• CVE-2010-2926
• CVE-2010-2925
• CVE-2010-2924
• CVE-2010-2923
• CVE-2010-2922
• CVE-2010-2921
• CVE-2010-2920
• CVE-2010-2919
• CVE-2010-2918
• CVE-2010-2917
• CVE-2010-2916
• CVE-2010-2915
• CVE-2010-2914
• CVE-2010-2753
• CVE-2010-2752
• CVE-2010-2751
• CVE-2010-1796
• CVE-2010-1793
• CVE-2010-1792
• CVE-2010-1791
• CVE-2010-1790
• CVE-2010-1789
• CVE-2010-1788
• CVE-2010-1787
• CVE-2010-1786
• CVE-2010-1785
• CVE-2010-1784
• CVE-2010-1783
• CVE-2010-1782
• CVE-2010-1780
• CVE-2010-1778
• CVE-2010-1215
• CVE-2010-1214
• CVE-2010-1213
• CVE-2010-1212
• CVE-2010-1211
• CVE-2010-1210
• CVE-2010-1209
• CVE-2010-1208
• CVE-2010-1207
• CVE-2010-2913 (citi_mobile)
• CVE-2010-2755 (firefox)
• CVE-2010-2754 (firefox, thunderbird, seamonkey)
• CVE-2010-2528 (pidgin)
• CVE-2010-1777 (itunes) …full story

ID Theft Pro (google): Man behind identity theft ring in custody, Slidell police say - NOLA.com

Email

about 4 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNG1wkMbg3FNY2Y51lo7AtA1uYt2pA&url=http://www.nola.com/crime/index.ssf/2010/07/man_behind_identity_theft_ring.html

• Man behind identity theft ring in custody, Slidell police say - NOLA.com
• Identity Theft Programs Are Vital for Compliance and Sound Business - Atlantic Information Services, Inc.
• FTC ends Pre-Paid Legal Services inquiry - BusinessWeek
• Two Charged After Alleged Identity Theft Shopping Spree - Hartford Courant
• Virginia woman pleads guilty to identity theft, fraud charges tied to farm ... - CanadianBusiness.com
• Five arrested in theft of mail from Medina Post Office - Plain Dealer (blog)
• Who Decides on Health-Care Value? - Wall Street Journal
• Hotel guests still most at risk for identity theft - USA Today
…full story

Black Hat (google): Hacker Makes ATMs Puke Money, Shows How - Tom's Guide

Email

about 4 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNGtM8seR8OX9DUdngUWZQm-qt_NMg&url=http://www.tomsguide.com/us/ATM-Hacker-Black-Hat,news-7635.html

• Hacker Makes ATMs Puke Money, Shows How - Tom's Guide
• Researchers Hack the Internet to Keep Us Safe - Black Web 2.0
• 5 Takeaways From Black Hat 2010 - PC Magazine
• E-Commerce Security Is Broken, Vulnerable, Says Hacker Conference Founder - Fast Company
• Massive Check Fraud Operation Run by Hackers Revealed at Black Hat - eWeek
• Silent, easily made Android rootkit shown at Black Hat - Electronista (blog)
• Smartphones tempting new targets for hackers - AFP
• Researcher Warns of IE Auto-Complete Flaw - InternetNews.com
…full story

Snort (google): Security firm Sourcefire gaining financial strength - BusinessWeek

Email

about 4 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNE4Zn6OfX3Og_gMfQdSPe6u_IzvIw&url=http://www.businessweek.com/idg/2010-07-29/security-firm-sourcefire-gaining-financial-strength.html

• Security firm Sourcefire gaining financial strength - BusinessWeek
• Snort Creator Slams Open Source IDS Suricata - InformationWeek
• Sourcefire Launches Razorback Open Source Security Framework - eSecurity Planet
• Open Source IDS Wars: You Were There - NetworkWorld.com
• Updates of Security Companies VSYM.OB, CYDE, & FIRE from Stock-PR.com - TMC Net
• DHS, vendors unveil open source intrusion detection engine - Computerworld
• Sourcefire gana fuerza financiera - CSO Spain
• Détection d'intrusions : l'IDS Snort bientôt supplanté par Suricata ? - LeMagIT
…full story

Ctrfeit ATM/Debit (ggl): Fake cop rapes woman near Bayshore Blvd. - 10 Connects

Email

about 4 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNEgBqzU6l0zKxpt_G8j4AjpaDpZPQ&url=http://www.wtsp.com/news/local/story.aspx?storyid%3D139008%26catid%3D250

