What it does is, it automatically tags a photo of you without your permission. Good eh?  According to NakedSecurity blog:

Unlike graffiti tagging, where you spray-paint your name onto someone else’s property, Facebook lets you paint other people’s names onto your pictures.

So even people who aren’t on Facebook, or who choose not to identify themselves openly in uploaded photos, may nevertheless end up easy-to-find online.

If this features gives you the same concern as we felt, you might want to turn it off.

To disable this features go to your Facebook account’s privacy settings.

• Click on “Customize settings”.
• Under “Things others share” you should see an option titled “Suggest photos of me to friends. When photos look like me, suggest my name”.
• At this point you really can’t tell whether Facebook has enabled the setting or not, so you have to go deeper.
• Click on “Edit settings”.

• If Facebook has enabled auto-suggestion of photo tags you will find the option says “Enabled”.

• Change it to “Disabled” if you don’t want Facebook to behave that way.
• Hit “OK”.

Now we do admire new features and technology now and then, but we always have to make sure that our privacy is not compromised at all.

The Philippines Best Web Hosting Provider, MSWEB Network Solutions shares awareness and security to all our friends and business partners and to all netizens to promote better and safer internet use.

Send in your comments and share your insights and thoughts about this new WordPress update. Visit us at www.mswebnetwork.net

Download WordPress 3.1.3 or update automatically from the Dashboard → Updates menu in your site’s admin area.

This is a security update for all previous versions. It contains the following security fixes and enhancements:

"Today [May 18th] we’re starting to roll out a fix which addresses a potential security flaw that could, under certain circumstances, allow a third party access to data available in calendar and contacts. This fix requires no action from users and will roll out globally over the next few days."

Google has already started rolling out a fix!

The issue had already been fixed in Android 2.3.4 (codenamed Gingerbread), but as we mentioned earlier this week over 99% of Android users are running earlier versions of the operating system.

Credit goes to Naked Security (http://nakedsecurity.sophos.com) for posting awareness.

The Philippines Best Web Hosting Provider, MSWEB Network Solutions shares awareness and security to all our friends and business partners and to all netizens to promote better and safer internet use.

Send in your comments and share your insights and thoughts about this spreading scam. Visit us at www.mswebnetwork.net

The message is claiming to offer the opposite of the famous FB like button has been spreading like wild fire and appearing on many FB user’s walls:

Facebook now has a dislike button! Click 'Enable Dislike Button' to turn on the new feature!

Like our previous post Preventing Spam Scam on Facebook Does exactly the opposite about scam which went before it, the scammers are finding ways to by pass Facebook’s security to replace the standard “Share” option with a link labelled “Enable Dislike Button”.

The fact that the “Enable Dislike Button” link does not appear in the main part of the message, but lower down alongside “Link” and “Comment”, is likely to fool some users into believing that it is genuine.

Clicking on the link, however, will not only forward the fake message about the so-called “Fakebook Dislike button” to all of your online friends by posting it to your profile, but also run obfuscated Javascript on your computer.

The potential for malice should be obvious.

As we’ve explained before, there is no official dislike button provided by Facebook and there isn’t ever likely to be. But it remains something that many Facebook users would like, and so scammers have often used the offer of a “Dislike button” as bait for the unwary.

Here’s another example that is spreading, attempting to trick you into pasting JavaScript into your browser’s address bar, before leading you to a survey scam:

Credit goes to Naked Security (http://nakedsecurity.sophos.com) for posting awareness.

The Philippines Best Web Hosting Provider, MSWEB Network Solutions shares awareness and security to all our friends and business partners and to all netizens to promote better and safer internet use.

