SecurityFocus

Researcher busts into Twitter via SSL reneg hole
Dan Goodin, The Register, 2009-11-16
A Turkish grad student devises a serious, real-world attack on Twitter that targeted a recently discovered vulnerability in the secure sockets layer (SSL) protocol.

No cyberwar yet, but soon, says firm
News Brief, 2009-11-17
In its latest report on cybersecurity, McAfee argues for public discussion of the policy issues surrounding cyberwarfare.

Survey: Majority of Web sites vulnerable
News Brief, 2009-11-16
Nearly two-thirds of Web sites have at least one serious security issue that would allow someone to remotely attack the site, a study carried out by WhiteHat Security finds.

Security firm chokes sprawling spam botnet
Microsoft fixes kernel, Office flaws
iPhone worm spreads via default password
Point-and-click forensics tool leaks to Net
Gov't warns firms about online robberies
Vulnerability sales help secure Microsoft

In the Headlines

Mozilla Locks Out Rogue Firefox Add-Ons • Bill would Ban P2P Use on Federal Networks, PCs • Three Basic Steps to Thwart Most Cyberattacks, Courtesy of NSA • Zeus: Same Criminal, New Spam Infrastructure • Sizing Botnets No Exact Science