Cody Taylor

mellowdonkey writes “Last year’s CanSecWest hacking contest winner, Charlie Miller, does it again this year in the 2009 Pwn2Own contest. Charlie was the first to compromise Safari this year to win a brand spankin new Macbook. Nils, the other winner, was able to use three separate zero day exploits to whack IE8, Firefox, and Safari as well. Full detail and pictures are available from the sponsor, TippingPoint, who acquired all of the exploits through their Zero Day Initiative program.”

Read more of this story at Slashdot.

Bob the Super Hamste writes “CNN is reporting that the page recovery.gov is not as transparent as it claims to be. The examples pointed out are: 1. The user is greeted by a large pie chart that show the breakdown of money spent by 2 categories, state government distributions and local government distributions. 2. Finding projects involves a complicated search, information on projects is not actually hosted on recovery.gov 3. The format of the information available is of poor quality (the article specifically mentions a PDF document that was created from a scanned sideways copy of roadwork projects from New York state). Given that this site was meant to make the spending of the new stimulus money more transparent to the citizens of the Unites States of America it seems oddly opaque. CNN does seem to praise the ability for government agencies to be able to exchange HTML based information between systems, which for government I would call a massive accomplishment. I tried to find information for my state and searched for Minnesota. I got 4 matches, 2 of which were generic ones: one was the Minnesota state certification that is required for a state to receive funds and one that lays out public transportation spending for all states of which Minnesota gets ,093,115.”

Read more of this story at Slashdot.

Ropati writes “I bank with capitalone.com. Recently I went to log in to my credit card account, and my browser reported that the site certificate didn’t match the web site I was on. [Expletive.] I’m wondering if I am getting a poisoned DNS URL. I have to log in and do my banking, so I accept the mismatched certificate. The banking site is complete, my transactions are listed but that doesn’t mean there isn’t a man in the middle attack here. I am still curious how much I have exposed my banking assets.” Read on for more, and offer advice on how to interpret what sounds like a flaky response from the bank.

Read more of this story at Slashdot.

TheDopp writes “The United Nations hosted the cast and crew of Battlestar Galactica Tuesday evening in New York. Clips of the show were shown as discussion points during the event, touching on the morality of Suicide Bombers in war, Abortion and the use of torture on enemies of the state. At one point during the event an attendee mentions ‘the “Old Man” launched into a passionate speech about casting off the idea of race as a cultural determinant, and said we were one race, the human race. His voice echoed throughout the chamber growing louder until — I kid you not — he was yelling, “So Say We All,” and the crowd answered right back. Hell, even I yelled it, I was in the fraking United Nations with Adama, the gods themselves could not have stopped this moment.’ The full video of the event is located on the UN website.”

Read more of this story at Slashdot.

iPhone OS, Android, webOS, Windows Mobile, BlackBerry, S60; if you’re in the market for a new smartphone, your choices have been getting exponentially more complicated lately, and 3.0 won’t make the selection any easier. Luckily for you, Engadget is here to make sense of a frightening and uncertain landscape.

Symantec today formally unveiled its cloud-based storage service, Norton Online Backup, which allows you to manage through a Web interface up to five PCs on your home network under a single license.

After the new themes introduced yesterday, Canonical decided to update the boot splash screen (USplash) theme with a very nice one, which looks more professional than the previous one, and the new loading bar has a futuristic effect. For your viewing pleasure, we’ve also recorded a video of the new boot splash screen in action!

Red-light cameras have been combined with short yellow lights to catch drivers and raise city revenues across the country. Now an insurance-checking camera company has presented Chicago with a new twist on the idea—instead of speeders, go after the uninsured.

Microsoft plans to make its Internet Explorer 8 browser available on Thursday, along with a company-commissioned report claiming IE8 is more secure against malware than rival browsers from Mozilla and Google.

For existing AT&T subscribers looking to get a new handset for a few months before they make that inevitable Pre / iPhone 3.0 / Gizmondo decision this summer — or folks who just despise contracts in general — it looks like AT&T will be offering unsubsidized iPhone 3Gs at last.