Best Of The Web

ARS TECHNICA
Is Megaupload "A Lot Less Guilty Than You Think?"
Legal experts say Megaupload is likely in serious legal trouble, but Jennifer Granick, a Bay Area attorney blogging for Stanford's Center for Internet and Society, raises the distinction between civil and criminal law in the case

THE GASTON GAZETTE
IRS: Beware Of Dirty Dozen Tax Scams
The Internal Revenue Service has issued its annual "Dirty Dozen" tax scams list to warn taxpayers about scams and threats including identity theft and return preparer fraud

TRUSTEER
Merchant Of Fraud Returns -- Shylock Polymorphic Financial Malware Infections On The Rise
Each new build of this polymorphic malware contains excerpts from Shakespeare's The Merchant of Venice

HELP NET SECURITY
Thwarting Attacks With Genetically-Inspired Computer Configuration Systems
Automated security technology would be capable of learning from experience

THREAT POST
What You Need To Know About The RSA Key Research
RSA algorithm is not broken, analysis says

ALERTSEC XPRESS
University Of North Carolina At Charlotte Is Latest Victim Of Data Breach
Authorities scrambling to figure out how much data has been compromised

SANS INSTITUTE
SANS Launches Eighth Annual Log And Event Management Survey
Study aims to collect data on how enterprises collect and use log and event data

SOFTPEDIA
Stratfor Faces Lawsuit For Failing To Secure Customer Data
Lawsuit demands more than $50 million

ARBOR NETWORKS
DDoS Attacks In Russia Added To Protests
Political protests include cybersecurity exploits

FORBES
Anonymous Plans To Take Down The Internet? We're Being Trolled
Hacktivists' plan to take down the Web?s core address book could be a hoax, expert says

THREAT POST
Bloody Valentine For Critical Infrastructure: EtherNet Exploit Could Crash Devices
A new batch of PLC exploits was released by researchers that includes one exploiting a bug in the implementation of the EtherNet/IP (Internet Protocol) used in many IP-enabled PLCs

THE HACKER NEWS
Anonymous Hackers Target Nasdaq Website
A DDoS attack against websites for Nasdaq and BATS temporarily caused disruptions to the those sites -- Nasdaq says no information was stolen and trading was not affected

REUTERS
Philips Investigates Possible Cyber Security Breach
Philips Electronics shut down one of its servers yesterday due to a possible attack under investigation there

ZDNET BLOG
Have You Uninstalled Java Yet? Here Are 14 New Reasons...
Oracle's new patch release included 14 new vulnerabilities in Java SE, some that let hackers remotely install malware on machines without authenticating to them

INFOWORLD
Mozilla Will Ask All Certificate Authorities To Revoke SSL-Spying Certificates
Mozilla will request that certificate authorities revoke certs that could be used by companies to inspect SSL traffic for domain names they don't control in response to Trustwave revealing that it had done so

REUTERS
Experts Say Iran Has 'Neutralized' Stuxnet Virus
Iranian engineers have cleaned up and neutralized Stuxnet from their countrys nuclear systems, European and U.S. officials and private experts say

THE GLOBE AND MAIL
Reported Hacking Of Nortel Fuels Concerns, Skepticism
Cyber security experts says it?s no surprise Nortel was hit by cyberspies, but the question is whether stolen intellectual property might have led to the company's downfall

NEW YORK TIMES BLOG
Senators Introduce Security Bill And Warn Of Hacker Threat
Senate Bill 2105 lets the feds regulate the security of privately owned critical infrastructure, including power grids, telecommunications networks, and nuclear power plants, and task DHS with creating security regulations for critical infrastructure companies and penalize companies that don't comply

WASHINGTON POST
Hackers Loyal To Anonymous Claim Attack On US Tear Gas Company, Website Taken Down
Hacktivists say they broke into Combined Systems' website and stole personal information belonging to clients and employees

REUTERS
Philips Investigates Possible Cybersecurity Breach
Electronics firm says it shut down one of its servers Monday due to possible cyberattack

V3.CO.UK
Hackers Target TicketWeb Customers In Email Database Hack
Ticketmaster subsidiary admits it was the victim of a security breach last week

