http://it.slashdot.org/ News for nerds, stuff that matters en-us Copyright 1997-2009, Geeknet, Inc. All Rights Reserved. 2009-11-12T04:10:18+00:00 Geeknet, Inc. help@slashdot.org Technology hourly 1 1970-01-01T00:00+00:00 http://a.fsdn.com/sd/topics/topicslashdot.gif http://it.slashdot.org/ http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/nRXijGl7lv0/Making-Carriers-Shoulder-Smartphone-Security alphadogg writes "Georgia Tech researchers have received a $450,000 NSF grant to boost security of iPhones, BlackBerries and other smartphones and the wireless networks on which they run. And it's those networks where the researchers are really zeroing in. The researchers are looking into ways wireless carriers such as AT&amp;T and Verizon can detect malware on devices and clean up the devices before they do further damage. 'While a single user might realize that a phone is behaving differently, that person probably won't know why,' says Patrick Traynor, assistant professor at Georgia Tech&rsquo;s School of Computer Science. 'But a cell phone provider may see a thousand devices behaving in the same way and have the ability to do something about it.' Georgia Tech is going to build out a cellular network test bed to try out its remote repair techniques."<p><a href="http://mobile.slashdot.org/story/09/11/11/2318247/Making-Carriers-Shoulder-Smartphone-Security?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/11/2318247"></a></p><p><a href="http://mobile.slashdot.org/story/09/11/11/2318247/Making-Carriers-Shoulder-Smartphone-Security?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/ijnIIXUnA9zuzjKkF9HyHNWxfi4/0/da"><img src="http://feedads.g.doubleclick.net/~at/ijnIIXUnA9zuzjKkF9HyHNWxfi4/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/ijnIIXUnA9zuzjKkF9HyHNWxfi4/1/da"><img src="http://feedads.g.doubleclick.net/~at/ijnIIXUnA9zuzjKkF9HyHNWxfi4/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/nRXijGl7lv0" height="1" width="1"/> timothy 2009-11-11T23:33:00+00:00 cellphones wait-for-per-byte-malware-removal-fee mobile 35 35,35,23,19,8,6,3 http://mobile.slashdot.org/story/09/11/11/2318247/Making-Carriers-Shoulder-Smartphone-Security?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/ZSppWt6VFuk/Firefox-Most-Vulnerable-Browser-Safari-Close An anonymous reader writes "Cenzic released its report revealing the most prominent types of Web application vulnerabilities for the first half of 2009. The report identified over 3,100 total vulnerabilities, which is a 10 percent increase in Web application vulnerabilities compared to the second half of 2008. Among Web browsers, Mozilla Firefox had the largest percentage of Web vulnerabilities, followed by Apple Safari, whose browser showed a vast increase in exploits, due to vulnerabilities reported in the Safari iPhone browser." It seems a bit surprising to me that this study shows that only 15% of vulnerabilities are in IE.<p><a href="http://tech.slashdot.org/story/09/11/11/1626224/Firefox-Most-Vulnerable-Browser-Safari-Close?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/11/1626224"></a></p><p><a href="http://tech.slashdot.org/story/09/11/11/1626224/Firefox-Most-Vulnerable-Browser-Safari-Close?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/rrDvEx4Q7Y2l962NRhJIb3GLvIk/0/da"><img src="http://feedads.g.doubleclick.net/~at/rrDvEx4Q7Y2l962NRhJIb3GLvIk/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/rrDvEx4Q7Y2l962NRhJIb3GLvIk/1/da"><img src="http://feedads.g.doubleclick.net/~at/rrDvEx4Q7Y2l962NRhJIb3GLvIk/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/ZSppWt6VFuk" height="1" width="1"/> CmdrTaco 2009-11-11T17:45:00+00:00 mozilla say-what-now technology 279 279,276,224,182,68,43,27 http://tech.slashdot.org/story/09/11/11/1626224/Firefox-Most-Vulnerable-Browser-Safari-Close?