Great Reviews!Need help setting up your website, installing Apache, PHP, MySQL, or RavenNuke(tm)?Need help customizing or designing scripts?Please contact us via the Contact Us option for further details and pricing.
I doubt that many of you out there have even heard of this threat, but it's real and it's out there to destroy your day. And to keep thing interesting there are varing versions of IS2010. I will brag and tell you that since 1995 I have never had a virus on any of my computers. But, while visiting a website that I frequent in the evening hours to watch old movies, IS2010 jumped all over my computer.
Now if you read up on the threat you will find that it's identified as a Rogue Virus. That is something that sends out fake alerts to get you to usually purchase a virus removal software program to remove the "fake" virus. BE AWARE these programs usually do nothing. Actually I found a website a few minutes ago that offers a program that rids your computer of this threat. You download the program, it scans your system showing threats then informs you that you will need to purchase the software to cleanup the problems. Go here to learn more: http://www.virusremovalguru.com/?p=258
What makes IS2010 so dangerous is that it loads a small executable onto your system which downloads fake alerts in rapid succession and it also changes your wallpaper, freezes your desktop, and prevents you from changing the wallpaper that has been changed to one of theirs which tells you that your system is infected. And each time you reboot it loads everything again until the .exe file is destroyed.
The .exe file is automatically triggered and downloads other viruses, trojans, rogue software, and a rootkit all in such a way that your virus scanning software can't keep up. The user possibly gets extremely taken away by how fast things are happening. Your desktop is frozen you can't download anything except download the program that they claim will solve all of your problems. DO NOT download or purchase it.
Here's what I did to get rid of this thing. "
Posted by Raven on Thursday, February 18, 2010 @ 16:31:30 EST (663 reads) (Read More... | 4878 bytes more | Score: 0)
osc2nuke V3 Pre-Release For RavenNuke(tm)
whitehat writes "I'm proud to announce osc2nuke can release its newest integration of oscommerce to RavenNuke(tm)!
The newest oscommerce 3.05 ALPHA by oscommerce team will go become the best shopping cart experience in the e-commerce world.
Keep in mind this is only a alpha release and not a RC (release candidate) , so it isn't production ready (yeah right).
Have a lot of development fun and visit our site and forum frequently for new updates and questions/answers to this great module.
DESCRIPTION: Some vulnerabilities have been reported in Google Chrome, which can be exploited by malicious people to disclose sensitive information, manipulate certain data, or potentially compromise a user's system. The vulnerabilities are reported in versions prior to 4.0.249.89.
Posted by Raven on Thursday, February 11, 2010 @ 19:15:53 EST (732 reads) (Read More... | 1793 bytes more | Score: 0)
Spammers already using Google Buzz
"With all the buzz this week about Google Buzz, we were just waiting for malicious activity to show up on the newly launched service. We didn't quite expect it to happen this fast. Today we saw the first spam using Google Buzz to spread a message about smoking.
The spammer is already following 237 people, and we can only imagine that he or she has sent similar messages to all of them. This particular message leads to a site hosted on a free Web hosting service talking about how to quit smoking.
When Twitter was launched, it took a while before it was used to send spam and other malicious messages. In this case,
Posted by Raven on Thursday, February 11, 2010 @ 18:58:18 EST (617 reads) (Read More... | 1423 bytes more | Score: 0)
An Easy Way to Protect Your Intellectual Property
The following article is taken from ZDNET and was Posted by Doc @ 1:23 pm on February 3rd.
"One question I get on a regular basis is from companies wondering how to get the maximum exposure for their white papers and other material but not loose complete control over their intellectual property. In this free-wheeling time, if you place too many restrictions on your Web-based material, no one will quote from it or pick it up in various blogs and other sites (which is often the point).
So Doc is a big fan of the nonprofit Creative Commons folks, who provide an open and cost-free way to establish copyright and clearly define what others can do with your material.
Creative Commons is dedicated to making it easier for people to share and build upon the work of others, consistent with the rules of copyright. They provide free licenses and other legal tools to mark creative work with the freedom the creator wants it to carry so that others can share it, remix it, use it commercially, or any combination thereof.
The following describes each of the six main licenses offered when you choose to publish your work with a Creative Commons license. They items are listed starting with the most accommodating license type you can choose and ending with the most restrictive license type you can choose:"
Posted by Raven on Thursday, February 11, 2010 @ 11:39:24 EST (474 reads) ( | Score: 0)
PCI 101: Getting Started on the Path to Compliance
The Payment Card Industry Data Security Standard (PCI DSS) was developed by the major credit card companies to help prevent credit card fraud and security vulnerabilities and threats. Companies that process, store or transmit payment card data must be PCI DSS compliant, and must validate compliance periodically.
