Flaw auction site highlights disclosure issues
WabiSabiLabi gets mixed reviews, but security pros agree that interesting times are ahead.
Fast flux foils bot-net takedown
Malicious coders are increasingly playing a shell game, using a technology known as "fast flux" to make locating key servers more difficult.
Lawmakers worry over gov't network breaches
Hearings on the Hill reveal a significant number of security breaches at the Departments of Commerce, Defense, Homeland Security, State and Energy.
Amero case spawns effort to educate
Following a judge's ruling to throw out a verdict based on faulty digital forensics, a group of security professionals, legal experts and educators look to the future.
Group: Anti-hacking laws can hobble Net security
A working group of security researchers, digital-rights activists and government prosecutors discuss whether bug hunters can find vulnerabilities in Web sites without violating laws.
Judge nixes teacher's conviction on porn pop-ups
A Connecticut judge grants a new trial for substitute teacher Julie Amero, saying that forensics information discovered after her conviction has direct bearing on her case.
Zero-day sales not "fair" -- to researchers
A security analyst tries his hand at selling two vulnerabilities and finds that economics and time are against him.
Insecure plug-ins pose danger to Firefox users
A security researcher warns that an insecure update mechanism for some of the open-source browser's third-party add-ons could allow an attacker the ability to install malicious code.
Peer-to-peer networks co-opted for DOS attacks
Attackers compromise the hub servers of the DC++ peer-to-peer network, turning hundreds of thousands of clients into hard-to-stop distributed denial-of-service attacks.
"Data storm" blamed for nuclear-plant shutdown
A Congressional committee calls for the Nuclear Regulatory Commission to further investigate the cause of excessive network traffic that shut down an Alabama nuclear plant.