Froyo which is the latest (and very highly awaited) update to the Android operating system, will carry numerous updates and new features as part of its update.

Some of the changes are -

For those who just can’t wait until the Froyo OTA update, you can manually trigger the download (As of 12p CST on 7/30) by doing the following

Customers can access the software update through their HTC EVO 4G under the Settings Menu > System Updates > HTC Software Update. This will initiate the three-step process also.

    With all that being said, it now seems that a member of the tech site Neowin (http://www.Neowin.net) by the name of NathanMillson may have just figured out the cause (At least one of them) and a simple solution that many have reported fixes the issues.

From Nathan’s Neowin post:

From my experience, I find if you go into Settings->General->Home Button->Spotlight Search-> Deselect every option. No more background indexing on iPhone 3G.

I haven’t had much performance issues after this…

     If you find this solution works for you, post a response and TGM will make sure to let Nathan and Neowin know. 

**********************************************

As of 11:15 a (EST)  it does appear that most (if not all) of the Yahoo properties (Website, Mail, Messenger) are not responding.  No details are known as of yet.  More details to follow as soon as possible.

This Adobe advisory outlines the severity:

Critical vulnerabilities have been identified in Adobe Flash Player version 10.0.45.2 and earlier. These vulnerabilities could cause the application to crash and could potentially allow an attacker to take control of the affected system.

The vulnerabilities in this patch batch affects all major operating systems: Adobe Flash Player 10.0.45.2 and earlier versions for Windows, Macintosh, Linux and Solaris; Adobe AIR 1.5.3.9130 and earlier versions for Windows, Macintosh and Linux.

**NOTE THAT THIS ISSUE DOES AFFECT SOFTWARE INSTALLED ON WINDOWS, MAC, AND LINUX.

Here are some things to keep in mind.

- If you have more than 1 browser installed on your computer (Internet Explorer, Chrome, Firefox, Opera, etc), you MUST check this on each one of the browsers, even if you only use one. Check on any that are installed.

- You need to verify the Adobe Flash Player version number installed on your system, Adobe recommends that users access the About Flash Player page, or right-click on content running in Flash Player and select “About Adobe (or Macromedia) Flash Player” from the menu.

- In addition, check on your installed programs list (Windows Users – Start-> Settings-> Control Panel-> Add/Remove Programs or Programs and Features). Check and see that it doesn’t list multiple installs of either Adobe Flash or Adobe AIR.  If it does from that screen highlight –> select uninstall to all but the latest one.

- If you would like to make absolutely sure that all older copies of Adobe Flash are uninstalled or if you are having issues doing the upgrade, go to the Adobe knowledge base page (tn_14157) which is at (LINK) http://kb2.adobe.com/cps/141/tn_14157.html and download the Adobe Uninstaller.  This will go thru your computer and automatically delete all versions of Adobe Flash.  Then you can just install the latest version.

- The following 2 links are the direct downloads from Adobe for Flash (NOTE that 1 link is for Internet Explorer and the other is for the rest of the Browsers).

http://fpdownload.ad…h_player_ax.exe (IE)
http://fpdownload.ad…lash_player.exe (All other browsers)

Keeping your computer safe is not just about updating the Operating System and having an Anti-Virus program. These days the bad guys are looking for anyway into your system.  Imagine that when you left your home, you locked all your doors, but left a Window unlocked because the lock was broken.  A bad guy could use that Window to get inside.  So what would you do, replace the lock of course. This issue with software is the computer version of just that situation.

The following information comes from the WEBSENSE blog (LINK: http://community.websense.com/blogs/securitylabs/) concerning this new FB attack, included below is a video from websense showing how the attack happens.

Posted: 28 May 2010 09:11 PM

What to look our for

As soon as you get to the website, the following pop up appears. **This is why it is important to read messages before clicking ok. 

What you probably wont see (unless you drag the window above around the screen) is the little window (as shown below) that opens directly behind the main window. If you were to expand the little window you will see that its for 1anetantispy.

If you click on the OK button above you will get infected. 

What to do if you see the AV check Window

1 – DO NOT CLICK ON ANY OF THE POP UP WINDOWS.

