Best Of The Web

SC MAGAZINE
Tweeters Reveal Personal Details Including Email Addresses
period by business leaders, journalists, and celebrities, who are putting themselves at risk of phishing and other attacks, according to Websense Security Labs

NAKED SECURITY BLOG
Romanian NASA Hacker Gets Suspended Three-Year Sentence
The Romanian man who admitted to hacking into NASA servers has received a three-year suspended prison sentence, and his lawyers have challenged NASA's damage claims of $580,000

THE TELEGRAPH
Kim Dotcom: The Millionaire Playboy Behind Megaupload
Kim Schmitz, the file-sharing website's founder, is accused of heading a $175 million conspiracy of criminal copyright infringement, money laundering, and racketeering ? and he has been in trouble with the law before for hacking and theft of trade secrets

BANK INFO SECURITY
Decade-Long Virus Infection Discovered
City College of San Francisco vows updated security in wake of breach that may have affected tens of thousands

CNET
DoJ, FBI, Entertainment Industry Sites Attacked After Piracy Arrests
Anonymous claims credit for shutdown of U.S. Department of Justice, FBI, and Motion Picture Associates sites

THREAT POST
Stuxnet Expert: Analysis Shows Design Flaw, Not Vulnerability, Sank Siemens
Analysis proves that Iran's nuclear program was the target, expert says

BLOOMBERG
Chertoff Urges Swift Action By Senate On Cybersecurity Measures
Former DHS secretary urges Senate leaders to pass legislation to protect hospitals, power plants, and other critical infrastructure

REUTERS CANADA
Virus Infections Stop After Suspects Named
Working with security researchers, Facebook releases the names of five suspected ringleaders

ISOZIAL
Hackers Exploit McAfee Security Bug
Vulnerability in McAfee SaaS Web protection add-on coula allow hackers to turn McAfee customers' PCs into bots

ZERO PAID
How To Find Out If Your Gmail Account Has Been Hacked
Several handy tips for discovering if your Gmail account has been compromised by hackers

APPLE INSIDER
Mac Platform Faced 58 Malware Threats From Q2 To Q4 2011 -- Report
Security research firm says Mac still experiences a fraction of the threats faced by Microsoft Windows

FEDERAL TIMES
NSA Crafting Cyber Guidelines
The National Security Agency is developing cybersecurity guidelines for its own use that could also be adopted by other agencies or contractors, according to sources close to the project; the NSA, meanwhile, will neither confirm nor deny the project

FORBES
Why Sharing Passwords With Your Girlfriend/Boyfriend Is A Spectacularly Bad Idea
Pew found that 1 in 3 teens share passwords with a friend, boyfriend, or girlfriend: a bad idea for privacy, sabotage, and other reasons

PC WORLD
Russian Father And Son Face Charges In U.S.
Vladimir Zdorovenin, 54, of Moscow, and his son, Kirill, have been charged with alleged conspiracy, mail fraud, wire fraud, computer fraud, aggravated identity theft, and securities fraud in a scam that used malware to steal credit card numbers, identities, and financial accounts

NAKED SECURITY BLOG
How To Get Around The Wikipedia Blackout
To reach the popular site during the SOPA/PIPA online protest blackout, run the Firefox NoScript add-on, according to SophosLabs

TREND MICRO
The Koobface Saga
The disclosure of the Koobface gang investigation was unveiled prematurely, according to Trend Micro, which held closely details of its own investigation into the Russian gang behind it

THE HACKER NEWS
100 Kenya Government Websites Breached By Indonesian Hacker
An Indonesian hacker known as "Direxter" yesterday defaced more than 100 Kenya government websites, including those of the ministries of local government, livestock, environment, fisheries, housing, and industrialization

THE REGISTER
Symantec 'Fesses Up: 'Code Theft Worse Than We Thought'
Symantec now says its network was breached and code for a larger number of products than previously thought was stolen by hackers

HELP NET SECURITY
Hackers Steal $6.7 Million In Bank Cyber Heist
The South African Postbank, which is part of the country's postal service, was hit with a major breach that resulted in a loss of $6.7 million

