ACLU Privacy & Technology
Fri Nov 6 23:43:03 2009 GMT
  » FEED — SITE

Privacy and Intelligence Experts Join Call for Oversight of Massachusetts Domestic Surveillance Oper...

NYCLU Urges Public Education and Voluntary Vaccine for H1N1 Flu, Warns Vaccine Mandate Violates Priv...

Department Of Homeland Security Inspector General Report Underscores Flaws In System For Settling Wa...

Senate Committee Passes Patriot Act Reauthorization Bill

NYCLU Calls on NYPD to Make Public Details on 'Ring of Steel' Expansion

TSA Body Scanning Technology Strips Away Privacy

Troubling Start For Patriot Act Reauthorization

Legislation To Be Introduced To Repeal Immunity For Telecommunications Companies

FBI Data Mining And Collection Programs Threaten Privacy Of Innocent Americans

Fusion Centers To Obtain Access To Classified Military Intelligence

Data Loss Incidents
Sat Nov 7 20:48:13 2009 GMT
  » FEED — SITE

Personally identifiable data for 4,500 students accessible via web

Stolen laptop exposes 10,000 physicians names, addresses and Social Security numbers

Missing computer tapes expose 100,000 farmers personal details including bank account inforamtion

Unknown hack exposes more than 100 customers credit card details

Names, home addresses, dates of birth, and medical information of 68,000 on lost discs

Hacked computers expose 2920 student and faculty names and Social Security numbers

Email leaks 350 hospital employees names and Social Security numbers

Policy details of 641,000 on lost backup tape

Personal information for almost 16,000 on stolen data storage device

Email accidentally sent containing 676 employee names and Social Security numbers

Disabled security systems delay discovery of breach involving Social Security numbers and other sens...

Thousands of customers data breached in liquor store retailers network

Personal information of 33,000 on stolen laptop

Names, Social Security numbers, and demographic information of over 103,000 on lost flash drive

Names of 82 students and 3 faculty members Social Security numbers accidentially posted on website

Missing USB device contains 1700 patients Social Security numbers and medical details

Records of 52 customers discarded in dumpter contained names, addresses, Social Security numbers

Dumpster full of documents contained names, address, Social Security numbers, tax records and driver...

Emergent Chaos
Sat Nov 7 20:44:31 2009 GMT
  » FEED — SITE

Mini Metricon 4.5 Call for Participation

Pay for your own dog food

Detecting Malice

Tabletop Science

Seattle: Pete Holmes for City Attorney

Fordham report on Children's Privacy

Bob Blakley Gets Future Shock Dead Wrong

The Conch Republic

Prisoners in Iran

Vista Didn't Fail Because of Security

Dear ChoicePoint: Lying like a cheap rug undercuts all that

RSnakes On A Plane

Toyota Stalks Woman, Claims She Consented

Another good metaphor, killed by science

Another Long Time Fugitive Arrested

Privacy Digest
Fri Nov 6 02:46:20 2009 GMT
  » FEED — SITE

Bill could kill ISP safe harbor in cases of financial fraud

Advocates Renew Calls for Transparency in ACTA process

Mossad Hacked Syrian Official’s Computer Before Bombing Mysterious Facility

New York Court Scores Over Oregon In Recent Email Privacy Opinions

Zero-Tolerance Policies

Ethics Committee Staffer Leaks Secrets On File-Sharing Network

Man Sues Over Leaky Baby Monitor

House, Senate get separate bills to kill net neutrality

The Key to Health IT’s Success: A Comprehensive Privacy and Security Framework

House Patriot Act Bill Draws Broad Support On Account of National Security Letter Fix

Feds’ Smart Grid Race Leaves Cybersecurity in the Dust

Best Buy Sells Surveillance Tracker

Psychology and Security Resource Page

DRM by any other name: The latest from Hollywood

EFF fights 'censorship' with Takedown Hall of Shame

There’s anonymity on the Internet. Get over it.

