Slashdot Mirror

Earthquake Retrofit writes "Brian Krebs has a story about cybersquatting on social networking sites. He cites cases of people being impersonated and reports: 'A site called knowem.com allows you to see whether your name or whatever nickname you favor is already registered at any of some 120 social networking sites on the Web today. For a $64.95 fee, the site will register all available accounts on your behalf, a manual process that it says takes one to five business days. Whether anyone could possibly use and maintain 120 different social networking accounts is beyond my imagination. I would think an automated signup service like knowem.com would be far more useful if there was also a service that people could use to simultaneously update all of these sites with the same or slightly different content.' Is it time to saddle up for a new round of Internet land grabs?" A Schneier blog post earlier this month pointed out a related story about how not establishing yourself on social sites, combined with the frequent lack of validation for friend requests, can provide identity thieves with a tempting target .

Kaliann writes "Toys that respond to brainwaves are the next generation of unique user interfaces. The Washington Post looks at the current market appeal and future uses of technology that can meaningfully respond to the thoughts of a user. Currently the toys have a fairly simple basic idea: the harder you concentrate the more the object moves. A sensor on the forehead picks up brain waves that are associated with concentration, then levitates a ball in response: basic biofeedback. While this may seem to be a rather humble beginning, progress in this field could have astounding consequences in the advancement of technologies devoted to thought-controlled devices. As the author points out, Jedi Beer Pong is within our grasp."

NewYorkCountryLawyer writes "President Barack Obama has named his chief technology officer, and the appointee is not a Silicon Valley name like so many predicted. He is Aneesh Chopra. As the Secretary of Technology for the Commonwealth of Virginia, his job has been to 'leverage technology in government reform, promote Virginia's innovation agenda, and foster technology-related economic development with a special emphasis on entrepreneurship.' But Chopra's not a tech guy. Before he got his secretary job in 2005, he was a managing director at the Advisory Board Company, a public-market health care think tank, as well as an angel investor." O'Reilly Radar is running an article discussing why Chopra is a good choice for federal CTO.

eldavojohn writes "A South Korean blogger named Park Dae-sung has been arrested and charged with destabilizing foreign markets by blogging about declining companies. This is the same blogger who predicted the economic downturn that has been experienced the world over. The Korean Times offers more information on the community college graduate and the accusations levied against him." Several readers have also sent in news that Omidreza Mirsayafi, an Iranian blogger arrested and imprisoned for his writings earlier this year, has now died in custody.

Hugh Pickens writes "Doug Feaver has an interesting story in the Washington Post 'in defense of the anonymous, unmoderated, often appallingly inaccurate, sometimes profane, frequently off point and occasionally racist reader comments that washingtonpost.com allows to be published at the end of articles and blogs.' Feaver says that during his seven-year tenure as editor and executive editor of washingtonpost.com he kept un-moderated comments off the site, but now, four years after retiring, he says he has come to think that online comments are a terrific addition to the conversation, and that journalists need to take them seriously. 'The subjects that have generated the most vitriol during my tenure in this role are race and immigration,' writes Feaver. 'But I am heartened by the fact that such comments do not go unchallenged by readers. In fact, comment strings are often self-correcting and provide informative exchanges.' Feaver says that comments are also a pretty good political survey. 'The first day it became clear that a federal bailout of Wall Street was a real prospect, the comments on the main story were almost 100 percent negative. It was a great predictor of how folks feel, well out in front of the polls. We journalists need to pay attention to what our readers say, even if we don't like it. There are things to learn.'"

A federal judge has thrown out the conviction of the senator who educated us all about the true nature of the Internet. Ted Stevens had been convicted last fall of lying about free home renovations that he received from an oil contractor, 8 days before he lost his Senate re-election bid. The judge blasted the US Department of Justice prosecutors for mishandling the case in ways that might rise to the level of criminality. "In 25 years on the bench, I have never seen anything approach the mishandling and misconduct in this case," Judge Emmet G. Sullivan said. He called the allegations "shocking and disturbing." According to the article, "Several jurors have told The Washington Post that the evidence against Stevens was overwhelming during a month-long trial that ended in October."