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/SF4cU0tSBpU/Scientists-Unveil-Lightweight-Rootkit-Protection DangerFace writes "Scientists are set to unveil a lightweight system they say makes an operating system significantly more resistant to rootkits without degrading its performance. The hypervisor-based system is dubbed HookSafe, and it works by relocating kernel hooks in a guest OS to a dedicated page-aligned memory space that's tightly locked down. The team installed HookSafe on a machine running Ubuntu 8.04, and found the system successfully prevented nine real-world rootkits targeting that platform from installing or hiding themselves. The program was able to achieve that protection with only a 6 percent reduction in performance benchmarks."<p><a href="http://linux.slashdot.org/story/09/11/11/1517233/Scientists-Unveil-Lightweight-Rootkit-Protection?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/11/1517233"></a></p><p><a href="http://linux.slashdot.org/story/09/11/11/1517233/Scientists-Unveil-Lightweight-Rootkit-Protection?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/AOlquyTWsERvWqq5fKDSZps6f6E/0/da"><img src="http://feedads.g.doubleclick.net/~at/AOlquyTWsERvWqq5fKDSZps6f6E/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/AOlquyTWsERvWqq5fKDSZps6f6E/1/da"><img src="http://feedads.g.doubleclick.net/~at/AOlquyTWsERvWqq5fKDSZps6f6E/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/SF4cU0tSBpU" height="1" width="1"/> CmdrTaco 2009-11-11T15:26:00+00:00 security take-two-of-these linux 151 151,150,123,100,35,19,12 http://linux.slashdot.org/story/09/11/11/1517233/Scientists-Unveil-Lightweight-Rootkit-Protection?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/YhsJGsDoEjw/Microsoft-Plugs-Drive-By-and-14-Other-Holes CWmike writes "Microsoft today patched 15 vulnerabilities in Windows, Windows Server, Excel, and Word, including one that will probably be exploited quickly by hackers. None affects Windows 7. Of today's 15 bugs, Microsoft tagged three 'critical' and the remaining 12 'important.' Experts agreed that users should focus on MS09-065 first and foremost. That update, which was ranked critical, affects all still-supported editions of Windows except Windows 7 and its server sibling, Windows Server 2008 R2. 'The Windows kernel vulnerability is going to take the cake,' said Andrew Storms, director of security operations at nCircle Network Security. 'The attack vector can be driven through Internet Explorer, and this is one of those instances where the user won't be notified or prompted. This is absolutely a drive-by attack scenario.' Richie Lai, the director of vulnerability research at security company Qualys, agreed. 'Anyone running IE [Internet Explorer] is at risk here, even though the flaw is not in the browser, but in the Win32k kernel mode driver.'"<p><a href="http://tech.slashdot.org/story/09/11/11/0053244/Microsoft-Plugs-Drive-By-and-14-Other-Holes?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/11/0053244"></a></p><p><a href="http://tech.slashdot.org/story/09/11/11/0053244/Microsoft-Plugs-Drive-By-and-14-Other-Holes?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/EKRzK_yU0SzpALhKEhu9PZzGBGc/0/da"><img src="http://feedads.g.doubleclick.net/~at/EKRzK_yU0SzpALhKEhu9PZzGBGc/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/EKRzK_yU0SzpALhKEhu9PZzGBGc/1/da"><img src="http://feedads.g.doubleclick.net/~at/EKRzK_yU0SzpALhKEhu9PZzGBGc/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/YhsJGsDoEjw" height="1" width="1"/> kdawson 2009-11-11T13:07:00+00:00 security clip-clop-clip-clop-bang technology 118 118,112,90,72,20,11,8 http://tech.slashdot.org/story/09/11/11/0053244/Microsoft-Plugs-Drive-By-and-14-Other-Holes?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/vt1AK8hs3Us/9-Million-ATM-Hacking-Ring-Indicted Trailrunner7 writes "US and international prosecutors have indicted a criminal ring that they allege was responsible for an ATM scam last November that stole about $9 million from RBS WorldPay. The criminals cracked payroll debit cards and withdrew money from ATMs in hundreds of cities around the world. A federal grand jury in Atlanta has indicted eight men in connection with the scheme, including five Estonians, one Russian, one Moldovan, and one unidentified man. Prosecutors allege that the men 'used sophisticated hacking techniques' to defeat