Best Of Web
Best Of The Web
ANONYMOUS
Who Is Anonymous
Anonymous is not a group, it�s "an Internet gathering" with a "decentralized, loose command structure that operates on ideas rather than directives," the hacktivist body says
TECH NEWS DAILY
WikiLeaks Hactivism is Not Cyberwarfare, Experts Say
Security experts argue that the DDoS attacks don�t constitute cyberwarfare, which would be much more damaging and devastating
READ WRITE WEB
Facebook Announces Hacker Cup Competition
Competitors must solve a number of algorithmic-based problem statements quickly and correctly and first prize for world champion is $5,000
NETCRAFT
Moneybookers.Com Taken Down By DDoS Attacks
Moneybookers had collected WikiLeaks donations and then closed down their accounts after WikiLeaks was put on an official U.S. watchlist and an Australian government blacklist
COMPUTERWORLD UK
Sarah Palin Locked In Cyberwar With London Based WikiLeaks Supporters
Palin says she is under a heavy cyberattack from London-based WikiLeaks backers -- Palin had previously called for Wikileaks founder Julian Assange to be tracked down like the military is targeting the Taliban and Al-Qaeda
ISEC LAB BLOG
TTP Parameter Pollution: New Service
A free online service lets website administrators scan their sites� Web applications for free
SCHNEIER ON SECURITY
WikiLeaks
Bruce Schneier says encryption isn't the issue, and secrets are only as secure as the least trusted person who knows them
TECHNOLOGY REVIEW
White Worm Could Stop Bluetooth Viruses
Viruses that spread by Bluetooth or WiFi could be completely contained by a new type of worm that spreads a patch via the same Bluetooth or WiFi routes that the virus uses
BBC
Call Of Duty Cyber Attack Prompts Arrest Of Boy, 17
Teenage boy arrested for waging a denial-of-service attack on the online version of the Call of Duty game, keeping a large number of people from playing
YAHOO NEWS
No Apparent Stuxnet Impact In US: Cyber Official
While the software targeted by Stuxnet is used in U.S. infrastructure, the worm has not affected any systems here, a DHS official says
H ONLINE
New Version Of OpenSSL Fixes Two Vulnerabilities
Version 1.0.0c of the free OpenSSL SSL implementation patches a flaw in an older workaround for Netscape browsers, as well as one in the Password Authenticated Key Exchange by Juggling protocol
APPLE INSIDER
Google Activating 300,000 Android Devices Per Day, For Free
In an apparent response to reports that Android activations were plateauing, Google's VP of engineering tweets that the company is now activating some 300,000 Android smartphones a day
THREATPOST
TDL4 Rootkit Now Using Stuxnet Bug
New variant of TDSS malware family now using Windows bug first exploited by Stuxnet
THE REGISTER
Hacker Brings Enhanced Security To Jailbroken iPhones
ASLR added to iPhones to make them more resistant to malware attacks
SYMANTEC
Spam Carrying WikiLeaks Worm
WikiLeaks news leveraged in new phishing attack
SOFTPEDIA
Compromised Twitter Accounts Spread Links To Drive-By Downloads
A new worm is using hijacked Twitter accounts to advertise links to a drive-by download website
SMALL BUSINESS TRENDS
One In Seven Small Businesses Have No Internet Security
More than a tenth of SMBs have no security software at all, AVG report says
THE REGISTER
Chinese Hackers "Slurped 50 MB Of U.S. Government Email"
Windows source code tapped, say WikiLeaked docs
INFOSECURITY
Updated Android Attempts To Prevent Clickjacking
Google announced the new version 2.3 of Android, nicknamed ���Gingerbread,��� which contains security improvements, such as touch filtering, which helps prevent clickjacking attacks
THREAT POST
New Local Linux Kernel Root Exploit Published
Attack code escalates privileges on a local machine and uses three separate bugs to get root on a vulnerable Linux system
PC PRO
NASA Sells Off PCs With Secret Shuttle Data
Ten machines with potentially classified information were sold, and another four were discovered going out the door with unwiped hard drives
WIRED
WikiLeaks' Assange Arrested In London, Denied Bail
WikiLeaks leader charged with rape in Sweden