Cybercrooks Trick Gawker Into Serving Malware-Laced Ad

Google Adds Social Search to Labs - Reviews by PC Magazine

Register: Security
Sat Nov 7 02:46:29 2009 GMT
  » FEED — SITE

Vint Cerf: 'Google doesn't know who you are'

Doctor sentenced for massive online Rx factory

Mossad hacked Syrian laptop to steal nuke plant secrets

Controversial email blocklist SORBS sold

Backdoor in top iPhone games stole user data, suit claims

Swedish spooks knocked offline by hack attack

Google launches privacy Dashboard service

Cybercriminals down five British police forces in a year

Tech titans meet in secret to plug SSL hole

Judge spanks lawyer for leaking personal details in brief

Men allegedly broke into computers of former employer

Mac art project game destroys aliens files

Google opens up OAuth to tackle password chores

Naked Win 7 still vulnerable to most viruses

Whitehall plans 'White Noise' phone network collapse

Lords want help on cyber attacks

PrevX piles in against bank Trojans, phishing

Newfangled cookie attack steals/poisons website creds

Rootsecure.net
Sat Nov 7 20:48:30 2009 GMT
  » FEED — SITE

Network World: Switchers Guide - Understanding Mac security

Wired: Report - Cyber Attacks Caused Power Outages in Brazil

SANS Forensics: 3 Lists for Investigating Malware Incidents

c|net: Q&A - Schneier warns of marketers and dancing pigs

techdirt: Comcast Exec - We Need To Change Customer Behavior, Not Our Business Model

Network World: Kaspersky Lab releases antivirus app

The Register: Cybercriminals down five British police forces in a year "In the last year five B...

Bruce Schneier: The Problems with Unscientific Security [pdf]

ZDNet Blog: Which antivirus is best at removing malware?

SANS: Legacy systems

Slashdot: Man-In-the-Middle Vulnerability For SSL and TLS

Network World: Botnet authors crash WordPress sites with buggy code

Net Security: Ask the social engineer - Practice

Security Tracker: Asterisk Discloses Valid Usersnames to Remote Users "in Response to Specially...

c|net: Google Dashboard lifts curtain on stored data

Wired: Maryland Voters Test New Cryptographic Voting System

H Security: Jailbroken iPhones hacked via UMTS network "Confronted with the ensuing outrage, th...

The Register: BT squares up to Google Voice with Ribbit Mobile

SANS Internet Storm Center
Sat Nov 7 23:47:47 2009 GMT
  » FEED — SITE

Infocon: green

More Thoughts on Legacy Systems, (Sat, Nov 7th)

New version of OpenSSL released - OpenSSL 0.9.8l, (Fri, Nov 6th)

A new version of Firefox (3.5.5) just became available. According to the release notes they are sta...

RIM fixes random code execution vulnerability, (Thu, Nov 5th)

TLS Man-in-the-middle on renegotiation vulnerability made public, (Thu, Nov 5th)

Insider threat: The snapnames case, (Thu, Nov 5th)

Legacy systems, (Thu, Nov 5th)

Sun Java 6 Update 17 out, fixes lots of security vulnerabilities (thanks Toby&Roseman), (Tue, N...

Adobe released Shockwave Player 11.5.2.602 which fixes several critical security vulnerabilities, (T...

SecurITeam.com
Wed Nov 4 23:48:30 2009 GMT
  » FEED — SITE

SecuriTeam.com

Palm Pre WebOS Remote File Access Vulnerability

VMware Mishandled Exception and Directory Traversal Vulnerabilities

F-Secure Generic PDF bypass

Asterisk ACL check Vulnerability

Rising Multiple Products Local Privilege Escalation Vulnerability

Netifera - Modular Open Source Platform for Security Tools

WarVOX - Tools for Exploring, Classifying, and Auditing Telephone Systems

Webshag - Web Server Audit Tool

Browser Fuzzer

FSpy - Linux Filesystem Activity Monitoring

Novell eDirectory LDAP Null Base DN DoS Vulnerability

HP-UX Using libc DoS Vulnerability

Adobe Shockwave Player Multiple Code Execution Vulnerabilities

IBM Tivoli Storage Manager CAD Service Buffer Overflow

Hyperic HQ XSS Alerts List Vulnerability

Microsoft SharePoint 2007 ASP.NET Source Code Disclosure

Microsoft Windows Local Security Authority Integer Overflow Vulnerability

SecurityFocus News
Thu Nov 5 17:46:43 2009 GMT
  » FEED — SITE

News: Popular apps need better patching, says report

News: Hacker charged with Heartland, other breaches

News: Web attacks hit U.S., South Korean sites

News: FTC persuades court to shutter rogue ISP

Brief: Gov't warns firms about online robberies

Brief: Vulnerability sales help secure Microsoft

Brief: Sensitive gov't docs leaked over peer-to-peer

Brief: Small, medium firms cut security budgets

News: FBI and SOCA plot cybercrime smackdown

News: Botnet boosts criminals' revenues from Google

News: Apple sneaks anti-malware into Mac OS X

News: Security flaws foul financial giant’s Web site

Infocus: Enterprise Intrusion Analysis, Part One

Infocus: Responding to a Brute Force SSH Attack

Infocus: Data Recovery on Linux and ext3

Infocus: WiMax: Just Another Security Challenge?

