Software-Programming

Much to the joy of the jailbreak community, the Dream Team - comprising p0sixninja, Pod2g, MuscleNerd and a number of other prominent iOS hackers - have been responsible for the last two major jailbreak releases.

At this year's Hack in The Box (HITB) conference in Amsterdam, the team discussed several topics of interest, including Absinthe and Corona. The video below depicts the discussion for the first part where the team of hackers talk about Corona.

MP3s are so natural to the Internet now that it’s almost hard to imagine a time before high-quality compressed music. But there was such a time—and even after "MP3" entered the mainstream, organizing, ripping, and playing back one's music collection remained a clunky and frustrating experience.

During the 2012 edition of the Hack in the Box (HITB) security conference in Amsterdam, we had the pleasure of speaking to Roberto Suggi Liverani, a researcher who focused his efforts on finding vulnerabilities in some of the most popular web browsers.

Security holes in web browsers are nor something new, but part of his research is based on finding flaws in Chinese web browsers, an area that hasn’t been targeted by many experts.

Take a look at what he discovered and the difficulties he came across while trying to report his findings to various vendors.

VMware has released security patches for its Workstation, Player, Fusion, ESXi and ESX products in order to address two vulnerabilities that could allow attackers to compromise the host system or crash a virtual machine.

The more serious vulnerability is identified as CVE-2012-3288 and stems from an improper validation of input data when loading virtual machine checkpoint files, the virtualisation said in a security advisory.

After facing widespread criticism earlier this year for releasing its Java update weeks after Oracle patched the same vulnerabilities, Apple has released the platform's most recent update to correspond with Oracle's release.

On Tuesday, Oracle, the maker of Java, plugged 14 holes in Java SE, while Apple, which maintains its own version of the technology (now up to 1.6.0_33) in Mac OS X, also closed 11 of the same vulnerabilities. It is unclear if Apple will need to fix the remaining three flaws.

Mozilla's new Firefox 13 browser may have just barely landed on users' PCs, but already forward-looking fans can check out the beta version of Firefox 14--and the Aurora version of Firefox 15, too.

Most notable in Firefox 14 are new security features that “make it easier for users to control their Web experience,” according to the official announcement late last week on the Mozilla blog.

Linaro’s efforts have boosted Android’s performance, delivering an improvement of 30 to 100 percent in various benchmarks. They achieved these impressive gains by adapting Android 4 so that it could be built with their improved GCC toolchain.

We first wrote about Linaro in 2010 when the non-profit organization was founded by a consortium of hardware and software companies, including ARM, Samsung, TI, and Canonical. Linaro has worked to improve the quality of Linux on the ARM architecture, focusing largely on hardware-enablement and tooling.

When it launches later this year, iOS 6 will feature an all-new Maps application built from the ground up by Apple, featuring turn-by-turn navigation and anonymous, real-time, crowd-sourced traffic data.

The new iOS 6 Maps have integrated Yelp for user reviews. The new traffic service allows users to provide incident reports for more accurate travel data.

A serious security bug in MariaDB and MySQL Disclosed, According to Advisory All MariaDB and MySQL versions up to 5.1.61, 5.2.11, 5.3.5, 5.5.22 are vulnerable. This issue got assigned an id CVE-2012-2122. 

Mysql_hashdump module from Metasploit uses a known username and password to access the master user table of a MySQL server and dump it into a locally-stored "loot" file. This can be easily cracked using a tool like John the Ripper, providing clear-text passwords that may provide further access.

Valve's Source engine will make its big screen debut in a movie called Deep, Variety reported on Saturday. The small-budget animated movie will use Valve's engine as a low-cost solution for real-time rendering and editing, an unusual approach that may grow in popularity for smaller studios. The partnership between the developer and the film production team may also result in the release of the movie on Steam.