BREAKING NEWS : Microsoft issues 961509

Microsoft as issued an new security advisory about the possible way someone might be able to take your sensitive information using an invalid digital signature:
[ad#ad2-right-1]

Microsoft is aware that research was published at a security conference proving a successful attack against X.509 digital certificates signed using the MD5 hashing algorithm. This attack method could allow an attacker to generate additional digital certificates with different content that have the same digital signature as an original certificate. The MD5 algorithm had previously shown a vulnerability, but a practical attack had not yet been demonstrated.

[via Windows Technet]

Although Microsoft has stated in the advisory most companies are using the SHA-1 algorithm.  Some are still using the MD5 and should stop using it immediately.   Microsoft says there is none in the wild but you can be bet on it someone will do it sooner or later.  Certificate Authorities should stop using MD5 and go to a much stronger better Algorithm. This is what Microsoft is saying and they aren’t providing much information for the end-user on how to prevent from using MD5 certificates on your system. You can remove the MD5 certificate manually if you are a system administor and want to protect the computers at the office.  Please don’t do this unless you know what your doing, you could very well break your system if you did something like this.

PSP 3.90 firmware update with Skype available

Oh yes, Skype for your PSP-2000 (aka, PSP Slim & Lite) series is now a reality. At least outside of Japan. It’s only available via network update at the moment and adds expanded support for PLAYSTATION Network titles. You do have your $20 PSP Headset right? Good, so what are you waiting for punk, get outta here and let us know how it goes.

[Via PSP Fanboy, thanks to everyone who sent this in]
[Via Engadget]

For those of you who have been waiting for this. I thought I’d give you this little update for people who would like to make skype calls on your PSP.

Google’s Android OS early look SDK now available

Just like the good folks promised, the early look software development kit for Google‘s soon-to-be huge phone OS has hit the streets… er, internet. From what we can tell, the OS is as comfortable on larger, VGA devices as it is on more traditional smartphone layouts. Oh yeah… and it plays Quake. Here’s what we know the software will support out of the box:

  • Touchscreen
  • 3G
  • Webkit-based browser
  • Optimized Java runtime layer (known as Dalvik Virtual Machine)
  • Threaded text messaging
  • MPEG-4, h.264, MP3, and AAC file formats
  • Accelerated 3D graphics

There’s the SDK I was speaking about. Go read the The full article for all the Stuff!!

First screenshots of application running on Google’s Android platform?

It’s just a rumor, but if true, you’re looking at screenshots of the first leaked application running on Google’s new mobile Android OS. The app from upstart Whatsopen does just what you might think; it tells you what’s open nearby your location. Of course, those mockups could be final or just prototypes. Whatever they are, we’re underwhelmed. Still, let’s wait for the SDK before getting too far ahead of ourselves. More pics just beyond that read link.

[Via Textually]

I hope the cell phone companies come out with it soon, I can’t wait!!

Apple posts iPod touch 1.1.2 update — already hacked

As you’d expect, Apple has released version 1.1.2 of the iPod touch firmware hot on the jailbreak-breaking heels of its iPhone update. Early reports on MacRumors indicate a new “Add Event” functionality in the Calendar — something that should have been included in v 1.0. Anyone else getting dirty with the firmware who wants to share changes? We’ll keep you updated of course as this and the iPhone 1.1.2 status develops.

Update: Whoa, TUAW‘s in-house hacker — Erica Sadun — is reporting that v1.1.2 is already hacked on the iPod touch. That bodes well for opening up your new UK and German iPhone, eh readers? Oh, and that’s a screenshot up there — proof of the deed since that functionality is only available from your friendly third party development community.

Download – iPod1,1_1.1.2_3B48b_Restore.ipsw, 158MB

Wow, It already been hacked oh my apple is isn’t winning this one at all!! LOL I wonder what else they will try!!