TWITTER
Securing Your Twitter Experience With HTTPS
HTTPS security will now be on by default for all users, social networking site says

SECURITY NEWS DAILY
Love And Theft: Online Dating Sites Put Daters' Privacy At Risk
Electronic Frontier Foundation report says participants may be exposing more data than they know

INFOSEC ISLAND
Security Flaw In eBanking Affects Over 100 Million Users
CAPTCHA vulnerabilities could expose customers, researcher says

SOFTPEDIA
6 GB NASA Database Leaked, Hackers Notify Agency
Two hacker groups say they exploited SQL injection vulnerability to steal data

FEDERAL NEWS RADIO
Budget Request Sees DHS Increasing Cybersecurity Spending
Homeland Security would sharply raise cybersecurity spending under White House 2013 budget request

THREAT POST
Mozilla Fixes Critical Flaw In Firefox
New version of Mozilla Firefox -- 10.0.1 -- includes a fix for a critical use-after-free bug in the browser

CANADA.COM
Evil Shadow Team Hacks Microsoft India
Microsoft is investigating an attack by hackers on its Indian retail website, reportedly carried out by a Chinese group called the "Evil Shadow Team"

THE HUFFINGTON POST
Tunes Hack: Users Report Unauthorized Charges On Accounts
Global Mail investigation concludes iTunes may have been hacked as far back as 2010, but Apple is neither confirming nor denying this

THE HACKER NEWS
Al Jazeera News Network Hacked By Syrian Hackers
Syrian hacktivist group targeted Al Jazeera's website in support of the government's actions in the country

THREAT POST
Hackers Hit Alabama, Mexican Government Websites
Hackers associated with Anonymous claim to be behind hacks of government websites in Alabama and Mexico, including the theft of personal information on more than 46,000 people

FSECURE BLOG
Cryptome Hacked
Cryptome.org, a site that posts items on freedom of speech, cryptography, spying, and surveillance, has been hacked and infused with malicious code based on the Blackhole crimeware kit

H ONLINE
Valve: Hackers May Have Gained Access To Steam Transactions
Valve Software says hackers accessed the database for its Steam game distribution platform in an attack late last year and may have stolen a copy of a backup file of customer transactions

GOOGLE BLOG
Protecting Your Payments With Google Wallet
Google warns Google Wallet users not to disable security functions to gain system-level "root" access to their phones, which would render Wallet's security features useless

CSO ONLINE
FBI Call Participants 'Made It Easy' For Anonymous To Break In
Investigators say it's likely that someone e-mailed to his or her private e-mail account the location number and password of the FBI-Scotland Yard conference call, and that private e-mail account was hacked by Anonymous, which was able to snoop on the call

NAKED SECURITY
Apple Supplier Foxconn Hacked Not For Bad Factory Conditions But For Kicks
Taiwanese manufacturer of iPhones and iPads for Apple Foxconn has been cited for alleged inhumane working conditions, and now the group was hacked by a group that goes by Swagg Security -- not for the working conditions there, but for the fun of the hack

BUSINESS WEEK
Tax Breaks Considered To Improve Cybersecurity On Vital Networks
Congressional members in the House are looking at tax breaks and liability protection to encourage banking, energy, and telecommunication companies to improve cybersecurity

BANK INFORMATION SECURITY
PCI: New Focus On Mobile
Mike Mitchell, chair of the Payment Card Industry Security Standards Council, says mobile is among his top priorities the Council this year, as well as point-to-point encryption, tokenization, and more compliance training

TECHWORLD
Citadel Banking Virus Adopts 'Open Source' Development
A Trojan that targets online banking users is evolving and spreading rapidly in the wake of an 'open-source' development model used by its creators, researchers from Seculert say

THE HACKER NEWS
Iran Shutdown Google, Yahoo & Other Major Sites Using HTTPS Protocol
The Iranian government reportedly has blocked access to websites using HTTPS including Google, Yahoo, and Gmail on the eve of the anniversary of the revolution that overthrew the country's monarchy and replaced it with an Islamic republic