the company's encryption system. The scam involved an elaborate plan in which the attackers first bypassed the encryption on the debit cards, which RBS WorldPay issues to customers for employee payroll purposes. They then raised the limits on the accounts attached to the cards, then provided a network of 'cashers' with 44 counterfeit payroll debit cards, which were used to withdraw more than $9 million from more than 2,100 ATMs in at least 280 cities worldwide, including cities in the United States, Russia, Ukraine, Estonia, Italy, Japan and Canada. The $9 million loss occurred within a span of less than 12 hours; 130 different ATMs in 49 cities were hit within one 30-minute period."<p><a href="http://news.slashdot.org/story/09/11/10/222240/9-Million-ATM-Hacking-Ring-Indicted?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/10/222240"></a></p><p><a href="http://news.slashdot.org/story/09/11/10/222240/9-Million-ATM-Hacking-Ring-Indicted?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/9QFhcQe34rFqz9_VaQXHPSzURo0/0/da"><img src="http://feedads.g.doubleclick.net/~at/9QFhcQe34rFqz9_VaQXHPSzURo0/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/9QFhcQe34rFqz9_VaQXHPSzURo0/1/da"><img src="http://feedads.g.doubleclick.net/~at/9QFhcQe34rFqz9_VaQXHPSzURo0/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/vt1AK8hs3Us" height="1" width="1"/> kdawson 2009-11-11T03:27:00+00:00 security good-luck-with-those-arrests news 78 78,75,53,38,14,10,8 http://news.slashdot.org/story/09/11/10/222240/9-Million-ATM-Hacking-Ring-Indicted?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/4gOE1j6H8o0/Best-Tool-For-Remembering-Passwords StonyCreekBare writes "Lately I've been rethinking my personal security practices. Should my laptop be stolen, having Firefox 'fill in' passwords automatically for me when I go to my bank's site seems sub-optimal. Keeping passwords for all the varied sites on the computer in a plain-text file seems unwise as well. Keeping them in my brain is a prescription for disaster, as my brain is increasingly leaky. A paper notepad likewise has its disadvantages. I have looked at a number of password managers, password 'vaults' and so on. The number of tools out there is a bit overwhelming. Magic Password Generator add-in for Firefox seems competent, but it's tied to Firefox, and I have other places and applications where I want passwords. And I might be accessing my sites from other computers that don't have it installed. The ideal tool in my mind should be something that is independent of any application, browser, or computer; something that is easily carried, but which if lost poses no risk of compromise. What does the Slashdot crowd like in password tools?"<p><a href="http://ask.slashdot.org/story/09/11/10/2045258/Best-Tool-For-Remembering-Passwords?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/10/2045258"></a></p><p><a href="http://ask.slashdot.org/story/09/11/10/2045258/Best-Tool-For-Remembering-Passwords?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/TFSBrthaix36J2LKXka28NkOKWs/0/da"><img src="http://feedads.g.doubleclick.net/~at/TFSBrthaix36J2LKXka28NkOKWs/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/TFSBrthaix36J2LKXka28NkOKWs/1/da"><img src="http://feedads.g.doubleclick.net/~at/TFSBrthaix36J2LKXka28NkOKWs/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/4gOE1j6H8o0" height="1" width="1"/> kdawson 2009-11-11T01:30:00+00:00 security encrypted-plain-text-file-on-a-stick askslashdot 934 934,933,696,405,64,33,25 http://ask.slashdot.org/story/09/11/10/2045258/Best-Tool-For-Remembering-Passwords?