• CVE-2010-0962
• CVE-2010-0961
• CVE-2010-0960
• CVE-2010-0959
• CVE-2010-0806
• CVE-2010-0447
• CVE-2010-0265
• CVE-2010-0264
• CVE-2010-0263
• CVE-2010-0262
• CVE-2010-0261
• CVE-2010-0260
• CVE-2010-0258
• CVE-2010-0257
• CVE-2009-4697
• CVE-2009-4696
• CVE-2009-4695
• CVE-2009-4694
• CVE-2009-4693
• CVE-2009-4692
• CVE-2009-4691
• CVE-2009-4690
• CVE-2009-4689
• CVE-2009-4688
• CVE-2009-4687
• CVE-2009-4686
• CVE-2009-4685
• CVE-2009-4684
• CVE-2009-4683
• CVE-2009-4682
• CVE-2009-4681
• CVE-2009-4680
• CVE-2010-0958 (tribisur)
• CVE-2010-0957 (saskias_shopsystem)
• CVE-2010-0956 (opencart)
• CVE-2010-0955 (bild_flirt_community)
• CVE-2010-0954 (pre_e-learning_portal)
• CVE-2010-0953 (phpcoin)
• CVE-2010-0952 (onecms)
• CVE-2010-0951 (dev4u_cms)
• CVE-2010-0950 (natychmiast-cms)
• CVE-2010-0949 (natychmiast-cms) …full story

Blow Fish (google): QuickGP Desktop - ZDNet Asia

Email

about 14 hours ago

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fwww.zdnetasia.com%2Fdownloads%2Fpc%2Fswinfo%2F0%2C39043052%2C39583911s%2C00.htm&usg=AFQjCNElaxFzvNQNjL6lGrk5S1LxsccqkQ

• QuickGP Desktop - ZDNet Asia
• Atol Delivers Flawless File Management With No Frills - TechNewsWorld
• Download FlashFXP 3.8 Beta (3.7.9 Build 1343) / 3.6.0.124 Free Trial / Full ... - Soft Sailor (blog)
• Nadel Phelan to Secure A Piece of the Cloud for Data Deposit Box - PR Web (press release)
• Pat Townsend Now Shipping Encryption Key Software - IT Jungle
• Review: Password Safe N900 App - PhoneReport
• SaberLogic Becomes a Reseller of Mozy's Remote Backup Solution - MMD Newswire (press release)
• Manage Your Money and Prepare For Tax Season - iPhone-Codes
…full story

Power Grid (ggl): FuelCell Energy Reports First Quarter Results and Latest Accomplishments - CNNMoney.com (press release)

Email

about 14 hours ago

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fmoney.cnn.com%2Fnews%2Fnewsfeeds%2Farticles%2Fglobenewswire%2F186355.htm&usg=AFQjCNHmD4G12PvbXhYJJR_hGvI47W8fOg

• FuelCell Energy Reports First Quarter Results and Latest Accomplishments - CNNMoney.com (press release)
• Wind power supplies more than 20% of the electric energy consumed in Denmark ... - REVE
• Smart Grid Innovator Wayne R. Longcore to Keynote SATURN 2010 Conference - PR Newswire (press release)
• White House Cyber Czar: 'There Is No Cyberwar' - Wired News
• Security Pros Question Deployment of Smart Meters - Wired News
• Supporting renewable energies: The 'transition' schemes - EurActiv
• Cyberattack Drill Shows U.S. Unprepared - InformationWeek
• Britain applies military thinking to the growing spectre of cyberwar - Times Online
…full story

TPM News (google): Microsoft brings Azure to India - SearchCloudComputing.com

Email

about 14 hours ago

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fsearchcloudcomputing.techtarget.com%2Fnews%2Farticle%2F0%2C289142%2Csid201_gci1411124%2C00.html&usg=AFQjCNE0LG7FFYStGKoSSHjuGPjA2_TUCQ

