Welcome Guest. | Log In | Register | Membership Benefits
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173


Best Of The Web

BANGKOK POST
The Anti-Social-Network
A group of U.K. teenagers used their hacking prowess to create "Crimebook," a social networking site for criminals

VENTURE BEAT
Security Experts Spot Malware That Attacked Android Phones
In further analysis, Lookout researchers say the DroidDream malware typically operates while the user is likely to be sleeping, from 11 p.m. to 8 a.m., so the user won?t notice unusual behavior on the phone

TECHWORLD
WordPress Founder Claims China Root Of Hacker Attacks
DDoS attack that took down WordPress last week originated in China and does not appear politically motivated after all, WordPress founder says

BBC
US And Israel Were Behind Stuxnet Claims Researcher
Israel and the U.S. created the Stuxnet worm to sabotage Iran's nuclear program, Ralph Langner told attendees of the TED Conference last week

PC ADVISOR
Microsoft: We Won?t Update IE Before Pwn2Own
Microsoft may be instead waiting to see what exploits hackers reveal in IE at the contest next week at CanSecWest and focus on getting any necessary patches out quickly

OZARKS FIRST
Security Breach Unsettling For Thousands Of MSU Students
More than 6,000 Missouri State University students had their Social Security numbers exposed after the data was placed on an unsecured server that left the information exposed publicly on the Internet

THE GUARDIAN
China Plans To Track Beijing Citizens Through Their Mobiles
Human rights campaigners are worried about China's plans to track every mobile phone user in Beijing via GPS for what the government claims is for traffic management purposes

INFOWORLD
5 Tips For Keeping Malware Off Your Android Smartphone
Always research the publisher of the app, read online reviews, check app permissions, get a malware scanner for your phone, and don?t download APKs

COMPUTERWORLD
Apple's IPad 2 Provokes IT Anxiety
Experts express disappointment in how difficult it is for IT to deploy and manage these tablets -- Apple has not addressed these issues with either version of the iPad

PC WORLD
Android Edges RIM, Apple As Most Popular Smartphone OS
Google's Android is now officially the most popular smartphone operating system in the U.S., according to new Nielsen data, with 29 percent of market, followed by Research In Motion's BlackBerry and Apple's iPhone, each with 27 percent of the market

MCAFEE BLOG
Analysis Of Android/DRAD Bot
Infected application was related to a wallpaper application called Dandelion, and builds a botnet and uses a Trojan to perform search engine optimization

FINEXTRA
South Korean Bank Websites Hit By DDoS Attacks
The Korea Communications Commission (KCC) said seven bank websites are among a total of 40 victim sites hit by distributed denial-of-service attacks that spanned the President?s and other government sites

GOVERNMENT COMPUTER NEWS
Those Behind Stuxnet Attack Might Not Be Who We Think They Are
Investigative tools no match for sophisticated attacks

V3.CO.UK
GhostMarket Cybercrime Forum Fraudsters Jailed
Site said to be the largest English-language forum of its kind

BEFORE IT'S NEWS
Greek Cybercrime Department Prevented 19 Suicides In Jan.-Feb.
Unit says it tracked down users who posted suicide notes on the Web and gave them assistance

INFOWORLD
Should We Cheer Or Fear Cyber Vigilantes Like Anonymous?
Hacktivism can be fought--or embraced

GOVERNMENT INFO SECURITY
DHS Seeks More InfoSec Funds For 2012
Guarding cyberspace is one of the agency's primary missions, top official says

THE LAST WATCHDOG
Anonymous Targets Koch Brothers For Vigilante Hacks
DDoS attempts to take out Americans For Prosperity site

UPI
Inquiry Set On Suspected Michigan Data Breach
Suspect wanted to breach law enforcement records as well as wife's email account, officials say

MICROSOFT
Microsoft To Issue Three Updates On Light Patch Tuesday
Only one of the patches is considered critical, software giant says

SC MAGAZINE
The Jester Claims Responsibility For Taking Down Westboro Baptist Church Website
Anonymous refuses to back down

VANITY FAIR
Stuxnet Worm: A Declaration Of Cyber-War
An in-depth look at how Stuxnet was discovered, what we know, what we don?t know, and a look at whether Israel and the U.S. were behind it

ESECURITY PLANET
State CIOs Ask Governors For Stronger Cybersecurity
The National Association of State CIOs is warning statehouses not to sacrifice cybersecurity efforts in their budget-cutting efforts

COMPUTERWORLD
Mozilla Follows Google, Patches Firefox As Prep For Pwn2Own
Mozilla is taking a preemptive strike to an upcoming hacking contest that starts next week by fixing 11 security flaws in its Firefox browser

NEXGOV
Rules Keep Hackers From Helping Government, Ex DHS Head Says
Former DHS Secretary Tom Ridge said Congress must revisit rules that limit how private citizens work with the federal government so that the feds can get the expertise of the hacker community, which may be leery of sharing its input and talents