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/ctu9ffvZj0s/Researchers-Take-Down-a-Spam-Botnet The Register is reporting on the takedown of a botnet once responsible for 1/3 of the world's spam. The deed was done by researchers from the security firm FireEye, who detailed the action in a series of blog posts. PC World's coverage estimates that lately the botnet has accounted for 4% of spam. From the Register: "After carefully analyzing the machinations of the massive botnet, alternately known as Mega-D and Ozdok, the FireEye employees last week launched a coordinated blitz on dozens of its command and control channels. ... Almost immediately, the spam stopped, according to M86 Security blog. ... The body blow is good news to ISPs that are forced to choke on the torrent of spam sent out by the pesky botnet. But because many email servers already deployed blacklists that filtered emails sent from IP addresses known to be used by Ozdok, end users may not notice much of a change. ... With [the] head chopped off of Ozdok, more than 264,000 IP addresses were found reporting to sinkholes under FireEye's control..."<p><a href="http://tech.slashdot.org/story/09/11/10/212220/Researchers-Take-Down-a-Spam-Botnet?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/10/212220"></a></p><p><a href="http://tech.slashdot.org/story/09/11/10/212220/Researchers-Take-Down-a-Spam-Botnet?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/zdV1EOGrA4QycoxbdoZwVF_QkMU/0/da"><img src="http://feedads.g.doubleclick.net/~at/zdV1EOGrA4QycoxbdoZwVF_QkMU/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/zdV1EOGrA4QycoxbdoZwVF_QkMU/1/da"><img src="http://feedads.g.doubleclick.net/~at/zdV1EOGrA4QycoxbdoZwVF_QkMU/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/ctu9ffvZj0s" height="1" width="1"/> kdawson 2009-11-10T23:26:00+00:00 spam chalk-up-one-for-the-good-guys technology 191 191,190,149,123,30,15,9 http://tech.slashdot.org/story/09/11/10/212220/Researchers-Take-Down-a-Spam-Botnet?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/abzz2zWy4ow/Microsoft-Tries-To-Censor-Bing-Vulnerability An anonymous reader writes "Microsoft's Bing search engine has a vulnerability with its cash-back promotion, which impacts both merchants and customers. In traditional Microsoft fashion, the company has responded to the author of the breaking Bing cash-back exploit with a cease &amp; desist letter, rather than by fixing the underlying security problem. It is possible for a malicious user to create fake Bing cash-back requests, resulting in not only fake cash-back costs for the merchant, but also blocking legitimate customers from receiving their cash-back from Bing. The original post is currently available in Bing's cache, although perhaps not for long. But no worries, the author makes it clear that the exploit should be painfully obvious to anyone who reads the Bing cash-back SDK."<p><a href="http://yro.slashdot.org/story/09/11/09/2319233/Microsoft-Tries-To-Censor-Bing-Vulnerability?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/09/2319233"></a></p><p><a href="http://yro.slashdot.org/story/09/11/09/2319233/Microsoft-Tries-To-Censor-Bing-Vulnerability?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/1OiXy-OgnzUNZOcLPX1JPWCGdEY/0/da"><img src="http://feedads.g.doubleclick.net/~at/1OiXy-OgnzUNZOcLPX1JPWCGdEY/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/1OiXy-OgnzUNZOcLPX1JPWCGdEY/1/da"><img src="http://feedads.g.doubleclick.net/~at/1OiXy-OgnzUNZOcLPX1JPWCGdEY/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/abzz2zWy4ow" height="1" width="1"/> kdawson 2009-11-10T07:30:00+00:00 censorship don't-shout-and-wave-it-about yro 266 266,264,219,162,68,34,24 http://yro.slashdot.org/story/09/11/09/2319233/Microsoft-Tries-To-Censor-Bing-Vulnerability?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/PKT_xRmxnkM/How-Do-You-Evaluate-a-Data-Center mpapet writes to ask about the ins and outs of datacenter evaluation. Beyond the simpler questions of physical access control, connectivity, and power redundancy/capacity and SLA review, what other questions are important to ask when evaluating a data center? What data centers have people been happy with? What horror stories have people lived through with those that didn't make the cut?<p><a href="http://it.slashdot.org/story/09/11/09/1953241/How-Do-You-Evaluate-a-Data-Center?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/09/1953241"></a></p><p><a href="http://it.slashdot.org/story/09/11/09/1953241/How-Do-You-Evaluate-a-Data-Center?