Best Of The Web

NETWORK WORLD
IETF: Should We Fight The Kaminsky Bug?
Standards body debates fixing DNS or pushing new security scheme

WASHINGTON POST
Pharmaceutical Extortionists Take On CIA, FBI, DoD, NSA
Data "kidnappers" may not have known that Express Scripts has a huge base of law enforcement customers

SILICON.COM
Privacy Tsar To Fine Firms Recklessly Losing Data
UK Information Commissioners Office gets more power to punish firms that play fast and loose with data

BBC NEWS
US TV Anchor Convicted of Hacking
News presenter hacked into rival's email and leaked gossip to the press

WIRED
Secret Geek A-Team Hacks Back, Defends Worldwide Web
How Dan Kaminsky found and fought the bug that bears his name

CNET
Senator Probes Privacy Law Following Obama Phone Record Breach
Leahy asks questions about Telephone Records and Privacy Protection Act

INFOWORLD
Ways To Keep Your Laptop, Privacy Safe During Holiday Travel
Ten tips for keeping your data from falling into the wrong hands

BUSINESS WEEK
Network Security Breaches Plague NASA
NASA computers and Websites have been under attack from abroad, stirring national security concerns

ARS Technica
Microsoft Cleans Fake Antivirus Tool From 994,061 PC's
For every 1,000 machines in the US scanned by the MSRT during the last seven days, five were infected with FakeSecSen malware

MARKET WATCH
Javelin Ranks Top U.S. Banks' Identity Safety Measures for Customers
Bank of America is top-ranked for security due to partnering with its customers to protect against identity fraud

IOL
High-Tech Fraud Syndicate Busted
A cybercrime syndicate in South Africa with plants inside various organizations has been broken up

HEISE SECURITY
Buffer Overflow in Vista's TCP/IP Stack
A local vulnerability in Windows Vista could be used by an attacker to take over the OS

SEARCHSECURITY
Apple iPhone 2.2 Update Includes Critical Security Patches
New version of firmware fixes software flaws in both the iPhone and iPod Touch

WIRED
Facebook Awarded Record $873 Million in Spam Suit
In the largest judgment ever under CAN-SPAM, Facebook won't likely see much of the award money

CNET
Online Quiz Tests Phishing Knowledge
SonicWall Phishing and Spam IQ Quiz lets you test your ability phishing-detection acumen

COMPUTERWORLD
Chinese Team Mistakenly Released Unpatched IE7 Exploit
Many hackers already knew about the vulnerability, experts say

APC MAGAZINE
Microsoft To Release Free Security Software
Software giant next year will stop selling OneCare in favor of a free download codenamed ??Morro??

MIAMI HERALD
Virginia Seeks Reinstatement Of Anti-Spam Law
High court hears argument after lower court ruled legislation to be unconstitutionally broad

JEREMIAH GROSSMAN'S BLOG
Budgeting For Web Application Security
Founder of WhiteHat Security offers "business case" for app security

NETWORK WORLD
Top Ten Coolest/Suckest Hacking Moments In 2008
DNS vulnerability tops list of rough moments for CSOs

PHYSORG.COM
Semiconductor Lasers Generate Better Random Numbers
Good news for encryption:?? scientists found that semiconductor lasers can produce good-quality random number sequences very fast

BANGKOK POST
PM's Text Message an 'Invasion of Privacy'
Thailand's prime minister is under fire for sending unsolicited text messages to citizens asking for their help to restore the country

SOFTPEDIA
Infected Christmas Presents From Samsung
Samsung's SPF-85H 8-Inch Digital Photo Frame contains a worm

CNET
Verizon Awarded 'Largest-Ever' Cybersquatting Judgment
Northern California court awarded Verizon $33.15 million after domain registrar used over 660 Internet names that were easily confused with legitimate Verizon names

MSN
SBI Shuts Website After Hackers Break In
India's largest bank, The State Bank of India, shut down its corporate Website after overseas hackers attempted to break into the site

CNET
Windows 7 Beta 1 Makes Early Debut
First beta version of Windows 7 has been seen in circulation

GOVERNMENT COMPUTER NEWS
DHS Develops Privacy Guidelines For Science And Technology Directorate
Homeland Security has come up with privacy protection rules for its sensitive research

PRESS TV
Iranian Hackers 'Bring Down Mossad Web Site'
Group says it has knocked out the Israeli secret service Website to show solidarity with Gazans

COMPUTER WEEKLY
Microsoft To Issue Single Security Patch Next Week
January's Patch Tuesday will feature a single patch that fixes a critical hole in Windows clients and servers

HEISE SECURITY
22 Vendors Of Anti-Virus Software Taken To Court In Patent Dispute
Information Protection and Authentication of Texas is taking legal action against Symantec, Microsoft, and several other antivirus vendors for alleged patent infringements

ZDNET
Worm Surge Exploits Microsoft Vulnerability
A worm is still spreading that exploits a known (and patched) bug

THE PHILADELPHIA INQUIRER
Probe Led Fumo To Boost Security
When FBI began investigating former State Sen. Vincent J. Fumo, his computer technicians stepped up security and wiped his emails, according to testimony

INFORMATIONWEEK
Lawmaker Targets RFID In Privacy Push
Washington State representative wants products that contain the chips to be clearly marked

THE REGISTER
Oracle Patch Batch Eclipses Microsoft Patch Tuesday
Oracle's quarterly batch will include 41 fixes spanning hundreds of Oracle products

TRUSTDEFENDER
Rootkit Returns -- Better Than Ever
A new wave of the nasty MBR/Mebroot/Sinowal/Torpig rootkit that steals money and identities has become even more sophisticated

WASHINGTON POST
Caveat Emptor: Watch Out For Phantom Stores
No-name electronics stores and comparison-shopping sites steal data while taking orders

McAFEE AVERT LABS BLOG
Google Code Project Abused By Spammers
Free code-hosting project is used to create links to adult sites

CYBER SECURE INSTITUTE
Cybersecurity Under Obama
Recent scuttlebutt says pres-elect may scuttle plans for cybersecurity czar

INFOSEC WRITERS.COM
Anatomy Of An XSS Attack
A detailed look at the genesis of cross-site scripting attacks

SEARCH SECURITY
Future Security Threats: Enterprise Attacks Of 2009
Wireless systems, operating systems top the list