• Microsoft brings Azure to India - SearchCloudComputing.com
• Microsoft's Internet Driving Licence: stupid, unworkable and unenforceable - Free Software Magazine
• Over 40000 Brands Adopt New Social Media Platform In Less Than a Year as ... - PR Newswire (press release)
• EMC, VMware and Intel want to improve cloud computing security - SearchCloudComputing.com
• Google sheds light on Chrome OS Netbook security - NetworkWorld.com
• Google Chrome Comes This Year, Business Version in 2011 - Softpedia
• Stock Watch for Wave Systems Corp. Issued by Beacon Equity - CNNMoney.com (press release)
• Trusted Computing Group (TCG) Hosts Security Playground at RSA Conference with ... - MarketWatch (press release)
…full story

RSA Blog: Are you smarter than a PC?

Email

about 14 hours ago

http://www.rsa.com/blog/blog_entry.aspx?id=1605

• Are you smarter than a PC?
• The CVV Loophole of Credit Card Fraud is Closed for Business
• Aliens v. Code Breaking
• Videos from RSA Conference 2010
• Congratulations – you're hardware free! BTW – you still need the hardware!
• Speaking of Security Podcast #178
• Whether "bespoke" or "customized" it's really about fit and change by design, not change by accident.
• Business Impacts of Tokenization
…full story

Bugtraq: Friendly-Tech FriendlyTR69 CPE Remote Management V2.8.9 SQL Injection Vulnerability

Email

about 16 hours ago

http://seclists.org/bugtraq/2010/Mar/100

• Friendly-Tech FriendlyTR69 CPE Remote Management V2.8.9 SQL Injection Vulnerability
• CVE-2010-0624: Heap-based buffer overflow in GNU Tar and GNU Cpio
• [SECURITY] [DSA-2010-1] New kvm packages fix several vulnerabilities
• [SECURITY] [DSA 2009-1] New tdiary packages fix cross-site scripting
• [USN-908-1] Apache vulnerabilities
• Secunia Research: XnView DICOM Parsing Integer Overflow Vulnerability
• [ MDVSA-2010:059 ] virtualbox
• iDefense Security Advisory 03.09.10: Microsoft Excel MDXSET Record Heap Overflow Vulnerability
…full story

SecurityWatch (ZD): Zeus Botnet Takes a Hit

Email

about 16 hours ago

http://blogs.pcmag.com/securitywatch/2010/03/zeus_botnet_takes_a_hit.php

• Zeus Botnet Takes a Hit
• LimeWire Adds AVG Malware Scanning To Pro Service
• PayPal Recommends Iconix Email Authentication System
• Government Bombarded With Cyber Attacks
• Vodafone Distributes Malware on HTC Magic Mobile
• IE Zero Day Attacks Expose IE6, IE7 Users
• Patch Day Light Yields 2 Updates From Microsoft
• FTC Warns Companies of Breached Data on P2P Nets
…full story

Twitter DOS (ggl): As Celebrities And Millions Joined Twitter Criminals Followed - InformationWeek (blog)

Email

about 19 hours ago

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fwww.informationweek.com%2Fblog%2Fmain%2Farchives%2F2010%2F03%2Fas_celebrities.html&usg=AFQjCNEOBB7nlNYf5cG7lWGSjDC49w2pqA

• As Celebrities And Millions Joined Twitter Criminals Followed - InformationWeek (blog)
• Hackers Are to Blame for Assassin's Creed II and Silent Hunter V Problems - Softpedia
• FBI nab cyber-extortionist who sought $3 million from NY insurance firm - ZDNet (blog)
• DoD on Social Media: "Default switch on access is to be open" - OhMyGov! (blog)
• New Google Buzz Privacy Nightmare: Scumbags Can Follow Your Kids! - The Business Insider
• Paymate Experiences Denial of Service, No Customer Data at Risk - PR Web (press release)
• Countdown: NASCAR blows a tire, Tebow blows a budget - Atlanta Journal Constitution (blog)
• DOD issues long-awaited social media policy - GCN.com
…full story