A user on Reddit pointed out that Richard "rick752" Petnel, maintainer of one of the most popular filter lists for Ad Block Plus, has passed away at age 56. In an article last year Petnel described a bit of what he was up against in the ad world. "'I'm playing against some pretty big players,' he said, explaining his reluctance to step forward. 'I don't want to be harassed. . . . I don't want to be bribed. I started it because I was frustrated with getting my computer infected from ads -- malware and spyware and all that stuff,' he said. 'I kind of went overboard with it. But you have to admit, it's pretty amazing, right?'" Update 15:05 GMT by SM: updated to reflect Rick's status as maintainer of the most popular Ad Block Plus filter as opposed to Ad Block Plus itself.

Hugh Pickens writes "Senators Jay Rockefeller and Olympia J. Snowe are pushing to dramatically escalate US defenses against cyberattacks, crafting proposals in Senate legislation that could be introduced as early as today, that would empower the government to set and enforce security standards for private industry for the first time. The legislation would broaden the focus of the government's cybersecurity efforts to include not only military networks but also private systems that control essentials such as electricity and water distribution. 'People say this is a military or intelligence concern, but it's a lot more than that,' says Rockefeller, a former intelligence committee chairman. 'It suddenly gets into the realm of traffic lights and rail networks and water and electricity.' The bill, containing many of the recommendations of the landmark study 'Securing Cyberspace for the 44th Presidency' (PDF) by the Center for Strategic and International Studies, would create the Office of the National Cybersecurity Adviser, whose leader would report directly to the president and would coordinate defense efforts across government agencies. The legislation calls for the appointment of a White House cybersecurity 'czar' with unprecedented authority to shut down computer networks, including private ones, if a cyberattack is underway. It would require the National Institute of Standards and Technology to establish 'measurable and auditable cybersecurity standards' that would apply to private companies as well as the government. The legislation also would require licensing and certification of cybersecurity professionals."

Nieriko writes "Reports are trickling in about the impact from the Conficker worm, as infected systems passed zero hour at midnight and began downloading additional malicious components. Here are a couple of the more notable incidents caused by Conficker so far, according to published reports: — '... shortly after midnight local time, an ATM in the capital city of Reykjavik began spewing 100-Krona notes. ... A nuclear missile installation near Elmendorf Air force Base outside of Anchorage, Alaska briefly went on a full-scale military alert after technicians manning the bunker suspected that several of their control systems were infected with Conficker.'"

Hugh Pickens writes "The International Space Station, once a place where astronauts would share food and facilities, is said to be embroiled in a Cold War-like stand-off after a Russian cosmonaut complained he is no longer allowed to use a US toilet or the US gym machine. Gennady Padalka, a veteran Russian cosmonaut, says that space officials from Russia, the United States and other countries now require cosmonauts and astronauts to eat their own food and follow stringent rules on access to other facilities, including lavatories. Padalka, who will be the station's next commander, says the arguments date back to 2003, when Russia started charging other space agencies for the resources used by their astronauts and other partners in space station responded in kind. 'Cosmonauts are above the ongoing squabble, no matter what officials decide,' says Padalka. 'We are grown-up, well-educated and good-mannered people and can use our own brains to create normal relationship. It's politicians and bureaucrats who can't reach agreement, not us, cosmonauts and astronauts.' While sharing food in the past helped the crew feel like a team, the new rules oblige Russian cosmonauts and US astronauts to eat their own food. 'They also recommend us to only use national toilets,' says Padalka. 'What is going on has an adverse effect on our work.'"

krebsatwpost writes "TrafficConverter.biz, one of the more notorious pay-per-install affiliate programs, was dismantled this week after media attention caused Visa and Mastercard to shut down the group's payment operations. The action comes just a few days after a report by The Washington Post that showed some affiliates were making more than $100,000 USD a week installing rogue anti-virus software. The credit card industry may have been spurred by the fact that the first version of the Conficker worm told infected systems to download a file from TrafficConverter, although the story posits that this could have been an attempted Joe Job rather than a blatant attempt to drum up more installs."

