xkcd on the Debian issue Let's not ask the experts? Uncle Harold and Open Source Check out these great blogs! The Difference Between Knowledge and Wisdom 6/16ths of Chileans personal information leaked by hacker UK Information Commissioner's Office Can Now Fine Your Ass Jack Jones on Risk Management Call me crazy? Credit Bureaus and Outsourcing Security Cameras Functional Hiring Fraudsters? Spending to Protect Assets A question of ethics Fasilyce, upon Reading
Mac Anti-Spyware Program MacScan Adds Blacklisted Cookies AMD demos 4x4 PhreakNIC X - Oct 20-22 2006 SCALE 5x Issues Call For Papers Hackwire changes 2 Students Are Accused of Altering Grades in Computer Hacking Case Digital Cellphone Scanning now possible New Jersey University hacked Syndicate HackWire News
Senators Ask FBI to Explain Flawed 'National Security Letter' to Internet Archive Entertainment Industry Leaned On Los Angeles Politicos to Declare Piracy a 'Public Nuisance' Minnesota Passes Veto-Proof Anti-Real ID Bill FISA: Deal or No Deal? Report: Government's Cyber Security Plan Is Riddled With New Spying Programs Air Force Aims for 'Full Control' of 'Any and All' Computers NBC-Vista copy-protection snafu reminds us why DRM stinks NBC Activates Broadcast Flag Arlen Specter Demanding Probe Of 'Spygate' (It's not what you think) Health Data Systems Need A Comprehensive Privacy and Security Framework Sony BMG Sends YouTube Ads Instead of Takedown Administrivia: Inaugural Benefit for the Sunflower Children of Latin America Fund (May 21,2008 NYC) DHS Can't Admit Its Own Mistakes Charter to Insert Ads into Web Pages Its Broadband Customers Visit Five IRS Employees Charged With Snooping on Tax Returns Resources on hate speech and trolls NSA Attacks West Point! Relax, It's a Cyberwar Game Making Surveillance for the FBI Easy
PC World: DNS Trouble Knocks NSA off Inter "The agency's two authoritative DNS servers were... PC World: After 'treasure Hunt,' Hacker Releases IE Attack Code Out Law: Government orders data retention by ISPs "Phone and internet companies will soon b... The Register: Apple okay with Safari 'carpet bombing' vuln for now c|net News: Hacker confab 'Last HOPE' to track attendees with RFID Guardian Unlimited: Taking your laptop into the US? Be sure to hide all your data first Computer World: It's a hard-knock life - 3 rugged notebooks take a beating "We dropped, dro... ZDNet Blog: HD Moore sets new land speed record with exploitation of Debian/Ubuntu OpenSSL flaw ZDNet Blog: DIY phishing kits introducing new features Wired: Catch a Glimpse of Mozilla's E-Mail Future in Thunderbird 3 Alpha 1 Network World: Hacker writes rootkit for Cisco's routers Wired - How-To Wiki: Get Started With Amateur Radio - A Guide for 'New Hams' darkReading: New Tests Show Rootkits Still Evade AV "tests recently conducted by AV-Test.or... Security Focus: Admins warned of brute-force SSH attacks Computer World: The new rules for buying a Mac "We bust the most common Mac shopping myths&... CCC: Short introduction to the CallABike system "backdoor we put into nearly every 10th bik... c|net News: Google sets sights on IPv6 "Google announced Wednesday on its official blog tha... Threat Level: Charter to Snoop on Broadband Customers' Web Histories for Ad Networks
Infocon: yellow INFOCon yellow: update your Debian generated keys/certs ASAP, (Thu, May 15th) Debian and Ubuntu users: fix your keys/certificates NOW, (Thu, May 15th) War of the worlds?, (Wed, May 14th) Microsoft office file block & MOICE, (Tue, May 13th) May 2008 black tuesday overview, (Tue, May 13th) OpenSSH: Predictable PRNG in debian and ubuntu Linux, (Tue, May 13th)