Send in your comments and share your insights and thoughts about this spreading scam. Visit us at www.mswebnetwork.net

The messages look something like this:

Usually, however, the clickable links at the bottom of messages on your Wall – highlighted in pink below – should look like this:

The scammers have replaced the “Share” option with a link labelled “== VERIFY MY ACCOUNT ==”. Clicking this not only activates the Share option (which you no longer realise you’re pressing), but also invokes a raft of heavily obfuscated JavaScript from a site in the .info domain. (This site is blocked by the web protection software in Sophos’s endpoint and web gateway products.)

With all the unexpected Sharing going on, this message has spread like wild-fire. Instead of preventing spam, this particular campaign has been generating it at astonishing rates.

The good news is that Facebook seems to have taken some action to prevent the “Share” button being replaced in these messages. Since a few minutes ago, malicious messages appear with no links at all, like this:

The lessons to be learned from this outbreak of spam are as follows:

* Assume that messages which ask you to verify your account by clicking on a link are false. You wouldn’t (I hope) click on links in emails which claimed to come from your bank trying to panic you about your account. That would be a classic phishing scam using a false site to steal your username and password. So don’t trust that sort of link on Facebook, either.

* When you take some action on Facebook which doesn’t deliver what was promised – for example, if you end up Sharing or Liking something you didn’t intend to, or if you click through to an offer or competition which suddenly morphs into something completely different (a bait-and-switch) – assume you have been tricked. Review the side-effects of your actions. Remove any applications you may trustingly have accepted; unlike things you didn’t mean to like; and delete posts you didn’t intend to make.

* Be wary of unexpected changes to Facebook’s interface for Liking, Commenting, Sharing and so forth. Unfortunately, the nature of social networking sites is that they like to undergo rapid change. Cybercrooks exploit this by assuming that you accept ongoing changes as “part of how things work”. Don’t do so. If you see something different, check with an official source to see if it’s expected or not.

If sufficiently many Facebook users dig their heels in every time Facebook makes a gratuitous or confusing change in its interface, its privacy settings or its feature set, then it’s possible that Facebook will learn to adapt in ways which best suit the privacy and safety of its users, instead of adapting to improve its traffic and benefit its paying customers.

(Remember that as a Facebook user, you aren’t a customer. You’re effectively an informal employee, paid not in cash but in kind. Your “wage” is free access to the Facebook system. Your clicks generate the value for which Facebook can charge its customers – the advertisers who benefit from the fact that you use the network at all. Don’t sell yourself short.)

Credit goes to Naked Security (http://nakedsecurity.sophos.com) for posting awareness.

The Philippines Best Web Hosting Provider, MSWEB Network Solutions shares awareness and security to all our friends and business partners and to all netizens to promote better and safer internet use.

Send in your comments and share your insights and thoughts about this spreading scam. Visit us at www.mswebnetwork.net

Jean Rasczak once said when he arrived on Planet P after it has been bombed “All right. SPREAD OUT! Fire Teams, you see a bug hole, NUKE IT!”

Well this is basically what we are doing, if malwares keep on spreading, MSWEB Network, the Philippines Best Web Hosting Provider keeps our users aware by exposing threats online… and again on Facebook!

Naked Security reports about the latest variation seen of a viral scam that poses as a video of the killing of Osama bin Laden:

OSAMA KILLING REAL VIDEO LEAKEDOMG! real video of Osama Bin Laden being killed. Video leaked by wikileaks. Watch it before it get deleted.

The message is linked at first glance on Youtube, but after a closer look it actually points to a website similarly named to the most popular video sharing site. Looking further it has a domain extension ending in “.in” which is an indian extension.

Clicker happy folks would end up taken to a third party webpage which poses as a security verification check which pretends to be from YouTube.

If it’s really from Youtube there will be no questions asked just to view videos.

According to Naked Security “But what’s happening here is that when you submit the so-called CAPTCHA text you are unwittingly publishing the message to your own Facebook wall. This spreads the message virally to your Facebook friends, and helps spread the scam further on behalf of the bad guys.