• Fake cop rapes woman near Bayshore Blvd. - 10 Connects
• Big credit troubles can grow from small charges - Detroit Free Press
• The latest banking scams to hit the US - WalletPop (blog)
• Cops bust alleged fraudster - TheChronicleHerald.ca
• Police foil debit card swiping scheme - Calgary Herald
• Vacaville police say customers who used ATM may be at risk for ID theft - TheReporter.com
• Fake ATMs: Should you worry? - WalletPop (blog)
• 6 New Credit Scams To Watch Out For - San Francisco Chronicle
…full story

Linux Worms (ggl): Microsoft rushes fix for Windows shortcut hole - CNET

Email

about 5 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNGKlUarljnWCFsxpxVg5TfwTLDbzQ&url=http://news.cnet.com/8301-27080_3-20012270-245.html

• Microsoft rushes fix for Windows shortcut hole - CNET
• WinTech Racing Congratulates Women's National Team For Gold Medal Performance ... - Rowing News
• TOYOTA: News And Notes - TruckSeries.com
• Harvick Cruises At Gateway - TruckSeries.com
• Mitzitón: God's Army Must Leave Now - The NarcoSphere
• Iroquois Lacrosse Team: Winning without playing the game - The NarcoSphere
• LOFTON: 'Can't Wait' For Iowa - TruckSeries.com
• THERIAULT: Six-Race Schedule Kicks Off At ORP - TruckSeries.com
…full story

IDS (google): Security firm Sourcefire gaining financial strength - BusinessWeek

Email

about 6 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNE4Zn6OfX3Og_gMfQdSPe6u_IzvIw&url=http://www.businessweek.com/idg/2010-07-29/security-firm-sourcefire-gaining-financial-strength.html

• Security firm Sourcefire gaining financial strength - BusinessWeek
• Snort Creator Slams Open Source IDS Suricata - InformationWeek
• Microsoft argues for "neighborhood watch" approach to security - Ars Technica
• Sourcefire Launches Razorback, Delivering a Framework for Multi-Vendor Threat ... - MarketWatch (press release)
• Global DataGuard Unveils Next Generation 10Gb Network Behavior Analysis and ... - Earthtimes
• Dell Launches New Security Appliances for SMBs - eWeek
• Ranum: Be Serious about Cybersecurity - GovInfoSecurity.com
• DHS Releases Intrusion Detection Software - InformationWeek
…full story

Twitter worms (ggl): Microsoft sets emergency Windows patch for Monday - Computerworld

Email

about 6 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNEeQQGtpAZ5MmHQ9H-vqG_BcaqHZQ&url=http://www.computerworld.com/s/article/9179900/Microsoft_sets_emergency_Windows_patch_for_Monday?taxonomyId%3D125

• Microsoft sets emergency Windows patch for Monday - Computerworld
• Warming of Oceans Will Reduce and Rearrange Marine Life - Wired News
• Iran was prime target of SCADA worm - BusinessWeek
• Spike in URLs Spreading Koobface Malware - SPAMfighter News
• Twitter Goes For The Worm With @Earlybird - Web Trends
• Worm may turn on PM - Sydney Morning Herald
• Nowhere to hide as Twitter chimes in - The Australian
• After worm, Siemens says don't change passwords - BusinessWeek
…full story

Online Bank Fraud (ggl): BNCCORP, INC. Reports Second Quarter Results - MarketWatch (press release)

Email

about 7 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNFFs6jF3GH1gLesSA9l7Dza5Z4l7w&url=http://www.marketwatch.com/story/bnccorp-inc-reports-second-quarter-results-2010-07-30?reflink%3DMW_news_stmp

• BNCCORP, INC. Reports Second Quarter Results - MarketWatch (press release)
• Banks seek customers' help to stop online thieves - USA Today
• Citigroup agrees $75m fraud fine - BBC News
• ACI Worldwide, Inc. Reports Financial Results for the Quarter Ended June 30, 2010 - MarketWatch (press release)
• A New Spin on Bank Fraud: Banks Defrauding Their Investors, Auditors and ... - Huffington Post (blog)
• Debit card scam strikes Adans' pocketbooks - Ada Evening News
• First Franklin posts $558K loss in 2Q - Bizjournals.com
• The Big Bank Stock Rally That Wasn't - TheStreet.com
…full story