HEALTHCARE INFO SECURITY
How To Prevent A Data Breach: Attorney Offers Insight For Avoiding Costly Incidents
First step is to learn from others' mistakes, expert says

CNET
Hackers Threaten To Release Symantec Source Code Tuesday
"Yama Tough" says Norton Antivirus code will be exposed, but Symantec says the release poses no threat

REUTERS
U.S. Online Piracy Bill Headed For Major Makeover
Under heavy criticism, SOPA's fast track appears to have been derailed

INFOSEC ISLAND
How To Choose A Security Vendor
Cost issues and free offers can muddy the waters, expert says

GOVERNMENT SECURITY NEWS
DHS Cybersecurity Operations See Leadership Changes
Brown steps down, Streufert appointed as director of CS&C's National Cybersecurity Division

SECURITY NEWS DAILY
Ten Computer Threats You Didn't Know About
A look at some schemes and scams that might have slipped under your radar

FINEXTRA
South Africa's Postbank Loses $3.5 Million To Cybercrime Gang
Cash was looted from ATMs over the New Year holiday

HAARETZ
Cyberattack Against Israeli Websites Used Local Computers, Security Expert Says
Attack took advantage of local bots, Check Point executive says

CNET
Microsoft Security--You've Come A Long Way, Baby
Ten years ago this week, Bill Gates sent the famous memo that changed and improved Microsoft's security woes, with the Trustworthy Computing initiative

ITWORLD
Anonymous Publishes Israeli SCADA Log-In Details
A member of the Anonymous hacktivist collective posted on Pastebin IP-based URLs to Web administrative interfaces that purportedly monitor industrial facilities in Israel

FINEXTRA
PCI Security Standards In The Dock
A restaurant in Utah is challenging the payment card industry's PCI security standards in a lawsuit against their merchant acquirer US Bank in the wake of a customer credit card leak that led to fraudulent transactions

WIRED
Military Networks 'Not Defensible,' Says General Who Defends Them
Gen. Keith Alexander, NSA director and head of the military?s new U.S. Cyber Command, says the ability to protect the Defense Department's information infrastructure is limited

BBC
Why I Left Facebook
Graham Cluley, senior technology consultant at Sophos, says he deleted his Facebook account in the wake of the social network's Timeline rollout -- he worried about its privacy implications as wel as concerns about Facebook's handling of member information

EWEEK
Microsoft Testing Real-Time Botnet Threat Intelligence Data Feed
Microsoft will distribute information collected from several sources on major botnets, including Rustock, Waldec, and Kelihos networks, to foreign governments, law enforcement, Computer Emergency Response Teams, and private corporations via APIs

FORBES
Researcher's Tool Maps Malware In Beautiful 3D Models
A researcher will demo at Shmoocon a new three-dimensional version of a tool he's created called Visualization of Executables for Reversing and Analysis, or VERA, that maps viruses' and worms' code into intuitively visible models

ZDNET ASIA
Fighting Cyber Threats With Malware Not Ideal
Security experts say the practice of creating malware for tit-for-tat cyberdefense is more of an offensive strategy and question the motivations of those who take this tack

THREAT POST
At FBI's Cyber Crime Conference: Chest Thumping And Head Scratching In Equal Measure
Senior law enforcement officials at a conference today hailed their successes in the past year, but others say law enforcement is still behind sophisticated cybercriminals

THE NEW YORK TIMES
Stratfor Relaunches Web Site In Wake Of Attack
Strategic Forecasting Inc (Stratfor) has reactivated its website after a breach that exposed personal information on clients, including Henry Kissinger

THE WALL STREET JOURNAL
Banks Unite To Battle Online Theft
Security officials from Wall Street financial firms such as Morgan Stanley and Goldman Sachs will meet with researchers from the Polytechnic Institute of New York University about creating a center to gather attack data from banks

COMPUTERWORLD
Attack Code Published For Serious ASP.NET DoS Vulnerability
Exploit code for a denial-of-service vulnerability in ASP.NET has been released

THE WASHINGTON POST
Iranian Scientist Involved In Nuclear Program Killed In Tehran Bomb Attack
An Iranian scientist associated with Iran's main nuclear enrichment facility was assassinated when a magnetic bomb attached to his car exploded yesterday