ACLU Privacy & Technology
Tue Jan 24 20:43:02 2012 GMT
  » FEED — SITE

ACLU Statement on Supreme Court GPS Tracking Decision

ACLU & EFF to Appeal Secrecy Ruling in Twitter/WikiLeaks Case

ACLU Asks Court To Unseal Proceedings in Twitter Subpoena Case

Court Seals ACLU Challenge to Twitter Subpoena

White House Announces Nominees to Fill Civil Liberties Board

ACLU Report on Domestic Drones Finds Need for New Privacy Protections

ACLU and PUBPAT Ask Supreme Court to Rule that Patents on Breast Cancer Genes are Invalid

Judge Rules Against Privacy and Free Speech in Twitter/WikiLeaks Case

Senate Rejects Resolution That Would Undermine Net Neutrality

ACLU Offers Free Booklet on Workplace Privacy Rights

Data Loss Incidents
Tue Feb 7 11:46:47 2012 GMT
  » FEED — SITE

Patient information left/lost on a train

608 clients' files with account application information missing from storage

Laptop stolen during office burglary contained names, dates of birth, medical record numbers, insura...

17 names, usernames, and plain-text passwords dumped on the Internet

Employee accessed the records of twelve injured workers without a justifiable work purpose over a th...

Customers' personal details and encrypted credit card numbers with expiration dates may have bee...

Names, dates of birth, sickness information and work contact numbers of employees were published on ...

Employee skimmed and sold 50 customers' credit card numbers

Mailing error exposed 2,038 taxpayers' Social Security numbers to other taxpayers

Lost memory stick contained personal details of 1,075 young children attending schools in the Dunbar...

County's web portal for public hacked; 250 residents' email addresses, user names and passw...

More than 50 customers' credit card numbers exfiltrated by virus incurred fraudulent charges

787 police officers' names, usernames, plain-text passwords, agencies and addresses (some home a...

4,933 e-mail addresses and hashed passwords dumped on the Internet

1,500 podiatry patients' personal and medical details on stolen laptop

Approximately 2,000 patients' names, phone numbers, dates of birth, diagnoses and MCPN internal...

12,374 job applicants and fewer than 500 patients notified that their names, addresses, Social Secur...

Contact details, crime tips by citizens, and other personal information acquired by hackers; additio...

Papers, Please!
Tue Feb 7 11:46:56 2012 GMT
  » FEED — SITE

Yet another US citizen denied their right of return

KLM wants you to make the DHS your friend on Facebook

State Dept. finalizes passport fee increases, continues to ignore human rights complaints

Retroactive Privacy Act exemptions could cost a US citizen his life

First rulings in our lawsuit over DHS travel records

What’s it like to be labeled an “armed and dangerous terrorist”?

US report on human rights ignores complaints

The EU-US PNR Agreement — A Legal Analysis of Its Failures

Civil liberties principles for border policy

Open letter to Members of the European Parliament on EU-US PNR agreement

Privacy Digest
Fri Apr 8 01:45:52 2011 GMT
  » FEED — SITE

The Secrecy Double-Standard

Fully-qualified Nonsense in the SSL Observatory

Appeals Court Strengthens Warrantless Searches at Border

Justice Dept. to Congress: Don’t Saddle 4th Amendment on Us

Feds, RIAA Ask $22,500 in Damages Per Song

Building a better Certificate Authority (CA) infrastructure

Where’s EFF? Why EFF Is Sometimes Quiet About Important Cases

Congressman Wants YouTube Video Covered Up

Man Creates "Creepy" Stalking App

Boston College Says Using WiFi Is a Sign of Infringement

Independent Iranian Hacker Claims Responsibility for Comodo Hack

NSA to Investigate Nasdaq Hack

How Mass BitTorrent Lawsuits Turn Low-Budget Movies Into Big Bucks

The Surveillance Memos, and a Suggestion for Jack Goldsmith

It’s Time for the Recording Industry to Stop Blaming "Piracy" and Start Finding A Ne...

ACLU and EFF Appeal Ruling In Case Challenging Government Attempt To Obtain Private Data in WikiLeak...

Iranian hackers obtain fraudulent HTTPS certificates: How close to a Web security meltdown did we get?