Macworld security: Twitter to begin screening some links for phishing

Email

about 23 hours ago

http://rss.macworld.com/click.phdo?i=9753d4c7b5909debea784da939621653

• Twitter to begin screening some links for phishing
• Panda discovers malware on HTC Magic phone
• Office updates patch Excel security flaw
• Espionage keeps your data safe from spying eyes
• Password application gives wrong info to fraudsters
• Review: 1Password iPhone apps
• FBI Director: Hackers have corrupted valuable data
• Attacks on Google may have been work of amateurs
…full story

OSS Security (ggl): iPhone app contract shows Apple is the enemy of open source - Computerworld (blog)

Email

about 23 hours ago

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fblogs.computerworld.com%2F15725%2Fiphone_app_contract_shows_apple_is_the_enemy_of_open_source&usg=AFQjCNHqRgXXP33xOu-LXUyccF5b7vLELA

• iPhone app contract shows Apple is the enemy of open source - Computerworld (blog)
• Sourcefire Executives Named Channel Chief and Security Superstar by CRN Magazine - MarketWatch (press release)
• Is ad blocking the problem? - CNET
• Veracode Responds to Cell Phone Stalker Story: The Threat Isn't Just Who You Know - Business Wire (press release)
• Researchers Report Major Security Flaw in Apache Server Windows Version - Web Host Industry Review
• Daily Dose - Simon Phipps' Last Day at Sun - DZone News
• McAfee: A million 'scareware' victims a day - CNET
• Healthcare IT Game Changers to Watch: Northrop Grumman's Amy King - ExecutiveBiz (blog)
…full story

IDS (google): Sunbelt Software Announces Major Upgrade To VIPRE Enterprise, Expands Line To ... - Business Solutions Magazine

Email

about 25 hours ago

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fbsminfo.com%2Farticle.mvc%2FSunbelt-Software-Announces-Major-Upgrade-To-0001&usg=AFQjCNGpkOGmoLvdu39_OfBxKEbg6JtEiQ

• Sunbelt Software Announces Major Upgrade To VIPRE Enterprise, Expands Line To ... - Business Solutions Magazine
• BEI Security Announces MarineNet(TM) - Earthtimes (press release)
• New Alliance Offers Comprehensive Cyber Theft Prevention, Detection and ... - PR Newswire (press release)
• The Physical Security Interoperability Alliance Demonstrates IP-System ... - MarketWatch (press release)
• Cymtec Systems Introduces Network Control and Optimization Tools With ... - MarketWatch (press release)
• ICx to release CommandSpace Argus system | - SecurityInfoWatch
• Relying on basic network intrusion detection systems isn't enough - SearchSecurity.com
• Anti-intrusion system for IGI airport next month - Press Trust of India
…full story

ISC Handlers Diary: Infocon: green

Email

9:56 PM Mar 9th

http://isc.sans.org/diary.html?rss

• Infocon: green
• What's My Firewall Telling Me? (Part 4), (Wed, Mar 10th)
• Microsoft Security Advisory 981374 - Remote Code Execution Vulnerability for IE6 and IE7, (Wed, Mar 10th)
• March 2010 - Microsoft Patch Tuesday Diary, (Tue, Mar 9th)
• Samurai WTF 0.8, (Mon, Mar 8th)
• Vodafone Android Phone: Complete with Mariposa Malware, (Tue, Mar 9th)
• Energizer Malware, (Tue, Mar 9th)
• SEO poisoning on TV show, (Mon, Mar 8th)
…full story

Twitter worms (ggl): College Dems looking toward the future - The IUSB Preface

Email

8:44 PM Mar 9th

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fwww.iusbpreface.com%2Flife%2Fcollege-dems-looking-toward-the-future-1.1261730&usg=AFQjCNGbFtYpWmnQqAC64ZyPJfOZUv_O2w

• College Dems looking toward the future - The IUSB Preface
• Twishers reel in 'distracted' Boing Boing blogger - Register
• From tiny dotcoms the mighty internet has grown - Independent
• Twitter worm tries to dupe users with DM ploy - ITP.net
• Koobface changes its tricks - ABC News
• Twitter users warned over 'This you?' attack - PC Pro
• Worms 2D unveiled - Computerandvideogames.com
• Security: An Issue For Social Media Use In Business - OfficialWire (press release)
…full story

Daily Dave: Re: Mike Bailey's Flash presentation is good.

