It's our annual scare-the-bejesus out of ourselves episode, wherein we discuss all of the scary things that were announced and demonstrated at DefCon this year. Seriously, DefCon is way past phone phreaking and seriously into national security right now. Yikes. Also, new Apple jailbreaks are available, the BlackBerry doesn't pass Middle Eastern muster, and we've got the ultimate solution to Internet privacy concerns: data locavores.Subscribe: iTunes (MP3) | iTunes (320x180) | iTunes (640x360) | RSS (MP3) | RSS (320x180) | RSS (640x360)… Read more
Last year, a security researcher was forced to cancel his talk scheduled for two hacker conferences about weaknesses in ATM software after the ATM vendor complained.
"I've always liked the scene in "Terminator 2" where John Connor walks up to an ATM, interfaces his Atari to the card reader and retrieves cash from the machine. I think I've got that kid beat," Barnaby Jack, who works for … Read more
Security researcher and former Microsoft gadfly Marc Maiffret has returned to the company he started when he was a teenager, eEye Digital Security.
Maiffret had been serving as chief security architect at antimalware firm FireEye since December and will remain on the company's technical advisory board, Maiffret said in an interview on Monday.
"I'm coming back to eEye as chief technology officer to lead the overall technology vision and be involved in day-to-day stuff on the research front," he said.
Asked why he was returning to the company he started in 1998 when he was a … Read more
Google has plugged a hole hackers used Sunday morning to festoon YouTube videos with off-color pop-ups and adult-site redirects, according to a news outlet.
Hackers took advantage of a cross-site scripting vulnerability that enabled them to insert code onto the popular video site's viewer-comments pages, IDG News Service said in a report. The hackers apparently had it in for Justin Bieber, focusing on clips related to the teen pop star, who's set to appear Sunday night on an NBC television celebration of the Fourth of July and who's reportedly one of the most popular attractions on YouTube. … Read more
An investigation that the Federal Trade Commission launched into Twitter's allegedly lax security practices following two high-profile hacking incidents last year has been settled, the company announced Thursday.
Twitter general counsel Alexander MacGillivray, who joined the company last summer after serving as a member of Google's legal team, posted an entry on the company blog Thursday explaining the situation. "Early in 2009, when Twitter employed less than 50 people, we faced two different security incidents that impacted a small number of users," the post explained. "Put simply, we were the victim of an attack and … Read more
A hacker involved in the disclosure of a security flaw in an AT&T iPad-related Web site was released from an Arkansas jail Thursday after posting a $3,160 bond on felony drug possession charges, authorities said.
Andrew Auernheimer, 24, was arrested Tuesday after officials searching his Fayetteville, Ark., home on an FBI search warrant said they found less than a gram of cocaine, one ecstasy pill, 19 tabs of LSD, and some Oxycodone. They also allegedly found a different pharmaceutical classified as schedule 3, which makes it a misdemeanor.
FBI officials would not say whether or not the … Read more
In a rush to take advantage of U.S. stimulus money, utilities are quickly deploying thousands of smart meters to homes each day--smart meters that experts say could easily be hacked.
The security weaknesses could potentially allow miscreants to snoop on customers and steal data, cut off power to buildings, and even cause widespread outages, according to a number of experts who have studied the meters and looked into smart-grid systems. A new paper out of the University of Cambridge highlights privacy concerns from smart meters, as well as security risks caused by linking home-area networks, of which smart meters … Read more
commentary If you are an iPad 3G user, it's possible that your e-mail address is in the hands of malicious hackers who could send you e-mails with malware targeted to infect your device. There's also the possibility--albeit much slimmer--that someone could use the serial number for your device to get more information on you and even track your whereabouts.
Ubisoft's always-on digital rights management solution, dubbed the "Online Services Network," has apparently been circumvented by hackers. News of its arrival on peer-to-peer file-sharing networks began circulating in places like social-news site Reddit Wednesday morning.
The DRM, which now ships with every new PC game made by Ubisoft, requires that gamers have a constant connection to the Internet in order to play their games. The security feature caused a large backlash by users for its inclusion in Ubisoft's Assassin's Creed 2 title, which was released last month.
The hack itself removes the DRM entirely and … Read more