The scammers make their money by tricking you into taking an online survey. They earn commission for each person they managed to complete it, and you might be the sort of person who is tempted to answer the questionnaire in the belief that you’ll get to see a video of the Osama bin Laden being killed.”

Ok guys, just remember that the real Youtube would never ask you to complete an online survey before watching a video, and that scams like this are rife across Facebook. As long as Facebook users keep falling for scams like this, they’ll carry on being a problem.

Read from the source: http://nakedsecurity.sophos.com/2011/05/18/osama-bin-laden-leaked-video-scam-rises-again/

The Philippines Best Web Hosting Provider, MSWEB Network Solutions shares awareness and security to all our friends and business partners and to all netizens to promote better and safer internet use.

Send in your comments and share your insights and thoughts about this spreading scam. Visit us at www.mswebnetwork.net

The flaw was discovered by the researchers from University of Ulm and exposes a serious issues about privacy and the hardships that is to maintain and keep your Android phones updated.

According to the German researchers Bastian Könings, Jens Nickels, and Florian Schaub’s this affects Android 2.3.3 and earlier also includes the Calendar, Contacts which transmit information “in the clear” via HTTP, and retrieve an authentication token (authToken) from Google.

See more of the report in the University’s website @ http://www.uni-ulm.de/en/in/mi/staff/koenings/catching-authtokens.html

The Philippines Best Web Hosting Provider, MSWEB Network Solutions shares awareness and security to all our friends and business partners and to all netizens to promote better and safer internet use.

Visit us at www.mswebnetwork.net

Quoted from the cPanel blog last May 12, 2011:

“We are pleased to announce the release of cPanel & WHM 11.30

This release is available immediately in the EDGE and CURRENT release tiers. cPanel & WHM 11.30 will soon be available in all public release tiers.

This version includes:

• Over 600 maintenance and bug fixes
• Over 30 feature improvements and additions
• Over 150 product optimizations for performance and usability

For a full list of changes, please see our product change logs:

http://go.cpanel.net/changelog”

For those who are using Edge and Current release for your beta testing you may try this build. This applies to non production cpanel testing servers only. And another reminder to make sure you backup your data.

The Philippines Best Web Hosting Provider, MSWEB Network Solutions shares awareness and security to all our friends and business partners and to all netizens to promote better and safer internet use.

Visit us at www.mswebnetwork.net

I constantly get a lot of this request on FB, even asking if this is true? Here is the real score on this scam.

According to security expert blog Naked Security from Sophos: “Remember, this scam doesn’t work as the result of clickjacking, or a vulnerability on Facebook. The scammers are achieving their ends because of human gullibility – pure and simple. If people considered what they were doing and thought twice about the possible consequences then we would see nothing like as many of these attacks occurring, and our news feeds on Facebook would see less spam.”

Read the reason why on NakedSecurity

The Philippines Best Web Hosting Provider, MSWEB Network Solutions shares awareness and security to all our friends and business partners and to all netizens to promote better and safer internet use.

MSWEB Network’s Official Blog @ http://blog.mswebnetwork.net

Share for the benefit of others:

“The FBI today warns computer users to exercise caution when they receive e-mails that purport to show photos or videos of Usama bin Laden’s recent death. This content could be a virus that could damage your computer. This malicious software, or “malware,” can embed itself in computers and spread to users’ contact lists, thereby infecting the systems of associates, friends, and family members. These viruses are often programmed to steal your personally identifiable information.”

Check out the full article on the official FBI website:

http://www.fbi.gov/news/pressrel/press-releases/malicious-software-features-usama-bin-laden-links-to-ensnare-unsuspecting-computer-users

How bad and widely spread is it? It’s enough to merit a spot on Fox News: http://www.foxnews.com/scitech/2011/05/04/beware-bin-laden-spam-malware-fbi-warns/

The Philippines Best Web Hosting Provider, MSWEB Network Solutions shares awareness and security to all our friends and business partners and to all netizens to promote better and safer internet use.