Bio Lab Security (ggl): New Frontiers: The Changing World of Biospecimen Collection and Management - Bioscience Technology

Email

about 8 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNEE4a1o2iEq-x-x2CfgMLCt_0mcHw&url=http://www.biosciencetechnology.com/Application-Notes/2010/06/Data-Management-The-Changing-World-of-Biospecimen-Collection-and-Management-Lab-Vantage/

• New Frontiers: The Changing World of Biospecimen Collection and Management - Bioscience Technology
• Life Technologies Announces Second Quarter 2010 Results; $350 Million Share ... - MarketWatch (press release)
• Hans Blix's Stalinist rewriting of history - Spiked
• FedBizOpps/CBD - Insurance News Net (press release)
• EWG's Ken Cook Testifies On House Proposal to Reform Chemicals Law - Environmental Working Group
• Alpine game warden looking for poachers - The Record-Courier
• An inconvenient truth about education - Hillsboro Times Gazette
• Securing the corporate mailroom - SecurityInfoWatch
…full story

Full Disclosure: [ MDVSA-2010:143 ] gnupg2

Email

about 9 hours ago

http://seclists.org/fulldisclosure/2010/Jul/408

• [ MDVSA-2010:143 ] gnupg2
• NULL + H4CK3R Meet in Delhi on 31st July 2010
• WAF fail
• Re: Day of bugs in WordPress 2
• Akamai Download Manager arbitrary file download & execution
• Re: Day of bugs in WordPress 2
• Black Hat Video Stream Hack - Ironic
• Insomnia : ISVA-100730.1 - CMS Multiple SQL injection Vulnerabilities
…full story

Bugtraq: XSS vulnerability in Campsite

Email

about 9 hours ago

http://seclists.org/bugtraq/2010/Jul/269

• XSS vulnerability in Campsite
• ESA-2010-012: EMC Disk Library (EDL) Denial Of Service Vulnerability
• Insomnia : ISVA-100730.1 - CMS Multiple SQL injection Vulnerabilities
• Day of bugs in WordPress 2
• Akamai Download Manager arbitrary file download & execution
• [SECURITY] [DSA 2077-1] New openldap packages fix potential code execution
• [HITB-Ann] Reminder: HITB2010 Malaysia Call for Papers Closing August 9th
• CFP NcN 2010
…full story

Power Grid (ggl): Read all 'Cyber Command' posts in Military Tech - CNET (blog)

Email

about 9 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNGl1VN-Hk6BoDyJC664uVOE-vkIBQ&url=http://news.cnet.com/military-tech/8300-13639_3-42.html?keyword%3DCyber%2BCommand

• Read all 'Cyber Command' posts in Military Tech - CNET (blog)
• Sandia, SunPower To Study Power Grid-Solar Power Linkage - AHN | All Headline News
• Power grid upgrades could pose security risks, experts says - Kansas City Star
• Investments In Chile Transmission Grid Needed For Energy Security - Wall Street Journal
• Stuxnet renews power grid security concerns - Computerworld
• The General Is Back - Times of India
• EMED Mining making progress at Rio Tinto copper mine in Spain - Proactive Investors USA & Canada
• Is the NSA's 'Perfect Citizen' the Ultimate Spying Tool? - FOXNews
…full story

Macworld security: FBI rings organizers over Defcon contest

Email

about 9 hours ago

http://rss.macworld.com/click.phdo?i=fb7861616395c4865c4c33155c7006e7

• FBI rings organizers over Defcon contest
• Bugs & Fixes: What's the risk with the Citi Mobile security flaw
• 'Unhackable' Android can be hacked
• Adobe joins Microsoft's patch-reporting program
• Review: Password Caddy for iPhone
• Remains of the Day: Jailbreak blues
• Kensington announces Laptop Locking Station, Tether Kit
• What to watch at Black Hat and Defcon
…full story

PKI (google): ICANN announces DNSSEC deployment to root Internet servers - SearchSecurity.com

Email

about 11 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNH20ZdYsGobBNSagRahq1Sac98MUA&url=http://searchsecurity.techtarget.com/news/article/0,289142,sid14_gci1517612,00.html