OSDIR
Twitter May Be Censoring WikiLeaks
Social networking site may be hampering WikiLeaks-related tweets from becoming trending topics, sources say
NEW SCIENTIST
Criminals Find The Key To Car Immobilizers
A German researcher has revealed vulnerabilities in the engine immobilizers used to protect modern cars from theft
H ONLINE
Hacker Plants Back Door In Symbian Firmware
Back-door malware created for Symbian S60 smartphone firmware allows phone���s functions to be controlled remotely, including the camera
TECH WORLD
Internet Explorer "Protected Mode" Weakness Spelled Out
Warning for Adobe Reader X and Google Chrome, researchers say
THE REGISTER
Latest Botnet Rankings: Rustock Still Mother Of Them All
The top three botnets for spam distribution are Rustock, with 44 billion spam emails per day, and Grum and Cutwail, respectively, according to new Symantec data
GOVINFOSECURITY
Feds, Financial Sector In R&D Initiative
The federal government and financial services industry plan to work together to speed the commercialization of technology solutions to protect critical financial services networks
OFFICE OF INADEQUATE SECURITY
PA Man Sentenced For Using Investors' Identities For Credit Card Fraud
Insider draws 121 months in prison for stealing information
COMPUTERWORLD UK
Intel Threatened Russia Over Encryption, WikiLeaks Says
Company threatened to pull R&D money if strict encryption laws weren't relaxed, according to documents
REPORTER NEWS
U.S. Losing War With Hackers
Department of Homeland Security continues efforts to pare down vulnerabilities, but technology may already be passing it by
HELP NET SECURITY
Growth In Social Networking, Mobile, And Infrastructure Attacks
New IID study offers insights on latest threat trends
ESECURITY PLANET
WikiLeaks Raises Questions Of Information Security
Enterprises should pay attention to lessons learned from WikiLeaks about data security
CBS LOS ANGELES
Websites Secretly Harvest Online Histories Through Browser Flaw
Flaw helps con artists and e-commerce companies better target their online campaigns
CNET
Online Activists Fighting To Keep WikiLeaks Alive
Site continues to be propped up by a barrage of mirror sites
BLOOMBERG
China's "Patriotic Hackers" Attack U.S. Websites, Including Google
WikiLeaks documents say sites were targeted
PBS
China Internet "Hijacking"--Your Questions Answered
Experts offer insight on what really happened during the 18 minutes U.S. traffic was redirected
CYBERINSECURE.COM
Cryptographers Crack Canon Original Data Security
Fake test photos authenticated as real, researchers say
MCAFEE
Protect The Organization, Protect The Data
WikiLeaks incidents may encourage some enterprises to look harder at insider threat
COMPUTERWORLD
Amazon Pulls WikiLeaks Plug
WikiLeaks moves to Swedish ISP after Amazon ousts controversial site
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
- HP Newsletter with Gartner Research: Maximizing Your Infrastructure through Virtualization
- Understanding Holistic Database Security 8 Steps to Successfully Securing Enterprise Data Sources
- A How-To Guide on Using Cloud Services for Security-Rich Data Backup
- Holistic Risk Management: Perspectives from IT Professionals
- Aligning IT with strategic business goals: A proactive approach to managing IT risk to your business
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2012-4697
TURCK BL20 Programmable Gateway and BL67 Programmable Gateway have hardcoded accounts, which allows remote attackers to obtain administrative access via an FTP session.
CVE-2011-4520
Heap-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page.
CVE-2011-4519
Stack-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page.
CVE-2011-4518
Directory traversal vulnerability in the PmWebDir object in the web server in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to read arbitrary files via unspecified vectors.
CVE-2012-6563
engine/lib/access.php in Elgg before 1.8.5 does not properly clear cached access lists during plugin boot, which allows remote attackers to read private entities via unspecified vectors.