Mozilla Says It Erred On SSL Attack Disclosure

Register: Security
Tue Feb 7 17:47:51 2012 GMT
  » FEED — SITE

TRENDnet home security cam flaw exposes thousands

USER-TRACKING Firefox sparks Mozilla civil war

Conclusive PROOF of human activity causing glacier to VANISH

Hackers spunk 'pcAnywhere source' after negotiation breakdown

Avast! Mobile Security

Adobe adds Flash sandboxing to Firefox

Anonymous releases law firm's emails about Haditha killings

Avast false alarm hits Steam's weekend gamers

BTJunkie closes shooting gallery

Job-seeking Marriott hacker gets 30 months' porridge

MPs rattle telcos to help kill extremist material online

Hackers may be able to 'outwit' online banking security devices

Biz urged to blast DNSChanger Trojans before safety net comes down

Mother charged with selling fake Facebook stock

Anonymous hackers leak Scotland Yard-FBI conference call

Apple FileVault cracked in under an hour by forensics biz

Satellite phones lift skirt, flash cipher secrets at boffins

'We're totally in LA pissing people off'

Rootsecure.net
Sun Feb 5 11:47:35 2012 GMT
  » FEED — SITE

The Telegraph: Satellite phone encryption cracked

Cisco Zine: How to monitor devices with Cacti

arstechnica: "TWO *REAL* GUNS POINTED AT ME" - how the FBI raided Anonymous

Navy Times: Chinese virus targets DoD Common Access Card

CNBC: Supreme Court: Warrant Needed for GPS Tracking

Computer World: What Megaupload's Demise Teaches about Cloud Storage

timeslive.co.za: It was a happy New Year's Day for gang who pulled off...R42m Postbank heist

Fox News: Hackers zap Zappos - Info from 24 million users stolen

Boing Boing: Researcher - T-Mobile UK is secretly disrupting secure communications, leaving customer...

Acros Security: Is Your Online Bank Vulnerable To Currency Rounding Attacks?

Net Security: BackTrack 5 Wireless Penetration Testing

Acros Security: Google Chrome HTTPS Address Bar Spoofing

Wired: Forensic Expert - Mannings Computer Had 10K Cables, Downloading Scripts

Slashdot: FBI Rejects Freedom of Information Act Request About Carrier IQ

Krebs On Security: Who Knows What Youhavedownloaded.com?

Offensive Security: MS11-080 A Voyage into Ring Zero

Threat Post: Researchers Say Carrier IQ Not Logging Texts or Emails, But Has Some Worrisome Capabili...

Wired: Carrier IQ Admits Holding Treasure Trove of Consumer Data, But No Keystrokes

SANS Internet Storm Center
Tue Feb 7 11:47:26 2012 GMT
  » FEED — SITE

Infocon: green

ISC StormCast for Tuesday, February 7th 2012 http://isc.sans.edu/podcastdetail.html?id=2308, (Tue, F...

Secure E-Mail Access, (Tue, Feb 7th)

Book Review: Practical Packet Analysis, 2nd ed, (Tue, Feb 7th)

ISC StormCast for Monday, February 6th 2012 http://isc.sans.edu/podcastdetail.html?id=2305, (Mon, Fe...

Cybersecurity Legislation Components, (Sun, Feb 5th)

Apple Security Advisory 2012-001 v1.1, (Sat, Feb 4th)

Sophos 2012 Security Threat Report, (Fri, Feb 3rd)

ISC StormCast for Friday, February 3rd 2012 http://isc.sans.edu/podcastdetail.html?id=2302, (Fri, Fe...

