Home Vulnerabilities Exploits Hacking IT Security Malware
Twitter
RSS

Archive for June, 2010

« Older Entries

Microsoft: 10,000 PCs hit with new Windows XP zero-day attack

By admin on Wednesday, June 30th, 2010 | No Comments

IDG News Service - Nearly a month after a Google engineer released details of a new Windows XP flaw, criminals have dramatically ramped up online attacks that leverage the bug.

Microsoft reported Wednesday that it has now logged more than 10,000 attacks. “At first, we only saw legitimate researchers testing innocuous proof-of-concepts. Then, early on June 15th, the first real public exploits emerged,” Microsoft said in a blog posting.

“Those initial exploits were targeted and fairly limited. In the past week, however, attacks have picked up.”

The attacks, which are being launched from malicious Web pages, are concentrated in the U.S., Russia, Portugal, Germany and Brazil, Microsoft said.

PCs based in Russia and Portugal, in particular, are seeing a very high concentration of these attacks, Microsoft said.

Security vendor Symantec said these attacks peaked late last week. “Symantec has seen increased activity

Read the rest

Read More...

Too Scary to Fly, Not Scary Enough to Arrest

By admin on Wednesday, June 30th, 2010 | No Comments

Ten U.S citizens and residents, three of whom are veterans, are stuck abroad or cannot fly within or out of the United States because they are wrongly on a no-fly list, according to a federal lawsuit lodged Wednesday.

The Oregon federal court case claims the plaintiffs, many with Middle Eastern names who have committed no legal wrongdoing, have asked the Department of Homeland Security and Transportation Security Administration for an explanation, to no avail.

The government, according to the suit brought by the American Civil Liberties Union, has not offered any explanation for plaintiffs’ “apparent placement” on the no-fly list or any other watch list. “They’re too scary to fly but not scary enough to arrest,” quipped Ben Wizner, an ACLU attorney on the case.

Wizner believed it was the first lawsuit testing the constitutionality of the government’s ability to bar flight, though that topic has been the… Read the rest

Read More...

Census Paranoia Fueled Distrust In Government Privacy More Than NSA Wiretapping

By admin on Wednesday, June 30th, 2010 | No Comments

The Bush administration may have engaged in large scale monitoring of U.S. citizens’ communications without warrants. But the Obama administration seems to have committed a greater sin in the eyes of the American public: sending us a piece of paper with ten questions for the 2010 Census.

In a study released Tuesday night by the privacy-focused Ponemon institute, Americans said that their trust in the privacy commitments of the U.S. federal government, averaged across 75 agencies, was the lowest in the six years that Ponemon has performed the study. Just 38% of Americans said they were confident in the government’s protection of their private data, down from 50% last year and 52% and 47% in 2005 and 2006 at the height of the Bush administration’s wiretapping controversy.

Larry Ponemon, the president of the Institute, blames that low rating in part on conservatives’ strong negative feelings

Read the rest

Read More...

Group Wants FTC to Probe Data Broker Spokeo

By admin on Wednesday, June 30th, 2010 | No Comments

Spokeo, an online data broker, is accused of peddling inaccurate information and violating consumer protection laws in a complaint sent to the Federal Trade Commission on Wednesday.

The Center for Democracy and Technology, which filed the complaint, alleges Spokeo purports to provide information about individuals’ credit ratings and other financial data, but fails to disclose the source of the data or allow consumers an opportunity to dispute and correct false information.

The site also does not let consumers know who has sought access to their information or inform users, such as employers, that federal law requires them to notify a job applicant if they have reached an adverse determination about an applicant based on information they may have obtained from the site.

The CDT notes in its complaint (.pdf) that much of the information provided in Spokeo profiles is inaccurate, a point verified by Threat Level in searches… Read the rest

Read More...

Spies, Lies and Damned Help Desks

By admin on Wednesday, June 30th, 2010 | No Comments

By now everyone has heard about the alleged secret agents arrested in the USA. If you haven’t had a chance to read the criminal complaint against them, you’re missing out on some interesting revelations.

Revelation 1: Mission Completely Possible

Unlike James Bond (or, heck… Austin Powers), these alleged spies had a mission with boatloads of promise. Were they scoping out weapons programs? Stealing military secrets? Designs for nuclear bombs? Nope – they were tasked with gaining access to U.S. policy makers. Well, hell – a few suitcases of cash and a some stiff drinks is half the battle… was this really a challenge?

Revelation 2: The Alleged Spies Communicated by… AdHoc Wireless LANs

You heard it right… when passing information between persons, they set up ad-hoc wireless LANs and utilized custom communications software to transmit information back and forth. This is… Read the rest

Read More...
« Older Entries