During this event, a Trustwave expert will describe in detail the 12 requirements and how to meet the terms of the PCI DSS. Level 4 merchants and those who are just beginning the compliance cycle will find this webinar useful.
Posted by Raven on Thursday, February 04, 2010 @ 18:48:55 EST (441 reads) ( | Score: 0)
Meet the latest open source software developer: Facebook?
kguske writes "
That's right. Facebook is a technology company, serving billions and billions of pages each week (actually, over 100 billion per week, but I couldn't resist a nod to Carl Sagan and McDonald's). And doing so efficiently. So it should come as no surprise that the company has developed some unique software. On Feb. 2, the company released HipHop for PHP.
What is HipHop for PHP? Facebook describes it as:
...a source code transformer. HipHop programmatically transforms your PHP source code into highly optimized C++ and then uses g++ to compile it. HipHop executes the source code in a semantically equivalent manner and sacrifices some rarely used features — such as eval() — in exchange for improved performance. HipHop includes a code transformer, a reimplementation of PHP's runtime system, and a rewrite of many common PHP Extensions to take advantage of these performance optimizations.
This is a fascinating look behind the scenes of arguably one of the most successful websites ever (and certainly, one of the most successful PHP-based websites). But do so quickly before Google, Oracle or someone with higher revenues and / or stock valuation decides to snatch Facebook up...
"
Posted by Raven on Thursday, February 04, 2010 @ 00:12:14 EST (446 reads) ( | Score: 0)
InfoWorld compares 8 PHP IDEs
kguske writes "
InfoWorld reviews 8 PHP integrated development environments (IDEs): ActiveState's Komodo IDE, CodeLobster PHP Edition, Eclipse PHP Development Tools (PDT), MPSoftware's phpDesigner, NetBeans IDE for PHP, NuSphere's PhpED, WaterProof's PHPEdit, and Zend Studio. Comparison factors include ease-of-use, tools, web & SQL support, documentation, installation and value.
And the winner is...
"
Posted by Raven on Wednesday, February 03, 2010 @ 20:48:20 EST (648 reads) (Read More... | 868 bytes more | Score: 0)
RavenNuke (tm) v2.40.01 Scheduled for release the week of February 7th!
The RavenNuke(tm) Team are excited to announce that RavenNuke(tm) v2.40.01 is slated to be released the week of February 7th! This release culminates months of debugging and a few enhancements. Also to be included with this release will be a minor upgrade to NukeSentinel(tm), including a complete IP2C table refresh!
Just a note as to the planned future for RavenNuke(tm). Keep in mind that nothing is ground in stone. How fast we move and how much we can incorporate in any given amount of time is solely dependent on the amount of time the RN Team (voluntary army) can devote to the project. After factoring in their family obligations, job obligations, sanity obligations (R&R), vacations, etc., they can then devote the time left to RN. Oh yes, I forgot a few other small details: eating, sleeping, and waste removal :wink:.
How can YOU help, you ask? The biggest help would be to get someone or a group of people or a company or a group of companies that use(s) RN to sponsor the future development! If there was a set/minimum amount of money allocated each month or for a set of months to be dispersed amongst the development then I'm sure that would be the incentive to work a little harder and to cut into all their extra time that they devote to other things. This would be the best and fastest way to help develop the next major release which is going to be leaps and bounds above what we have done so far.
Any takers? How about it? Anyone work for a company that uses RN? If so, please talk with your management and contact me personally at sponsorship@ravennuke.com. For an open discussion concerning Sponsorship, please use this forum:
Note:We had to move the release date out 1 week - sorry :)
Posted by Raven on Monday, February 01, 2010 @ 23:39:21 EST (386 reads) ( | Score: 0)
Malicious Google Job Application Response
Websense Security Labs(tm) ThreatSeeker(tm) Network has discovered a new malicious spam campaign that spoofs Google job application responses. The messages look very well written and are so believable that they are probably scrapes from actual Google job application responses. Typically, spam has grammatical errors or spelling mistakes that make the messages obviously unofficial and act as red flags. The text of these messages, however, has no such mistakes, making them much more believable--especially if the target really has applied for a job with Google.
The From: address is even spoofed to fool victims into believing the message was sent by Google. The messages have an attached file called CV-20100120-112.zip that contains a malicious payload. This is where the message gets suspicious, because the contents of the .zip file have a double extension ending with .exe. The attackers attempt to hide the .exe extension by preceding it with .html or .pdf, followed by a number of spaces and then the .exe extension. The .exe file (SHA1:80366cde71b84606ce8ecf62b5bd2e459c54942e) has little AV coverage at the moment.
![[Valid RSS]](http://www.ravenphpscripts.com/images/valid-rss.png "Validate my RSS feed"){kind=small}
:: 
::
