security bulletins address flaws in Office. Of those, one is dedicated to Excel and offers a fix for a total of eight flaws in the spreadsheet application. This includes patches for two so-called zero-day vulnerabilities that have already had attack code pushed out on the Internet.

All of the 13 Office-related vulnerabilities addressed by Tuesday's patches can be exploited by crafting a malicious Office document, according to Microsoft's security alerts. They could give complete control over a vulnerable system if the document is opened, the software maker said.

Office 2000 users are at higher risk because that version of the productivity software does not display an extra warning when it opens files from the Outlook e-mail client, Microsoft said. The Office and Excel flaws are detailed in security bulletins MS06-037, MS06-038 and MS06-039.

In addition to the five critical bulletins, Microsoft released two alerts labeled "important," one notch below the highest rating. Both primarily affect Web servers running Windows software.

One, MS06-034, addresses a flaw that primarily exposes Web servers that allow users to upload new content, Microsoft said. An attacker could upload a malformed ASP file and commandeer the server. The other, MS06-033, could allow an attacker to view the contents of the applications folder on a Web server.

Microsoft recommends that people install the critical fixes immediately. The updates are available via the Windows Update and Automatic Updates tools. Temporary workarounds are outlined in the security bulletins for those who can't immediately apply the patches.

Experts at SophosLabs™, Sophos's global network of virus, spyware and spam analysis centers, have warned of a spam campaign that poses as a breaking news report about the death of Russian President Vladimir Putin, but is really an attempt by hackers to infect computer users with a Trojan horse.

The email claims that Vladimir Putin, president of the Russian Federation, has died.

However, embedded in the HTML email is a hidden script that exploits the ADODB.Stream vulnerability to secretly download the malicious Troj/Dloadr-ZP Trojan horse from a Russian website. The Trojan horse is designed to download further malicious code which could allow remote hackers to gain unauthorized access to the victim's computer.

Although the link pretends to be that of a BBC News report, the user is really directed to another Russian website purporting to be the home of a construction firm focused on providing heating systems for apartments and advertising training seminars.

"It appears whoever sent this spam is trying to discredit the Russian firm in what we call a 'joe job'. Users may think that the spam was purely an attempt to drive traffic to the construction company's products and seminars, whereas in fact hackers are also using the opportunity to try and infect unprotected PCs," explained Graham Cluley, senior technology consultant for Sophos. "Everyone should protect their computers with security patches, up-to-date anti-virus software, firewalls and a solid defense against spam. Hackers have used bogus stories about breaking news stories in the past to encourage people to open emails, and they're likely to do so again."

"Normally, a joe job is a spam campaign forged to appear as though it came from an innocent party, with the intention of incriminating or pinning blame onto them," continued Cluley. "In this case, users wanting to read the news report may think that the emails came from the Russian website they are directed to selling seminars and heating systems. In truth, the spam emails came from a zombie network of compromised computers around the world, being exploited by the hackers. If users aren't careful they could find their PCs part of the zombie network as well." 

Experts at SophosLabs™, Sophos's global network of virus, spyware and spam analysis centers, have warned of a new phishing email that attempts to trick PayPal users into calling a phone number and parting with their credit card information.

Trend Micro, more commonly referred to as Housecall, offers free virus scans and in most cases can fix damage down by a virus or worm that your computer may have contacted.  The program works well.  The first time one uses the free program it is necessary to download a small program. Trend Micro walks you through the process.   Then the virus scans are quite simple for each return.  Go to http://housecall.antivirus.com/  then choose the link   "Scan without registering".  Follow the directions.

You should disable any anti virus program that you have running.  If you do not have a virus program I recommend that you use one of the programs offered above first and then download and install one of the free programs listed below or install any anti virus program you have purchased.

