Almost forgot to post these.
- Advice for dealing with online scareware
- NYT’s site a victim of a malicious ad swap
- Update on Schneier and associates SHA-3 contest entry
- SANS study shows security folks focusing on the wrong threats
- Apple explains non-obvious steps to updating anti-phishing database
- Microsoft releases developer tools for security
- Phishers use new “chat-in-the-middle” tactics
- Following up on Mozilla’s new plugin update feature
- Distressing statistics about out of date Flash from Mozilla’s pluginupdate
- Despite Mozilla’s plugin update, many Flash installs still unpatched
- IETF drafting a standard for cleaning up botnets
- Remote exploit for Windows 7 remote BSoD released
- PBS hacked, some areas end up serving malware
- MS ships one-click workaround for remote BSoD exploit
- Criticism of encryption exemption in data breach notification rules