theodp writes "After Gov. Tim Kaine intervened on his behalf, Vivek Kundra was quietly reinstated to his Federal CIO post on Tuesday after a brief leave following an FBI raid on Kundra's former DC office (Kundra was not implicated). Now, the Washington Post reports that the City of DC plans to fire 23 Technology Office contractors and place 4 employees on leave in the aftermath of the arrests of a Security manager and contractor on bribery charges last week. Another government employee has since been arrested for his role in the scam, and the mayor has promised that the tech office will undergo a 'full and formal review.'"

theodp writes "After Gov. Tim Kaine intervened on his behalf, Vivek Kundra was quietly reinstated to his Federal CIO post on Tuesday after a brief leave following an FBI raid on Kundra's former DC office (Kundra was not implicated). Now, the Washington Post reports that the City of DC plans to fire 23 Technology Office contractors and place 4 employees on leave in the aftermath of the arrests of a Security manager and contractor on bribery charges last week. Another government employee has since been arrested for his role in the scam, and the mayor has promised that the tech office will undergo a 'full and formal review.'"

CWmike writes "The fallout from Thursday's arrests of a District of Columbia IT security official and contractor quickly raised questions about the fate of Vivek Kundra, the new federal CIO who until recently ran the office now mired in bribery allegations. Appointed by President Barack Obama as CIO less than two weeks ago, Kundra was CTO for the District of Columbia. But yesterday, Kundra's former office in a downtown government building was a crime scene. A White House official, speaking on background, confirmed today that Kundra took a leave of absence from his new CIO job shortly after federal investigators arrested two men in the DC government office on bribery charges. The official would not elaborate on the reasons for the leave; there were no indications yesterday that Kundra was involved in any wrongdoing. Kundra's decision could slow his plan to create a 'revolution' in the federal government's use of technology."

krebsatwpost writes "The Department of Homeland Security has named Microsoft's 'chief trustworthy infrastructure strategist' Phil Reitinger to be its top cyber security official. Many in the security industry praised him as a smart pick, but said he will need to confront a culture of political infighting and leadership failures at DHS. From the story: 'Reitinger comes to the position with cyber experience in both the public and private sectors. Prior to joining Microsoft in 2003, he was executive director of the Defense Department's Computer Forensics Lab. Before that, he was deputy chief of the Justice Department's Computer Crimes and Intellectual Property section, where he worked under Scott Charney, who is currently corporate vice president for trustworthy computing at Microsoft.'"

krebsatwpost writes "The Washington Post ran a piece earlier this week that confronts the myth that cyber criminal gangs in Russia and Eastern Europe avoid attacking their own, pointing to numerous examples of late that counter this common misconception. The story draws on data from Team Cyrmu about distributed denial-of-service attacks (DDoS) that target Russian and E. European organizations, intel from McAfee about Russian banks and federal agencies that appear to be under control over cyber gangs there, and tens of gigabytes of data stolen via keyloggers that disproportionately impact Russian systems, including that of a top Gazprom official. The piece begins: 'If you ask security experts why more cyber criminals aren't brought to justice, the answer you will probably hear is that US authorities simply aren't getting the cooperation they need from law enforcement officials in Russia and other Eastern European nations, where some of the world's most active cyber criminal gangs are thought to operate with impunity. But I wonder whether authorities in those countries would be any more willing to pursue cyber crooks in their own countries if they were forced to confront just how deeply those groups have penetrated key government and private computer networks in those regions?'"

krebsatwpost writes "The Washington Post ran a piece earlier this week that confronts the myth that cyber criminal gangs in Russia and Eastern Europe avoid attacking their own, pointing to numerous examples of late that counter this common misconception. The story draws on data from Team Cyrmu about distributed denial-of-service attacks (DDoS) that target Russian and E. European organizations, intel from McAfee about Russian banks and federal agencies that appear to be under control over cyber gangs there, and tens of gigabytes of data stolen via keyloggers that disproportionately impact Russian systems, including that of a top Gazprom official. The piece begins: 'If you ask security experts why more cyber criminals aren't brought to justice, the answer you will probably hear is that US authorities simply aren't getting the cooperation they need from law enforcement officials in Russia and other Eastern European nations, where some of the world's most active cyber criminal gangs are thought to operate with impunity. But I wonder whether authorities in those countries would be any more willing to pursue cyber crooks in their own countries if they were forced to confront just how deeply those groups have penetrated key government and private computer networks in those regions?'"