Email

5:00 PM Mar 9th

http://seclists.org/dailydave/2010/q1/80

• Re: Mike Bailey's Flash presentation is good.
• Mike Bailey's Flash presentation is good.
• Re: Does anyone have video of this?
• Perforce
• Re: Does anyone have video of this?
• Does anyone have video of this?
• FIRST 2010!
• Month of PHP Security 2010 - CALL FOR PAPERS
…full story

US-Cert Alerts: TA10-068A: Microsoft Updates for Multiple Vulnerabilities

Email

3:52 PM Mar 9th

http://www.us-cert.gov/channels/techalerts.rdf

• TA10-068A: Microsoft Updates for Multiple Vulnerabilities
• TA10-055A: Malicious Activity Associated with "Aurora" Internet Explorer Exploit
• TA10-040A: Microsoft Updates for Multiple Vulnerabilities
• TA10-021A: Microsoft Internet Explorer Vulnerabilities
• TA10-013A: Adobe Reader and Acrobat Vulnerabilities
• TA10-012B: Microsoft Windows EOT Font and Adobe Flash Player 6 Vulnerabilities
• TA10-012A: Oracle Updates for Multiple Vulnerabilities
• TA09-343A: Adobe Flash Vulnerabilities Affect Flash Player and Adobe AIR …full story

Firefox (google): Expert Guidance for New Microsoft Security Bulletins - PC World

Email

2:47 PM Mar 9th

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fwww.pcworld.com%2Fbusinesscenter%2Farticle%2F191104%2Fexpert_guidance_for_new_microsoft_security_bulletins.html&usg=AFQjCNFweXw5rAnzPWbXlt0k0c4syXNLVA

• Expert Guidance for New Microsoft Security Bulletins - PC World
• Ex-Mozilla security chief takes job at Apple - BusinessWeek
• Firefox 3.5.8 Closes Security Holes - PC World
• Microsoft's no-win IE6 browser mess - ZDNet (blog)
• Is ad blocking the problem? - CNET
• IE8 Superior to Chrome 4, Firefox 3.5, Opera 10 and Safari 4 - Softpedia
• Mozilla previews new feature to guard against Flash crashes - Ars Technica
• Firefox 3.7 Alpha 2 / 3.6 / 3.5.8 / 3.0.18 / 2.0.0.20 - Soft Sailor (blog)
…full story

Black Hat (google): "How to Become the World's No. 1 Hacker" Now Available for the Amazon Kindle - MarketWatch (press release)

Email

12:04 PM Mar 8th

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fwww.marketwatch.com%2Fstory%2Fhow-to-become-the-worlds-no-1-hacker-now-available-for-the-amazon-kindle-2010-03-08%3Freflink%3DMW_news_stmp&usg=AFQjCNF63Sz9rBqi72R7VqOcDAYj1MerIg

• "How to Become the World's No. 1 Hacker" Now Available for the Amazon Kindle - MarketWatch (press release)
• Thin line separates the good hackers from the bad - Pittsburgh Post Gazette
• Tunisia: ICT - Mahdia to Host Second Edition of Computer Security Event - AllAfrica.com
• Commentary: China cyber attacks against Google pure fabrication - Xinhua
• Old hacks never die, they just attack new systems - GCN.com
• UK domain gets DNS Security Protocol protection - ZDNet UK
• Disasters are a boon to malware... - ZDNet (blog)
• What your iPhone apps know about you - Vancouver Sun
…full story

Ctrfeit ATM/Debit (ggl): Awareness, powerful key to secure online identity - Business Mirror