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/PXWOA5yrjFRl4NyL0pv0mgEbnz0/0/da"><img src="http://feedads.g.doubleclick.net/~at/PXWOA5yrjFRl4NyL0pv0mgEbnz0/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/PXWOA5yrjFRl4NyL0pv0mgEbnz0/1/da"><img src="http://feedads.g.doubleclick.net/~at/PXWOA5yrjFRl4NyL0pv0mgEbnz0/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/PKT_xRmxnkM" height="1" width="1"/> ScuttleMonkey 2009-11-09T21:27:00+00:00 business check-for-major-fault-lines it 203 203,199,148,110,30,16,6 http://it.slashdot.org/story/09/11/09/1953241/How-Do-You-Evaluate-a-Data-Center?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/IH4t9bKzjF4/Reporting-To-Executives chopsuei3 writes "As a System Administrator, I am charged with providing more insight into the functioning of the system. What types of reports and information do other System Administrators submit to executives and on what frequency? Measurements such as uptime and average page latency are useful, but our site is relatively stable and we see minimal downtime, so I'm looking for other important and useful information I can report up to better illustrate my efforts. Our system is also unique in that about 70% of the traffic we see is from devices and not human browsers. I am a lone System Administrator in a 20-person company which specializes in web-based irrigation management. I also simultaneously perform all IT-related tasks in the office, which may also be important to report up to executives on regular basis."<p><a href="http://ask.slashdot.org/story/09/11/09/1429230/Reporting-To-Executives?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/09/1429230"></a></p><p><a href="http://ask.slashdot.org/story/09/11/09/1429230/Reporting-To-Executives?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/7FrkV0I2QMJQDfYZP9TTZCK1OF0/0/da"><img src="http://feedads.g.doubleclick.net/~at/7FrkV0I2QMJQDfYZP9TTZCK1OF0/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/7FrkV0I2QMJQDfYZP9TTZCK1OF0/1/da"><img src="http://feedads.g.doubleclick.net/~at/7FrkV0I2QMJQDfYZP9TTZCK1OF0/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/IH4t9bKzjF4" height="1" width="1"/> CmdrTaco 2009-11-09T14:38:00+00:00 it justify-your-existence askslashdot 299 299,293,230,173,54,32,21 http://ask.slashdot.org/story/09/11/09/1429230/Reporting-To-Executives?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/wi_T-0ljnAw/Massive-Power-Outages-In-Brazil-Caused-By-Hackers Hugh Pickens writes "CBS reports on 60 minutes that a massive two-day power outage in Brazil's Espirito Santo State affecting more than three million people in 2007, and another, smaller event in three cities north of Rio de Janeiro in January 2005, were perpetrated by hackers manipulating control systems. Former Chief of US National Intelligence Retired Adm. Mike McConnell says that the 'United States is not prepared for such an attack' and believes it could happen in America. 'If I were an attacker and wanted to do strategic damage to the United States, I would either take the cold of winter or the heat of summer,' says McConnell, 'I would probably sack electric power on the US East Coast, maybe the West Coast and attempt to cause a cascading effect.' Congressman Jim Langevin says that US power companies need to be forced to deal with the issue after they told Congress they would take steps to defend their operations but did not follow up. 'They admit that they misled Congress. The private sector has different priorities than we do in providing security. Their bottom line is about profits,' says Langevin. 'We need to change their motivation so that when see vulnerability like this, we can require them to fix it.' McConnell adds that a similar attack to the one in Brazil is poised to take place on US soil and that it may take some horrific event to get the country focused on shoring up cyber security. 'If the power grid was taken off line in the middle of winter and it caused people to suffer and die, that would galvanize the nation. I hope we don't get there.'"<p><a href="http://it.slashdot.org/story/09/11/09/0012226/Massive-Power-Outages-In-Brazil-Caused-By-Hackers?