Slashdot Mirror

An anonymous reader writes "Verizon today announced that the approximately 45,000 wireline employees represented by the CWA and IBEW that have been on strike will return to work beginning Monday night, August 22nd, without new collective bargaining agreements. Since the strike began two weeks ago, Verizon has been battling criminal acts of sabotage against its network facilities and union picketers intimidating non-union replacement workers and illegally blocking garage and work center entrances. One union picketer even went as far as to instruct his young daughter to stand in front of a Verizon truck to illegally block it from coming back to a Verizon work center in New Jersey. Verizon said the wireline employees now on strike would be working under the terms of the contracts that expired on Saturday, August 6th. The contracts will be extended with no specific deadline for achieving new collective bargaining agreements so that the parties can take the time required to resolve the critical issues, the company said."

An anonymous reader writes "Verizon today announced that the approximately 45,000 wireline employees represented by the CWA and IBEW that have been on strike will return to work beginning Monday night, August 22nd, without new collective bargaining agreements. Since the strike began two weeks ago, Verizon has been battling criminal acts of sabotage against its network facilities and union picketers intimidating non-union replacement workers and illegally blocking garage and work center entrances. One union picketer even went as far as to instruct his young daughter to stand in front of a Verizon truck to illegally block it from coming back to a Verizon work center in New Jersey. Verizon said the wireline employees now on strike would be working under the terms of the contracts that expired on Saturday, August 6th. The contracts will be extended with no specific deadline for achieving new collective bargaining agreements so that the parties can take the time required to resolve the critical issues, the company said."

wiredmikey writes "Sometimes hacking is about money; other times, it's about competition, and when that happens, it is also about getting a little credit. Enter RankMyHack.com. The site is described as the world's 'first elite hacker ranking system,' and invites people to submit proof of their Website hacks in exchange for points — the higher the points, the higher the place on the leader board. In order to get ranked, hackers need to prove they have indeed hacked a site – by inserting a predetermined text into the hacked site page. Rankmyhack then scans for the text in the page and gives score based on how popular the website is, with lower points awarded for XSS attacks. Assuming the site is real – and early reports indicate that it is – hackers can now see where their hacks stack up against those of their peers. Will this morph into a playground for hacktivists to hone their skills?"

wiredmikey writes "Amazon Web Services today announced 'AWS GovCloud,' a new AWS Region designed to allow U.S. government agencies and contractors to move IT applications and systems into the cloud by addressing their specific regulatory and compliance requirements. Previously, government agencies with data subject to Compliance regulations such as the International Trade and Arms Regulation (ITAR), which governs how organizations manage and store defense-related data, were unable to process and store data in the cloud that the federal government mandated be accessible only by U.S. persons. AWS said that it will screen customers prior to providing access to the AWS GovCloud, helping to ensure customers are 'U.S. Persons,' not subject to export restrictions."

wiredmikey writes "The SpyEye malware kit has long been both the bane of unsuspecting victims and a boon for cyber-criminals. Now, according to security researchers, the situation may have taken a turn for the worse. The SpyEye Builder patch source code for release 1.3.45 was leaked by the Reverse Engineers Dream Crew (RED Crew) recently after a crew member was able to locate a copy of SpyEye Builder 1.3.45 and create a tutorial that enables a reader with SpyEye Builder to crack the hardware identification."

wiredmikey writes "A recent survey which included responses from 800 engineers and developers that work on embedded devices revealed that 24% of respondents knew of security problems in their company's products that had not been disclosed to the public before the devices were shipped. But just what that means in terms of attitudes towards security may be more complex than it seems. Additionally, just 41% said their company has 'allocated sufficient time and money to secure' its device products against hacks and attacks. Despite this, 64 percent felt that when engineers call attention to potential security problems, 'those problems are addressed before the device is released.' So, what exactly does this illustrate about the state of security in the development process? The answer, some say, is a jumbled collage of business pressures, bug prioritization and varying attention to security."

