Iranian hackers Pasatoo again hit the International Atomic Energy Agency with a view to embarrassing both the IAEA and Israel. Pakistani members of Anonymous attack a very broad array of targets across the world "for various reasons." New Mac malware—"Dockster"—is found on the Dalai Lama's Websites. (Volokh Conspiracy blawgers note Sichuan University's past involvement in attacks on Tibetan activists.)
MySQL zero-days are announced, but many security experts doubt the vulnerabilities amount to much. A "blended threat" targets Yahoo developer features to steal user data. Reveton and Citadel impersonate the FBI in a ransomware scheme. Some US traffic monitoring systems show "insufficient entropy" in authentication key generation, and are vulnerable to man-in-the-middle attacks. The black market now offers a convenient malicious domain registry. A Tumblr worm spreads rapidly, distributing a viral text.
From his embassy redoubt, Wikileaks leader Julian Assange accuses Google and Facebook of being fronts for US intelligence agencies. If confetti made of police documents can be reconstituted, what of electronic backup media? SANS says they're often disposed of by simple dumping, and has lurid photos to prove it.
Contractors warn US budget austerity will have serious implications for national security, but TASC disagrees, and their CEO calls for industry to take the lead in cutting budgets. BAE Detica consolidates Australian acquisitions and expands into Malaysia. France Telecom makes a major investment in mobile security firm Lookout.
The UK organizes a "Dad's Army" of cyber reserves. The Los Angeles Times discusses regulatory obstacles to threat information sharing.