Best Of The Web

THE REGISTER
Email Protected By Fourth Amendment, Says Appeals Court
ISPs not required to disclose messages without a warrant, regardless of time stored

STOREFRONT TALKBACK
Genesco Payment Database Breached, Full Payment Data Taken
Footwear retailer says its payment systems had been breached and it?s possible that credit or debit card numbers, expiration dates, and card verification codes were grabbed

HUFFINGTON POST
Why I'm Posting Bail Money For Julian Assange
Oscar-winning documentary filmmaker Michael Moore offers support for WikiLeaks leader

JPOST.COM
Stuxnet Virus Set Back Iran?s Nuclear Program By 2 Years
The German security expert who was one of the first to analyze the Stuxnet code said the worm has set back Iran?s nuclear program by two years and was almost as effective as a military strike, but without casualties

SOFTPEDIA
Second Teenager Arrested In The Netherlands For Anonymous-Orchestrated DDoS
Dutch police have arrested a 19-year-old suspected of participating in pro-WikiLeaks DDoS attacks organized by members of the Anonymous hacktivist group

THE EXAMINER
Wisconsin Bungles Another Data Breach And ID Theft Threat To 60,000
The University of Wisconsin-Madison says a database containing Social Security numbers of 60,000 former students and staff had been repeatedly hacked since 2008, but that there is no evidence that anyone's information was retrieved

TREND MICRO BLOG
2010 In Review: The Hype And Reality Of Stuxnet
Stuxnet, indeed, is a sophisticated piece of malware, but the reality is most users were not significantly affected

INTERNET EVOLUTION
Arms Control In Cyberspace: A Proposal
National security planners may look beyond reactive cyber-defense tactics to proactive, cyber-defense strategies using cyber-arms control as one possibility

NETCRAFT
Mastercard Goes Down As Anonymous Launch 2nd Attack
The hacktivist movement knocked Mastercard.com offline for a second time via a distributed denial-of-service attack

REUTERS
Walgreen Warns Customers Email Addresses Accessed
Walgreen Co. has warned its customers they may have received unauthorized email seeking personal data after a breach of one of the company's customer lists

ECRM GUIDE
Companies Try To Avoid Data Privacy Regs With Voluntary Effort
Data collection companies have teamed in a project that will let consumers edit data about themselves or opt out of online data collection entirely

OC REGISTER
McDonald's Hacked, Customer Data Stolen, Chain Says
McDonald's is warning customers to be on the alert for an email claiming to be from the fast-food giant asking for personal or financial information

ANONYMOUS
Who Is Anonymous
Anonymous is not a group, it?s "an Internet gathering" with a "decentralized, loose command structure that operates on ideas rather than directives," the hacktivist body says

UK REUTERS
Shamed Chinese Hacker Turns Panda Protector
Former Chinese hacker who just finished a four-year jail term has donated 50,000 yuan ($7,520) to protect endangered pandas -- he had used an image of an incense-waving panda for a computer virus he spread to millions of computers

WIRED
Military Bans Disks, Threatens Courts-Martial To Stop New Leaks
U.S. military says troops must halt in their use of CDs, DVDs, thumb drives, and all other removable media or risk a court martial

READ WRITE WEB
Facebook Announces Hacker Cup Competition
Competitors must solve a number of algorithmic-based problem statements quickly and correctly and first prize for world champion is $5,000

NAKED SECURITY BLOG
Firefox Receives Critical Security Fixes--Update Now
Mozilla has issued version 3.6.13 of its Firefox browser with fixes for 11 security holes, nine of which are critical

NETCRAFT
Moneybookers.Com Taken Down By DDoS Attacks
Moneybookers had collected WikiLeaks donations and then closed down their accounts after WikiLeaks was put on an official U.S. watchlist and an Australian government blacklist

TECH NEWS DAILY
WikiLeaks Hactivism is Not Cyberwarfare, Experts Say
Security experts argue that the DDoS attacks don?t constitute cyberwarfare, which would be much more damaging and devastating