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/09/0012226"></a></p><p><a href="http://it.slashdot.org/story/09/11/09/0012226/Massive-Power-Outages-In-Brazil-Caused-By-Hackers?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/jLTjz9_vMBdXO8fNPBy4S2y5hVI/0/da"><img src="http://feedads.g.doubleclick.net/~at/jLTjz9_vMBdXO8fNPBy4S2y5hVI/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/jLTjz9_vMBdXO8fNPBy4S2y5hVI/1/da"><img src="http://feedads.g.doubleclick.net/~at/jLTjz9_vMBdXO8fNPBy4S2y5hVI/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/wi_T-0ljnAw" height="1" width="1"/> timothy 2009-11-09T00:17:00+00:00 security mongering-engine-warming-up it 458 458,446,329,256,74,39,31 http://it.slashdot.org/story/09/11/09/0012226/Massive-Power-Outages-In-Brazil-Caused-By-Hackers?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/-mxWjyMKBXA/Malware-Can-Download-Child-Porn-To-Your-Computer 2muchcoffeeman writes "The Associated Press tells the story of Michael Fiola, a former Massachusetts government employee who was arrested in 2007 after child porn was found on his state-issued laptop computer. He was eventually cleared of all charges after some digging by the defense found that the laptop was infected with malware that was 'programmed to visit as many as 40 child porn sites per minute &mdash; an inhuman feat. While Fiola and his wife were out to dinner one night, someone logged on to the computer and porn flowed in for an hour and a half. Prosecutors performed another test and confirmed the defense findings. The charge was dropped &mdash; 11 months after it was filed.' The article also discusses the technical aspects of how it could happen and about similar cases in the United Kingdom in 2003."<p><a href="http://it.slashdot.org/story/09/11/08/2135245/Malware-Can-Download-Child-Porn-To-Your-Computer?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/08/2135245"></a></p><p><a href="http://it.slashdot.org/story/09/11/08/2135245/Malware-Can-Download-Child-Porn-To-Your-Computer?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/ukySmG4BwD_KTmbpFxVz7A7q-xo/0/da"><img src="http://feedads.g.doubleclick.net/~at/ukySmG4BwD_KTmbpFxVz7A7q-xo/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/ukySmG4BwD_KTmbpFxVz7A7q-xo/1/da"><img src="http://feedads.g.doubleclick.net/~at/ukySmG4BwD_KTmbpFxVz7A7q-xo/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/-mxWjyMKBXA" height="1" width="1"/> timothy 2009-11-08T21:47:00+00:00 security where's-dexter-when-needed? it 576 576,561,427,342,81,50,34 http://it.slashdot.org/story/09/11/08/2135245/Malware-Can-Download-Child-Porn-To-Your-Computer?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/Zk3O3lh2r0U/First-iPhone-Worm-Discovered-Rickrolls-Jailbroken-Phones Unexpof writes "Users of jailbroken iPhones in Australia are reporting that their wallpapers have been changed by a worm to an image of '80s pop icon Rick Astley. This is the first time a worm has been reported in the wild for the Apple iPhone. According to a report by Sophos, the worm, which exploits users who have installed SSH and not changed the default password, hunts for other vulnerable iPhones and infects them. Users are advised to properly secure their jailbroken iPhones with a non-default password, and Sophos says the worm is not harmless, despite its graffiti-like payload: 'Accessing someone else's computing device and changing their data without permission is an offense in many countries &mdash; and just as with graffiti there is a cost involved in cleaning-up affected iPhones. ... Other inquisitive hackers may also be tempted to experiment once they read about the world's first iPhone worm. Furthermore, a more malicious hacker could take the code written by ikee and adapt it to have a more sinister payload.'"<p><a href="http://apple.slashdot.org/story/09/11/08/1411259/First-iPhone-Worm-Discovered-Rickrolls-Jailbroken-Phones?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/08/1411259"></a></p><p><a href="http://apple.slashdot.org/story/09/11/08/1411259/First-iPhone-Worm-Discovered-Rickrolls-Jailbroken-Phones?