tetrahedrassface writes “According to the Twitter feed for Wikileaks, the attack on the controversial site is increasing and is now at 10 Gigabits per second. In light of the recent release of highly sensitive documents and calls by many lawmakers around the world to swiftly find, extradite, and try suspected rapist Julius Assange for breaches of national security, one nation, Ecuador, has offered asylum.”
Read more of this story at Slashdot.
An anonymous reader writes “Developers have released a ‘jailbreak’ tool for Microsoft’s Windows Phone 7, allowing the handsets to run any application, not just those approved for distribution through Microsoft’s Marketplace. Although reminiscent of jailbreak tools for the iPhone, this tool, called ChevronWP7, addresses a feature missing in Microsoft’s Windows Phone 7. It allows corporations to develop proprietary applications and install them on users’ handsets without the need to first place the application on Marketplace, as is currently required by Microsoft.”
Read more of this story at Slashdot.
Orome1 writes “Trusteer conducted research into the attack potency and time-to-infection of email phishing attacks. One of their findings was that 50 per cent of phishing victims’ credentials are harvested by cyber criminals within the first 60 minutes of phishing emails being received. Given that a typical phishing campaign takes at least one hour to be identified by IT security vendors, which doesn’t include the time required to take down the phishing Web site, they’ve dubbed the first 60 minutes of a phishing site’s existence is the critical ‘golden hour.’”
Read more of this story at Slashdot.
DaveNJ1987 writes “The FBI believes that one third of the world’s spam messages are being generated by one 23-year-old Russian man. Oleg Nikolaenko of Moscow is being blamed for operating the Mega D botnet that sent spam emails from over 500,000 infected computers.”
Read more of this story at Slashdot.
Trailrunner7 writes “As browser-based exploits and specifically JavaScript malware have shouldered their way to the top of the list of threats, browser vendors have been scrambling to find effective defenses to protect users. Few have been forthcoming, but Microsoft Research has developed a new tool called Zozzle that can be deployed in the browser and can detect JavaScript-based malware on the fly at a very high effectiveness rate. Zozzle is designed to perform static analysis of JavaScript code on a given site and quickly determine whether the code is malicious and includes an exploit. In order to be effective, the tool must be trained to recognize the elements that are common to malicious JavaScript, and the researchers behind it stress that it works best on de-obfuscated code.”
Read more of this story at Slashdot.
An arrest has been made in the case of the DDoS attacks against MasterCard, Visa, PayPal, and others. The Dutch police has arrested a Dutch guy [Dutch] who has already confessed to taking part in the attacks. Most likely, he is not in any way the brains behind the operation, and I’m going out on a limb here stating that these attacks will continue nonetheless. Also, I’m not the guy. Also also, I’m wondering if there’s police anywhere looking for the people who are continuously DDoS’ing WikiLeaks.
Julie188 writes “The Defense Information Systems Agency (DISA) has long supported the use of BlackBerry smartphones for soldiers. It built a system called Go Mobile to provide secure communications, training, and collaboration applications to mobile soldiers. DISA recently decided to add Android and iPhone to the list of approved devices because of high demand from users. Unfortunately, this choice has become a giant pain in the flank. Why? Because both Apple and Google refuse to give DISA access to their security APIs.”
Read more of this story at Slashdot.
alphadogg writes “As the distributed denial-of-service attacks spawned by this week’s WikiLeaks events continue, network operators are discussing what progress, if any, has been made over the past decade to detect and thwart DoS attacks. Participants in the North American Network Operators Group (NANOG) e-mail reflector are debating whether any headway has been made heading off DDoS attacks in 10 years. The discussion is occurring while WikiLeaks deals with DDoS attacks after leaking sensitive government information, and sympathizers launch attacks against MasterCard, Visa, PayPal and other significant e-commerce sites.”
Read more of this story at Slashdot.
xsee writes “A new vulnerability in the Windows kernel was disclosed Wednesday that could allow malware to attain administrative privileges by bypassing User Account Control (UAC). Combined with the unpatched Internet Explorer vulnerability in the wild this could be a very bad omen for Windows users.”
Read more of this story at Slashdot.
theodp writes “While Wikileaks itself is under a DoS attack, details about the US State Department cables obtained by WikiLeaks are starting to come out via the mainstream media. Among the most newsworthy, reports Techcrunch’s Erick Schonfeld, is one set which deals with the massive computer attack on Google and other companies which was first revealed last January. According to the NY Times, some of the new leaked cables point directly at China’s Politburo for instigating the original attacks, which should shed some more light on why the White House and State Department backed Google so vociferously at the time. Developing, as Drudge likes to say.”
Read more of this story at Slashdot.