**$tarDu$t** recommends a Washington Post Security Fix blog post dissecting the Tigger.A trojan, which has been keeping a low profile while exploiting the MS08-66 vulnerability to steal data quietly from online stock brokerages and their customers. An estimated quarter million victims have been infected. The trojan uses a key code to extract its rootkit on host systems that is almost identical to the key used by the Srizbi botnet. The rootkit loads even in Safe Mode. "Among the unusually short list of institutions specifically targeted by Tigger are E-Trade, ING Direct ShareBuilder, Vanguard, Options XPress, TD Ameritrade, and Scottrade. ... Tigger removes a long list of other malicious software titles, including the malware most commonly associated with Antivirus 2009 and other rogue security software titles ... this is most likely done because the in-your-face 'hey, your-computer-is-infected-go-buy-our-software!' type alerts generated by such programs just might ... lead to all invaders getting booted from the host PC."

An anonymous reader writes "If you're planning on traveling internationally with a laptop, consider the following: District Court Overturns Magistrate Judge in Fifth Amendment Encryption Case. Laptop searches at the border have been discussed many times previously. This is the case where a man entered the country allegedly carrying pornographic material in an encrypted file on his laptop. He initially cooperated with border agents during the search of the laptop then later decided not to cooperate citing the Fifth Amendment. Last year a magistrate judge ruled that compelling the man to enter his password would violate his Fifth Amendment right against self-incrimination. Now in a narrow ruling, US District Judge William K. Sessions III said the man had waived his right against self-incrimination when he initially cooperated with border agents." sohp notes that "the order is not that he produce the key — just that he provide an unencrypted copy."

McGruber writes "Northrop Grumman's Govtrip.com website has been shut down following a security breach, according to a report by 'Security Fix' blogger Brian Krebs. Being a federal employee and frequent work traveler, I am (was?) a Govtrip user. My agency required me to use Govtrip to book all of my trips, including my airfare, car rentals, and hotel reservations, so Northrop Grumman's Govtrip databases contain my frequent flier numbers, Avis & Budget car rental numbers and frequent hotel guest (Choice Privileges, Marriott Rewards, Priority Club, etc.) numbers. Northrup-Grumman also stored all of my trip itineraries, including destinations, dates & modes of travel and the particular vendors (airline, hotel, rental car brand, etc.) used on a particular trip. Also stored on the website were my work travel credit-card (it has a $15,000 charge limit), personal checking account where my travel reimbursements were deposited, my home address, and emergency contacts ... just imagine what an accomplished social engineer can do with that combination of information!"

The Washington Post's Security Fix blog is reporting that Verizon, long identified as the largest ISP source of spam, is moving to require use of the submission port, 587, in outbound mail — and thus to require authentication. While spammers may still be able to relay spam through zombies in Verizon's network, if the victims let their mail clients remember their authentication credentials, at least the zombies will be easily identifiable. Verizon pledges to clean up their zombie problem quickly. We'll see.

wiredog writes "From The Washington Post comes word that three special masters have decided that MMR vaccines do not cause autism. 'Special master George Hastings said the parents ... had "been misled by physicians who are guilty, in my view, of gross medical misjudgment." ... "the evidence advanced by the petitioners has fallen far short of demonstrating ... a link."'

raffnix writes "Today, Finland-based paper group Stora Enso has announced that Google is buying the buildings and most of the Summa Mill site, where production of paper was ceased last month, for approximately 40 million Euros ($51.7 million). Obviously the space is most likely going to serve as a data center, which has now also been confirmed by Reuters."

Urban Garlic writes "The community surrounding Samsonia Way in Pittsburgh were ready when the Google StreetView car arrived, and staged a 21st-century public art project. Also celebrated in this Washington Post article, and Kelso's Corner, which also has a collection of public art in StreetView."

