Customsoft

alphadogg tips this IDG News report: "'I forward this file to you for review. Please open and view it.' As a ploy to get a hapless EMC recruiter to open up a booby-trapped Excel spreadsheet, it may not be the most sophisticated piece of work. But researchers at F-Secure believe that it was enough to break into one of the most respected computer security companies on the planet, and a first step in a complex attack that ultimately threatened the security of major U.S. defense contractors including Lockheed Martin, L-3, and Northrop Grumman.

An anonymous reader writes "Marcia Hofmann, senior staff attorney at the EFF, gives more information on the first known seizure of equipment in the U.S. due to a warrant executed against a private individual running a Tor exit node. 'This spring, agents from Immigration and Customs Enforcement (ICE) executed a search warrant at the home of Nolan King and seized six computer hard drives in connection with a criminal investigation. The warrant was issued on the basis of an Internet Protocol (IP) address that traced back to an account connected to Mr.

angry tapir writes "Facebook has proven to be one of the biggest dangers in keeping undercover police officers safe, due to applications such as facial recognition and photo tagging, according to an adjunct professor at ANU and Charles Sturt University.

alphadogg writes "MIT researchers have devised a protocol to flummox man-in-the-middle attacks against wireless networks. The all-software solution lets wireless radios automatically pair without the use of passwords and without relying on out-of-band techniques such as infrared or video channels. Dubbed Tamper-evident pairing, or TEP, the technique is based on understanding how man-in-the-middle attacks tamper with wireless messages, and then detects and in some cases blocks the tampering.

JohnBert writes with this news from ComputerWorld, which reports that "Twitter is slowly turning on automatic encryption on its website, a move following other major providers of web-based services to thwart account hijacking over wireless networks. Twitter has offered an option for users to turn on SSL (Secure Sockets Layer) encryption, but said on Tuesday that it will turn the feature on by default for some users.

jfruhlinger writes "Hurricane Irene is bearing down on the heavily populated U.S. Northeast Corridor. If you work in IT, you know that there are few things that are worse for electronics than water; so, what's your plan?

jrepin writes "One midsummer's night, a student at the University of Helsinki posted a query to the newsgroup comp.os.minix asking, 'What would you like to see most in minix?' The student's name was Linus Torvalds, and that Usenet post was the beginning of the Linux operating system. The date was 25 August 1991, exactly 20 years ago today. In 1991 Unix had existed for about 20 years, Apple had come out with its Mac OS in 1984, and Microsoft had been flogging Windows since 1985. Torvalds' ambitions for his 'new (free) operating system' were modest.

CWmike writes "Developers of the Apache open-source project warned users of the Web server software on Wednesday that a denial-of-service (DoS) tool is circulating that exploits a bug in the program. 'Apache Killer' showed up last Friday in a post to the 'Full Disclosure' security mailing list. The Apache project said it would release a fix for Apache 2.0 and 2.2 in the next 48 hours. All versions in the 1.3 and 2.0 lines are said to be vulnerable to attack. The group no longer supports the older Apache 1.3.

wiredmikey writes "In their most recent intelligence report, Symantec researchers pointed out a massive increase in the amount of boot time malware striking users, noting there have already been as many new boot time malware threats detected in the first seven months of 2011 as there were in the previous three years. Also known as MBR (master boot record) threats, the malware infect an area of the hard disk that makes them one of the first things to be read and executed when a computer is turned on.

swandives writes "Imagine what would happen if all the Google engineers turned rogue and held the world's Gmail accounts to ransom. Or if aliens attacked earth and wiped California off the map. Seems the folks over at Google's enterprise division have already considered these scenarios. CIO is running an article, as part of a larger interview with Google Enterprise director of security, Eran Feigenbaum.