• ICANN announces DNSSEC deployment to root Internet servers - SearchSecurity.com
• Bannerman's infrastructure EIA on the table - Namibia Economist
• Shanghai falls, HK at best month; Chalco up on joint venture - Reuters
• Top Five Electric Vehicle Developments - RenewableEnergyWorld.com (blog)
• J2EE Cryptographic Specialist - The Canberra Times
• Has the focus of I-JOBS changed? - DesMoinesRegister.com
• Powerwave Keeps Public Safety Communications on the Leading Edge with ... - MarketWatch (press release)
• Trend Micro(TM) Encryption Achieves Lowest Total Cost of Ownership - PR Newswire (press release)
…full story

Antivirus (google): Webroot Internet Security Complete 2011 - PC Magazine

Email

about 12 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNGnJXbKLG_ab2ZPwu-booShpOzScQ&url=http://www.pcmag.com/article2/0,2817,2367162,00.asp

• Webroot Internet Security Complete 2011 - PC Magazine
• BEFORE THE BELL: US Stock Futures Down Before US GDP Data - Wall Street Journal
• Free Sophos Windows Shortcut Exploit tool - Examiner.com
• Banks seek customers' help to stop online thieves - USA Today
• Automation, partnerships drive Webroot revamp - CNET (blog)
• iolo technologies Donates 1300 Copies of Award-winning Data Recovery and ... - PR Web (press release)
• Jeff Bezos talks about Angry Birds and the power of the Kindle - TechFlash (blog)
• Paying Attention to Net Protector AntiVirus 2010 - pc1news
…full story

Smart Cards (google): Internet 'key holders' are insurance against cyber attack - msnbc.com

Email

about 13 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNG5Tjybl6pI02sjd2bqALb6L6Md3g&url=http://www.msnbc.msn.com/id/38486293/ns/technology_and_science-science/

• Internet 'key holders' are insurance against cyber attack - msnbc.com
• DigitalPersona releases new full disk encryption solution - ThirdFactor
• Semtek Announces Open Licensing of Cipher Hidden Encryption for Point of Sale ... - PR Newswire (press release)
• DigitalPersona Delivers New Centrally-Managed Solution for Notebook Data ... - PR Newswire (press release)
• Hitachi unit rolls out Password Manager 7 - ITWorld Canada
• Hitachi ID Upgrades Authentication Platform - CTO Edge (blog)
• RFID News Roundup - RFID Journal
• Part 3 | Top Secret America: Secrets centers transform many communities - Louisville Courier-Journal
…full story

NSM (google): A Security Solution Portfolio for Midsized Businesses Released by Dell - TMCnet

Email

about 15 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNHifbtJVqQS8r4F2CwzjSZx7d91hQ&url=http://it.tmcnet.com/topics/it/articles/93666-security-solution-portfolio-midsized-businesses-released-dell.htm

• A Security Solution Portfolio for Midsized Businesses Released by Dell - TMCnet
• SMB Tech Roll-up: SMBs Online Search Spend Up 159%, Sage Identifies Cloud Concerns - CMSWire
• Juniper to Acquire SMobile Systems - TMCnet
• Electric, Oil Companies Take Almost A Year To Fix Hackable Security Flaws - Forbes (blog)
• NetWitness® Announces Availability of Visualize - A New Paradigm in Network ... - PR Newswire (press release)
• Greater Network Throughput, Security And Manageability Enabled By New High ... - MarketWatch (press release)
• Gigamon Announces Reseller Agreement With Fishnet - PR Newswire (press release)
• Cryptography Research Announces License Agreement With Microsoft for ... - MarketWatch (press release)
…full story

SANS Tip of the Day: Make sure the site you're ordering from protects your information crossing the Internet

Email

about 21 hours ago

http://www.sans.org/info/40733

• Make sure the site you're ordering from protects your information crossing the Internet
• Make your password long.
• If you are a victim of identity theft, report it immediately
• Don't use unauthorized software
• Five Ways to Protect against Identity Theft
• Do not use the same password for everything
• Hey, I know who you are and where you work! It says so right there on your badge
• Don't Let Personnel Issues Become Security Issues; Terminate Computer Access Before You End a Contract or Tell People They Are Fired
…full story

PGP (google): Information Security: Why You Need It & How to Get It - HoweStreet.com

Email

about 26 hours ago

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNHwjJezywQDHtRKf2uuJa3GadnAPw&url=http://www.howestreet.com/articles/index.php?article_id%3D14131