wiredmikey writes "A hacker who had been found with more than 675,000 stolen credit card numbers that reportedly led to losses totaling more than $36 million, was sentenced on Friday to 120 months in prison. After pleading guilty on April 21, 2011, Rogelio Hackett Jr., 25, of Lithonia, Georgia, was slapped with a maximum prison sentence and ordered to pay a $100,000 fine. According to court documents, U.S. Secret Service special agents executing a search warrant in 2009 at Hackett's home found more than 675,000 stolen credit card numbers and related information in his computers and email accounts. Hackett admitted in a court filing that since at least 2002, he has been trafficking in credit card information he obtained either by hacking into business computer networks and downloading credit card databases, or purchasing the information from others using the Internet through various carding forums."

wiredmikey writes "A hacker who had been found with more than 675,000 stolen credit card numbers that reportedly led to losses totaling more than $36 million, was sentenced on Friday to 120 months in prison. After pleading guilty on April 21, 2011, Rogelio Hackett Jr., 25, of Lithonia, Georgia, was slapped with a maximum prison sentence and ordered to pay a $100,000 fine. According to court documents, U.S. Secret Service special agents executing a search warrant in 2009 at Hackett's home found more than 675,000 stolen credit card numbers and related information in his computers and email accounts. Hackett admitted in a court filing that since at least 2002, he has been trafficking in credit card information he obtained either by hacking into business computer networks and downloading credit card databases, or purchasing the information from others using the Internet through various carding forums."

wiredmikey writes "The results of a recent survey released today by Men's Health Network found that shift workers, people who work non-traditional hours including IT professionals working overnight shifts, report that these shifts are negatively impacting their health, work, well-being, and quality of life. The survey revealed that the majority of shift workers (79%) believe that they are negatively impacted by their shift work and voiced daily concern over their energy level (47%), weight (43%), and their sex lives (30%). Additionally, the survey showed that the average shift worker hasn't had a meal with their family in two weeks or exercised in 24 days. The results of this survey really shouldn't be surprising. While the survey infers that shift workers may be overweight, the issue extends far beyond and into the general population of the United States, including children. Childhood obesity is at an all time high in America, so this issue isn't just related to the night shift."

wiredmikey writes "Domain name registrar and Web hosting provider GoDaddy, announced it has agreed to receive a strategic investment from private equity firms KKR, Silver Lake and Technology Crossover Ventures. The terms of the transaction were not disclosed, but the Wall Street Journal reported people familiar with the deal saying it could be worth approximately $2.25 billion. The Scottsdale, Arizona based company which has built its marketing around scantly-clad women, manages more than 48 million domain names."

wiredmikey writes "Andrew Jaquith has written a great analysis of lessons learned from the recent RSA Cyber Attack, from a customer's perspective. According to Jaquith, in the security industry, 'trust' is a somewhat slippery concept, defined in terms ranging from the cryptographic to the contractual. Bob Blakley, a Gartner analyst and former chief scientist of Tivoli, once infamously wrote that 'Trust is for Suckers.' What he meant is that trust is an emotional thing, a fragile bond whose value transcends prime number multiplication, tokens, drug tests or signatures — and that it is foolish to rely too much on it. Jaquith observed three things about the RSA incident: (1) even the most trusted technologies fail; (2) the incident illustrates what 'risk management' is all about; and (3) customers should always come first."

wiredmikey writes "HR and Payroll outsourcing giant Automatic Data Processing, Inc. (ADP) experienced a system intrusion, the company announced Wednesday. ADP said it was investigating and taking measures to address the impact of a system intrusion that occurred with a client at Workscape, a benefits administration provider that ADP acquired in August 2010. ADP has also been actively cooperating with law enforcement to determine the cause of this incident and to assist authorities in identifying and apprehending those responsible. ADP added the following in a statement: 'Because this incident is the subject of an ongoing law enforcement investigation, ADP cannot disclose any additional details at this time. ADP will provide further updates once information that can be made public becomes available, and we will continue to communicate with all affected parties as appropriate.'"

wiredmikey writes "Following the arrest of three alleged 'Anonymous' members by Spanish authorities on Friday, Turkey's state-run news agency has reported that police have detained 32 individuals allegedly linked to the hacktivist group. The Anatolia news agency said today that the suspects were taken into custody after conducting raids in a dozen cities for suspected ties to Anonymous. The group recently targeted Web sites of the country's telecommunications watchdog, the prime minister's office and parliament as a protest to Turkey's plans to introduce Internet filters."

