Security News (updated throughout the day)

• Vuln: News Manager Multiple Remote Vulnerabilities
• Vuln: Web Slider 'admin' Cookie Parameter Authentication Bypass Vulnerability
• Vuln: Multi-Page Comment System 'CommentSystemAdmin' Cookie Parameter Authentication Bypass Vulnerability
• Vuln: Rantx 'admin.php' Unauthorized Access Vulnerability
• Bugtraq: ZDI-08-025: Symantec Altiris Deployment Solution Domain Credential Disclosure Vulnerability
• Bugtraq: ZDI-08-024: Symantec Altiris Deployment Solution SQL Injection Vulnerability
• Bugtraq: SunShop Version 3.5.1 Remote Blind Sql Injection
• Bugtraq: Debian generated SSH-Keys working exploit
• More rss feeds from SecurityFocus

Security - RSS Feeds
Security - RSS Feeds

• Yahoo Search Security Beta Draws Complaints
• Botnet Installs SQL Injection Tool
• CA Expands IAM Reach with Reseller Deal
• New Technologies Help Improve SOA Security
• CME RIP

Network World on Privacy
Latest privacy news and analysis from NetworkWorld.com.

• Facebook, states agree to boost efforts to protect children
• Google takes Street View snaps in Paris; lawsuits may follow
• Facebook partners with AGs for kids' safety
• Internet Archive challenges FBI's secret records demand
• Security ahead of risk at the border
• Safest way to bank online? Your cell phone
• Stop thieves from stealing your laptop
• Privacy advocates: Court posting personal data in documents
• U.K. agency disciplines staff over unauthorized data access
• Anonymizer acquired by risk-mitigation firm

• Sorry, no items found in the RSS file :-(

• Sorry, no items found in the RSS file :-(

SecurityFocus News
SecurityFocus is the most comprehensive and trusted source of security information on the Internet. We are a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community, from end users, security hobbyists and network administrators to security consultants, IT Managers, CIOs and CSOs.

• News: Admins warned of brute-force SSH attacks
• News: Groups warn travelers to limit laptop data
• News: Patches pose significant risk, researchers say
• News: U.S. gov't pushes cybersecurity at con
• Brief: TJX completes Mastercard breach settlement
• Brief: Weakness in Debian undermines crypto
• Brief: Microsoft patches database, Office flaws
• Brief: U.S. military to build botnet?
• News: Thoughts of a Teenage Bot Master
• News: Radio Free Europe hit by DDoS attack
• News: Flash vuln fells Vista
• News: Estonia fines man for DDoS attacks
• News: Nigeria enlists Microsoft to fight spam scammers
• News: Cross-Site Scripting Worm Hits MySpace
• News: Another data security bill in the works
• News: FTC sues company over spyware
• Infocus: Integrating More Intelligence into Your IDS, Part 2
• Infocus: Integrating More Intelligence into Your IDS, Part 1
• Infocus: A Guide to Different Kinds of Honeypots
• Infocus: Proactively Managing Security Risk
• Dave Aitel: Thinking Beyond the Ivory Towers
• Mark Rasch: Click Crime
• Jamie Reid: Just Who's Being Exploited?
• Mark Rasch: On the Border
• More rss feeds from SecurityFocus

CERT/CC
At the CERT Coordination Center, we study Internet security vulnerabilities and incident activity, research security and survivability in wide-area networked computing, and develop information to help you improve security at your site.

Computerworld Viruses News
Computerworld.com's award-winning Web site offers IT pros continually updated news stories, as well as features, analysis pieces, opinions and research/resource materials on important technology issues. With a heavy focus on technology users, the site serves as a resource for IT professionals looking to improve business operations -- and their own careers -- by successfully deploying and managing technology.

• Spam Spikes: A Real Risk to Your Business
• Oklahoma State breach points to ongoing higher-ed security challenges
• Tools circulate that crack Debian, Ubuntu keys
• Microsoft ballyhoos Vista's lower patch count
• Computerworld presents a 100% free and online security event today!
• Phishing botnet expands by hacking legit sites
• More Viruses News...

LinuxSecurity.com - Security Advisories
The central voice for Linux and Open Source security news.

• Ubuntu: OpenVPN regression
• Gentoo: OpenOffice.org Multiple vulnerabilities
• Ubuntu: OpenSSH update
• Debian: New gforge packages fix insecure temporary files
• Gentoo: libid3tag Denial of Service
• Debian: New openssh packages fix predictable randomness

Apple Hot News
Hot News provided by Apple.

• Time Capsule off to a great start
• Apple Retail Store, Boylston Street, opens May 15
• HBO programming now available on iTunes
• Apple Executives to Showcase OS X Development Platforms at WWDC
• Quick Tip of the Week: Taking advantage of .Mac Sync
• Delivering automatic, constant, complete, wireless backups
• Creating Algorithmic Art on a Mac
• Now playing on iTunes U: TERRA
• Time Capsule can save digital heirlooms
• Deadline nears for Apple Design Awards 2008
• Pro Tip of the Week: Browsing privately in public
• Macworld awards “stunning” 24-inch iMac a 4.5-mouse rating
• Nik Software ships Viveza plug-in for Aperture 2.1
• Quick Tip of the Week: Using iChat to transfer files
• Xserve “carries pervasive big iron design to the mainstream”
• Discovering the cure for computer headaches
• Enjoy Tribeca 2008 Filmmaker Talks
• Looking for a last minute Mother’s Day Gift?
• Mobile News Network now available for iPhone
• Mac OS X Leopard Server caters to small business

Stupid Security
Exposing Fake Security Since 2003

• It Is Secure 'cos It Looks Secure
• Nice laptop... let's see
• Federal Air Marshals on No-Fly List
• No taking pictures at Amtrak's Union Station (but please enter our station photo contest)
• 'Twas The Season
• Steve Jobs Made Me Miss My Flight
• TSA Insists on Opening Clear Sterile Wrap
• TSA Gangstas
• Help TSA and Get Charged
• Taking Pictures of Your Grandchildren Is A Security Risk