The Seven Deadly Sins of Security Vulnerability Reporting pretends to become an easy to follow list, ...(more)...

I certainly agree that the amount of vulnerabilities is increasing and you have to be able to write ...(more)...

Oracle is canceling Opensolaris project and focusing into Solaris 11. See below: All of Oracl ...(more)...

Reader Alan reported a series of records that are similar to an SQL injection but are obfuscated. Th ...(more)...

Information Security, specifically the encryption technology used in BlackBerry, is under fire fr ...(more)...

The Shadowserver Foundation has made available a new and free public service to test the MD5's or SH ...(more)...

It wasn't me: A hardened computer hacker has been arrested on suspicion of writing a computer virus that systematically destroys all the files on victims' PCs and replaces them with homemade manga images of squid, octopuses and sea urchins....

Clever attack. After researching how gift cards work, Zepeda purchased a magnetic card reader online, began stealing blank gift cards, on display for purchase, from Fred Meyer and scanning them with his reader. He would then return some of the scanned cards to the store and wait for a computer program to alert him when the cards were activated and...

Cisco IOS 15.1(2)T is affected by a denial of service (DoS) vulnerability during the TCP establishme ...(more)...

QuickTime 7.6 ...(more)...

...(more)...

"Smudge Attacks on Smartphone Touch Screens": Abstract: Touch screens are an increasingly common feature on personal computing devices, especially smartphones, where size and user interface advantages accrue from consolidating multiple hardware components (keyboard, number pad, etc.) into a single software definable user interface. Oily residues, or smudges, on the touch screen surface, are one side effect of touches from which...

...(more)...

We have received some reports about a new SSH brute force script, possibly named dd_ssh, that gets d ...(more)...

Facebook Privacy Settings: Who Cares?" by danah boyd and Eszter Hargittai. Abstract: With over 500 million users, the decisions that Facebook makes about its privacy settings have the potential to influence many people. While its changes in this domain have often prompted privacy advocates and news media to critique the company, Facebook has continued to attract more users to its...

In view of all the brute force attacks still being attempted against Secure Shell (SSH), we have lon ...(more)...

This is a busy day for the folks doing patching out there. Aside from the MSpatches released t ...(more)...

Overview of theAug 2010 MicrosoftPatchesand their status. Update:& ...(more)...

Good information from Mikko Hyppönen. Q: What is this all about? A: It's about a site called jailbreakme.com that enables you to Jailbreak your iPhones and iPads just by visiting the site. Q: So what's the problem? A: The problem is that the site uses a zero-day vulnerability to execute code on the device. Q: How does the vulnerability work?...

Lately I've been reading about user security and privacy -- control, really -- on social networking sites. The issues are hard and the solutions harder, but I'm seeing a lot of confusion in even forming the questions. Social networking sites deal with several different types of user data, and it's essential to separate them. Below is my taxonomy of social...