2 – On your computer click on the start button –> click on Run (or type Run in the search box) –> Once you get the run box, type taskmgr into the Run box and press OK

3 – This will open up the Windows Task Manager. Look for all items that involve the browser you are using.  (In the example below, its Internet Explorer) Highlight each item and then click End Task.  Once all the browser windows close

4 – (A) If you are using Internet Explorer go to Tools –> Options –> and Click on Delete Browser History.  (B) If you are using Firefox, go to Tools –> Options – > Privacy –> and click where it says “Clear you current history”.

     The latest rogueware infection is called DesktopSecurity2010. What will happen if you get infected with the DesktopSecurity2010 rogueware

• DesktopSecurity2010 is an adware program that warns users of non-existing threats in their computers so that they purchase a certain program that removes them from the computer.
• Additionally, in order to make users think that their computer is really infected, it displays a warning message when the computer is restarted, and from time to time the screen fades to black and other times blinks with different colors.
• DesktopSecurity2010 can reach the computer when the user accesses certain websites which display banners or pop-up windows which lead to the download of this program. It can also reach the computer in a link that can be received via spam messages, fraudulent websites, etc.

What should you look out for when web surfing

DesktopSecurity2010 is easy to recognize, as it shows the symptoms below (These are some possible symptoms, you can still get infected without seeing these):

• It reaches the computer in a file with the following icon:
  
• When it is run, a screen to install the program is displayed:
  
• Once installed, it starts to carry out a system scan in search for possible malware and once finished, it displays warning messages informing users that the computer is infected: 
  

One of the known ways that the rogueware is installing

    The following post on the PandaLabs site (LINK: http://pandalabs.pandasecurity.com/making-new-friends%e2%80%a6/) shows 1 of the ways you can get infected.  Two of the clean up jobs that I have had to do in this past week occurred because the user also fell for a greeting card email as described below (Confirmed).

Making new friends…

• Posted on 05/13/10 by Olaiz

I’m very happy because I’ve received a greeting card via email from a new friend, thought it’s not my birthday, my saint’s day or anything like that

Look what a nice card I’ve received:

Besides, it has been sent from 123greetings, which is a legal website to download and send cards, so it must be trustworthy.

I’ve clicked the picture of the message and I’ve been redirected to the website http://luxxxx.googlegroups.com/web/setup.zip, but I can’t see any greeting card here, but a Google groups website containing a link… maybe I have to follow the link in order to view it…

There’s no way. I can only see the Windows of an antivirus called DesktopSecurity2010 informing me that my computer is infected and that I have to pay the license in order to eliminate the malware. I think that I got infected and I have neither a greeting card nor a new friend…

Now, talking seriously, yesterday we commented how this false antivirus was using Google Groups users (with malicious intentions) to be distributed. In fact, the URL from which the rogueware is downloaded is like the following:

http://Google Groups user.googlegroups.com/web/setup.zip

Some of these users are felixss, gorlum or misterxyz.

Google has reacted to this and has started blocking these malicious users. So, if you try to access any URL that uses these malicious users, the following message is displayed informing you that the user cannot be found:

Even so, some malicious accounts may still be active, so don’t trust messages like this and don’t follow any link like those we’ve previously mentioned in this post.

So what can you do to help protect yourself

• If you get a link, email, instant message, asking you or telling about something you were not expecting, even if it seems to be from someone you know, DO NOT TRUST IT! Getting a message from grandma saying check out the new pictures i upload and realizing she is 80 years old, ask yourself, does grandma really know how to upload pictures? It only takes a minute to call the person, and get a response to “did you send me….. message”, if they did, they will tell you instantly. If they didn’t they will be the 1st to say “What are you talking about”. 
• Because of Twitter, the use of link shorting sites seems to have become the norm.  The problem is that a link to   http://bit.ly/dr9Ucz could be a link to many place. How do you know if it is a safe link or not a safe link.  Again, even if the link is sent to you by someone you know, DO NOT TRUST IT unless you were specifically expecting it. For the record, http://bit.ly/dr9Ucz is actually a link to techgeekandmore.com, and TGM does not list shorten links on the TGM site, because we want you to know where you are clicking to.  One thing you can do to check shortened links is visit sites that expand the shortened link.  (If you use one of these link expander services and copy the link, be careful to copy the link and NOT accidently double click on the link) Some of the sites you can visit to use to expand links

