Hackers are targeting everything from defense contractors (for obvious reasons) to PBS (for slightly less obvious reasons related to their journalistic integrity), and frankly, we were sad to hear that Tupac actually isn't alive somewhere in New Zealand. Also, my report from Area 51, what Apple will deliver at WWDC, and the best Lady Gaga/KFC chicken Photoshop we've ever seen. --MollySubscribe: iTunes (MP3) | iTunes (320x180) | iTunes (640x360) | RSS (MP3) | RSS (320x180) | RSS (640x360)… Read more
On today's show, Apple responds to the Mac Defender concerns with a support forum and a promised OS X update, Google may announce mobile payments via NFC as early as tomorrow (Thursday), and Facebook might launch a music service with Spotify (but no, not in the U.S. -- yet). Also, TiVo makes tons of money from suing people and Brian Tong bids a teary farewell to Oprah. --MollySubscribe: iTunes (MP3) | iTunes (320x180) | iTunes (640x360) | RSS (MP3) | RSS (320x180) | RSS (640x360)… Read more
The onslaught against Sony apparently continues: this time hackers have targeted Sony Music Entertainment Japan and stolen information from thousands of accounts in a Canadian Sony Ericsson eShop site, a spokesperson confirmed today.
Meanwhile, e-mails, phone numbers, and passwords of more than 8,000 accounts at Sony Music Greece were stolen over the weekend, Sony confirmed.
"Sony Music Entertainment Greece learned late Sunday about a data breach involving certain Sony Music Greece Web sites" (which was reported yesterday), the statement said. "These sites, which were artist Web sites allowing fans to sign up for newsletters, were taken … Read more
Online security is in the news today, in a big way. Of course, the Sony PlayStation Network hack was terrifying -- personal information from millions of accounts was exposed from what was supposed to be a secure database. And then, just as the network was coming back online, it was hacked again. We're also learning that a new attack is targeting Mac users who visit bad Web sites.
How bad is the security on the Internet? Will the hackers always win? Will consumers always lose? We're discussing this today with a very special guest, Kevin Mitnick.
Mitnick is a hacker. He used to be a criminal hacker. In fact, it's fair to say he was once the most wanted hacker ever. Mitnick landed in prison, in the 1990s, and his most notorious hack was getting to the cell phone companies and getting copies of handset source code. To some, Mitnick was a symbol of the dangers hackers posed to our safety, and needed to be locked up to keep us safe. To others, he was a scapegoat for the lousy computer security practices in corporate America.
Released and, arguably, rehabilitated, Mitnick now runs a security company of his own, in which he probes clients' networks for security flaws and then helps them patch those flaws. Mitnick has a new book coming out, "Ghost in the Wires," which is now available for pre-order on Amazon.
Some of our discussion points… Read more
Security researchers say hackers claiming to have credit card information stolen from Sony's PlayStation Network last week are trying to sell that information on underground Internet forums, but the veracity of the claims could not be confirmed.
Sony warned its more than 70 million customers on Tuesday that their personal information--including customer names, addresses, e-mail addresses, birthdays, network passwords, and user names, as well as online user handles--was obtained illegally by an "unauthorized person." Sony responded to the intrusion, which occurred between April 17 and 19, by temporarily disabling PSN and Qriocity, its subscription music service, and … Read more
Albert Gonzalez, the hacker who pleaded guilty to leading one of the largest cases of credit card theft in the U.S., is asking a judge to toss out the pleas, arguing that they were part of his assignments as a paid government informant.
"I still believe that I was acting on behalf of the United States Secret Service and that I was authorized and directed to engage in the conduct I committed as part of my assignment to gather intelligence and seek out international cybercriminals," Gonzalez wrote in a 25-page petition filed March 24 with the U.… Read more
After a hacker obtained fraudulent digital certificates that could be used to impersonate Google, Yahoo, Skype, and other major Web sites, the security company that issued them blamed the Iranian government.
There is only "one conclusion," Comodo, the Jersey City, N.J.-based issuer of digital certificates said in a report tracing the intrusion to Iran. "This was likely to be a state-driven attack."
Well, not quite. The perpetrator claims to be a 21-year-old Iranian patriot--a "single programmer with the experience of 1,000 programmers"--who told CNET he carried out the intrusion in … Read more
A breach of the Internet's trust system arises from an outmoded method for assuring that a Web site is authentic, and it has browser makers rethinking their approach to security.
Comodo hack may reshape browser security A breach that let a hacker spoof digital certificates for Google.com, Yahoo.com, and other Web sites is prompting browser makers to rethink security. (Posted in Privacy Inc. by Declan McCullagh) April 4, 2011 4:00 a.m. PT
Comodo hacker says he's protesting U.S. policy The person (or persons) involved with high-profile intrusion into Comodo's network says he'… Read more
MOUNTAIN VIEW, Calif.--Every day around 10 a.m., the five employees of YourVersion show up for work. Since hackers tend not to be early risers, their favorite workspace is usually still available.
As a former TechCrunch 50 People's Choice winner, you'd think that the company would be well ensconced in plush Silicon Valley offices. But YourVersion, a personalized content aggregation service, is into "extreme bootstrapping," said its CEO Dan Olsen. So rather than blow thousands of dollars each month on rent, he and his team gather here each morning in a funky industrial building with … Read more
Researchers disclosed on a public security e-mail list today three vulnerabilities in the Web site of security firm McAfee, whose site has been found to have bugs several times before.
The YGN Ethical Hacker Group told the Full Disclosure list that it had reported the problems to McAfee on February 10 and two days later the company said it was working to resolve them. The group disclosed them publicly after noticing that they remained open this weekend--a month and a half later.
McAfee says it is aware of the vulnerabilities and is working to fix them. "It is important … Read more