The Washington Post is reporting on the growing pressure from state and local law enforcement agencies for permission to jam wireless signals the way the Secret Service and the FBI can. Officials especially want to be able to drop a no-call blanket over local prisons around the country from time to time. "...jamming remains strictly illegal for state and local agencies. Federal officials barely acknowledge that they use it inside the United States, and the few federal agencies that can jam signals usually must seek a legal waiver first. The quest to expand the technology has invigorated a debate about how widely jamming should be allowed and whether its value as a common crime-fighting strategy outweighs its downsides, including restricting the constant access to the airwaves that Americans have come to expect. ... Critics warn of another potential problem, 'friendly fire,' when one agency inadvertently jams another's access to the airwaves, posing a safety hazard in an emergency. [CTIA spokesman Joe] Farren said there are 'smarter, better and safer alternatives,' such as stopping inmates from getting smuggled cellphones in the first place or pinpointing signals from unauthorized callers."

DJRumpy sends word that the US Senate has voted to delay the switch to digital TV until June. "The transition date would move to June 12 from February 17 under the bill that was fueled by worries that viewers are not technically ready for the Congressionally mandated switch-over. It would also allow consumers with expired coupons, available from the government to offset the cost of a $40 converter box, to request new coupons. The government ran out of coupons earlier this month, and about 2.5 million Americans are on a waiting list for them."

rmogull writes "Brian Krebs over at the Washington Post just published a story that Heartland Payment Systems disclosed what may be the largest data breach in history. Today. During the inauguration. Heartland processes over 100 million transactions a month, mostly from small to medium-sized businesses, and doesn't know how many cards were compromised. The breach was discovered after tracing fraud in the system back to Heartland, and involved malicious software snooping their internal network. I've written some additional analysis on this and similar breaches. It's interesting that the biggest breaches now involve attacks installing malicious software to sniff data — including TJX, Hannaford, Cardsystems, and now Heartland Payment Systems." One bit of good news out of this massive breach is that, according to Heartland's CFO, "The nature of the [breach] is such that card-not-present transactions are actually quite difficult for the bad guys to do because one piece of information we know they did not get was an address." Heartland just put up a press release on the breach.

theodp writes "Most of America's largest publicly traded corporations and Federal contractors — including those receiving billions of dollars from US taxpayers to finance their recovery — have set up offshore operations that could help them avoid paying US taxes, according to a GAO study released yesterday. Of the 100 largest public companies, 83 do business in tax-haven hot-spots like the Cayman Islands, Bermuda, and the British Virgin Islands. The report found that Citigroup, a recipient of $45B in bailout funds so far, has set up 427 subsidiaries in tax-haven countries, including 91 in Luxembourg, 90 in the Cayman Islands, and 35 in the British Virgin Islands. Household names on the lists from the tech sector include Apple (1 tax haven subsidiary), Cisco (38), Dell (29), HP (14), Intel (6), IBM (10), Microsoft (8), Motorola (4), and Oracle (77)."

Kotaku points out a Washington Post report about this year's recommendations from the national taxpayer advocate (an official who suggests improvements and updates to the tax code) which include developing clearer protocols for reporting taxable income from virtual worlds. We've previously discussed the implementation of such policies in China. Quoting the report summary (PDF): "By one estimate, about $1 billion in real dollars changed hands in computer-based environments called 'virtual worlds' in 2005. ... IRS employees have been unable to respond to taxpayer inquiries about how to report transactions associated with them. Economic activities in virtual worlds may present an emerging area of tax noncompliance, in part because the IRS has not provided guidance about whether and how taxpayers should report such activities. To improve voluntary tax compliance, the National Taxpayer Advocate recommends that the IRS issue guidance addressing how taxpayers should report economic activities in virtual worlds."

Wide Angle writes in with a PBS report on tough economic news from Ireland: Dell announced that it will relocate its manufacturing plant in Limerick, Ireland to Lodz, Poland. "Dell's announcement... is a severe blow to the Irish economy, which has been hit hard and fast by the global economic crisis. Dell is Ireland's second-largest corporate employer and the country's largest exporter. Nineteen hundred shift workers will lose their jobs. ...Dell's closing is not a result of the economic downturn, but of a pattern all too familiar in the United States — corporations' perennial search for cheaper labor. Since 2000 several companies, such as Procter & Gamble, Intel, Gateway, and NEC Electronics, have moved manufacturing jobs from Ireland to China, Eastern Europe, and elsewhere. When Poland joined the European Union in 2004, it became an attractive place for companies to set up manufacturing plants. ... However, Ireland has managed to maintain and attract... 'knowledge-intensive jobs.' Google's European headquarters are based in Dublin, and Facebook announced late last year that they would locate their international headquarters there. But the overall economic picture for Ireland is bleak."