Gunter Ollmann: Time to Squish SQL Injection

Mark Rasch: Lazy Workers May Be Deemed Hackers

SecurityFocus Vulns
Sat Nov 7 11:50:02 2009 GMT
  » FEED — SITE

Vuln: Multiple Vendor TLS Protocol Session Renegotiation Security Vulnerability

Vuln: PDFLib 'open_basedir' Restriction Bypass Vulnerability

Vuln: Alien Arena 'M_AddToServerList()' UDP Packet Buffer Overflow Vulnerability

Vuln: HTML-Parser Invalid HTML Entity Remote Denial of Service Vulnerability

Bugtraq: [ GLSA 200911-01 ] Horde: Multiple vulnerabilities

Bugtraq: Php 5.3.0 pdflib extension open_basedir bypass

Bugtraq: [ MDVSA-2009:294 ] firefox

Bugtraq: [SECURITY] [DSA 1929-1] New Linux 2.6.18 packages fix several vulnerabilities

More rss feeds from SecurityFocus

Stupid Security
Tue Nov 3 23:46:43 2009 GMT
  » FEED — SITE

Fake Card-readers In a Hotel Elevator

large yellow sign deemed security risk

Short person: good. Tall person: Terrorism suspect

Hospital CIO is a Jedi -- Really....

Bathroom Emergency On Flight Prompts Felony Charge

Dual-Booting Linux Can Get You Into Trouble...

Man Detained by TSA for Carrying Cash - Audio Recording

Minister Breaches Security

Only Able Bodied Manly Men Can "Attend" to Their Luggage

TSA Throws Out Toothpaste But Allows Syringes Through

US-CERT National Cyber Alert
Wed Nov 4 17:44:00 2009 GMT
  » FEED — SITE

ST04-015: Understanding Denial-of-Service Attacks

SB09-306: Vulnerability Summary for the Week of October 26, 2009

SB09-299: Vulnerability Summary for the Week of October 19, 2009

ST04-014: Avoiding Social Engineering and Phishing Attacks

TA09-294A: Oracle Updates for Multiple Vulnerabilities

SB09-292: Vulnerability Summary for the Week of October 12, 2009

SA09-286B: Multiple Vulnerabilities Affect Adobe Reader and Acrobat

TA09-286B: Adobe Reader and Acrobat Vulnerabilities

SA09-286A: Microsoft Updates for Multiple Vulnerabilities

TA09-286A: Microsoft Updates for Multiple Vulnerabilities

Virus warnings
Fri Nov 6 17:48:38 2009 GMT
  » FEED — SITE

Packed.Generic.266

Trojan.Bredolab!gen5

Trackware:W32/Trackware

Spyware:W32/Spyware

Toolbar:W32/Toolbar

SMS-Worm:W32/SMS-Worm

Monitoring-Tool:W32/Monitoring-Tool

Macro:W32/Macro

Intended:W32/Intended

Hoax:W32/Hoax

HackTool:W32/HackTool

Dialer:W32/Dialer

Bluetooth-Worm:W32/Bluetooth-Worm

IRC-Worm:W32/IRC-Worm

P2P-Worm:W32/P2P-Worm

Email-Worm:W32/Email-Worm

W32.SillyFDC.BDD

Net-Worm:W32/Net-Worm

You Are Being Watched
Wed Mar 25 18:49:42 2009 GMT
  » FEED — SITE

Surveillance Camera Talking Points

An Evaluation of the Effectiveness of San Francisco's Community Safety Cameras

Expert Findings on Surveillance Cameras: What Criminologists and Others Studying Cameras Have Found

Preliminary Findings of the Statistical Evaluation of the Crime-Deterrent Effects of the San Francis...

Guidelines for Public Video Surveillance

Under the Watchful Eye: The Proliferation of Video Surveillance Systems in California

Surveillance Cameras and the Attempted London Attacks

Who's Watching? Video Camera Surveillance in New York City and the Need for Public Oversight

Public and Private Applications of Video Surveillance and Biometric Technologies

Home Office Research Study 292: Assessing the Impact of CCTV

Video Surveillance: Information on Law Enforcement’s Use of Closed-Circuit Television to Monit...

The Four Problems With Public Video Surveillance

How to find hidden cameras

The Appropriate and Effective Use of Security Technologies in U.S. Schools