wiredmikey writes "Researchers from universities and national laboratories in the United States are developing software that mimics ant behavior, as a new approach to network security." The concept has been around for a while, but this summer researchers are working to train the "digital ants" well enough that they can turn them loose into the power grid to seek out computer viruses trying to wreak havoc on the system.

wiredmikey writes "New malware has been discovered embedded in more than 20 Android applications circulating via various forums on the Internet which auto-dials phone numbers to incur high user fees. Dubbed BaseBridge, the malware can be embedded in legitimate applications, and during the application's installation, the malware prompts the user to upgrade. If the user chooses to upgrade, the malware is installed on the Android device under the name 'com.android.battery'. Then, another prompt would pop up to ask the user to restart the app to run it, and the malware is formally activated upon restart. Once activated, the malware can activate three malicious services — AdSmsService, BridgeProvider and PhoneService, to communicate with a control server, from which it will download a configuration file to read related information and dial calls or send out SMS messages, incurring fees for users."

wiredmikey writes "Late Sunday night, hackers gained access to several areas of PBS Web servers and were able publish a fake news story on a PBS news blog. The group also published PBS internal user login information that they were able to siphon out of PBS databases. The fake story was about rapper Tupac Shakur, who died in 1996 after being shot in Las Vegas, being been found alive and well in a small resort in New Zealand. A group going by the name of 'LulzSec' claimed responsibility for the hack, saying the attack was a protest against a PBS Frontline broadcast last week about WikiLeaks."

decora writes "An SAIC analyst has written a paper [PDF] calling for the 'stigmatization' of the 'unattractive' types who tend to discuss government secrets in public. The plan, described in the Naval Postgraduate School Homeland Security Affairs journal, is to promote self-censorship as a 'civic duty'. Who needs to censor themselves? Amateur enthusiasts who describe satellite orbits, scientists who describe threats to the food supply, graduate students mapping the internet, the Government Accountability Office, which publishes failure reports on the TSA, the US Geologic Survey, which publishes surface water information, newspapers (the New York Times), TV shows, journalism websites, anti-secrecy websites, and even security author Bruce Schneier, to name a few."

Earlier this week, we discussed reports that Mac malware was finally becoming a significant problem. Now, reader wiredmikey points out an editorial arguing that everyone should slow down and analyze the situation more calmly so the threat can be accurately assessed. Quoting: "According to Apple, the Mac installed base is approximately 50 million users. But according to Gartner, the number of Android handsets sold in 2010 alone exceeded 67 million units, giving it an installed base that is larger, and growing much faster, than the Mac base. If a large numbers of eyeballs is indeed the lure that causes criminals to write malware for a given operating system, surely Android is a more tempting target than Mac OS. ... I predict that the increase in perceived risks to Mac customers will give Apple the excuse it needs to increase its control over the Mac software ecosystem, by moving ISVs to the Mac App Store. It is no accident that the theme of the upcoming Lion desktop operating system is 'Back to the Mac': taking concepts that Apple employed successfully with the mobile version of OS X (iOS) and back-porting them to the desktop OS. One of those features is the introduction of the Mac App Store, an Apple-controlled storefront for selling and distributing applications. ... This provides buyers some assurance that their apps are from known points of origin and that they don’t contain malware, such as the Mac Defender Trojan horse.

wiredmikey writes "Red Hat today released Red Hat Enterprise Linux 6.1, the first update to the platform since Red Hat Enterprise Linux 6 back in November 2010. The latest version brings improvements in system reliability, scalability and performance, and support for upcoming system hardware. The latest version also delivers patches and security updates as well as enhancements in virtualization, file systems, scheduler, resource management and high availability." The Register, too, outlines the new release.

wiredmikey writes "Following the successful operation by US forces to kill Osama bin Laden, Internet users are searching in the masses for any details about the incident they can find. Cyber-criminals know this and have already been at work to 'poison' common search results hoping to gain access to people's computers and infect them with malware."

