I'm pretty sure there is more of a case to be made in pointing the finger at the company that had the weak security controls which allowed this breach to happen. Just sayin...

Seriously, monthly hidden cell phone fees that "children" incur without permission probably vastly surpasses 19 million every month. Why hasn't the FTC done ANYTHING about that.

I agree you shouldn't have to go to any extremes to lock down your own data. But when publishing an website online, there are certain standards you need to follow if you don't want people copying the data on your website. If they are allowing search engines to index their proprietary data, then they should have no expectation that others will not do the same.

The OSVDB went pay a few years ago. They have a wealth of interesting information and use to be fully open source however due to lack of community involvement they decided that the open source model wasn't working for them. If the OSVDB has a problem with people scraping their site, they should really update (or in their case - create) their robots.txt. I was interested in this data myself a year or so ago until I found out they wanted me to pay a subscription to access information I can view for free on their website and screen scrape for free if I really wanted to. Further more, I noticed that google has completely cached their site because they take no preventative measures against it. If anyone wanted this data, they could easily screen scrape it from the google cache and the OSVDB would be none the wiser. Why should anyone pay for data that the OSVDB has literally done nothing to protect?

Seriously. Google and other companies in silicon valley skip out on billions worth of taxes by funneling it through Ireland and this is what you want to focus on. Jet fuel?

I have a better question, how much will it take for the American public finally do something about their government that is committed so many international crimes? For the record, I for one do not believe that shedding light criminal activities could ever go too far. What's the old phrase, "Don't shoot the messenger?"

It's hardly hating. Given the circumstances, this will likely become the norm for all governments and quite likely businesses that don't feel like being spied on. I'd like to think this is a wake up call for all those people that want to throw their data into the cloud without giving it a second thought, but it looks like for the most part nobody cares. And apparently, anyone who does care and takes a pro-active approach will be labelled as a hater.

As Google is a U.S. based company, I'm pretty sure this is a bald faced lie due to the "Patriot Act".

I enjoy using The Old Reader - I also just happened to hear about them closing up shop this morning, however it wasn't communicated well unless you read their blog. I'm happy this was posted up on Slashdot as it draws attention to the issue that they were considering shutting down their servers. This is news that matters to me.

Not only that, its incentive for other people, who may have access to an unknown zero day to disclose that information to MS for the bounty.

"When people stop fighting battles for themselves war becomes nothing more than a game." -- Quatre

I completely agree that the "Cyberwar" term is hyped up and thrown around too much. But an attack on critical infrastructure like Water and Energy systems through SCADA attacks could easily result in the loss of lives. Just as an example, how many people depend on life support systems that require energy in hospitals?

How are you supposed to protect a password that you don't even know? It seems to me if someone knew how the system worked, they could trick an unsuspecting user into divulging their password without the users knowledge. This is obfuscation, nothing more.

Wikiquote seems to disagree (although it mentions it was said behind closed doors...).

http://en.wikiquote.org/wiki/George_W._Bush