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/My1xSckYW_sNwVkZfB5QH0gfrkc/0/da"><img src="http://feedads.g.doubleclick.net/~at/My1xSckYW_sNwVkZfB5QH0gfrkc/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/My1xSckYW_sNwVkZfB5QH0gfrkc/1/da"><img src="http://feedads.g.doubleclick.net/~at/My1xSckYW_sNwVkZfB5QH0gfrkc/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/Zk3O3lh2r0U" height="1" width="1"/> Soulskill 2009-11-08T15:08:00+00:00 worms maximum-threat apple 206 206,198,157,129,45,25,14 http://apple.slashdot.org/story/09/11/08/1411259/First-iPhone-Worm-Discovered-Rickrolls-Jailbroken-Phones?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/qRWiqJZDhgA/Microsoft-COFEE-Leaked 54mc writes "Crunchgear reports that Microsoft's long-searched-for forensics tool, COFEE, has been leaked. The tool started on a small, private tracker, but has since worked its way to The Pirate Bay. Not all those who have gotten hold of it are enthused, and reviews have ranged from 'disappointing' to 'useless.' From the article: 'You have absolutely no use for the program. It's not something like Photoshop or Final Cut Pro, an expensive application that you download for the hell of it on the off-chance you need to put Dave Meltzer's face on Brett Hart's body as part of a message board thread. No, COFEE is 100 percent useless to you.'"<p><a href="http://tech.slashdot.org/story/09/11/08/1340208/Microsoft-COFEE-Leaked?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/08/1340208"></a></p><p><a href="http://tech.slashdot.org/story/09/11/08/1340208/Microsoft-COFEE-Leaked?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/9kTAOUOnzXg_rGqY-pbXLLXSA8g/0/da"><img src="http://feedads.g.doubleclick.net/~at/9kTAOUOnzXg_rGqY-pbXLLXSA8g/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/9kTAOUOnzXg_rGqY-pbXLLXSA8g/1/da"><img src="http://feedads.g.doubleclick.net/~at/9kTAOUOnzXg_rGqY-pbXLLXSA8g/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/qRWiqJZDhgA" height="1" width="1"/> Soulskill 2009-11-08T14:05:00+00:00 software not-so-hot-cofee-incident technology 171 171,165,123,87,34,21,18 http://tech.slashdot.org/story/09/11/08/1340208/Microsoft-COFEE-Leaked?from=rss http://rss.slashdot.org/~r/Slashdot/slashdotIt/~3/T7NyF84Ir88/Test-of-16-Anti-Virus-Products-Says-None-Rates-Very-Good An anonymous reader writes "AV-Comparative recently released the results of a malware removal test in which they evaluated 16 anti-virus software solutions. The test focused only on the malware removal/cleaning capabilities, therefore all the samples used were ones that the tested anti-virus products were able to detect. The main question was if the products were able to successfully remove malware from an already infected/compromised system. None of the products performed at a level of 'very good' in malware removal or removal of leftovers, based on those 10 samples."<p><a href="http://tech.slashdot.org/story/09/11/08/0233248/Test-of-16-Anti-Virus-Products-Says-None-Rates-Very-Good?from=rss"><img src="http://it.slashdot.org/slashdot-it.pl?from=rss&amp;op=image&amp;style=h0&amp;sid=09/11/08/0233248"></a></p><p><a href="http://tech.slashdot.org/story/09/11/08/0233248/Test-of-16-Anti-Virus-Products-Says-None-Rates-Very-Good?from=rss">Read more of this story</a> at Slashdot.</p> <p><a href="http://feedads.g.doubleclick.net/~at/25ns8yJ0sm_akYy6cVlE-YaZzb0/0/da"><img src="http://feedads.g.doubleclick.net/~at/25ns8yJ0sm_akYy6cVlE-YaZzb0/0/di" border="0" ismap="true"></img></a><br/> <a href="http://feedads.g.doubleclick.net/~at/25ns8yJ0sm_akYy6cVlE-YaZzb0/1/da"><img src="http://feedads.g.doubleclick.net/~at/25ns8yJ0sm_akYy6cVlE-YaZzb0/1/di" border="0" ismap="true"></img></a></p><img src="http://feeds.feedburner.com/~r/Slashdot/slashdotIt/~4/T7NyF84Ir88" height="1" width="1"/> timothy 2009-11-08T03:20:00+00:00 security keeps-the-av-people-in-business-though technology 344 344,341,272,224,54,29,18 http://tech.slashdot.org/story/09/11/08/0233248/Test-of-16-Anti-Virus-Products-Says-None-Rates-Very-Good?from=rss Search Slashdot stories query http://it.slashdot.org/search.pl