wiredmikey writes "[Apple] said that over the next few weeks it would release a software update for iOS that would reduce the size of the crowd-sourced Wi-Fi hotspot and cell tower database cached on the iPhone, cease backing up the cache, and delete the cache entirely when Location Services is turned off. Additionally, Apple said that in the next major iOS software release the cache would be encrypted on the iPhone, though a timeline for that was not provided."

wiredmikey writes "Norman LeBoon of Philadelphia was sentenced to 24 months in prison for his production and transmission of a YouTube video over the Internet last March containing a threat to injure and kill a United States Congressman. Following his arrest, LeBoon told federal agents that Eric Cantor is 'pure evil'; 'will be dead'; and that 'Cantor's family is suffering because of his father's wrath.'"

wiredmikey writes with an update to the previously reported Epsilon breach: "It turns out that Kroger is only one of many customers affected by the breach at Epsilon, which sends over 40 billion emails annually and counts over 2,500 clients, including 7 of the Fortune 10, to build and host their customer databases. It has been confirmed that the customer names and email addresses, and in a few cases other pieces of information, were compromised at several major brands, a list which continues to grow ..." An anonymous reader points out that U.S. Bank is on the list of affected companies; I wonder how many more phishing attempts this will mean.

wiredmikey writes "Kroger, the nation's largest traditional grocery retailer with more than 338,000 associates, notified customers today of a breach of the database that stores its customers' names and email addresses. The company said the incident occurred at Epsilon, the third-party vendor Kroger uses to manage its customer email database." Reader SatanClauz SatanClauz quotes the email that went out to Kroger customers ("We were notified and became aware of unauthorized access to our email list by someone outside our company. We want to assure you that the only information that was obtained were names and email addresses."), writing "At least they were smart enough to separate the email db from the rest of customer information! — or so they say..."

wiredmikey writes "The Rustock Botnet was sending as many as 13.82 billion spam emails each day before being taken down early this month by an effort headed by Microsoft in cooperation with authorities and the legal system. According to Symantec's March 2011 MessageLabs Intelligence Report, the Rustock botnet had been responsible for an average of 28.5% of global spam sent from all botnets in March. Following the takedown, when the Rustock botnet was no longer cranking out spam by the billions, global spam volumes fell by one-third. For reference, toward the end of 2010, Rustock had been responsible for as much as 47.5% of all spam, sending approximately 44.1 billion e-mails per day, according to MessageLabs stats. Since then, Bagle, a botnet that wasn't even on MessageLabs' top ten spam-sending botnets at the end of 2010, has taken over from Rustock as the most active spam-sending botnet this year."

wiredmikey writes "A former contract security guard who admitted hacking into a hospital's computer systems (where he worked), was sentenced to 110 months in Federal prison. Why did he do it? He admits that he intended to use the bots and the compromised computers to launch DDoS attacks on the websites of rival hacker groups. The FBI says he posted video of himself hacking into the hospital computers on YouTube — While the theme of 'Mission Impossible' played, he described his hack, step by step, including the insertion of a CD containing the OphCrack program, which allowed him to bypass all security. The FBI found the CD containing the OphCrack program in McGraw's house and found the source code for the bot on his laptop."

wiredmikey writes "Following a trend in allowing users to automatically utilize the secure HTTPS protocol when accessing Web based services, Twitter announced this week that it has added the option for users to force HTTPS connections by default when accessing Twitter.com. The reasons to utilize HTTPS when accessing any personal accounts aren't new, but an easy to use extension for FireFox called 'FireSheep,' released in October 2010, spiked concern, as it enables HTTP session hijacking for the masses."

wiredmikey writes "Following a trend in allowing users to automatically utilize the secure HTTPS protocol when accessing Web based services, Twitter announced this week that it has added the option for users to force HTTPS connections by default when accessing Twitter.com. The reasons to utilize HTTPS when accessing any personal accounts aren't new, but an easy to use extension for FireFox called 'FireSheep,' released in October 2010, spiked concern, as it enables HTTP session hijacking for the masses."