• Information Security: Why You Need It & How to Get It - HoweStreet.com
• A Key To Security In The Custom System Channel - ChannelWeb
• Symantec Forecasts Miss Estimates on Currencies, `Cautiousness' - Bloomberg
• Future Systems Solutions Launches Casper Secure™ Drive Backup 2.0 for PGP ... - PR Newswire (press release)
• Six reasons why encryption vendors have a future – for now - Computing
• Casper Speeds Backup Cloning Of PGP Encrypted Drives - InformationWeek
• Encrypting email in Evolution - Ghacks Technology News
• Northern Rock makes its email safer - Computing
…full story

ISC Handlers Diary: Infocon: green

Email

8:43 PM Jul 29th

http://isc.sans.org/diary.html?rss

• Infocon: green
• Web Traffic Analysis with httpry, (Fri, Jul 30th)
• FBI, Slovenian and Spanish Police announce more arrests of Mariposa Botnet Creator, Operators, (Thu, Jul 29th)
• Snort 2.8.6.1 and Snort 2.9 Beta Released, (Thu, Jul 29th)
• NoScript 2.0 released, (Thu, Jul 29th)
• The 2010 Verizon Data Breach Report is Out, (Thu, Jul 29th)
• Apple Releases Safari 4.1.1 and 5.0.1 addressing several vulnerabilities. http://support.apple.com/kb/HT4276, (Wed, Jul 28th)
• Oracle announced GNOME Display Manager password disclosure weakness, (Wed, Jul 28th)
…full story

IE \"Security\": Internet Explorer Remains Vulnerable To Autofill Flaw, Says Researcher - Forbes (blog)

Email

4:03 PM Jul 29th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNGsC_hHTb6Ja_dWrLpZ3F1ucnOExA&url=http://blogs.forbes.com/firewall/2010/07/29/internet-explorer-remains-vulnerable-to-autofill-flaw-says-researcher/

• Internet Explorer Remains Vulnerable To Autofill Flaw, Says Researcher - Forbes (blog)
• Microsoft Internet Explorer 9 beta due in September - ZDNet (blog)
• Security researcher demonstrates ATM hacking - CNET
• Apple Safari Security Update Patches AutoFill Flaw - eWeek
• Microsoft wants more control over vulnerability information - GCN.com
• Microsoft debuts beta of new Security Essentials - CNET
• Mercury News interview: Mitchell Baker, chairwoman, Mozilla - San Jose Mercury News
• Several Security Bugs Fixed in Chrome 5.0.375.125 - Softpedia
…full story

Honeypots: [HITB-Ann] Reminder: HITB2010 Malaysia Call for Papers Closing August 9th

Email

1:03 PM Jul 29th

http://seclists.org/honeypots/2010/q3/1

• [HITB-Ann] Reminder: HITB2010 Malaysia Call for Papers Closing August 9th
• [HITB-Announce] HITB Magazine Issue 003 + HITBSecConf2010 - Amsterdam
• CFP: Deadline Extended: SLAML'10
• [HITB-Announce] HITBSecConf2010 - Malaysia Call for Papers
• RE: info reg Zeus bot detection and analysis
• RE: info reg Zeus bot detection and analysis
• RE: info reg Zeus bot detection and analysis
• info reg Zeus bot detection and analysis
…full story

TPM News (google): Wave to Host Q2 Webcast/Conference Call on Monday, August 9, at 4:30 p.m. EDT - MarketWatch (press release)

Email

8:17 AM Jul 29th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNE0o9pR9dwz-AgxTVe3Y7Rcev1Cqw&url=http://www.marketwatch.com/story/wave-to-host-q2-webcastconference-call-on-monday-august-9-at-430-pm-edt-2010-07-29?reflink%3DMW_news_stmp

• Wave to Host Q2 Webcast/Conference Call on Monday, August 9, at 4:30 p.m. EDT - MarketWatch (press release)
• NAC decisions you need to make now - Computerworld
• Choosing the right cloud platform - ZDNet (blog)
• AMD Opteron 4000 series processor - Digitimes
• Identifying Key Factors Driving Adoption of Cloud Computing - TMCnet
• Stream Unveils Technology Strategy Designed to Maximize Operational Efficiency ... - MarketWatch (press release)
• Virtualization - Ask the Experts #2 - AnandTech
• Apple's iPad is already bigger than the iPod - and half as big as the Mac - MacDailyNews (blog)
…full story

Infosec News: Researcher Exposes Massive Automated Check Counterfeiting Operation Out of Russia

