Phone Passwords Protected By 5th Amendment, Says Federal Court Slashdotby timothy on government at January 1, 1970, 1:00 am (cached at September 24, 2015, 11:33 pm)

Ars Technica reports that a Federal court in Pennsylvania ruled Wednesday that the Fifth Amendment protects from compelled disclosure the passwords that two insider-trading suspects used on their mobile phones. In this case, the SEC is investigating two former Capital One data analysts who allegedly used insider information associated with their jobs to trade stocks—in this case, a $150,000 investment allegedly turned into $2.8 million. Regulators suspect the mobile devices are holding evidence of insider trading and demanded that the two turn over their passcodes. However, ruled the court , "Since the passcodes to Defendants' work-issued smartphones are not corporate records, the act of producing their personal passcodes is testimonial in nature and Defendants properly invoke their fifth Amendment privilege. A"

Read more of this story at Slashdot.

Price-gouging pharma CEO's address, phone number leaked (SC Magazine) SANS ISC SecNewsFeed(cached at September 24, 2015, 11:28 pm)

White House working group mulls ways to access encrypted data (SC Magazine) SANS ISC SecNewsFeed(cached at September 24, 2015, 11:28 pm)

Better Surge Suppression Part 3 (IT Toolbox Blogs) SANS ISC SecNewsFeed(cached at September 24, 2015, 11:28 pm)

NYIT Cyber: Panel discusses security and threat innovations (SC Magazine) SANS ISC SecNewsFeed(cached at September 24, 2015, 11:28 pm)

US Rank Drops To 55th In 4G LTE Speeds Slashdotby timothy on internet at January 1, 1970, 1:00 am (cached at September 24, 2015, 11:03 pm)

alphadogg writes: The U.S. has fallen to No. 55 in LTE performance as speeds rise rapidly in countries that have leapfrogged some early adopters of the popular cellular system. The average download speed on U.S. 4G networks inched up to 10Mbps (bits per second) in the June-August quarter, according to research company OpenSignal. That was an improvement from 9Mbps in the previous quarter, but the country's global ranking fell from 43rd as users in other countries enjoyed much larger gains.

Read more of this story at Slashdot.

Modern Browsers Are Undefended Against Cookie-based MITM Attacks Over HTTPS Slashdotby timothy on security at January 1, 1970, 1:00 am (cached at September 24, 2015, 11:03 pm)

An anonymous reader writes: An advisory from CERT warns that all web-browsers, including the latest versions of Chrome, Firefox, Safari and Opera, have 'implementation weaknesses' which facilitate attacks on secure (HTTPS) sites via the use of cookies, and that implementing HSTS will not secure the vulnerability until browsers stop accepting cookies from sub-domains of the target domain. This attack is possible because although cookies can be specified as being HTTPS-specific, there is no mechanism to determine where they were set in the first place. Without this chain of custody, attackers can 'invent' cookies during man-in-the-middle (MITM) attacks in order to gain access to confidential session data.

Read more of this story at Slashdot.

How the Arctic is 'bustling' in winter BBC News | Science/Nature | UK Edition(cached at September 24, 2015, 10:59 pm)

Over three winters in the waters of a Svalbard fjord, scientists have catalogued surprisingly high levels of animal activity during the long polar night.
Can China's president reassure US investors? AL JAZEERA ENGLISH (AJE)(cached at September 24, 2015, 10:58 pm)

During his US visit, Xi Jinping has promised to increase foreign investment and maintains China's economy is growing.
Microsoft puts a bullet in blundering D-Link's leaked key that made malware VIPs on SANS ISC SecNewsFeed(cached at September 24, 2015, 10:58 pm)

Analysis: HHS' Revised Strategic Health IT Plan (InfoRiskToday) SANS ISC SecNewsFeed(cached at September 24, 2015, 10:58 pm)

Why Patience during a Software Implementation is Critical (IT Toolbox Blogs) SANS ISC SecNewsFeed(cached at September 24, 2015, 10:29 pm)

OIG: Obamacare Data Repository Had Security Flaws (InfoRiskToday) SANS ISC SecNewsFeed(cached at September 24, 2015, 10:29 pm)

BSides Charleston registration and CFP open! Free Event on Folly Beach, SC 11/14/15 SANS ISC SecNewsFeed(cached at September 24, 2015, 10:29 pm)

Mozilla Fixed a 14-Year-Old Bug In Firefox, Now Adblock Plus Uses Less Memory Slashdotby timothy on mozilla at January 1, 1970, 1:00 am (cached at September 24, 2015, 10:03 pm)

An anonymous reader writes: Mozilla launched Firefox 41 yesterday. Today, Adblock Plus confirmed the update "massively improves" the memory usage of its Firefox add-on. This particular memory issue was brought up in May 2014 by Mozilla and by Adblock Plus. But one of the bugs that contributed to the problem was actually first reported on Bugzilla in April 2001 (bug 77999).

Read more of this story at Slashdot.