Thelasko writes "It appears that the US Government's digital converter box program is running out of money. If you sign up after the program runs out of money, you will receive your voucher if the program receives more funding. Older analog televisions will no longer work without a converter box after February 17."

Ponca City, We love you writes "For thousands of years, losing teeth has been a routine part of human aging. Now the Washington Post reports that researchers are close to growing important parts of teeth from stem cells, including creating a living root from scratch, perhaps within one year. According to Pamela Robey of the NIH. 'Dentists say, "Give me a root and I can put a crown on it."' In a few years dentists will treat periodontal disease with regeneration by using stem cells to create hard and soft tissue; they will take out a tooth that is about to fall, and reconnect it firmly to the regenerated tissue. Although nobody is predicting when it will be possible to grow teeth on demand, in adults, to replace missing ones, a common guess is five to ten years. Baby and wisdom teeth are sources of stem cells that could be 'banked' for future health needs, says Robey. 'When you think about it, the teeth children put under their pillows may end up being worth much more than the tooth fairy's going rate. Plus, if you still have your wisdom teeth, it's nice to know you're walking around with your own source of stem cells.'"

fortapocalypse sends word that a new paper was published today in the journal Science on the hypothesis that a comet impact wiped out the Clovis people 12,900 years ago. (We discussed this hypothesis last year when it was put forth.) The new evidence is a layer of nanodiamonds at locations all across North America, at a depth corresponding to 12,900 years ago, none earlier or later. The researchers hypothesize that the comet that initiated the Younger Dryas, reversing the warming from the previous ice age, fragmented and exploded in a continent-wide conflagration that produced a layer of diamond from carbon on the surface. While disputing the current hypothesis, NASA's David Morrison allows, "They may have discovered something absolutely marvelous and unexplained."

theodp writes "According to Microsoft, 'No information is collected during the [Genuine Advantage Program] validation process that can be used to identify or contact a user.' That's little comfort to the software counterfeiters who were just handed jail sentences ranging from 1.5-6.5 years by the Futian People's Court in China, especially since Microsoft contends that much of the estimated $2B in bogus software was detected by its Windows Genuine Advantage program. 'Software piracy negatively impacts local economic growth,' explained Microsoft VP Fengming Liu in a celebratory New Year's Eve press release. But then again, so does transferring $16B of assets and $9B in annual profit to an Irish tax haven, doesn't it?"

Fortran IV writes "Volunteer-powered anti-malware site CastleCops appears to have closed shop. As of Tuesday, December 23, the CastleCops home page notes: 'You have arrived at the CastleCops website, which is currently offline. . . . Unfortunately, all things come to an end.' It was reported back in June that Paul Laudanski, founder of CastleCops and its parent Computer Cops LLC, was taking a full-time job with Microsoft and was 'looking for new management' for CastleCops. The site has also long had problems with funding and with hostile action from spammers. The actual shutdown seems to have taken the security community by surprise; as late as Tuesday evening Brian Krebs was still recommending CastleCops on his Security Fix blog."

dstates writes "The State of Maryland has filed a $8.5M claim against Premier Election Systems (previously known as Diebold), joining Ohio in seeking damages from the company. The claim alleges that election officials were forced to spend millions of dollars to address multiple security flaws in the machines. Previously, Diebold paid millions to settle a California lawsuit over security issues in their machines. The dispute comes as Maryland and Virginia prepare to scrap the touch screen electronic voting systems they bought after the 2000 presidential election. California, Florida, New Mexico, and Iowa have already switched to optical scanners, and voters in Pennsylvania are suing to prevent the use of paperless electronic voting systems in their state. Meanwhile, Artifex Software is suing Diebold for violations of the GPL covering the Ghostscript software technology used in the proprietary voting machines."