wiredmikey sends this quote from Security Week: "Today's tragic events of the 8.9 magnitude earthquake and resulting tsunami, as sad as it is, is a dream for scammers and fraudsters around the world. Tragic events are always something scammers use to their advantage, helping them prey on and exploit innocent victims. Scams are already spreading across Facebook, which started in a matter of minutes after the news broke of the earthquake in Japan. As I write this, scammers are hard at work, registering new domains and cranking out templates for their fake donation sites. This will be followed with massive volumes of email spam, Tweets through Twitter, and Facebook posts, as scammers gear up to solicit donations from around the world." As coverage of the earthquake and resulting tsunami has proceeded, collections of videos and pictures are showing the extent of the devastation. The NY Times makes the excellent point that things could have been much worse if not for building codes and quake-resistant engineering. A state of emergency was declared at one of Japan's nuclear plants, after the earthquake caused cooling problems at one of the reactors. No radiation leakage has been reported, and the US Air Force has helped by delivering coolant by air.

wiredmikey writes "Cybercrime's underground activity, much like a Middle Eastern bazaar, is a loud and boisterous market. Buying, selling, haggling and cheating all take place in these marketplaces. Each marketplace houses other specialized-markets of illegitimate goods. There's the credit cards market, the bot rental market, another one for viruses, and one more for the credentials – to name a few. The column discusses how cybercriminals communicate, how these markets operate and how hacker transactions are being performed."

wiredmikey writes "The operator of an online business that assisted over 2,000 identity thieves in over 5,000 instances of fraud pleaded guilty to charges of conspiracy to commit wire and credit card fraud this week. The Belarus man operated a service that helped fellow online thieves use stolen information by providing English language calling services to trick banks in the United States. The service helped counteract security measures put in place by financial institutions to prevent fraud when account holders try to make transfers or withdrawals from their accounts. In exchange for a fee, the two men provided the services of English- and German-speaking individuals to persons who had stolen account and biographical information to defeat the security screening processes."

wiredmikey writes "Reports of Multiple Variants of Android Virus 'Hong Tou Tou' are showing up, which has mainly been working its way onto smartphones via alternative app marketplaces. Today, we saw reports of a new variant of spyware "Spy.Felxispy" targeting Symbian devices, identified by the National Computer Virus Emergency Response Centre of China. More than a dozen variants of the spyware have emerged since the first was spotted, and the latest has affected 150,000+ devices. Once installed, the spyware will turn on the Conference Call feature of the device without users' awareness. When users are making phone calls, the spyware automatically adds itself to the call to monitor the conversation."

wiredmikey writes "Reports of Multiple Variants of Android Virus 'Hong Tou Tou' are showing up, which has mainly been working its way onto smartphones via alternative app marketplaces. Today, we saw reports of a new variant of spyware "Spy.Felxispy" targeting Symbian devices, identified by the National Computer Virus Emergency Response Centre of China. More than a dozen variants of the spyware have emerged since the first was spotted, and the latest has affected 150,000+ devices. Once installed, the spyware will turn on the Conference Call feature of the device without users' awareness. When users are making phone calls, the spyware automatically adds itself to the call to monitor the conversation."

wiredmikey writes "Reports of Multiple Variants of Android Virus 'Hong Tou Tou' are showing up, which has mainly been working its way onto smartphones via alternative app marketplaces. Today, we saw reports of a new variant of spyware "Spy.Felxispy" targeting Symbian devices, identified by the National Computer Virus Emergency Response Centre of China. More than a dozen variants of the spyware have emerged since the first was spotted, and the latest has affected 150,000+ devices. Once installed, the spyware will turn on the Conference Call feature of the device without users' awareness. When users are making phone calls, the spyware automatically adds itself to the call to monitor the conversation."

wiredmikey writes "The Internet Systems Consortium (ISC) and US-CERT have issued a high severity vulnerability warning, discovered by Neustar, which affects BIND, the most widely used DNS software on the Internet. Successful exploitation could enable attacker to cause Bind servers to stop processing all requests. According to the disclosure, 'When an authoritative server processes a successful IXFR transfer or a dynamic update, there is a small window of time during which the IXFR/update coupled with a query may cause a deadlock to occur. This deadlock will cause the server to stop processing all requests. A high query rate and/or a high update rate will increase the probability of this condition.'"

