1. PREVIOUS GNEWS

2. 4 Patches – x bugs addressed Affecting Word, Outlook, Publisher, Jet DB Engine, IE, Windows Other updates, MSRT, Defender Definitions, Junk Mail Filter 8 Security Patches - 5 Critical, 1 Moderate –MS08-026 – Word - Remote Code Execution –MS08-027 – Publisher - Remote Code Execution –MS08-028 – Jet – Remote Code Execution –MS08-029 – Malware Protection Engine – DoS

3. Holes / Patches Oracle Patch Release, 41 fixes Apple Patches released for Safari, ver 3.1.1 Firefox Patches, ver 2.0.0.14 Watchfire Webapp scanner, ActiveX HP Updated, ActiveX CA ActiveX, multiple products KDE, png handling error Wonderware, SCADA DoS Windows CE jpg and gif handling error

4. Hacking RF-Wall, detects counterfeit and cloned tags Lukas Grunwald Undetectable Chip hack, PoC on Sparc for Linux Quantum Encryption hacked Linkoeping University, Sweden MS COFEE, Computer Online Forensic Evidence Extractor SMM Rootkit PoC at DefCon Sandman Reads Windows Hibernation Files

5. Corp. Hell Virgin media says net neutrality is already dead Cisco is a linux router, Application eXtension Platform Oracle managed security NSA to make a secure platform (HAP) Sun to open source java Sun closes MySQL source.....that didn't take long –and so the community shift to postgress begins ;) Windows on XO Laptop XO Laptop keyboard failures DHS site hacked more hacker safe MS management for *nix wabisabilabi partners with Italian company, appliance based protection HP bids on EDS

6. The New School of Information Security –Adam Shostack and Andrew Stewart Coding Around the Vista UAC –Neosmart.net NIST Draft for General Server Security Govt. declassifies original report on electronic tempest

7. Film / Music Demonoid Tracker is back on-line Del Senator Joe Biden wants to track ALL P2P Metallica decides open music sharing is not so bad Arizona Judge slams RIAA ‘making available’ theory –'Unless a copy of the work changes hands in one of the designated ways, a "distribution" under [sec.] 106(3) has not taken place.‘ MacGyver Movie

8. Game Eve source code leaked D&D 4 th Edition, retracts open licensing

9. Australia rules employers can snoop email Border agents relieved of ‘reasonable suspicion’ for laptop searches Border agents allowed to copy all your data Pro-IP Act passes Judiciary Committee unanimously California court rules Copyright Remedy Clarification Act unconstitutional DHS to collect DNA of federal arrests FBI renews push for ISP retention laws Legal

10. linux kernel 2.6.25 secunia psi and nsi snort 2.8.2 MS live mesh xp sp3 Metagoo, documents meta data scanner open solaris Updates

11. PETA, offers $1 mil. prize for fake meat Russia to require registration of ALL wi-fi Canadian Copyright Conference un-invites noted copyright scholar The Public Policy Forum Symposium, Howard Knopf Companies to be held liable for use of services by criminals / terrorists WTF

12. CON Events Completed Cons –USENIX Usability, Psychology, and Security 2007, 14 Apr / San Francisco CA –Hack In The Box, 14 - 17 Apr / Dubai –ToorCon Seattle, 18 – 20 Apr / Seattle –Infosecurity Europe 2008, 22 – 24 Apr / London –Trooper 08, 23 – 24 Apr / Munich –Infosecurity Europe 2008, 22 – 24 Apr / London –Interop, 27 Apr - 2 May / Las Vegas NV –MS BlueHat Spring 2008, May 2 2008 / Redmond WA

13. CON Results RSA – Swedish security researcher exploits botnet C&C agents RSA – Feds preach cyber security agenda RSA – IBM declares ‘The security industry has not future…’ Ohh dejavu ….and IDS is dead ToorCon (Seattle) – MS promises not to press charges against ethical hackers that follow responsible disclosure HitB (Dubai) – Presentations and video archive DefCon preview – security companies slamming malware competetion, Race to Zero

14. CON Events Future Cons –Layerone, 17 – 18 May / Pasadena CA –DallasCon 2008, TBD / Dallas, TX –AusCERT 2008, 18 - 23 May / Gold Coast AU –HOPE 7, 18 - 20 July / New York NY –USENIX 17th Security Symposium, 28 July - 1 Aug / San Jose CA –REcon 2008, 13 – 15 June / Montreal CA –Black Hat USA, 2 - 7 Aug / Las Vegas NV –DefCon, 8 - 10 August / Las Vegas NV –Chaos Communications Camp, TBD / Berlin

15. All images scavenged without permission