Email

4:46 AM Jul 29th

http://seclists.org/isn/2010/Jul/109

• Researcher Exposes Massive Automated Check Counterfeiting Operation Out of Russia
• Security researcher demonstrates ATM hacking
• DHS official fields hard questions at Black Hat
• Android wallpaper app that steals your data was downloaded by millions
• BlackBerry agrees to address India's security concerns: MHA
• One Breach = $1 Million To $53 Million In Damages Per Year, Report Says
• Black Hat too commercial for you?
• Black Hat: Mobile Flaws Get Attention
…full story

Twitter DOS (ggl): Eric Schmidt: The World Doesn't Need A Copy Of The Same Thing - TechCrunch

Email

1:46 AM Jul 29th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNFQm0x6qgzhpVmbBOrQ1fFG6Gkjbw&url=http://techcrunch.com/2010/07/27/eric-schmidt-the-world-doesnt-need-a-copy-of-the-same-thing/

• Eric Schmidt: The World Doesn't Need A Copy Of The Same Thing - TechCrunch
• Twitter Picks Utah for New Data Center - Data Center Knowledge
• Yahoo suffers brief outage -- and I missed the whole thing - Washington Post
• The real tragedy of a "Real Housewife" - Salon
• Apple unveils 27-inch LED display, nixes 30-inch model - CNET (blog)
• Democrats Refuse to Hold Medicare Rationing Czar Hearing - Human Events (blog)
• Facebook's Security Slackness: A Cautionary Tale - Lifehacker Australia
• The gospel according to Twitter - Episcopal-Life
…full story

RSA Blog: Social Trojaning

Email

7:07 PM Jul 28th

http://www.rsa.com/blog/blog_entry.aspx?id=1689

• Social Trojaning
• Fraudsters enjoy a summer holiday
• Looking at Visa's Tokenization Best Practices
• Revolutionary Fever: Humanity will win the battle, and Liberty will have a network*
• Cybercriminals Now Using Public Social Networks to Give Command and Control Orders to Banking Trojans
• Call it What You Want: But it is Still the Black Market
• Helping the merchant
• Paul the Octopus - He's done it again!
…full story

SecurityWatch (ZD): Microsoft Announces Security Tool and Adobe Partnership

Email

11:27 AM Jul 28th

http://blogs.pcmag.com/securitywatch/2010/07/microsoft_announces_security_t.php

• Microsoft Announces Security Tool and Adobe Partnership
• Pirated Copies of StarCraft 2 Infected With Malware
• Apple Issues Safari Updates
• Fake Firefox Flash Update is Rogue
• Webroot Antivirus Worth the Wait
• CitiGroup Warns of Severe Privacy Issue With iPhone App
• Spoofing Hack Against WPA2 Revealed
• Quick Firefox Update Fixes Plugin Crash Bug
…full story

PandaLabs: Solution and Winner of the 2nd Panda Challenge 2010

Email

9:45 AM Jul 27th

http://pandalabs.pandasecurity.com/solution-and-winner-of-the-2nd-panda-challenge-2010/

• Solution and Winner of the 2nd Panda Challenge 2010
• Shedding some light on Mariposa
• Panda Challenge 2010 Edition: last challenge up!
• Broken links
• Solution and Winner of the 1st Panda Challenge 2010
• Panda Challenge 2010 Edition: 1st challenge up!
• Dissecting a BlackHat SEO attack
• Fernanda Romero arrest leads to distribution of rogueware
…full story

SANS AppSec: Free AppSec Webcasts

Email

11:14 PM Jul 25th

http://feedproxy.google.com/~r/SansApplicationSecurityBlog/~3/f2X52t1tAOQ/

• Free AppSec Webcasts
• Hard-Coded Password in Critical SCADA Software
• Trio of AppSec Webcasts Next Week
• Webcast on Manipulating Web Application Interfaces
• Top 25 Series – Summary and Links
• Top 25 Series – Rank 20 – Download of Code Without Integrity Check
• Top 25 Series – Rank 25 – Race Conditions
• Top 25 Series – Rank 24 – Use of a Broken or Risky Cryptographic Algorithm
…full story

White Hat (google): Hackers With Enigmatic Motives Vex Companies - New York Times

Email

7:28 PM Jul 25th

http://news.google.com/news/url?sa=t&fd=R&usg=AFQjCNG8T1u84AQqMVVdtzix1MU0lAALhw&url=http://www.nytimes.com/2010/07/26/technology/26security.html?src%3Dbusln

• Hackers With Enigmatic Motives Vex Companies - New York Times
• Major Flaw in Apple's Safari Browser Gives Hackers Access to Personal Information - Fast Company
• White hat hacker Maiffret returns to eEye - CNET
• Hacker club for geeky 'good guys' - Toronto Sun
• Foursquare Puts Money Before Privacy - Wired News
• A swarm of many stripes - The Economist
• Adobe a Target for Criminal Hackers - CIO
• Microsoft: No money for bugs - Computerworld
…full story

Daily Dave: Re: Things that slipped the pwnie net.