wiredmikey writes "A subtle, yet powerfully destructive force of electronic attacks may be working slowly and silently to disrupt elements of the world's market-based economies. Recent cyber-attacks on the European Emissions Trading Scheme shut down that exchange's carbon market just a few weeks ago. Along with the fear of lights-out DDoS attacks that has traditionally stalked electronic markets, and logically still does, new types of attacks by subtle manipulation could slowly turn electronic markets on their heads by corrupting their very legitimacy. What's worse? Attacking someone's borders, or slowly disrupting and degrading confidence in their entire national economic well-being?"

wiredmikey writes "Along with budget constraints and disconnect between IT and executive management surrounding information security, results of a recent survey show that a major problem is outright lack of understanding of threats. We all know the best way to get that budget increased, is to get hacked. Unfortunately, that could also result in you losing your job. Some companies, however, are taking creative approaches to both raise awareness and identify potential vulnerabilities. A manager with a large financial services group, for example, says that his company addresses security vulnerabilities by staging a series of what it calls 'war games,' in which a user or group of users is tasked with trying to compromise a system, while another user or group of users is tasked with preventing the break-in. Management needs to understand the security threat and its impact to business, and these 'war games' are an innovative and creative way for IT departments to convince executive management on security needs."

wiredmikey writes "The 'Kill Switch' bill will introduce legislation that would give the US government power to limit Internet traffic in the event of cyber-security emergency. To recap recent events in Egypt, public political protests reached critical mass on January 25th and on January 27th, Internet connectivity and access across the region began plummeting ultimately leading to a five-day blackout. The question remains: could the same approach be taken in the US?"

wiredmikey writes "Now that the last IPv4 address blocks have been allocated, it's expected to take several months for regional registries to consume all of their remaining regional IPv4 address pool. The IPv6 Forum, a group with the mission to educate and promote the new protocol, says that enabling IPv6 in all ICT environments is not the endgame, but is now a critical requirement for continuity in all Internet business and services. Experts believe that the move to IPv6 should be a board-level risk management concern, equivalent to the Y2K problem or Sarbanes-Oxley compliance. During the late 1990s, technology companies worldwide scoured their source code for places where critical algorithms assumed a two-digit date. This seemingly trivial software development issue was of global concern, so many companies made Y2K compliance a strategic initiative. The transition to IPv6 is of similar importance. If you think you can ignore IPv6, think again."

wiredmikey writes "Now that the last IPv4 address blocks have been allocated, it's expected to take several months for regional registries to consume all of their remaining regional IPv4 address pool. The IPv6 Forum, a group with the mission to educate and promote the new protocol, says that enabling IPv6 in all ICT environments is not the endgame, but is now a critical requirement for continuity in all Internet business and services. Experts believe that the move to IPv6 should be a board-level risk management concern, equivalent to the Y2K problem or Sarbanes-Oxley compliance. During the late 1990s, technology companies worldwide scoured their source code for places where critical algorithms assumed a two-digit date. This seemingly trivial software development issue was of global concern, so many companies made Y2K compliance a strategic initiative. The transition to IPv6 is of similar importance. If you think you can ignore IPv6, think again."

wiredmikey writes "Despite spam levels being at their lowest since March 2009, metrics released by the APWG indicate that cybercriminals are cultivating an array of alternative attack schemes, and in particular, increasing attacks on the online classified services sector with phishing attacks. Though the online payment services sector remained the most targeted industry with 38 percent of detected attacks in Q2, the classified ads services sector experienced rapid growth in phishing attacks."

wiredmikey writes "The Sixth Annual Worldwide Infrastructure Security Report, released today by Arbor Networks, revealed that DDoS attack size broke 100 Gbps for first time; up 1000% since 2005. In addition to hitting the 100 Gbps attack barrier for the first time, application layer attacks hit an all-time high. Additionally, it goes on to show that as new equipment, protocols and services are introduced into networks, the vulnerable attack surface for DDoS is expanded. DDoS attacks are likely to continue as a low cost, high-profile form of cyber-protest in 2011 and beyond."