-> LongURL (LINK: http://longurl.org/), PrevURL (LINK: http://www.prevurl.com/index.php), ExpandMyURL (LINK: http://www.expandmyurl.com/), URL Snoop (LINK: http://urlsnoop.com/), Securi.net (LINK: http://sucuri.net/?page=tools&title=check-url). At all the sites, enter the shortened URL and click to find out where the link will lead

-> In addition if you use Firefox to browse the web, you can install LongURLPlease (LINK: http://www.longurlplease.com/), or LongURL (LINK: http://longurl.org/tools), which are Firefox browser extensions that automatically preview the destination URL for shortened links from just about any shortener you can name.

• As always make sure that your PC is updated with all the latest Windows Updates, your Anti-virus is updated, your install of JAVA is updated, your install of Adobe Flash player is updated, Your PDF reader is updated. Most viruses, spyware, rogueware use problems with these programs to get into your computer. Use can use sites like File Hippo (LINK: http://www.filehippo.com/ ) to check and make sure your programs are up to date.

What to do if you do get infected

     If you still get infected, you can use SuperAntispyware and Malwarebytes programs to clean your machine, I recommend downloading both before you get any infection.  Run them on a regular basis (Regular = once a week or so), even if your computer does not show any signs of issues. 

     To download both programs I recommend using Ninite (LINK: ninite.com)

If you would like to see more information on ninite you can see the TGM post http://www.techgeekandmore.com/2009/12/25/software-two-must-haves-for-the-new-pc-pc-decrapifier-and-ninite/

     If after running SuperAntispyware and Malwarebytes, you are still infected, then you will need to use a PE (Physical Environment) disk.  The PE disk that TGM recommends is UBCD (LINK: http://www.ubcd4win.com). The how to for the UBCD can be found at http://www.ubcd4win.com/howto.htm .

Your posts may show up on a Connection page even if you do not opt in to the Connection. If you use the name of a Connection in a post on your wall, it may show up on the Connection page, without you even knowing it. (For example, if you use the word "FBI" in a post).

For some reason just bugged more than the other 5.  The sad thing to report is that within a couple of moment we were able to recreate #6.  This affects anyone who posts anything on their or other peoples wall with a setting of “Everyone”.

To make it clear, this happened when posting to a wall with the EVERYONE setting, which means when you post the lock is set to Everyone (Example below).

As noted once I hit share it gets added to the wall. 

   That is where most people would assume that my post would end.  However, it doesn’t, and this is where #6 of the 6 things you need to know comes in play

Your posts may show up on a Connection page even if you do not opt in to the Connection. If you use the name of a Connection in a post on your wall, it may show up on the Connection page, without you even knowing it. (For example, if you use the word "FBI" in a post).

As it says if you use the name of a Connections page in your post on your wall, it may show up on the Connections page.  In my test I used FB….I (Note its is FBI but there is a space), and when I go to the FBI Connections page (LINK:  http://www.facebook.com/pages/FBI/109596699068116?v=stream&ref=ts) to my surprise we find

my post for my wall.  I didn’t talk about the FBI, I said FB…I, yet I am now listed on a Connections page for the FBI (Of which I don’t believe it has any direct involvement with the actual Bureau).  If I didn’t visit the FBI Connections why is my post here. In addition there are other people who have posts for FBI or FB…I that get posted continuously.

     So before you post something with EVERYONE settings, you better think about what your posting as it may go past your wall. 

Six Things You Need to Know About Facebook Connections

Commentary by Kurt Opsahl

"Connections." It’s an innocent-sounding word. But it’s at the heart of some of the worst of Facebook’s recent changes.

Facebook first announced Connections a few weeks ago, and EFF quickly wrote at length about the problems they created. Basically, Facebook has transformed substantial personal information — including your hometown, education, work history, interests, and activities — into "Connections." This allows far more people than ever before to see this information, regardless of whether you want them to.