Email

11:20 AM Jul 25th

http://seclists.org/dailydave/2010/q3/16

• Re: Things that slipped the pwnie net.
• Call For Papers - Hackers 2 Hackers Conference 7th Edition - Brazil
• Re: there might be three people who missed it...
• there might be three people who missed it...
• SILICA-U
• Re: Your trusted computing base is not what you think it is! :>
• Mini Fuzzer Shootout
• Kiwicon IV: Our Worst CFP Yet
…full story

SANS Lab: Security Errors and Omissions by Organizations As We Enter 2011

Email

12:15 AM Jul 22nd

http://www.sans.edu/resources/securitylab/2010_error_omission.php

• Security Errors and Omissions by Organizations As We Enter 2011
• Stephen Northcutt's Security Predictions for 2011 and 2012
• Security Predictions for 2011 and 2012 - The Emerging Security Threat
• Chris Pogue, Senior Security Analyst
• John Kanen Flowers
• Eric Cole Emerging Threats Summary 2010
• SANS Security West 2010 Speaker Room Predictions
• Mark Weatherford Security Predictions 2011 - 2012
…full story

Google Security Blog: Rebooting Responsible Disclosure: a focus on protecting end users

Email

4:32 PM Jul 20th

http://feedproxy.google.com/~r/GoogleOnlineSecurityBlog/~3/w03Hbsl-ycI/rebooting-responsible-disclosure-focus.html

• Rebooting Responsible Disclosure: a focus on protecting end users
• Extending SSL to Google search
• Do Know Evil: web application vulnerabilities
• The Rise of Fake Anti-Virus
• The chilling effects of malware
• Phishing phree
• Detecting suspicious account activity
• Meet skipfish, our automated web security scanner
…full story

SANS News Bites: SANS Network Security 2010

Email

1:51 PM Jul 16th

http://www.sans.org/network-security-2010/

• SANS Network Security 2010
• Microsoft to Share Windows 7 Source Code With Russian Intelligence (July 8, 2010)
• China Renews Google's Internet Content Provider License (July 9, 10 & 11, 2010)
• Senators Call for US and China to Lead on Cyber Security (July 9, 2010)
• Oracle's Critical Patch Update for July to Address 59 Vulnerabilities (June 12, 2010)
• Google Apologizes for Wi-Fi Data Gathering in Australia (July 10 & 12, 2010)
• Judge Reduces Fine By 90 Percent in Tenenbaum Filesharing Case (July 9, 2010)
• NSA Says Perfect Citizen is Not a Monitoring Program (July 9, 2010)
…full story

OLEX Wazi: Solaris 10 and prior [Low]

Email

5:45 AM Jul 15th

http://olex.openlogic.com/wazi/2010/solaris-10-and-prior-low-5/

• Solaris 10 and prior [Low]
• Fusion Middleware 10.1.4.0.1 and prior [Low]
• Peoplesoft And Jdedwards Suite Scm 9.1 and prior [Medium]
• Peoplesoft And Jdedwards Suite Hcm 9.1 and prior [Medium]
• Peoplesoft And Jdedwards Suite Crm 9.1 and prior [Low]
• Peoplesoft And Jdedwards Product Suite 8.50.10 and prior [Medium]
• Solaris 10 and prior [Low]
• Weblogic Server Component 10.3.3 and prior [Medium]
…full story

US-Cert Alerts: TA10-194B: Oracle Updates for Multiple Vulnerabilities

Email

5:30 PM Jul 13th

http://www.us-cert.gov/channels/techalerts.rdf

• TA10-194B: Oracle Updates for Multiple Vulnerabilities
• TA10-194A: Microsoft Updates for Multiple Vulnerabilities
• TA10-162A: Adobe Flash and AIR Vulnerabilities
• TA10-159B: Microsoft Updates for Multiple Vulnerabilities
• TA10-159A: Adobe Flash, Reader, and Acrobat Vulnerability
• TA10-131A: Microsoft Updates for Multiple Vulnerabilities
• TA10-103C: Adobe Reader and Acrobat Vulnerabilities
• TA10-103B: Oracle Updates for Multiple Vulnerabilities
• TA10-103A: Microsoft Updates for Multiple Vulnerabilities …full story