V3
Google Patches Chrome Ahead Of Pwn2Own Challenge
Google has issued a security update for its Chrome browser ahead of the Pwn2Own hacking contest later this month, fixing 19 vulnerabilities

NETWORK WORLD
PayPal CISO: DDoS One Big Security Threat Among Many
Michael Barrett, CISO at PayPal, says aside from DDoS, APT-type attacks are also a major concern for the company, urges other security pros to advise Congress on Internet security legislation

USA TODAY
Anonymous Actively Probing Koch Brothers' Corporate Networks
Anonymous temporarily downed the Americans For Prosperity website, run by the conservative advocacy group backed by billionaires David and Charles Koch, and security expert warn there could be more attacks on the Koch brothers' other holdings

THREAT POST
iTunes Users Complain Of Account Hacks
New reports indicate that six months after a compromise of Apple?s iTunes store, iTunes user accounts are being exploited to make fraudulent music, games, and other purchases

SOPHOS
DarkComet RAT Author Denies BlackHole Mac Trojan Is His
New Trojan behaves like DarkComet, but is not as sophisticated or functional, author says

BLOOMBERG
Morgan Stanley Leak Shows Attack By China-Based Hackers Who Took On Google
Emails about breach are revealed in HBGary postings

THE REGISTER
Woman Sentenced For Breaching Former Employer's PCs
Worker convicted of stealing info from email server and posting it to public websites

ZYNAMICS
Zynamics Is Acquired By Google
Security research firm led by Halvar Flake says it is being bought out

SEARCH SECURITY
Schneier On Stuxnet Malware Analysis
Attack opens doors for new kinds of exploits, according to experts

CNET
WikiLeaks, 'Net Nominated For Nobel Peace Prize
WikiLeaks and the Internet are among 241 nominees for global award

INFOSECURITY
Agencies Should Prepare For Vigorous Cybersecurity Oversight, Federal CIO Says
"Cyberstat" sessions will lead to definitive actions, Kundra states

PC WORLD
Accused AT&T Hacker Makes Bail
Man suspected of trying to steal personal information from iPad customers is out on bond

COMPUTERWORLD
Three-Time Pwn2Own Winner Knocks Hacking Contest Rules
Previous contest winner says hacking contest encourages researchers to weaponize exploits that may not be taken off the table, but sponsor TippingPoint disagrees

PC WORLD
Gmail Bug Deletes E-Mails For 150,000 Users
Some 150,000 Gmail users had their emails deleted and accounts disabled by a bug in the cloud-based email service

FORBES BLOG
Hackers Vs. Billionaires: Anonymous Takes Down Koch-Supported Websites Amid Wisconsin Protest
Anonymous has taken down two websites for brothers David and Charles Koch, and is calling for a boycott on companies in which the brothers have invested


Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173








Bugs
ENTERPRISE VULNERABILITIES
Vulnerability:ssl-vpn end-point interrogator/installer activex control
Published:2010-11-03
Severity:High
Description:Stack-based buffer overflow in SonicWALL SSL-VPN End-Point Interrogator/Installer ActiveX control (Aventail.EPInstaller) before 10.5.2 and 10.0.5 hotfix 3 allows remote attackers to execute arbitrary code via long (1) CabURL and (2) Location arguments to the Install3rdPartyComponent method.
Vulnerability:gvim
Published:2010-11-03
Severity:High
Description:Untrusted search path vulnerability in VIM Development Group GVim before 7.3.034, and possibly other versions before 7.3.46, allows local users, and possibly remote attackers, to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse User32.dll or other DLL that is located in the same folder as a .TXT file. NOTE: some of these details are obtained from third party information.
Vulnerability:cforms
Published:2010-11-03
Severity:Medium
Description:Multiple cross-site scripting (XSS) vulnerabilities in wp-content/plugins/cforms/lib_ajax.php in cforms WordPress plugin 11.5 allow remote attackers to inject arbitrary web script or HTML via the (1) rs and (2) rsargs[] parameters.
Vulnerability:links, wsn links, wsn links
Published:2010-11-03
Severity:High
Description:Multiple SQL injection vulnerabilities in search.php in WSN Links 5.0.x before 5.0.81, 5.1.x before 5.1.51, and 6.0.x before 6.0.1 allow remote attackers to execute arbitrary SQL commands via the (1) namecondition or (2) namesearch parameter.
Vulnerability:deluxebb
Published:2010-11-03
Severity:Medium
Description:SQL injection vulnerability in misc.php in DeluxeBB 1.3, and possibly earlier, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary SQL commands via the xthedateformat parameter in a register action, a different vector than CVE-2005-2989, CVE-2006-2503, and CVE-2009-1033.



Briefing Centers
POWERFUL INFORMATION
AT YOUR FINGERTIPS
(SPONSORED LINKS)