Hugh Pickens writes "W. Mark Felt Sr., 95, associate director of the FBI during the Watergate scandal, better known as 'Deep Throat,' the most famous anonymous source in American history, died at his home in Santa Rosa, California. Felt secretly guided Washington Post reporters Bob Woodward and Carl Bernstein to pursue the story of the 1972 break-in of the Democratic National Committee's headquarters at the Watergate office buildings, and later of the Nixon administration's campaign of spying and sabotage against its perceived political enemies. 'It's impossible to exaggerate how high the stakes were in Watergate,' wrote Felt in his 2006 book A G-Man's Life. 'We faced no simple burglary, but an assault on government institutions, an attack on the FBI's integrity, and unrelenting pressure to unravel one of the greatest political scandals in our nation's history.' No one knows exactly what prompted Felt to leak the information from the Watergate probe to the press. He was passed over for the post of FBI director after Hoover's death in 1972, a crushing career disappointment. 'People will debate for a long time whether I did the right thing by helping Woodward. The bottom line is that we did get the whole truth out, and isn't that what the FBI is supposed to do?'"

Steve writes "SecurityFix reports that a group of researchers from Germany published a study in which they analyzed several hundred so-called 'drop zones,' i.e. anonymous collection points of illicitly collected data stolen with the help of keyloggers. 'Their findings, which drew from stolen data harvested from these drop zones between April and October 2008, were staggering: 33 gigabytes worth of purloined data from more than 170,000 victims. Included in those troves were more than 10,700 online bank account credentials, 149,000 stolen e-mail credentials, 5,682 credit card numbers, and 5,712 sets of eBay credentials. [...] Using figures from Symantec's 2007 study on the prices that these credentials can fetch at e-crime bazaars, the researchers estimate that a single cyber crook using one of these kits could make a tidy daily income. The full report [PDF] contains some more interesting details.'"

Steve writes "SecurityFix reports that a group of researchers from Germany published a study in which they analyzed several hundred so-called 'drop zones,' i.e. anonymous collection points of illicitly collected data stolen with the help of keyloggers. 'Their findings, which drew from stolen data harvested from these drop zones between April and October 2008, were staggering: 33 gigabytes worth of purloined data from more than 170,000 victims. Included in those troves were more than 10,700 online bank account credentials, 149,000 stolen e-mail credentials, 5,682 credit card numbers, and 5,712 sets of eBay credentials. [...] Using figures from Symantec's 2007 study on the prices that these credentials can fetch at e-crime bazaars, the researchers estimate that a single cyber crook using one of these kits could make a tidy daily income. The full report [PDF] contains some more interesting details.'"

coondoggie writes with this excerpt from NetworkWorld: "Like a bunch of children in a sandbox unable and perhaps unwilling to share their toys, multiple key government agencies cannot or will not cooperate to build a collaborative wireless network. The Government Accountability Office report (PDF) issued today took aim at the Departments of Justice, Homeland Security, and the Treasury which had intended what's known as The Integrated Wireless Network (IWN) to be a joint radio communications system to improve communication among law enforcement agencies. However IWN, which has already cost millions of dollars, is no longer being pursued as a joint development project, the GAO said. By abandoning collaboration on a joint implementation, the departments risk duplication of effort and inefficient use of resources as they continue to invest significant resources in independent solutions. Further, these efforts will not ensure the interoperability needed to serve day-to-day law enforcement operations or a coordinated response to terrorist or other events, the GAO said."

Cornwallis writes "In a First Amendment case with implications for everything from neighborhood e-mail lists to national newspapers, a Maryland businessman argued to the state's highest court yesterday that the host of an online forum should be forced to reveal the identities of people who posted allegedly defamatory comments. The businessman, Zebulon J. Brodie, contends that he was defamed by comments about his shop, a Dunkin' Donuts in Centreville, posted on NewsZap.com. The shop was described as one 'of the most dirty and unsanitary-looking food-service places I have seen.' Talk about a Negative Nellie! At least the article didn't say the shop was the 'most dirty and unsanitary-looking food-service places I have seen.'"

pumpkinpuss writes "The US military yesterday shot down a missile in a test simulating a long-range ballistic missile attack by a potential adversary such as North Korea or Iran. The target missile was launched from Kodiak Island, Alaska, at 3:04 PM Eastern time, tracked simultaneously by several ground and ship-based radars, and intercepted by a 'kill vehicle' 3,000 kilometers away over the Pacific 25 minutes later, according to the Missile Defense Agency. Lt. Gen. Patrick O'Reilly said, 'The kill vehicle was sent to a very accurate spot in space giving us great confidence.'" Reader gilgsn points out the testing of a different "multiple kill vehicle" by Lockheed Martin, which was able to hover over the ground and track a target. Video of the test (WMV) is also available.