Since then, our email inbox has been flooded with confused questions and reports about these changes. We’ve learned lots more about everyone’s concerns and experiences. Drawing from this, here are six things you need to know about Connections:

1. Facebook will not let you share any of this information without using Connections. You cannot opt-out of Connections. If you refuse to play ball, Facebook will remove all unlinked information from your profile.

2. Facebook will not respect your old privacy settings in this transition. For example, if you had previously sought to share your Interests with "Only Friends," Facebook will now ignore this and share your Connections with "Everyone."

3. Facebook has removed your ability to restrict its use of this information. The new privacy controls only affect your information’s "Visibility," not whether it is "publicly available."

   Explaining what "publicly available" means, Facebook writes:

   "Such information may, for example, be accessed by everyone on the Internet (including people not logged into Facebook), be indexed by third party search engines, and be imported, exported, distributed, and redistributed by us and others without privacy limitations."

4. Facebook will continue to store and use your Connections even after you delete them. Just because you can’t see them doesn’t mean they’re not there. Even after you "delete" profile information, Facebook will remember it. We’ve also received reports that Facebook continues to use deleted profile information to help people find you through Facebook’s search engine.

5. Facebook sometimes creates a Connection when you "Like" something. That "Like" button you see all over Facebook, and now all over the web? It too can sometimes add a Connection to your profile, without you even knowing it.

6. Your posts may show up on a Connection page even if you do not opt in to the Connection. If you use the name of a Connection in a post on your wall, it may show up on the Connection page, without you even knowing it. (For example, if you use the word "FBI" in a post).

     In the past couple of weeks, Facebook has made many changes that can at minimum be considered troubling to anyone concerned about their information getting shared publicly. The following post and video comes from the EFF (The Electronic Frontier Foundation)**.  (LINK: http://www.eff.org/deeplinks/2010/04/how-opt-out-facebook-s-instant-personalization).

(SOAPBOX) TGM is NOT advocating a position on either side of the debate (At this time), everyone who uses technology should be aware of their choices and be able to find what works for them.  It is up to each person to chose how much information they care to expose publicly, what 1 person thinks is unacceptable, someone else may see as just the cost of getting a new feature. The following information is directed at those who believe the steps Facebook is taking is unacceptable  (END SOAPBOX)

How to Opt Out of Facebook’s Instant Personalization

Deeplink by Kurt OpsahlUpdate: Friday morning Facebook changed its privacy settings layout, making it a bit more challenging to opt out completely. As before, unchecking the “Allow” box is not sufficient because you need to block each Instant Personalization website to fully opt out. However, the previous path (via “Learn More”) to the necessary Block Application buttons was removed, with Facebook suggesting instead you first go to the sites (at which point your information is disclosed), and then click “‘No Thanks’ on the blue Facebook notification on the top of partner sites.” To fully opt out, you need to:

1. Go to the Instant Personalization privacy setting and uncheck the “Allow” button. Click confirm. Come back to this page.
2. Go to the page for Microsoft Docs, click Block Application on the page, click Block Application on the pop-up, and click Okay on the next pop-up. Come back to this page.
3. Go to the page for Pandora, click Block Application on the page, click Block Application on the pop-up, and click Okay on the next pop-up. Come back to this page.
4. Go to the page for Yelp , click Block Application on the page, click Block Application on the pop-up, and click Okay on the next pop-up. Come back to this page.
5. Optional: Go to the Facebook Site Governance page, and express your opinion in a comment.

**About the EFF – From Wikipedia (http://en.wikipedia.org/wiki/Electronic_Frontier_Foundation)

The Electronic Frontier Foundation (EFF) is an international non-profit digital rights advocacy and legal organization based in the United States. Its stated mission is to:

• Engage in and support educational activities which increase popular understanding of the opportunities and challenges posed by developments in computing and telecommunications.
• Develop among policy-makers a better understanding of the issues underlying free and open telecommunications, and support the creation of legal and structural approaches which will ease the assimilation of these new technologies by society.
• Raise public awareness about civil liberties issues arising from the rapid advancement in the area of new computer-based communications media.
• Support litigation in the public interest to preserve, protect, and extend First Amendment rights within the realm of computing and telecommunications technology.
• Encourage and support the development of new tools which will endow non-technical users with full and easy access to computer-based telecommunications.