Email

6:23 AM Mar 6th

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fbusinessmirror.com.ph%2Findex.php%3Foption%3Dcom_content%26view%3Darticle%26id%3D22652%3Aawareness-powerful-key-to-secure-online-identity%26catid%3D34%3Aperspective%26Itemid%3D62&usg=AFQjCNFOAV6YRbDpvQOSREx4VCAeKRjR8Q

• Awareness, powerful key to secure online identity - Business Mirror
• Romanian admits role in ATM fraud - Greenwich Post
• Beware of ATM Scam Sweeping the Country - NewsMax.com
• Before you put your money in an ATM, make sure it's really an ATM - WalletPop (blog)
• Jackson Police Blotter, Feb. 12 - Suburbanite
• Kenya: Banks Fight to Secure Customer Deposits from Cyber Criminals - AllAfrica.com
…full story

PGP (google): CISOs rain on cloud-computing parade at RSA - Computerworld Kenya

Email

2:58 PM Mar 5th

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fwww.computerworld.co.ke%2Farticles%2F2010%2F03%2F04%2Fcisos-rain-cloud-computing-parade-rsa&usg=AFQjCNFbomFyfeVPkYaWvDGg8kyIbINBaw

• CISOs rain on cloud-computing parade at RSA - Computerworld Kenya
• What can history teach us about securing the cloud? - SC Magazine US
• RSA keynote: Lack of security in the cloud breeds distrust - SDTimes.com
• Feds weigh expansion of Internet monitoring - CNET
• PGP upgrades encryption and key management server porfolio - Infosecurity Magazine (US)
• Technology Used: PGP Encryption Platform, PGP Desktop E-mail, PGP Whole Disk ... - ITChannelPlanet
• Momenta Pharmaceuticals Deploys DeviceLock and IronKey Solutions to Secure ... - MarketWatch (press release)
• Protect Data With Encrypted Hard Drives - PC World
…full story

White Hat (google): Tunisia: ICT - Mahdia to Host Second Edition of Computer Security Event - AllAfrica.com

Email

3:23 AM Mar 5th

http://news.google.com/news/url?fd=R&sa=T&url=http%3A%2F%2Fallafrica.com%2Fstories%2F201003050181.html&usg=AFQjCNGl_7h0dKAMq1yvQSdU0o7BySkjNg

• Tunisia: ICT - Mahdia to Host Second Edition of Computer Security Event - AllAfrica.com
• Thin line separates the good hackers from the bad - Pittsburgh Post Gazette
• NewsChannel 7 Investigation: Wifi Security Part 1 - WJHG-TV
• Ethical Hacking - A New Question For CSR Gurus To Solve - Eurasia Review
• Charlie Miller: Windows 7 + IE 8 or Chrome provides safest computing experience - Neowin
• Pen-Testing Toolset Elevates Service Providers Game - Channel Insider
• The State of Information Security Sucks - NewsReleaseWire.com (press release)
• People's Republic of Hacking - Wall Street Journal
…full story

Google Security Blog: Federal Support for Federated Login

Email

7:42 AM Mar 3rd

http://feedproxy.google.com/~r/GoogleOnlineSecurityBlog/~3/b2aDQH6eb-w/federal-support-for-federated-login.html

• Federal Support for Federated Login
• More Information about Malware Details
• Do machines dream of electric malware?
• Best Practices for Verifying and Cleaning up a Compromised Site
• Protecting Users and Ads from Malware
• Show Me the Malware!
• The Malware Warning Review Process
• Malware Statistics Update
…full story

Honeypots: Re: DNS honeypots?

