myspace phishing

I saw this on SlashDot yesterday about there's a hack out there that

"The hackers have engineered a fake login form on MySpace's own web site. Netcraft has notified MySpace of the issue, although it currently remains live. Because the fraudulent login page is hosted on MySpace's own servers and does not exhibit any signs of external content, such as cross-site scripting or open redirects, it is convincing and even security-conscious users are at risk of becoming victims. The attack is launched from a profile page, where the username is login_home_index_html, and uses specially-crafted HTML in order to hide the genuine MySpace content from the page and instead display its own login form."

What's scary is most users on myspace are just that, Users. They are not tech-savvy and they are certainly assumed to only know enough to pretty up their profile pages by surfing google to scrape some CSS code off of another website. So what if a hacker can get into a user's myspace account? Well from there, they can use the obtained email address and passwords to start shopping it around to other sites since most users don't keep multiple passwords and email addresses. Its a big gaping hole and well, myspace is just a poorly written piece of software.

T-mobile Dash is a blessing and a curse

Having just received the newly T-mobile Dash, I was ecstatic until I found out some of its quirks.

• If you're not smart enough to fiddle around with it, you won't realize that the phone is shipped with the data settings defaulting to the WAP profile rather than the full blown internet2 profile if you're on the unlimited data plan
  

• It doesn't have Dial-Up Networking enabled as a bluetooth profile, which is fine if you're using Windows XP but a big pain in the ass on Mac OSX Tiger (since its not supported), as well as my Nokia Internet Tablet which runs Linux (not supported but apparently if I jump through a bunch of hoops and scripts, I can get it up and running).
  

• The Windows Mobile browser, Internet Explorer, is pretty weak when rendering webpages. Which would be fine if there were some alternatives, like Opera's awesome mobile browser, but Opera doesn't support Windows Mobile 5 Smartphone Edition yet.
  

• If you're like me and use Mac OSX Tiger rather than WindowsXP as your primary computer, you need something to replace ActiveSync. Most recommend Markspace's Missing Sync but its a piece of junk. Not because it doesn't operate properly, in fact, its pretty piece of software, but it wreaks havoc on my Powerbook's ability to sleep or wake from sleep which require reboots, disk checks, and holding the power button down to shut it down. Its also frozen the powerbook once. I'm not sure I'm going to keep it after the 14 day trial.
  

• The JOGGR function which has been disabled on T-mobile's version can be hacked to be used again, and even has a utility out if you're scared to hack the registry. After using it for a bit, I wish HTC (the manufacturer) would've just put in a jog wheel instead.
  

• The camera is still crappy as my old phone (Sony Ericsson w600i)
  

• There is no 3.5mm headphone jack. You have to use the proprietary earphones that the phone came with, so I can't hook the thing up to my AUX jack in the car.
  

• Customizing the home screen can be somewhat a pain in the ass.
  

• EDGE Data signal will drop sometimes and will requiring reboots to coax it to reconnect
  

Even with these quirks, I love the phone. Its slim and pocketable, the QWERTY keyboard is a great feature, the rubbery body is great for gripping, and Windows Mobile is pretty stabled compared to my first Pocket PC device back in 2001. My technolust has been satiated. At least for the time being.

Yousendit will go the way of the do-do

I used to love using yousendit.com. It was the easiest way to send large files from one person to the next, without the hassle of killing off your email server. But now? They suck. They've scaled back their once 1 gigabyte cap to 100 megabytes, and they're requiring everyone to register if you want in on their service. I don't have a problem with registering, but I do have a problem when they start making you pay for things they were giving away free from the get-go. Its like a bait-and-switch tactic that most consumers hate being taken for. So after getting this email from yousendit:

Your new YouSendIt Lite account is great to send large files but it has its limitations. How would you like a full 30 days of our most powerful service, YouSendIt Business Plus, for free to try the many features that it provides? This is a $29.99 value and you get it absolutely free - no strings attached, no need to enter a credit card number.

Compared to your current Lite account some key advantages of our Business Plus service are:

* Send multiple files at once
* Send files as large as 2 GB
* Track downloads
* Files you send are available for 14 days
* No ads on your pages
* The ability to customize your file deliveries with your brand

WHY?! I recently signed up on xdrive.com for more or less the same service and I get to store 5 gigs on their server. And you know what? Its free. Sure, I have to register with them too and put up with some annoying ads, but its free, and I don't have to pay 30 bucks for the privilege. So, so long yousendit. It was nice knowing while it lasted.