Tuesdays With Microsoft

Tuesdays are the day when we patch the holey Microsoft products.

Patch Tuesday leaves Duqu 0-day for another day

November marked a light Patch Tuesday with just four bulletins, only one of which tackles a critical flaw.

All four advisories relate to problems in Windows. None is related to the zero-day vulnerability related to Duqu, the highly sophisticated worm reckoned to be related to the infamous Stuxnet pathogen.

See also:
Microsoft Security Bulletin Summary for November 2011
Microsoft Patch Tuesday Fixes Critical Windows 7 Bug, Leaves Out Duqu Zero-Day
Microsoft Fixes Four Bugs for November Patch Tuesday
Microsoft offers simple patch Tuesday for election day
Microsoft fails to patch Duqu, but fixes critical hole in Windows TCP/IP stack
One critical bulletin, no Duqu patch, in November 2011 Patch Tuesday updates
A mild November Patch Tuesday from Microsoft
Light Patch Tuesday May Lead To Out-of-Band Patch
Microsoft fixes gaping hole in Windows TCP/IP stack
Microsoft patches critical Windows bug, but not Duqu flaw
Microsoft patches critical Windows 7 bug, downplays exploit threat
Microsoft Leaves Duqu Worm Exploit Unpatched
Windows Update

I find it more than interesting that Microsoft is unable or unwilling to patch for the Duqu Virus. Is it intentional?

/anyway, you know the drill, get on with it

Can You Hack It?

Calling all hackers, do you pack what it takes?

NSA is looking for a few good hackers

The National Security Agency has a challenge for hackers who think they’re hot stuff: Prove it by working on the “hardest problems on Earth.”

Computer hacker skills are in great demand in the U.S. government to fight the cyberwars that pose a growing national security threat — and they are in short supply.

For that reason an alphabet soup of federal agencies — DOD, DHS, NASA, NSA — are descending on Las Vegas this week for Defcon, an annual hacker convention where the $150 entrance fee is cash only — no registration, no credit cards, no names taken. Attendance is expected to top 10,000.

The NSA is among the keen suitors. The spy agency plays offense and defense in the cyberwars. It conducts electronic eavesdropping on adversaries, and it protects U.S. computer networks that hold super-secret material — a prime target for America’s enemies.

See also:
NSA Wants to Hire Hackers at DefCon
US gov’t building hacker army for cyber war
U.S. government hankers for hackers
U.S. Federal Agencies Look to Hire Hackers at Defcon; Cyber Criminals Offer Services to the Public
US government agencies scouting for computer hackers: report
Federal Agencies to Recruit Hackers at Defcon
R u h4X0R? n33d @ jo8? NSA wants you (locked up in a cubicle, not a cell)
The NSA Wants More Hackers for Their ‘Collection of Geeks’
Welcome to the National Security Agency – NSA/CSS
National Security Agency
Defcon
DEF CON

Would you rather work for them or be hunted down by them? If you’re good enough, it probably pays pretty well and beats sitting in a prison cell.

/don’t forget to bring your white hat

Return Of The Dustbuster From Outer Space

******************************UPDATE******************************

Touchdown, the crowd goes wild!

Space Probe Returns After 7-Year Asteroid Voyage

A Japanese space probe landed in the Australian outback on Monday after a 7-year voyage to an asteroid, lighting up the night sky and bringing what scientists hope is a rock sample, witnesses said.

The Hayabusa probe blazed a spectacular trail as it came in to hit the ground at a blistering speed, ending a journey to the near-Earth asteroid Itokawa that began in 2003.

An Australian defense spokesman told Reuters scientists monitoring the probe’s return had confirmed it had landed and identified its location, but it would not be retrieved until daylight. Only then would it become clear if a capsule thought to contain the precious sample was intact.

See also:
Space probe returns to Earth from trip to asteroid
Japan’s ‘Falcon’ Returns After Seven-Year Asteroid Mission
Probe returns to Earth after asteroid landing
NASA Aircraft Videos Hayabusa Re-Entry
Hayabusa completes fiery return to Earth
Mission Accomplished For Japan’s Asteroid Explorer Hayabusa

/now we just need to find out exactly what, if anything, Hayabusa brought back

******************************END UPDATE******************************

A long time ago, in a country far far away, the Japanese sent a spacecraft . . .

to land on an asteroid that looks like a giant space turd . . .

and bring back some dirt.

Japanese Probe Set to Land in Australian Outback Sunday, Returning First Asteroid Sample to Earth

A Japanese meteor-investigator probe will become a meteor itself when it returns to Earth over the weekend. The Hayabusa probe is screaming toward Earth at asteroid speed,
according to scientists at NASA’s Ames Research Center. Scientists hope it is carrying samples obtained from a 2005 visit to the small asteroid Itokawa.

The probe’s sample-return capsule will separate from the main probe and reenter the atmosphere at 7.58 miles per second early Sunday. Scientists from NASA, the Japanese Space Agency and other organizations are planning to watch its fiery descent to learn more about how objects behave and break up during high-speed reentry.

When Hayabusa (“falcon” in Japanese) reaches an altitude of 190,000 feet, its heat shield will reach temperatures of more than 5,000 degrees Fahrenheit, while the gas surrounding the capsule will reach 13,000 degrees Fahrenheit — hotter than the surface of the sun, NASA says. It is planned to fall over a large unpopulated area of Australia called the Woomera Prohibited Area.

There’s no guarantee of success — actually, scientists don’t even know if Hayabusa is carrying anything. The craft has been plagued with problems for five years.

It made two touchdowns on Itokawa in 2005 to collect rocks and soil, but apparently failed to fire a metal bullet designed to dislodge the samples. Then, a fuel leak left its chemical propellant tanks empty, so engineers had to use Hayabusa’s ion engines to guide it home. Still, Hayabusa was the first spacecraft to land on a celestial object other than the moon and take off again.

See also:
Japan’s “Falcon” Spacecraft Returns—Asteroid Dust On Board?
Japan’s Asteroid Mission Set For Fiery Re-entry Over Australia
Japan Itokawa asteroid mission set for re-entry
Asteroid spacecraft makes its way back to Earth
Japanese space probe returns home Sunday
Japan asteroid probe to make historic return to Earth
Hayabusa just hours from home
Scientists wait in Outback for Japanese spacecraft
Japan’s ‘Falcon’ Set to Land After Seven-Year Asteroid Mission
Ames Research Center
Ames Research Center
JAXA | Japan Aerospace Exploration Agency
Japan Aerospace Exploration Agency
Hayabusa
Hayabusa

Well, I wish JAXA luck and hope they retrieve lots of asteroid dirt to play with. Otherwise, it’ll be a lot like Geraldo opening Al Capone’s vault.

/let’s all hope Hayabusa didn’t pick up any cosmic hitchhikers like in The Andromeda Strain