Blog

SophosLabs: Is it possible to fight Anonymous? The movement is proud of saying that an idea can’t be arrested or killed, but it seems like the Boston Police Department has thought of one way of fighting back: sarcasm. A week ago, the BPDNews.com website which provides news about the Boston police and crime in the area was hacked by Anonymous. The hackers replaced the home page of the site with a message and a video of American rapper KRS-One performing his song “Sound of Da Police”. ...

The H-Online: The Debian developers have pointed out, in an announcement on the debian-announce mailing list, that – three years after it was released –Debian GNU/Linux 5.0 (Lenny) has reached its “End of Life”. Debian GNU/Linux 5.0 was originally released in February 2009 and on 6 February 2012, the developers stopped providing security updates for that version of the distribution. Users have now had a year to update their systems to Lenny’s successor, Squeeze, which was released on 6 February 2011. The Debian developers recommend that any installations that are still using Debian 5.0 should be updated to version 6 of the distribution immediately. The Debian community recently released version 6.0.4 of Debian Squeeze which includes all the updates that have been released for Squeeze since its release.

The Hacker News: Latest Notification in The Hacker News Vault by a Hacker named “Xenu (Casi)” from r00tw0rm Team that There are 63 Blind SQL injection Vulnerabilities exist on United Nation’s Website (www.un.org). Blind SQL injection is identical to normal SQL Injection except that when an attacker attempts to exploit an application rather then getting a useful error message they get a generic page specified by the developer instead. This makes exploiting a potential SQL Injection attack more difficult but not impossible. An attacker can still steal data by asking a series of True and False questions through sql statements. ...

Mashable: Google planned to open its first-ever public store at its European headquarters in Dublin, if you believed a rumor reported by Bloomberg. But according to a company spokesperson, no plans are definite right now. A Google planning application for an expansion of its Dublin office indicated plans for an employee swimming pool, a restaurant and a store. But Google says the company doesn’t have plans to get into the retail business right now. ...

Mashable: Lonely hearts seeking love this Valentine’s Day, be wary. Online dating fraud rose by 150% percent in 2011 as scammers and hucksters turned up the false charm and predatory trolling. That’s according to data shared with Mashable by fraud protection agency Iovation, which works with several major Internet dating services. Iovation reached that number by employing patented technology that analyzes hardware and software, rather than mine for personal information, says Molly O’Hearn, vice president of operations. ...

Mashable: LinkedIn on Thursday announced it has 150 million members in its network, a 20 million increase over November. The figure was disclosed in a press release the company issued Thursday announcing its fourth quarter and full-year 2011 results. The company posted revenues of $167.7 million, beating the analysts’ consensus of $160 million for Q4. Adjusted profit was $0.12 cents per share, which beat analysts’ projections of 7 cents a share. LinkedIn’s stock was up more than 5% in after-hours trading. ...

SophosLabs: Can hackers really cause as much bloodshed as 353 Imperial Japanese Navy fighters, bombers and torpedo planes launched from six aircraft carriers? Can hackers really kill 2,402 U.S. citizens, leave 1,282 wounded, lose 65 of their own attackers in the process, and plunge the United States into a World War? Heaven only knows. Maybe they can. The lack of security around Supervisory Control And Data Acquisition (SCADA) systems is scary. ...

Washington Post wrote: TEHRAN — Whenever an Iranian blogger, connects to the Internet from his office, they switches on a special connection that for years would bypass the Islamic republic’s increasingly effective firewall. But recently the software, which allowed them to go online through portals elsewhere in the world, stopped working. When it sporadically returns, speeds are so excruciatingly slow that sites such as Facebook become unusable. [SNIP] Many fear that the disabling of the software used to bypass the state-run firewall heralds the coming of what authorities have labeled the National Internet. The government’s technology officials have announced the construction of a domestic Internet network comparable to an office intranet, which would block many popular sites. They have hinted the National Internet can be launched at any time, and have said it will gradually start working over the coming three years. ...

The H-Online: Hackers operating under the name Swagg Security have said they were responsible for breaching the security of Chinese electronics manufacturer Foxconn. In a posting on Pastebin, the group took credit for penetrating the systems, noting that “Foxconn did have an appropriate firewall, but fortunately to our intent, we were able to bypass it almost flawlessly”. The posting pointed to a 6.5 MB torrent on The Pirate Bay which contained what appears to be CSV file dumps of database tables and other text files. The files included lists of what look like customer names, accounts and plain text passwords though many of those passwords are “foxconn” or “foxconn2”. ...

Windows Experience Blog wrote: If you’ve been reading the blog lately, you know that I’m trying to bring back Valentine’s Day as a cool hip holiday. It’s not my fault; really, I’m just a sucker for a love note. The best thing about a Valentine’s Day card, to be honest, isn’t the words (they are always cheesy) – it’s the thought. With that thought in mind, we headed to the wilderness to create this card for you. ...