Security

"The hackers are trying to use the virus to obtain passwords to banking sites, according to Graham Cluley, a researcher with anti-virus software maker Sophos. When an iPhone user tries to access a bank website, the Duh Worm directs the browser to a look-a-like site controlled by the hackers, Cluley said." - chaz2b from Bookmarklet

Virus is created by Apple to scare people into not jailbreaking their iPhones </tinfoilhat> - Glenn Slaven

Glenn, that's what I thought when I first read this. </birdsofafeather> - Derek Coward

"“It is kind of like storing all your secret messages right next to the secret decoder ring,” said Jonathan Zdziarski, an iPhone developer and a hacker who teaches forensics courses on recovering data from iPhones. “I don’t think any of us [developers] have ever seen encryption implemented so poorly before, which is why it’s hard to describe why it’s such a big threat to security.”" - Maxamad from Bookmarklet

"A Seattle computer security consultant says he's developed a new way to exploit a recently disclosed bug in the SSL protocol, used to secure communications on the Internet. The attack, while difficult to execute, could give attackers a very powerful phishing attack." - imabonehead from Bookmarklet

"The SSL Authentication flaw gives the attacker a way to change data being sent to the SSL server, but there's still no way to read the information coming back. Heidt sends data that causes the SSL server to return a redirect message that then sends the Web browser to another page. He then uses that redirect message to move the victim to an insecure connection where the Web pages can be rewritten by Heidt's computer before they are sent to the victim." - imabonehead

"IBM security tool searches for and destroys malicious code in the cloud." - LANjackal from Bookmarklet

ahhhh the matrix ;) - ovigia

"MassMutual officials this week confirmed that one of its employee databases was accessed by an unauthorized person or persons, exposing an unknown number of employees' personal data for a yet-to-be-determined amount of time." - imabonehead from Bookmarklet

"The BBC yesterday reported that T-Mobile has informed the UK Information Commissioner that company employees had illegally sold millions of records relating to thousands of British T-Mobile phone owners to data brokers for "substantial sums." The brokers in turn sold the information which contained contract details to other phone companies, who then cold-called T-Mobile customers as their contracts were expiring." - imabonehead from Bookmarklet

"In a security advisory, Microsoft acknowledged that a bug in SMB (Server Message Block), a Microsoft-made network file- and print-sharing protocol, could be used by attackers to cripple Windows 7 and Windows Server 2008 R2 machines." - imabonehead from Bookmarklet

"The horsey is infected" - LogEx

"fimap is a little python tool which can find, prepare, scan, audit, exploit and even google automaticly for local and remote file inclusion bugs in webapps. fimap should be something like sqlmap just for LFI/RFI bugs instead of sql injection. It’s is currently under heavy development but it’s usable." - imabonehead from Bookmarklet

"Marsh Ray and Steve Dispensa have recently uncovered a vulnerability in the design of TLS. Many comments and explanations have been made, and the consensus is that for HTTPS, this attack is equivalent to a CSRF, which is usually well protected against." - imabonehead from Bookmarklet

"Foreground Security discovered a critical vulnerability in Adobe Flash. This vulnerability allows the same-origin policy of Adobe Flash to be exploited to allow nearly any site that allows user generated content to be attacked. No fix for this vulnerability currently exists." - imabonehead from Bookmarklet

"Microsoft has been granted a patent for the sudo command, because apparently you can patent a command that goes back to the mainframe days as long as you explain that it's a "personalized version" with a GUI." - imabonehead from Bookmarklet

Mamma che beffa! - Andrea Privitera

From Groklaw's article: "Update: Steve Martin notes that sudo goes back even further, to the 1970s and mainframes..." - http://www.groklaw.net/article.... This is going to be a very interesting. - imabonehead

"The image, installed by what’s purportedly the first worm to hit iPhones, replaced the wallpaper image phone owners normally saw when their handhelds entered lock mode." - LANjackal from Bookmarklet

I didnt know the default password was alpine. :) - TrafficBug

"The first worm to infect the Apple iPhone has been discovered spreading "in the wild" in Australia." - Maxamad from Bookmarklet

This is pretty easy to prevent. If you have enough skill to jailbreak an iPhone, you should be able to install Mobile Terminal and change the mobile and root passwords. - Matt Hilton

"Could hackers get into the computer systems that run crucial elements of the world’s infrastructure, such as the power grids, water works or even a nation’s military arsenal? Watch the CBS News 60 Minutes segment after the jump." - imabonehead from Bookmarklet

