Slashdot

The SANS Internet Storm Center reports about an increasing number of sophisticated and targeted cyber attacks against Tibetan NGOs. These attacks appear to be related to attacks against other anti-chinese groups like Falun Gong. From the article:

"There is lots of media coverage on the protests in Tibet. Something that lies under the surface, and rarely gets a blip in the press, are the various targeted cyber attacks that have been taking place against these various communities recently.
These attacks are not limited to various Tibetan NGOs and support groups. They have been reported dating back to 2002, and even somewhat before that, and have affected several other communities, including Falun Gong and the Uyghurs."
http://isc.sans.org/diary.html?storyid=4177

UnderAttack writes "The SANS Internet Strom Center (ISC) setup a web page listing about 500 domains that use keywords related to the Virginia Tech shooting. Turns out that most of them got registered just the last 2 days. While some are used for innocent purposes, others are used for fraud. The page allows everybody with an ISC or DShield account to help categorize the pages. The ISC did the same after Hurricane Katrina, which spurred a lot of these scum-domains."

Anonymous Coward writes "Vuljnerable web applications are a huge problem. A new SANS paper: Web Application Auditing Over Lunch shows some very simple tricks on how to check your web application for common security issues.

After all, many web application didn't take longer then that to write. So why not break them in the same time. The paper is pretty platform neutral. However, I found the mentioned firefox extension "Tamper Data" to be very usefull."