Hackin9

InfoSec News

A small Silicon Valley company is suing Apple, alleging the computer maker infringed its patent covering noise-reduction technology for cell phones.
 
By offering users of Windows 7, XP and Vista discounts to upgrade to Windows 8, Microsoft is putting itself in a position to reap both benefits and criticism in the consumer operating system market.
 
Microsoft on Friday said it has fully restored its Xbox Live service after problems prevented an undetermined number of users from logging into the online gaming service.
 
A court-appointed damages expert who served in the intellectual-property suit Oracle lodged against Google over the Android mobile OS could receive nearly $2 million in compensation, according to court filings late Thursday in U.S. District Court for the Northern District of California.
 
Yahoo and Facebook have settled a patent dispute, according to a statement Facebook released Friday afternoon.
 
Twitter will bolster search functionality to automatically complete users' queries and suggest related search terms, among other improvements announced in a blog post on Friday.
 
A U.S. Federal Communications Commission cap on rural telephone subsidies will cost jobs in rural areas and lead to higher prices for customers in those areas, a group of rural carriers said.
 

GovInfoSecurity.com (blog)

Infosec Job Growth Appears to Be Flat
GovInfoSecurity.com (blog)
Information security isn't just the domain of those branded information security professionals but also requires the knowledge of nearly every other IT occupation as well as individuals in many non-technology jobs, too.

and more »
 
The Toshiba Qosmio X870-11Q is a 17.3in high-spec desktop replacement laptop, boasting a third-generation Intel Ivy Bridge processor, dedicated nVidia graphics and active-shutter 3D display technology. Read reviews of high-end laptops.
 
The Gamecom 780 is the latest gaming headset from Plantronics featuring a retro design and Dolby Digital virtual 7.1 surround sound.
 
The demand for information security professionals, which already high, will surge in the next few years. Finding trained security professionals to meet the demand will be challenging, but businesses can ease the burden by training developers to write more secure code.
 
Cisco Systems has taken a step back from its Cisco Connect Cloud service, removing it as the default setting for management of its Linksys EA Series Wi-Fi routers after a firestorm of complaints from customers about automatic firmware updates and the service's terms of service.
 
Accusations that an Android-based botnet is spewing spam may, in fact, be no such thing, but instead a sign that criminals are exploiting bugs in the Yahoo Mail app for Google's mobile operating system, a security firm said today.
 
An undetermined number of users of Microsoft's Xbox Live gaming service are having difficulties accessing the online gaming service, and the company said on Friday that it is working to resolve the issue.
 
A new approach to mobile Internet protocols could improve the usability and reliability of mobile applications.
 
Re: Basilic RCE bug
 
MIT Kerberos 5 'check_1_6_dummy()' Function NULL Pointer Dereference Denial Of Service Vulnerability
 
Amazon is keeping busy as the e-retailing company is reportedly prepping to release four new tablets and a smartphone.
 
Intel this week presented an array of arguments to the E.U. General Court against a massive a $1.33 billion fine imposed by Europe's antitrust regulators.
 
[ MDVSA-2012:102 ] krb5
 
KPN closed a self-service portal for corporate ADSL customers on Tuesday after it discovered that 120,000 of its 180,000 business clients were still using default passwords, all variants of "welkom01," a company spokesman said Friday.
 
Facebook has taken a stake in a $450 million project to link South Asian countries with an undersea cable, a company spokeswoman said Friday. The project is expected to be ready some time in 2014.
 
Privacy advocates this week said they are dismayed, but not surprised about a New York Criminal Court judge's decision ordering Twitter to hand over all the data it has on an Occupy Wall Street protester being investigated for disorderly conduct.
 
As many as 300,000 PCs and Macs will drop off the Internet in about 65 hours unless their owners heed last-minute calls to scrub their machines of malware.
 
Like 2009, this year is one of dueling operating system upgrades, when the two biggest OS rivals face off with new editions.
 
Mozilla Foundation and other activist groups such as the Electronic Frontier Foundation have called for the release of Bassel Khartabil, an open-source developer who was detained on March 15 in the Mazzeh district of Damascus in a wave of arrests.
 
Chinese e-commerce giant Alibaba Group said on Thursday a former general manager in charge of its group-buying website had been detained by local police on suspicions of accepting bribes.
 
Apple has become the target of another lawsuit in China, this time because of its Siri technology, with a Shanghai-based company alleging that Apple has infringed on a patent involving its own personal assistant software.
 
A group that monitors IT help wanted ads claims that there are many job ads specifically designed to recruit visa holders and not U.S. workers, a practice it charges is discriminatory.
 

Posted by InfoSec News on Jul 06

http://www.wired.com/threatlevel/2012/07/tenenbaum-sentenced/

By Kim Zetter
Threat Level
Wired.com
July 5, 2012

Ehud Tenenbaum, aka "The Analyzer," was quietly sentenced in New York
this week to time served for a single count of bank-card fraud for his
role in a sophisticated computer-hacking scheme that federal officials
say scored $10 million from U.S. banks.

He was also ordered to pay restitution in the amount of $503,000 and...
 

Posted by InfoSec News on Jul 06

http://www.nextgov.com/cybersecurity/2012/07/fbi-cyber-posse-goes-back-school/56632/

By Aliya Sternstein
Nextgov.com
July 5, 2012

The FBI is sending its cyber squad back to school to earn special
certifications, according to a contract notice stating the SANS
Institute will teach the 38-course curriculum.

The new syllabus, called the Cyber Career Path Program, was prompted by
“a greater need within the FBI for cyber investigators with...
 

Posted by InfoSec News on Jul 06

http://www.darkreading.com/database-security/167901020/security/news/240003263/seemingly-insignificant-sql-injections-lead-to-rooted-routers.html

By Ericka Chickowski
Contributing Writer
Dark Reading
July 05, 2012

Low-priority databases containing temporary network workload information
could be a perfect vector for simple SQL injection attacks that can lead
to outright domination of WiFi routers given the right chain of attack,
warns a Black...
 
RETIRED: Microsoft Lync CVE-2012-1858 HTML Sanitizing Information Disclosure Vulnerability
 
Microsoft Internet Explorer And Microsoft Lync HTML Sanitizing Information Disclosure Vulnerability
 

Posted by InfoSec News on Jul 06

http://articles.chicagotribune.com/2012-07-03/news/chi-police-hacker-lemont-tornado-siren-20120703_1_tornado-sirens-sound-warning-radio-signal

By Ryan Haggerty
Chicago Tribune reporter
July 03, 2012

Lemont police suspect that someone hacked into the village’s tornado
siren system, causing all seven sirens to sound for about 30 minutes,
Police Chief Kevin Shaughnessy said today.

Three sirens were activated inexplicably in Evanston at 7:30...
 

Posted by InfoSec News on Jul 06

http://fcw.com/articles/2012/07/02/nist-cyber-center-donna-dodson.aspx

By Camille Tuutti
FCW.com
July 02, 2012

The National Institute of Standards and Technology has opened the doors
to a brand-new cybersecurity center of excellence to bring together
experts from different sectors to create, test and implement
cybersecurity solutions and promote their adoption.

The National Cybersecurity Center of Excellence will be a hub where NIST...
 
Internet Storm Center Infocon Status