SecurITeam.com
Sat Feb 4 11:47:39 2012 GMT
  » FEED — SITE

SecuriTeam.com

RealNetworks RealPlayer RV10 Sample Height Parsing Code Execution Vulnerability

RealNetworks RealPlayer IVR MLTI Chunk Length Parsing Code Execution Vulnerability

RealNetworks RealPlayer RV30 Uninitialized Index Value Code Execution Vulnerability

RealNetworks RealPlayer Invalid Codec Name Code Execution Vulnerability

RealNetwork RealPlayer MPG Width Integer Underflow Code Execution Vulnerability

Apache mod_rewrite Vulnerability PoC

netsniff-ng - A Linux Network Analyzer and Networking Toolkit

Simple Local File Inclusion Exploiter

NiX A Linux Brute Forcer

Nchop - A TCP Session Splicing Tool Used to Rvade Intrusion Detection Systems

ProFTPD Response Pool Use-After-Free Code Execution Vulnerability

Insight Control for Linux Multiple Vulnerabilities

HP-UX Running NFS/ONCplus Denial of Service Vulnerability

HP-UX Running BIND Denial of Service Vulnerability 2011

HP-UX Running XNTP Denial of Service Vulnerability

Novell Zenworks Software Packaging LaunchHelp.dll Code Execution Vulnerability

Novell ZENWorks Software Packaging Antique ActiveX Control Code Execution Vulnerability

SecurityFocus Vulns
Tue Feb 7 17:48:19 2012 GMT
  » FEED — SITE

Vuln: Pligg CMS 'status' Parameter SQL Injection Vulnerability

Vuln: OpenSSL TLS Server Extension Parsing Buffer Overflow Vulnerability

Vuln: phpShowtime 'r' Parameter Directory Traversal Vulnerability

Vuln: Mozilla Firefox/Thunderbird/SeaMonkey nsDOMAttribute Use After Free Memory Corruption Vulnerab...

Bugtraq: SQL Injection Vulnerability in Batavi 1.1.2

Bugtraq: CVE-2012-0803: Apache CXF does not validate UsernameToken policies correctly

Bugtraq: DEF CON 20 Capture the Flag Announcement

Bugtraq: SimpleGroupware 0.742 Cross-Site-Scripting vulnerability

More rss feeds from SecurityFocus

Stupid Security
Sat Aug 7 07:47:29 2010 GMT
  » FEED — SITE

FBI Tells Wikipedia to Remove FBI Seal from Wikipedia

*Way* beyond stupid.... Military banned from wikileak

Note on security gate... with code.

Man prints fake pilot's license on printer at home, flies commercial jets for 13 year

Airport scanners being misused--quelle surprise!!

Homeland Security out of a job?

Arabic-language flashcards don't fly with TSA

TSA Worker Fired For "White Powder" Prank

TSA Logo Competition

8 year old on watch list

US-CERT National Cyber Alert
Mon Feb 6 20:44:03 2012 GMT
  » FEED — SITE

SB12-037: Vulnerability Summary for the Week of January 30, 2012

SB12-030: Vulnerability Summary for the Week of January 23, 2012

TA12-024A: "Anonymous" DDoS Activity

SB12-023: Vulnerability Summary for the Week of January 16, 2012

SB12-016: Vulnerability Summary for the Week of January 9, 2012

SA12-010A: Microsoft Updates for Multiple Vulnerabilities

TA12-010A: Microsoft Updates for Multiple Vulnerabilities

SB12-009: Vulnerability Summary for the Week of January 2, 2012

TA12-006A: Wi-Fi Protected Setup (WPS) Vulnerable to Brute-Force Attack

SA12-006A: Wi-Fi Protected Setup (WPS) Vulnerable to Brute-Force Attack

Virus warnings
Mon Jan 16 17:51:26 2012 GMT
  » FEED — SITE

Trojan.FakeAV!gen65

Trojan.Spyeye!conf

W32.Murtinda

Trojan.Zatvex

Packed.Mystic!gen9

Trojan.Bootlock.B

Trojan.Sefnit!gen3

Bloodhound.Flash.6

Packed.Generic.232

Backdoor.Darkmoon!gen5

Trojan.Mdropper!gen1

Trojan.FakeAV!gen66

Backdoor.Murcy

You Are Being Watched
Sun Oct 24 23:08:06 2010 GMT
  » FEED — SITE

San Francisco Surveillance Cameras Don’t Reduce Violent Crime

Let's face it, soon Big Brother will have no trouble recognising you

Finding a Way to Review Surveillance Tape in Bulk

Obama Stimulus Buys $8M in Airport Spy Cameras

CCTV in the spotlight: one crime solved for every 1,000 cameras

UK Public to monitor CCTV from home

UK Traffic Cameras Used to Harass Peaceful Protestors