Email

2:50 PM Mar 2nd

http://seclists.org/honeypots/2010/q1/2

• Re: DNS honeypots?
• DNS honeypots?
• Honeynet Project Forensic Challenge 2010/2 - browsers under attack
…full story

SANS Lab: 2010 Security Predictions

Email

9:15 AM Mar 2nd

http://www.sans.edu/resources/securitylab/2010_predictions.php

• 2010 Security Predictions
• Kees Leune, Leune Consultancy, LLC
• Joel Yonts, CISO
• Maury Shenk, TMT Advisor, Steptoe & Johnson
• Chris Wysopal, CTO, Veracode
• Security Errors and Omissions by Organizations As We Enter 2010
• Voice over IP, a South East Asian Perspective: an interview with Eric Cole, PhD and Paul Henry
• Amir Ben-Efraim, CEO, Altor Networks
…full story

Cloud Security Alliance and IEEE Join Forces to Identify Cloud Security Standards Requirements For IT Practitioners

Email

3:21 PM Feb 18th

http://www.businesswire.com/portal/site/home/permalink/?ndmViewId=news_view&newsId=20100218006681&newsLang=en

• The Cloud Security Alliance (CSA), a not-for-profit organization formed to promote the use of best practices for providing security assurance within cloud computing, and IEEE, the world's leading professional association for the advancement of technology, today announced they are joining forces to ensure that best practices and standards are developed and available to provide security assurance for cloud computing. As a result of this collaboration, CSA and IEEE have been conducting a survey to identify and define the most critical security concerns surrounding enterprise cloud computing. …full story

SANS Thought Leaders: Kees Leune, Leune Consultancy, LLC

Email

6:26 PM Feb 13th

http://www.sans.org/thought-leaders/kees_leune_leader#paper

• Kees Leune, Leune Consultancy, LLC
• Joel Yonts, CISO
• Maury Shenk, TMT Advisor, Steptoe & Johnson
• Chris Wysopal, CTO, Veracode
• Amir Ben-Efraim, CEO, Altor Networks
• Ed Hammersla, COO, Trusted Computer Solutions
• What is a Security Thought Leader
• Amit Klein, CTO, Trusteer
…full story

Travel Security: High tech airport security

Email

9:17 PM Jan 19th

http://travelsecurity.blogspot.com/2010/01/high-tech-airport-security.html

• High tech airport security
• More threats, more security
• Chris Elliott on Airplane Geeks Podcast
• TSA subpoenas bloggers
• Should we fire the TSA?
• Obama on Airline Security
• How we could have prevented the Christmas bomber
• Michael O'Leary vs. Italy
…full story

Wash Post SecFix: Farewell 2009, and The Washington Post

Email

3:14 PM Dec 29th

http://feeds.voices.washingtonpost.com/click.phdo?i=6cdbc65ccc9a2512b05d562892ffdf1b

• Farewell 2009, and The Washington Post
• Hackers exploit Adobe Reader flaw via comic strip syndicate
• Twitter.com hijacked by 'Iranian cyber army'
• Group IDs hotbeds of Conficker worm outbreaks
• Hackers target unpatched Adobe Reader, Acrobat flaw
• Check your Facebook 'privacy' settings now
• Paper-based data breaches on the rise
• Critical updates for Adobe Flash, Microsoft Windows
…full story

Secure Thinking (BT): Meeting of the security minds in NY

Email

9:24 AM Dec 29th

http://bt-securethinking.blogspot.com/2009/12/meeting-of-security-minds-in-ny.html

• Meeting of the security minds in NY
• Howard A. Schmidt - the right man for the job
• 2009: A look at the top security incidents of the year
• It’s Not Just Santa Who Wants Your Cookies: Securing Your Network Through Logical Separation
• Annual Internet Threat Reports Make for Good Fireside Reading
• Three steps to prepare
• Why the Adoption of Chip and PIN Technology is Inevitable
• DLP – A security solution, not a security savior
…full story

Jessica Biel Most Dangerous Celeb on the Web

Email

8:57 AM Aug 25th

http://www.crn.com/security/219401368;jsessionid=GGKERHAFQUVQBQE1GHPCKHWATMY32JVN

• A new report from security company McAfee claims that Jessica Biel has overtaken Brad Pitt as the most dangerous celebrity on the Web. The security company is in its third year tracking the threat level of celebrities on the Web. …full story