Xerox WorkCentre PJL Daemon Buffer Overflow Vulnerability

TYPO3 Diocese of Portsmouth Calendar Unspecified SQL Injection Vulnerability

Time to Squish SQL Injection

Lazy Workers May Be Deemed Hackers

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909

The Scale of Security

Hacker-Tool Law Still Does Little

WiMax: Just Another Security Challenge?

Enterprise Intrusion Analysis, Part One

Responding to a Brute Force SSH Attack

Data Recovery on Linux and <i>ext3</i>

>> Advertisement <<
Can you answer the ERP quiz?
These 10 questions determine if your Enterprise RP rollout gets an A+.
http://www.findtechinfo.com/as/acs?pl=781&ca=909

News, Infocus, Columns, Vulnerabilities, Bugtraq ...

indiavision writes "A host of young Japanese are drawn to the allure of 'therapeutic ringtones' — a genre of melodies that promises to ease a range of day-to-day gripes, from chronic insomnia to a rotten hangover. Developed by Matsumi Suzuki, the head of the Japan Ringing Tone Laboratory, an eight-year-old subsidiary of the Japan Acoustic Laboratory, the tones are a hit with housewives as well as teenagers."

Read more of this story at Slashdot.

WeeBit writes "Researchers have different ideas as to why people fail to use security measures. Some feel that regardless of what happens, users will only do the minimum required. Others believe security tasks are rejected because users consider them to be a pain. A third group maintains user education is not working. [Microsoft Research's Cormac] Herley offers a different viewpoint. He contends that user rejection of security advice is based entirely on the economics of the process." Here is Dr. Herley's paper, So Long, And No Thanks for the Externalities: The Rational Rejection of Security Advice by Users (PDF).

Read more of this story at Slashdot.

[USN-913-1] libpng vulnerabilities

[USN-912-1] Audio File Library vulnerability

ZDI-10-032: SAP MaxDB Malformed Handshake Request Remote Code Execution Vulnerability

ZDI-10-031: Apple Webkit Blink Event Dangling Pointer Remote Code Execution Vulnerability

News, Infocus, Columns, Vulnerabilities, Bugtraq ...

SpuriousLogic passes along this excerpt from the ChiTrib: "The Feds are on Facebook. And MySpace, LinkedIn, and Twitter, too. US law enforcement agents are following the rest of the Internet world into popular social-networking services, going undercover with false online profiles to communicate with suspects and gather private information, according to an internal Justice Department document that offers a tantalizing glimpse of issues related to privacy and crime-fighting. ... The document... makes clear that US agents are already logging on surreptitiously to exchange messages with suspects, identify a target's friends or relatives and browse private information such as postings, personal photographs, and video clips. Among other purposes: Investigators can check suspects' alibis by comparing stories told to police with tweets sent at the same time about their whereabouts. Online photos from a suspicious spending spree... can link suspects or their friends to robberies or burglaries." The FoIA lawsuit was filed by the EFF, which has posted two documents obtained from the action, from the DoJ and Internal Revenue (more will be coming later). The rights group praises the IRS for spelling out limitations and prohibitions on deceptive use of social media by its agents — unlike the DoJ. The US Marshalls and the BATFE could not find any documents related to the FoIA request, so presumably they have no guidelines or prohibitions in this area.

Read more of this story at Slashdot.

JoshuaInNippon writes "Four major Japanese car manufacturers and one power company (Mitsubishi, Nissan, Subaru, Toyota, and Tokyo Electric) have teamed up with over 150 business and government entities in Japan to form a group to promote standardization in electric vehicle chargers and charging stations. The group hopes to leverage current Japanese electric vehicle technology and spread standardization throughout the country, as well as aim towards worldwide acceptance of their standardized charger model. In a very Japanese manner, the group has decided to call themselves 'CHAdeMO,' a play on the English words 'charge' and 'move,' as well as a Japanese pun that encourages tea-drinking while waiting the 15+ minutes it will take to charge one's vehicle battery."

Read more of this story at Slashdot.