Security Researcher to release Cisco rootkit at EUSecWest   15 May 2008 04:03 GMT
According to good friend Robert McMillan of IDG News, Sebastian Muniz, a researcher with Core Security Technologies, has developed malicious rootkit software for Cisco's routers, which he will release on May 22 at the EuSecWest conference in London.  This will mark the first time (at least publicly) that someone has released a...
Source: ZDNet

Spam king, phishing buddy hit for $200m   15 May 2008 01:42 GMT
Spam king Sanford Wallace and phishing buddy Walter Rines hijacked some 300,000 MySpace accounts and sent hundreds of thousands of spam messages and comments across the service. They got their punishment today: a whopping $225 million judgment in favor of MySpace, Information Week reports. "By using hijacked...
Source: ZDNet

Computerworld presents a 100% free and online security event today!   14 May 2008 13:00 GMT
Join Computerworld and hundreds of your industry peers for this exclusive online and "virtual" event on the current and future state of security. Visit our sponsor's booths for valuable white papers, case studies and demos. Network with your peers. Watch our day-long agenda of webcasts featuring industry experts. Enter to win prizes!

Source: Computerworld

Content Protection madness on Vista   14 May 2008 12:46 GMT
I'm a firm believer in the idea that if you pay for hardware, you should be able to make full use of it. However, DRM and content protection mechanisms are increasingly making this difficult for people. Here's a prefect example of what I mean. My wife, Kathie,...
Source: ZDNet

MySpace's big spam win: Will it really be a deterrent?   14 May 2008 10:52 GMT
MySpace won statutory damages of more than $230 million against spammers Stanford Wallace and Walter Rines, but the big question is whether this ruling--delivered in the Federal District Court in Los Angeles--will act as a deterrent. To be sure, MySpace's win (see court order PDF) has some...
Source: ZDNet

Craigslist fires back at eBay; Bogus Google ads to Kijiji alleged   13 May 2008 21:44 GMT
Craigslist has filed its response to eBay's lawsuit and the company hits back--hard. Craigslist alleges that eBay participated in everything from "unlawful and unfair competition," false advertising, business interference and even phishing attacks. The official list via Craigslist: "We filed a complaint in California today, charging...
Source: ZDNet

Details, details, details... more on the Microsoft flaws from today   13 May 2008 20:40 GMT
Thought I'd explore some of these bugs a bit more... first, Tipping Point released one of the vulnerabilities that Larry reported earlier, listed as a stack overflow issue in Microsoft Office Jet Database Engine.  The stack overflow isn't what's interesting, what's interesting is the attack vector itself.  To be fair to...
Source: ZDNet

Microsoft plugs Office leaks; Delivers 4 critical patches   13 May 2008 17:34 GMT
Microsoft on Tuesday delivered four critical patches for vulnerabilities Office and Windows XP. There were six patches delivered. Here's a look by the CVE: CVE-2008-1091: Microsoft patched an object parsing vulnerability in Microsoft Word. Affected software includes Office 2000, 2003 and 2007. Microsoft explains:...
Source: ZDNet

Restaurant chain served up payment card data to hackers   13 May 2008 13:00 GMT
Dave & Buster's disclosed that credit and debit card numbers were stolen last year from systems at 11 of its restaurants — allegedly by three hackers who have been indicted by a federal grand jury.

Source: Computerworld

Why SaaS is Vital to Email and Web Security   13 May 2008 13:00 GMT
(Source: Webroot Software) Business dependence on email and web is greater than ever before and the volume of threats has spiked dramatically. This webcast will discuss security software as a service (SaaS) as an emerging technology and use customer case studies to provide real world examples of why it is vital for a multi-layered security strategy.

Source: Computerworld