Hackin9
The U.S. Federal Trade Commission (FTC) has asked Google for information related to its Waze acquisition, as the agency reviews the deal, according to reports published on Saturday.
 
HAProxy CVE-2013-2175 Multiple Denial of Service Vulnerabilities
 
In the week ending 22 June – VP9 matures, LibreOffice stabilises, SCO came back, Oracle slipped up, Red Hat grew, Songbird died, and open source got a knock back from the UK government. Also features looked at Java EE 7 and how to secure web applications with CSP
    


 

We have received indication that the domain .biz DNSSEC DNSKEY is "bogus" and failing DNSSEC validation. Resolving isc.biz with VeriSign Labs indicates "None of the 5 DNSKEY records could be validated by any of the 2 DS records" and "The DNSKEY RRset was not signed by any keys in the chain-of-trust".

When we receive additional information, we will update the diary.

[1] http://dnssec-debugger.verisignlabs.com/isc.biz

-----------

Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
 
The ideas behind the NSA's spy program are built into a wide variety of tools available to everybody. Mike Elgan walks you through the steps for building your very own PRISM-like program.
 
In the week ending 22 June – VP9 matures, LibreOffice stabilises, SCO came back, Oracle slipped up, Red Hat grew, Songbird died, and open source got a knock back from the UK government. Also features looked at Java EE 7 and how to secure web applications with CSP
    


 

Facebook recently received a report that may have allowed some user information (email or phone number) to be accessed by people who either had some contact information about that person or some connection to them.

Based on their analysis, they estimate that approximately 6 million users had their email addresses or telephone numbers shared. However, they don't have any evidence this bug was exploited because they have not received any user complaints or seen strange activity related to this bug. The complete Facebook message to users is posted here.

[1] https://www.facebook.com/notes/facebook-security/important-message-from-facebooks-white-hat-program/10151437074840766

-----------

Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot edu

(c) SANS Internet Storm Center. http://isc.sans.edu Creative Commons Attribution-Noncommercial 3.0 United States License.
 

John Stossel and The Wire Creater David Simon Think NSA Spying Isn't a Big ...
Antiwar.com (blog)
Walther WA2000, HK33KE, Parker-Hale MOD. 82, AKR, Ingram MAC10, M3, L34A1, Walther MPL, AKS-74, HK-GR6, subsonic rounds, ballistic media, special forces, JFKSWC, SFOD-D! , SRT, Rewson, SAFE, Waihopai, INFOSEC, ASPIC, Information Security ...

and more »
 

SDR Security Services Specifications and CR in Public Safety Report Released ...
Einnews Portugal
The Infosec service group details interfaces for usage of cryptographic channels and TRANSEC channels. Cryptographic channels are used for transformation (i.e. encryption/decryption) of user information between security domains or within a single ...

and more »
 
Internet Storm Center Infocon Status