SecuriTeam.com Cisco BBSM Captive Portal Cross-site Scripting Cisco Unified Communications Manager Denial of Service Vulnerabilities Novell eDirectory Unauthenticated Access to SOAP Interface Call of Duty Denial of Service Wonderware SuiteLink Denial of Service Vulnerability SSL Capable NetCat ProxyStrike - Active Web Application Proxy McGrew Security RAM Dumper Creddump - Extracts Credentials from Windows Registry Hives w3af - Web Application Attack and Audit Framework Multiple Vendor rdesktop Vulnerabilities PHP GENERATE_SEED() Weak Random Number Seed Vulnerability PHP Multibyte Shell Command Escaping Bypass Vulnerability SugarCRM Community Edition Local File Disclosure Vulnerability Wordpress Cookie Integrity Protection Vulnerability Vulnerabilities in Microsoft Malware Protection Engine Allow Denial of Service (MS08-029) Vulnerability in Microsoft Jet Database Engine Allows Code Execution (MS08-028)
News: Admins warned of brute-force SSH attacks News: Groups warn travelers to limit laptop data News: Patches pose significant risk, researchers say News: U.S. gov't pushes cybersecurity at con Brief: TJX completes Mastercard breach settlement Brief: Weakness in Debian undermines crypto Brief: Microsoft patches database, Office flaws Brief: U.S. military to build botnet? News: Thoughts of a Teenage Bot Master News: Radio Free Europe hit by DDoS attack News: Flash vuln fells Vista News: Estonia fines man for DDoS attacks News: Nigeria enlists Microsoft to fight spam scammers News: Cross-Site Scripting Worm Hits MySpace News: Another data security bill in the works News: FTC sues company over spyware Infocus: Integrating More Intelligence into Your IDS, Part 2 Infocus: Integrating More Intelligence into Your IDS, Part 1
Vuln: News Manager Multiple Remote Vulnerabilities Vuln: Web Slider 'admin' Cookie Parameter Authentication Bypass Vulnerability Vuln: Multi-Page Comment System 'CommentSystemAdmin' Cookie Parameter Authentication Bypass ... Vuln: Rantx 'admin.php' Unauthorized Access Vulnerability Bugtraq: ZDI-08-025: Symantec Altiris Deployment Solution Domain Credential Disclosure Vulnerability Bugtraq: ZDI-08-024: Symantec Altiris Deployment Solution SQL Injection Vulnerability Bugtraq: SunShop Version 3.5.1 Remote Blind Sql Injection Bugtraq: Debian generated SSH-Keys working exploit More rss feeds from SecurityFocus
It Is Secure 'cos It Looks Secure Nice laptop... let's see Federal Air Marshals on No-Fly List No taking pictures at Amtrak's Union Station (but please enter our station photo contest) 'Twas The Season Steve Jobs Made Me Miss My Flight TSA Insists on Opening Clear Sterile Wrap TSA Gangsta Help TSA and Get Charged Taking Pictures of Your Grandchildren Is A Security Risk
ST05-010: Understanding Web Site Certificates SA08-134A: Microsoft Updates for Multiple Vulnerabilities TA08-134A: Microsoft Updates for Multiple Vulnerabilities SB08-133: Vulnerability Summary for the Week of May 5, 2008 SB08-126: Vulnerability Summary for the Week of April 28, 2008 ST05-009: Benefits and Risks of Free Email Services SB08-119: Vulnerability Summary for the Week of April 21, 2008 SB08-112: Vulnerability Summary for the Week of April 14, 2008 ST05-008: How Anonymous Are You? SB08-105: Vulnerability Summary for the Week of April 7, 2008
Virus warning Virus warning Spyware.SpyMan Trojan.Installscash Windows and Apple Mac users warned of Microsoft security holes which could lead to hacker attack Legal victory against spammers as MySpace wins record payout of $234 million XP-Shield Paul Saucier Acquires Sensible Security Solutions (formerly DynTek Canada) [ (MS08-027) Microsoft Publisher Object Handler Validation Vulnerability (951208) (MS08-026) Microsoft Object Parsing Vulnerability (951207) (MS08-026) Microsoft Word Cascading Style Sheet (CSS) Vulnerability (951207) (MS08-029) Microsoft Malware Protection Engine Vulnerability I (952044) (MS08-029) Microsoft Malware Protection Engine Vulnerability II (952044) MalwareScanner Stolen hard drive data put Formula One drivers at risk of blackmail, reports claim Trojan-Spy:HTML/Fraud Podcast: How to surf safely amid rising web threats Virus:W32/Small.AJ