SpaceAdmiral notes the news that scientists have succeeded in convincing experiment subjects that a mannequin's body is their own, and even feeling at home in the body of someone of the opposite sex. The effect could prove useful in virtual reality applications and in robot technology. Here's the paper on PLoS ONE.

An anonymous reader writes "Several sites are running a story about a domain hijacking at Checkfree, the largest provider of online bill payment services to numerous banks and credit unions. According to Network Solutions, someone logged in to the domain administration page using Checkfree's account, and redirected its domains to a site in the Ukraine configured to serve up malware to unsuspecting users." Things like this make me nervous about switching to otherwise-tempting online bill payment, but checks are dangerous, too.

soDean writes "The Principles for an Open Transition and a petition were co-launched by Lawrence Lessig, Mozilla, and the Participatory Culture Foundation today. This was in reaction to the announcement that Obama would be posting his transition videos to YouTube. The petition encourages Obama to publish his transition videos with open licenses, make them available for download, and preferably use royalty free/open video formats and standards. Unless YouTube makes some radical changes, the videos will need to be hosted elsewhere."

Hugh Pickens writes "Botanist Rod Simmons thought he was going crazy when couldn't find any acorns near his home in Arlington County, Virginia. 'I'm used to seeing so many acorns around and out in the field, it's something I just didn't believe,' said Simmons. Then calls started coming in about crazy squirrels. Starving, skinny squirrels eating garbage, inhaling bird feed, greedily demolishing pumpkins. Squirrels boldly scampering into the road. And a lot more calls about squirrel roadkill. Simmons and Naturalist Greg Zell began to do some research and found Internet discussion groups, including one on Topix called 'No acorns this year,' reporting the same thing from as far away as the Midwest up through New England and Nova Scotia. 'We live in Glenwood Landing, N.Y., and don't have any acorns this year. Really weird,' wrote one. 'None in Kansas either! Curiouser and curiouser.' The absence of acorns could have something to do with the weather and Simmons has a theory about the wet and dry cycles. But many skeptics say oaks in other regions are producing plenty of acorns, and the acorn bust is nothing more than the extreme of a natural boom-and-bust cycle. But the bottom line is that no one really knows. 'It's sort of a mystery,' Zell said."

somanyrobots writes with an interesting followup in the New York Times to the earlier-reported substantial reconstruction of the woolly mammoth genome: "Scientists are talking for the first time about the old idea of resurrecting extinct species as if this staple of science fiction is a realistic possibility, saying that a living mammoth could perhaps be regenerated for as little as $10 million. The same technology could be applied to any other extinct species from which one can obtain hair, horn, hooves, fur or feathers, and which went extinct within the last 60,000 years, the effective age limit for DNA." (The Washington Post article linked from the earlier post was much more skeptical, calling such an attempt "still firmly the domain of science fiction." The New York Times article, while describing the process in similar terms, also calls attention to recent advances in sequencing DNA, as well as recoding DNA for cloning.)

geekmansworld writes "From the Washington Post, 'An international team of scientists has reconstructed more than three-quarters of the genome of the woolly mammoth using DNA extracted from balls of hair, the first time this has been accomplished for an extinct species.' Who wants a pet mammoth?"

UltraAyla writes "With the announcement that President-Elect Obama will record his weekly address as a YouTube video to be posted at Change.gov, questions arise as to how an Internet-fueled candidacy based in part on a platform of government openness can begin to use technology to make government transparent. Aside from popular Slashdot policies, such as Net Neutrality, how do you think government (either in the United States or elsewhere) can best utilize technology to engage the public and make government more transparent and accessible?" Reader Rick Zeman points out a related New York Times story about how Obama will have to give up some of his communications gadgets because of the Presidential Records Act. Despite that, he apparently hopes to be the first US president to have a laptop on his desk in the Oval Office.

ESCquire writes "Apparently, the Washington Post Blog 'Security Fix' managed to shut down McColo, a US-based hosting provider facilitating more than 75 percent of global spam. " Now how long before the void is filled by another ISP?