In a report that acknowledged the “tremendous” growth of mobile software, the Federal Trade Commission said app developers are not making “simple and short” declarations of their privacy policies.

As a result, young users – picked out for their vulnerability – could be giving up their mobile phone numbers, contacts, location and other data without knowing about it.

Source: The Register

Analysis Cryptography researchers have discovered flaws in the key generation that underpins the security of important cryptography protocols, including SSL.

Two teams of researchers working on the problem have identified the same weak key-generation problems. However, the two teams differ in their assessment of how widespread the problem is – and crucially which systems are affected. One group reckons the problem affects web servers while the second reckons it is almost completely confined to embedded devices.

The US researchers are in the process of informing equipment manufacturers about the potential problem while they put the finishing touches to an upcoming paper on the subject.

Source: The Register

Cryptome.org was notified of the compromise by a visitor who reported receiving this warning from anti-malware software after visiting the site.

Someone compromised the free-speech, antisurveillance repository Cryptome.org and hid malware on the site that infected Web surfers over the weekend, Cryptome.org reported.

A malicious PHP file was added to the site on Wednesday and a new directory was created that had logged nearly 3,000 IP addresses between Wednesday and Sunday, according to a post on the site.

Source: CNET News

A Senate plan indevelopment would bolster the government’s ability to regulate the computer security of companies that run critical industries.

Some businesses say it goes too far, while some security experts believe it should have even more teeth.

The proposal is meant to ensure that computer systems running power plants and other essential parts of the country’s infrastructure are protected from hackers, terrorists or other criminals.

Authorities are increasingly worried that cybercriminals are trying to take over systems that control the inner workings of water, electrical, nuclear or other power plants.

Source: Yahoo News

The Los Angeles federal grand jury has indicted a Romanian citizen on charges he hacked into 25 climate-research computers at NASA’s Jet Propulsion Laboratory in Pasadena, California.

Prosecutors say Tuesday’s indictment charges 25-year-old Robert Butyka with one count of unauthorized impairment of a protected computer.

The 2010 hacking made computers unusable for two months while a malicious code was removed and data restored  in the Atmospheric Infrared Sounder Program.

Source: MSNBC

The hacker community Anonymous on Friday landed another blow in its war with the United States Federal Bureau of Investigation (FBI) tapping into an FBI conference call recently, after which they put a recording of the call on the open Web.

It posted an internal memo from the law enforcement agency about an upcoming international call to discuss hackers. Anonymous also put up a recording of the call itself on YouTube.

“The information was intended for law enforcement officers only and was illegally obtained,” the FBI said in a statement sent to TechNewsWorld by spokesperson Jenny Shearer. “A criminal investigation is underway to identify and hold accountable those responsible.”

Source: Tech World