SANS Thought Leaders: Chris Pogue, Senior Security Analyst

Email

7:38 PM Jul 8th

http://www.sans.org/thought-leaders/christopher_pogue#paper

• Chris Pogue, Senior Security Analyst
• John Kanen Flowers
• Kees Leune, Leune Consultancy, LLC
• Joel Yonts, CISO
• Maury Shenk, TMT Advisor, Steptoe & Johnson
• Chris Wysopal, CTO, Veracode
• Amir Ben-Efraim, CEO, Altor Networks
• Ed Hammersla, COO, Trusted Computer Solutions
…full story

SANS Reading Room: SANS Network Security 2010

Email

12:27 PM Jul 2nd

http://www.sans.org/info/61248/

• SANS Network Security 2010
• Clash of the Titans: ZeuS v SpyEye
• Protecting Laptop Computers
• Utilizing "AutoRuns" To Catch Malware
• Bypassing Malware Defenses
• One Touch Disaster Recovery Solution for Continuity of Operations
• Orion Incident Response Live CD
• Online Backup: Worth the Risk?
…full story

Travel Security: Another shoe bomber?

Email

9:21 PM Apr 7th

http://travelsecurity.blogspot.com/2010/04/another-shoe-bomber.html

• Another shoe bomber?
• High tech airport security
• More threats, more security
• Chris Elliott on Airplane Geeks Podcast
• TSA subpoenas bloggers
• Should we fire the TSA?
• Obama on Airline Security
• How we could have prevented the Christmas bomber
…full story

Cloud Security Alliance and IEEE Join Forces to Identify Cloud Security Standards Requirements For IT Practitioners

Email

3:21 PM Feb 18th

http://www.businesswire.com/portal/site/home/permalink/?ndmViewId=news_view&newsId=20100218006681&newsLang=en

• The Cloud Security Alliance (CSA), a not-for-profit organization formed to promote the use of best practices for providing security assurance within cloud computing, and IEEE, the world's leading professional association for the advancement of technology, today announced they are joining forces to ensure that best practices and standards are developed and available to provide security assurance for cloud computing. As a result of this collaboration, CSA and IEEE have been conducting a survey to identify and define the most critical security concerns surrounding enterprise cloud computing. …full story

Wash Post SecFix: Farewell 2009, and The Washington Post

Email

3:14 PM Dec 29th

http://feeds.voices.washingtonpost.com/click.phdo?i=6cdbc65ccc9a2512b05d562892ffdf1b

• Farewell 2009, and The Washington Post
• Hackers exploit Adobe Reader flaw via comic strip syndicate
• Twitter.com hijacked by 'Iranian cyber army'
• Group IDs hotbeds of Conficker worm outbreaks
• Hackers target unpatched Adobe Reader, Acrobat flaw
• Check your Facebook 'privacy' settings now
• Paper-based data breaches on the rise
• Critical updates for Adobe Flash, Microsoft Windows
…full story

Secure Thinking (BT): Meeting of the security minds in NY

Email

9:24 AM Dec 29th

http://bt-securethinking.blogspot.com/2009/12/meeting-of-security-minds-in-ny.html

• Meeting of the security minds in NY
• Howard A. Schmidt - the right man for the job
• 2009: A look at the top security incidents of the year
• It’s Not Just Santa Who Wants Your Cookies: Securing Your Network Through Logical Separation
• Annual Internet Threat Reports Make for Good Fireside Reading
• Three steps to prepare
• Why the Adoption of Chip and PIN Technology is Inevitable
• DLP – A security solution, not a security savior
…full story

Jessica Biel Most Dangerous Celeb on the Web

Email

8:57 AM Aug 25th

http://www.crn.com/security/219401368;jsessionid=GGKERHAFQUVQBQE1GHPCKHWATMY32JVN

• A new report from security company McAfee claims that Jessica Biel has overtaken Brad Pitt as the most dangerous celebrity on the Web. The security company is in its third year tracking the threat level of celebrities on the Web. …full story