"An open source self-contained training environment for Web Application Security penetration testing. Tools + Targets = Dojo. For learning and practicing web app security testing techniques. It does not need a network connection since it contains tools, targets, and documentation. Thus making it ideal for training classes and conferences." - imabonehead from Bookmarklet

You can visit their project page - http://sourceforge.net/project... - imabonehead

"The definition of personal identifiable information will continue to expand," (will my twitter ID become part of HIPAA?) - Keith - @tsudo from Bookmarklet

Yep. That's what I did when I purchased my G1 last year. - imabonehead

It seems a bit wrong that they don't get you to type your own password. Security #FAIL . - Andrew Perry

"The first real-world iPhone cyber-attack has shown its face. And that face belongs to 1980s pop star Rick Astley. Over the weekend, researchers at cybersecurity firms Sophos and F-Secure detected the world's first active iPhone worm, spreading among Apple ( AAPL - news - people ) smart phone users in Australia." - imabonehead from Bookmarklet

"Researchers haven't estimated how many phones have been infected with the rickrolling "ikee" worm. But it's likely far fewer than would have been affected by Miller's text messaging vulnerability. Only users that have "jailbroken" their phones--altered them to run applications not authorized by Apple--are vulnerable, and among those, only those who failed to change their default password for a secure shell (SSH) application that allows file transfers between smart phones." - imabonehead

"The following note is inspired by the steps the folks at FireEye Malware Intelligence Lab took to disable the Mega-d/Ozdok bot network. People often wonder what it takes to shut down a botnet. Here are the key steps, which apply to “traditional” botnets, which don’t rely heavily on peer-to-peer protocols for their command and control (C&C) implementation; the number of hosts and domains that such botnets use can be sufficiently small that a group or an individual can disrupt the botnet by getting these IPs or domain names shut down." - imabonehead from Bookmarklet

Why the "Net" generation skateboards right past security controls, and what it means for employers - Keith - @tsudo from Bookmarklet

"Due to the recent publishing of information regarding a TLS/SSL protocol vulnerability (previous ISC diary entry can be found here http://isc.sans.org/diary...) OpenSSL has released a new version (OpenSSL 0.9.8l). It should be noted that this update does not "fix" the vulnerability in the protocol." - imabonehead from Bookmarklet

"Steve Dispensa and Marsh Ray have published a paper describing a weakness in the TLS negotiation process. This is the same attack discussed on the IETF TLS list." - imabonehead from Bookmarklet

"Interestingly, what used to be a group that was exclusively specializing in DDoS attacks, is today's cybercrime enterprise "vertically integrating" in order to occupy as many underground market segments as possible, all of which originally developed thanks to the "malicious economies of scale" (massive SQL injections through search engines' reconnaissance, standardizing the social engineering process, the money mule recruitment process, diversifying the standardized and well proven propagation/infection vectors etc.) offered by a botnet." - ovigia from Bookmarklet

"According to reports, vulnerabilities in the SSL/TLS protocol can be exploited by attackers to insert content into secure connections. If this is correct, it would affect HTTPS and all other protocols which use TLS for security, including IMAP. The precise effects of the problem are not discussed in the reports. It would, however, appear to be possible to manipulate HTML content from websites during data transfer and, for example, inject malicious code." - imabonehead from Bookmarklet

"The problem has been shown to exist in the latest versions of the Microsoft IIS and Apache Foundation httpd web servers, and OpenSSL are also affected. A patch has been developed by Ben Laurie, but it merely stops renegotiation and does not resolve the actual problem. A long-term solution is under discussion. One possibility would be to issue client certificates earlier, before a... more... - imabonehead

"Rootkits often replace functions provided by an operating system's kernel in order to infect a machine and obscure their presence. A paper describes a way of blocking rootkits by gathering all these functions in one place in memory, then locking down the memory." - imabonehead from Bookmarklet

"Captchas, the scrambled images used to separate humans from software bots online, could become harder for bots to solve – and easier for humans to handle – by animating them. That is the claim of computer scientist Niloy Mitra at the Indian Institute of Technology Delhi, who along with colleagues has devised a system that should separate the bots from the humans. With some captcha systems close to being cracked, website owners are having to make them ever more fiendish to thwart bots. That comes at a cost, however: it makes them difficult for humans to read too, says Mitra." - LANjackal from Bookmarklet

"Many of us have wondered where str0ke has been and why milw0rm has not been updated in a good while. I recently was informed that str0ke has been hospitalized due to a strange condition with his heart, which he has had since he was a child." - Maxamad from Bookmarklet

Alive. - Maxamad

"Why does your computer bother you so much about security, but still isn't secure? It's because users don't have a model for security, or a simple way to keep important things safe." - LANjackal from Bookmarklet