THREAT POST
New Remotely Exploitable Bug Found In Internet Explorer
Browser vulnerability has to do with how IE 6, 7, and 8 handle a certain DLL library on pages that reference CSS files, and exploit code is out

COMPUTERWORLD UK
Sarah Palin Locked In Cyberwar With London Based WikiLeaks Supporters
Palin says she is under a heavy cyberattack from London-based WikiLeaks backers -- Palin had previously called for Wikileaks founder Julian Assange to be tracked down like the military is targeting the Taliban and Al-Qaeda

ISEC LAB BLOG
TTP Parameter Pollution: New Service
A free online service lets website administrators scan their sites? Web applications for free

BBC
Call Of Duty Cyber Attack Prompts Arrest Of Boy, 17
Teenage boy arrested for waging a denial-of-service attack on the online version of the Call of Duty game, keeping a large number of people from playing

TECHNOLOGY REVIEW
White Worm Could Stop Bluetooth Viruses
Viruses that spread by Bluetooth or WiFi could be completely contained by a new type of worm that spreads a patch via the same Bluetooth or WiFi routes that the virus uses

YAHOO NEWS
No Apparent Stuxnet Impact In US: Cyber Official
While the software targeted by Stuxnet is used in U.S. infrastructure, the worm has not affected any systems here, a DHS official says

H ONLINE
New Version Of OpenSSL Fixes Two Vulnerabilities
Version 1.0.0c of the free OpenSSL SSL implementation patches a flaw in an older workaround for Netscape browsers, as well as one in the Password Authenticated Key Exchange by Juggling protocol

APPLE INSIDER
Google Activating 300,000 Android Devices Per Day, For Free
In an apparent response to reports that Android activations were plateauing, Google's VP of engineering tweets that the company is now activating some 300,000 Android smartphones a day

SCHNEIER ON SECURITY
WikiLeaks
Bruce Schneier says encryption isn't the issue, and secrets are only as secure as the least trusted person who knows them

OSDIR
Twitter May Be Censoring WikiLeaks
Social networking site may be hampering WikiLeaks-related tweets from becoming trending topics, sources say

THE REGISTER
Hacker Brings Enhanced Security To Jailbroken iPhones
ASLR added to iPhones to make them more resistant to malware attacks

GOVINFOSECURITY
Feds, Financial Sector In R&D Initiative
The federal government and financial services industry plan to work together to speed the commercialization of technology solutions to protect critical financial services networks

THREATPOST
TDL4 Rootkit Now Using Stuxnet Bug
New variant of TDSS malware family now using Windows bug first exploited by Stuxnet

SOFTPEDIA
Compromised Twitter Accounts Spread Links To Drive-By Downloads
A new worm is using hijacked Twitter accounts to advertise links to a drive-by download website

SMALL BUSINESS TRENDS
One In Seven Small Businesses Have No Internet Security
More than a tenth of SMBs have no security software at all, AVG report says

THE REGISTER
Chinese Hackers "Slurped 50 MB Of U.S. Government Email"
Windows source code tapped, say WikiLeaked docs

INFOSECURITY
Updated Android Attempts To Prevent Clickjacking
Google announced the new version 2.3 of Android, nicknamed ???Gingerbread,??? which contains security improvements, such as touch filtering, which helps prevent clickjacking attacks

THREAT POST
New Local Linux Kernel Root Exploit Published
Attack code escalates privileges on a local machine and uses three separate bugs to get root on a vulnerable Linux system

PC PRO
NASA Sells Off PCs With Secret Shuttle Data
Ten machines with potentially classified information were sold, and another four were discovered going out the door with unwiped hard drives

WIRED
WikiLeaks' Assange Arrested In London, Denied Bail
WikiLeaks leader charged with rape in Sweden

NEW SCIENTIST
Criminals Find The Key To Car Immobilizers
A German researcher has revealed vulnerabilities in the engine immobilizers used to protect modern cars from theft