Trilight Zone

[tricore]

An assortment of security stories floating around blogland that you should be reading...

Google's Matt Cutts offers a must-read explanation for how the search engine deals with hacked sites. TechMeme has more.

The MoKB (month of kernel bugs) ended the way it started -- exposing Wi-Fi device drivers in Apple's Mac OS X -- but there is a dispute brewing about the severity of one of the project's Apple bugs. SecurityFocus covers the story.

Matasano's Dino Dai Zovi makes an argument for a vulnerability arbitrator to sift through the claims/counterclaims between hackers and vendors.

Did Valleywag really get hacked? Wired's 27B Stroke 6 claims it broke into the gossip site's CMS and redirected news tips elsewhere but Nick Denton's people e-mailed to stress that it's software bug and *not* a security breach.

Mary Jo Foley speculates that the next version of the Windows Live Family Safety Center service is codenamed "Ohana."

Speaking of Microsoft, there's a new unpatched flaw in the Windows print spooler service. Exploit code is already public.

Beware of cracked activation keys for Windows Vista. It just might come with a nasty Trojan.

Remember Yapbrowser, the rogue browser that was serving up child porn? Paperghost reports that the domain is up for sale, asking $10,000.