This weekend, marches and meetings across Germany will protest the overreaction of countries to the threat of terrorism, and the re-emergence of a surveillance state in that country. "Freedom Not Fear" is not a small event: over 20,000 people demonstrated

It's official, even a pothead can social engineer Network Solutions. In an in-depth interview with the hijackers, featuring some screenshots showing they had access to the complete portfolio of over 200 domain names controlled by Comcast, the details of how

According to Neowin, computing students at the University of Bochum, Germany, have worked out how to retrieve vital security tokens from Microsoft's CardSpace framework. CardSpace is highly tipped to be the successor to Windows Live ID Passport and making passwords

Stack has discovered some vulnerabilities in CMS from Scratch, which can be exploited by malicious users to disclose sensitive information and to compromise a vulnerable system. 1) Input passed to the "dir" parameter in cms/images.php and cms/files.php is not properly

A vulnerability has been discovered in Crystal MP3 Recorder, which can be exploited by malicious people to compromise a user's system.

A vulnerability has been discovered in Powerful Audio Tool, which can be exploited by malicious people to compromise a user's system.

A vulnerability has been discovered in Audio Editor Plus, which can be exploited by malicious people to compromise a user's system.

A high-severity security flaw in the Creative Software automatic update engine could put Windows computers at risk of remote code execution attacks, according to a warning from the US-CERT Computer Emergency Readiness Team. The vulnerability affects the software used to

Chinese girls talking about using SQL injections to serve malware and ARP spoofing, in between sharing do-it-yourself tutorials on XSS worms? Sexy. Scott Henderson at the Dark Visitor profiled a Chinese hacking group with female members only, discussing these very

On the heels of last month's embarrassing site breach that allowed a hacker to redirect traffic from BarackObama.com to Hillary Clinton's Web site, the Obama campaign is looking to hire a network security expert to lock down its online operations.

Microsoft has issued a formal security advisory with a confirmation of public warnings that the Safari "carpet bombing" vulnerability presents a remote code execution threat on all supported editions of Windows XP and Windows Vista. The pre-patch advisory from Redmond

LinuxSecurity.com: Alin Rad Pop discovered that Samba contained a buffer overflow condition when processing certain responses received while acting as a client, leading to arbitrary code execution (CVE-2008-1105).