AVG Free
AVG Free Edition is the well-known anti-virus protection tool. AVG Free is available free-of-charge to home users for the life of the product! Rapid virus database updates are available for the lifetime of the product, thereby providing the high-level of detection capability that millions of users around the world trust to protect their computers. AVG Free is easy-to-use and will not slow your system down (low system resource requirements).
http://free.grisoft.com/freeweb.php/doc/2/lng/us/tpl/v5

Avast
Avast has been "anti virusing" for quite awhile.  The following info comes from their download page:   Avast! Home is now free of charge for HOME users for NON-COMMERCIAL use. You can find more info here.
http://www.avast.com/eng/down_home.html
Note: This product is free for home non-commercial use after registration!
HINTS:   Click on the English Version Link and download the installation file.  Then click on the installation file and follow the directions.  You will need to return to the download page and click on the link to get the registration key.   It will be sent to you in an email after you provide some registration information.  This will give you 14 months of coverage including any updates which can be set to auto download.  You can reregister for additional free coverage at the end of the 14 months.
You will want to browse around and choose from the many options available for operation.  This process will take some time and digging.

Another good free program is:
http://www.free-av.com/
This one installs a bit easier than Avast.

Spybot - Search & Destroy 1.4 - product description
Application to scan for spyware, adware, hijackers and other malicious software.
Choose one of the sites to download from.
http://www.safer-networking.org/en/mirrors/index.html

Ad-Aware Personal provides advanced protection from known data-mining, aggressive advertising, Trojans, dialers, malware, browser hijackers, and tracking components. This software is downloadable free of charge.
http://www.lavasoftusa.com/software/adaware/

 
The table below lists the top 5 virus and malware files listed by Trend Micro during the week from July 02 to July 08, 2006.

1.  TROJ_MDROPPER.AS    
2.  TROJ_PPDROPPER.A   
3.  TROJ_BAGLE.AV     
4.  TROJ_DLOADER.DEU      
5.  TROJ_MITGLIED.AF
 

Here are a few sites of many that can help you determine if an email is a hoax or real.

http://www.snopes.com/
http://vil.nai.com/VIL/hoaxes.asp
http://kumite.com/myths/
http://www.symantec.com/avcenter/hoax.html
http://www.scambusters.org/VirusHoaxes.html
http://www.sophos.com/virusinfo/hoaxes/
http://www.truthorfiction.com/
http://www.quatloos.com/

Despite the past two historic and devastating hurricane seasons, a new regional survey reveals a dangerously high percentage of residents in hurricane-vulnerable states still aren’t prepared, don’t take the threat of hurricanes seriously, and have significant gaps in what they know about hurricanes – even those who live within 30 miles of the coast.
Among the key findings that concerned emergency managers: 
Of those surveyed:
    * 56% don’t feel vulnerable to a hurricane or related tornado or flooding,
    * 60% have no family disaster plan,
    * 68% have no hurricane survival kit,
    * 83% have taken no steps to make their homes stronger,
    * And 13% said they might not or would not evacuate even if ordered to leave — leaving tens of thousands of residents at grave risk.
“Katrina was quite a national wake-up call, yet it seems too many residents are still asleep,” said Max Mayfield, National Hurricane Center Director.  “We’re facing another active and potentially deadly season in just a few weeks.  It’s vital that residents of hurricane-vulnerable states take the threat seriously and get prepared.
http://www.hurricanesafety.org/home1.shtml

EasternBeaches.com: Massive directory of sites dealing with beaches on the Eastern Seaboard.
http://www.easternbeaches.com/

USLA Safety Tips: lots of good tips from the United States Lifesaving Association.
http://www.usla.org/PublicInfo/safety.asp

He's got chubby cheeks. He naps a lot. He eats with his hands. He lives with his mother. Not exactly the kind of character you'd expect to find at the center of high finance, international diplomacy, fan frenzy, government scrutiny, and scientific fascination. But Tai Shan is a giant panda cub, and that makes him, well, not your average bear.

Born at 3:41 a.m. on Saturday, July 9, 2005, at the Smithsonian National Zoological Park in Washington, D.C., Tai Shan is the first offspring of Tian Tian and Mei Xiang, male and female giant pandas shipped from China to Washington in December 2000. There are only eight other pandas in the United States: two at Zoo Atlanta in Georgia, two at the Memphis Zoo in Tennessee, and four at southern California's San Diego Zoo, where Bai Yun has had three healthy cubs in the past seven years. Together these 11 animals represent an extraordinary investment of scientific resources—and cash. 
http://www7.nationalgeographic.com/ngm/0607/feature1/index.html