FEMA hack results in $12,000 phone bill

"In total there were about 400 calls made to the Middle East and parts of Asia. The calls may have continued if it weren’t for Sprint noticing what was going on and shutting down the line. An investigation is now under way to try and identify the hacker and who those calls were to." Read more...

Data breaches already surpass 2007 total

"The number of reported data breaches has already surpassed 2007's total, according to a report from Identity Theft Resource Center.

Jay Foley, the nonprofit's executive director, told SCMagazineUS.com on Tuesday that so far in 2008, there have been 449 breaches reported by businesses, government, and universities, compared to 446 for all of last year." Read more...

US border-crossing database raises concerns

"A plan by U.S. Customs and Border Protection (CBP) to collect personal information on every traveler coming into the country and keep that information in a database for 15 years could have huge privacy implications for U.S. residents, one privacy group said." Read more...

Microsoft Introduces Vi-Fi (Vehicle Wi-Fi) for Seamless Internet Connectivity and VOIP Calls on the Road

"In collaboration with University of Massachusetts and University of Washington, Microsoft has developed a new Wi-Fi wireless technology that is suitable to be used in vehicles internet and VOIP (Voice over Internet Protocol) calls. Named as Vi-Fi (Vehicle Wi-Fi), it is an improved version of existing Wi-Fi technology that is claimed to be able to provide stable signal for seamless connectivity on the move." Read more...

Top Secret Password Notepad

Finally a workable solution! ;)

Read more...

ISR-evilgrade - Inject Updates to Exploit Software

"ISR-evilgrade is a modular framework that allow us to take advantage of poor upgrade implementations by injecting fake updates and exploiting the system or software." Read more...

Revealed: The Internet's Biggest Security Hole

"Two security researchers have demonstrated a new technique to stealthily intercept internet traffic on a scale previously presumed to be unavailable to anyone outside of intelligence agencies like the National Security Agency.

The tactic exploits the internet routing protocol BGP (Border Gateway Protocol) to let an attacker surreptitiously monitor unencrypted internet traffic anywhere in the world, and even modify it before it reaches its destination." Read more...

OMB mandates use of DNSSEC in gov't agencies

"The federal Office of Management and Budget is ordering all federal agencies to deploy a standard for securing their Domain Name Systems (DNS).

DNSSEC is an Internet Engineering Task Force set of specifications that secures communication between DNS name servers and clients. DNS security was brought to the forefront this year when researcher Dan Kaminsky revealed a critical design flaw that could permit cache poisoning -- potentially allowing attackers to redirect web users to anywhere they wanted." Read more...

CSI Stick grabs data from cell phones

"There is a new electronic capture device that has been developed primarily for law enforcement, surveillance, and intelligence operations that is also available to the public. It is called the Cellular Seizure Investigation Stick, or CSI Stick as a clever acronym. It is manufactured by a company called Paraben, and is a self-contained module about the size of a BIC lighter." Read more...

Mythbusters Gagged: Credit Card Companies Kill Episode Exposing RFID Security Flaws Credit card companies successfully nixed a Mythbusters segment

"Texas Instruments comes on along with chief legal counsel for American Express, Visa, Discover, and everybody else... They were way, way outgunned and they absolutely made it really clear to Discovery that they were not going to air this episode talking about how hackable this stuff was, and Discovery backed way down being a large corporation that depends upon the revenue of the advertisers. Now it's on Discovery's radar and they won't let us go near it." Read more...

Researchers race to zero in record time

Nothing really new here but it's always good to keep this in mind...

"Three teams of security professionals made quick work of a panel of well-known viruses and attacks on Friday, turning the malicious code into benign-seeming bits that major antivirus scanners could not detect." Read more...

Telnet still tops open port list

Amazing...

"In a presentation at the DEFCON hacking conference, security researcher Fyodor, the creator of the popular Nmap port scanning tool, revealed that his latest scan of millions of Internet hosts found that too many computers are still allowing communication on the insecure Telnet port. The top-four open TCP ports, according to Fyodor, are HTTP (port 80), Telnet (port 23), SSH (port 22) and HTTPS (port 443)." Read more...

Wireless Power!

I've been waiting for this for years! Looks like I'll be waiting a few more but at least it's in the works...

"Intel on Thursday showed off a wireless electric power system that analysts say could revolutionize modern life by freeing devices from transformers and wall outlets..."

Read more...