• Microsoft Excel (.XLS and .XLSX)
• Microsoft PowerPoint 2007 / 2010 (.PPTX — before, only .ppt and .pps were supported)
• Apple Pages (.PAGES)
• Adobe Illustrator (.AI)
• Adobe Photoshop (.PSD)
• Autodesk AutoCad (.DXF)
• Scalable Vector Graphics (.SVG)
• PostScript (.EPS, .PS)
• TrueType (.TTF)
• XML Paper Specification (.XPS)

Facebook has finally added the ability to access the site via a HTTP Secure (HTTPS) connection, which should drastically increase security for users.

HTTPS provides a combination of the HTTP and SSL protocols, enabling encrypted communication between your computer and a web server. Without it you’re exposed to sniffing attacks on the network; for example, if you’re using a public Wi-Fi to access Facebook via plain HTTP, someone using the Firesheep add-on for Firefox can easily retrieve your data. HTTPS makes it a lot harder to do that.

The feature is available as an option on the Account Settings page. If you don’t see it yet, don’t worry: Facebook will be gradually rolling it out over the next couple of weeks.



Those who are concerned about online security probably know that it was possible to access Facebook via HTTPS for quite some time now, for example using the HTTPS Everywhere Firefox add-on, but some of Facebook’s features, for example chat and photo uploads, did not work properly over HTTPS.

Unfortunately, even Facebook’s implementation of the protocol will not be perfect. “Some Facebook features, including many third-party applications, are not currently supported in HTTPS,” writes Facebook’s Alex Rice in a blog post, promising that Facebook is working hard to resolve these issues. Furthermore, if you choose to enable HTTPS, you should know that it will slow down your Facebook experience, as encrypted pages take longer to load

Online dating site Plentyoffish was hacked last week, and e-mails, usernames and passwords of users were compromised, Plentyoffish CEO Markus Frind reveals in a blog post.

The security hole has been fixed, Markus says, and all the passwords have been reset. However, Plentyoffish still hasn’t made an official statement about the incident, and we advise users to access the site with caution.

The above is the most important bit of info for Plentyoffish users, but the actual story of the hack and how it occurred is very confusing and differs highly depending on who you believe. According to Markus Frind, who described the hack and the events that followed in detail on his personal blog, Plentyoffish was hacked by Argentinian hacker Chris Russo, who did it under his own name, without taking precaution to hide his identity.

Frind then claims that Russo tried to extort money from him, to which he responded by threatening to sue. The entire blog post is interesting mostly due to its weirdness, as it involves a shady business partner, Frind e-mailing Russo’s mother, and hints about Russo’s other hack-and-extort operations.


The story gets even more convoluted as Chris Russo’s side of the story is revealed in a blog post on Grumo Media. Russo claims he’s merely a security researcher, who had discovered a security hole on Plentyoffish, which was already “under active exploitation by hackers.”

Russo and his team disclosed the vulnerability to Frind’s wife, he claims, and Frind and her were “interested in hiring us as security professionals in order to make an analysis of the plataforms.” However, the relationship quickly deteriorated, with Frind accusing Russo that he stole Plentyoffish’s database, threatening not only to sue him, but also to “destroy” his life.

At this point it’s hard to understand what really happened; but the part of the story everyone seems to agree on is that a very popular dating site has been hacked and that users’ passwords and other personal details (possibly even PayPal accounts) were compromised. Hopefully, the security breach on Plentyoffish has really been fixed, but users who used the same username/e-mail/password combinations elsewhere should immediately change the passwords on other sites as well.