wiredmikey writes "Following a two-week dramatic decline in spam levels, spam now accounts for 78.6 percent of all email traffic, the lowest rate since March 2009, when the global spam rate was 75.7 percent of all email traffic, according to Symantec's January 2011 MessageLabs Intelligence Report, released today. The volume of spam in circulation this month was 65.9% lower than for the same period one year ago, in January 2010, when the spam rate was 83.9% of all email traffic."

wiredmikey writes "The ease-of-use and ability to amass great profits through the use of easily accessible 'attack toolkits' are driving faster proliferation of cyber attacks and expanding the pool of attackers, opening the doors to more criminals who would likely otherwise lack the required technical expertise to succeed in the cybercrime underground. The relative simplicity and effectiveness of attack kits has contributed to their increased use in cybercrime — these kits are now being used in the majority of malicious Internet attacks."

wiredmikey writes "The Web site supporting Bradley Manning, the Army soldier charged with leaking a massive number of US classified information to WikiLeaks, posted an announcement on its site today, saying that WikiLeaks had transferred $15,100 to the legal trust account of Manning's attorney. WikiLeaks has been publicly soliciting donations specifically for the expenses of Manning's legal defense following his arrest in May 2010. The contribution by WikiLeaks brings the total funds raised and transferred to Bradley's civilian legal defense team, led by attorney David Coombs, to over $100,000. Supporters say that a 'vigorous defense' for Manning is estimated to cost $115,000."

wiredmikey writes "The AMBER Alert program, credited with the safe recovery of 525 children across the country, has a new ally today: Facebook. Facebook users are able to sign up to receive AMBER Alert bulletins for their state which will be sent to them through the Facebook 'News Feed' feature. An estimated 800,000 children are reported missing every year. AMBER Alert is a voluntary partnership involving law-enforcement agencies and broadcasters. The new Facebook AMBER Alert pages represent an important expansion of the secondary distribution system and will enable AMBER Alerts to dramatically increase the reach of and impact of these life-saving bulletins."

wiredmikey writes "NVIDIA and Intel have agreed to drop all outstanding legal disputes between them and Intel will pay NVIDIA an aggregate of $1.5 billion in licensing fees payable in five annual installments, beginning Jan. 18, 2011. Under the new agreement, Intel will have continued access to NVIDIA's full range of patents."

wiredmikey writes "Security researchers have discovered several security flaws in one of the best-selling brands of Internet-connected HDTVs, and believe it's likely that similar security flaws exist in other Internet TVs. The security researchers were able to demonstrate how an attacker could intercept transmissions from the television to the network using common 'rogue DNS,' 'rogue DHCP server,' or TCP session hijacking techniques. Mocana was able to demonstrate that JavaScript could then be injected into the normal datastream, allowing attackers to obtain total control over the device's Internet functionality."

wiredmikey writes "The FBI reported this week that Qiang 'Michael' Bi, of Powell, Ohio was sentenced to 30 months in prison for selling more than 35,000 illegally copied computer games over the Internet between 2005 and 2009. According to a statement of facts read during Bi's plea hearing, agents executed a search warrant at Bi's house and found multiple CD duplicators and more than 1,000 printed counterfeit CDs. Some of the CDs were still in the duplicator. During their investigation, agents learned that Bi would buy a single copy of a game, illegally duplicate it and sell the copies on eBay.com and Amazon.com. He also set up a website for customers to download the games they bought. Bi accepted payment through eBay and PayPal accounts in his name and in others' names."

wiredmikey writes that researchers from Lookout Mobile have discovered a sophisticated Trojan targeting Android devices. "The company says the mobile malware is 'The most sophisticated Android malware we've seen to date. Geinimi is also the first Android malware in the wild that displays botnet-like capabilities. Once the malware is installed on a user's phone, it has the potential to receive commands from a remote server that allow the owner of that server to control the phone.' What makes the Trojan different from most 'standard' mobile malware is that Geinimi is being 'grafted' onto repackaged versions of legitimate applications, primarily games, and distributed in third-party Chinese Android app markets."