Passwords are an important part of anyone on the Internet. It is the way to protect our information. Unfortunately for some, when creating passwords do not get very creative, paving the way easy for miscreants who are responsible for stealing passwords.

It is important to note that when choosing a password, jeopardizes the security of information that can be sensitive. How good is your password?. With the help of a site you can measure how difficult it would try to figure out your password, as well as the estimated time it would take a computer to achieve the objective. The site is called How secure is my password, and as you type your password, you'll see at the bottom of an estimate of the time it would take to "guess" your password. Words such as "password", "test", "abcde" or "12345" are automatically classified as easy to guess.

Here are some general recommendations on the use of passwords, especially if you have an account at many web:

• Use a different password for each Web site.
• Use special characters (#, @,!, _, -, Etc.)
• Use numbers.
• Use at least one capital letter.
• Do not use personal information such as date of birth or telephone number.

Enlace How secure is my password?
Vía Lifechacker

For users of Symantec Norton antivirus company can give an alarm after upgrading to the latest version of Mozilla Firefox. Several readers who use Norton Antivirus and Internet Security Symantec's 2 detected this error after upgrading to the latest version of Firefox. In addition to several files in quarantine, all caused by a malfunction of the popular browser.

In the Symantec forums has been given more information about errors and error occurs when you upgrade to Firefox 3.6.6 and the files involved are:

• freebl3.dll
• softokn3.dll
• softokn3.dll
As we say it is not dangerous files, if not the facility of the browser.

Symantec systems in the cloud as detected these files are files that have not been so never sets on a suspect but is not really such. A Symantec employee has given notice of false alarm about this event and for the comfort of its users.

Source: h-online

Researchers from the firm Verisign iDefense discovered that a hacker who calls himself "Kirllos' being sold in black market forums 1.5 million Facebook account. Although not confirmed the legitimacy of the accounts, the hacker claims that it has sold around 700,000 credentials.

Kirllos offers packages of 1,000 accounts for a price ranging from $ 25 to $ 45 depending on the number of contacts which each user. While it is a very low price compared to similar sales on the black market, krill can still get a lot of money with a high volume of accounts.

Facebook has not confirmed if these accounts are real, but so be, it is an alarming amount of stolen data, which can be used by other criminals for many purposes: from committing fraud to contact the victim, to spread malicious software to massive social network.

It has raised a new alarm that affects many thousands of people around the world with a blog runs on WordPress (the latest version, 2.9.2 is vulnerable too) and several blogs have been attacked and are now infected distributing malware without the operators of these sites have been noticed. The worst thing is that it affects self-hosted version (installed on your own server) of WordPress.

Apparently this vulnerability has to do with SQL injection or some failure of a theme or plugin, it could also be because of some outdated as Magpie library that ships with WordPress. For now only speculation because the problem has not been fully identified.

The problem arises when the field in the table wp_options siteurl is replaced by a HTML code. This field holds the URL of the blog (ie, that field is not designed to accommodate HTML code), so that being accomplished the attack, possibly the affected site longer to load.

The highest number of cases that have been presented so far has to do with the company Network Solutions, although other sites have also been affected VPS.net so probably this attack is independent of the company that provides hosting for the hole security is in the same WordPress and not a default configuration or hardware.

It is important to be vigilant and continuously review the sites to ensure there are no problems, in case of finding an abnormal behavior, it is advisable to check the database and especially the siteurl field.

For now Sucuri Security Labs and Trend Micro have reported this attack, Trend Micro announced that its antivirus detects the problem as TROJ_BUZUS.ZYX (see more information on this virus), which leads to malware infection, and in some cases may install a fake antivirus on the computer of users.

Update: In addition to spreading malware, the infection can get them to generate backdoor Trojans (backdoors), ie that administrators and users could see a normal version of the site, but search engines actually could be seeing another version of site , which is especially dangerous and harmful to the issues related to SEO.

Via Download Squad

Mozilla has just released a few hours ago version 3.6.2 of Firefox. This new update was planned for March 30, but for security reasons the company decided to bring forward its launch a few days.

Firefox 3.6.2 resolves multiple security issues, including a critical vulnerability category reported just over a month Intevydis security firm and that allows an attacker to run malicious code and take complete control of victim's computer.

Mozilla recommends users to update as soon as possible. To do this automatically, just click on the Firefox Help menu and the option for updates, or manually from their website.

Are you still using Firefox 3.0.x? It is best to go and thinking of upgrading. Mozilla has announced that version 3.0.19 is the latest update of security and stability that is published for the 3.0.x branch, and thereafter only offer support for versions 3.6 and 3.5.

In fact, it was expected that the life cycle of Firefox 3.0.x ended earlier this year during the month of January, but the delay of version 3.6 that Mozilla triggered a few months extended support for that branch.

The latest version 3.0.19 will be released later this month. If you do not want to stay unsupported necessarily have to upgrade to version 3.5 or 3.6.