Recently, U.S. UAVs made three attacks in one day in Pakistan’s tribal territories. The Hellfire missiles were hitting targets in North Waziristan, where Taliban and al Qaeda forces are taking shelter with Pushtun tribes that are, at best, neutral in the war between the Pakistani government and the Pakistani Taliban. One of the dead terrorists [...]This story comes to us via Homeland Security - National Terror Alert. National Terror Alert is America's trusted source for homeland security news and information. ...

Police in Horry County say one man is dead following a stabbing at the Myrtle Beach International Airport late Friday morning.Sgt. Robert Kegler, spokesman for the Horry County Police Department, said authorities were alerted of an unauthorized person on the airfield at the Myrtle Beach International Airport at 10:45 a.m.Police were dispatched to the airport [...]This story comes to us via Homeland Security - National Terror Alert. National Terror Alert is America's trusted source for homeland security news and information. ...

Some people were very eager to claim that this vulnerability report was fake - both on the Mozilla blog and our own forum - but Mozilla has now fixed this vulnerability in their Beta build and it will also be included in the upcoming version 3.6.2.

Posted by Michal Zalewski

The safety of the Internet is of paramount importance to Google, and helping web developers build secure, reliable web applications is an important part of the equation. To advance this goal, we have released projects such as ratproxy, a passive security assessment tool; and Browser Security Handbook, a comprehensive guide for web developers. We also worked with the community to improve the security of third-party browsers.

Today, we are happy to announce the availability of skipfish - our free, open source, fully automated, active web application security reconnaissance tool. We think this project is interesting for a few reasons:

• High speed: written in pure C, with highly optimized HTTP handling and a minimal CPU footprint, the tool easily achieves 2000 requests per second with responsive targets.
  
  
• Ease of use: the tool features heuristics to support a variety of quirky web frameworks and mixed-technology sites, with automatic learning capabilities, on-the-fly wordlist creation, and form autocompletion.
  
  
• Cutting-edge security logic: we incorporated high quality, low false positive, differential security checks capable of spotting a range of subtle flaws, including blind injection vectors.
  

As with ratproxy, we feel that skipfish will be a valuable contribution to the information security community, making security assessments significantly more accessible and easier to execute.

To download the scanner, please visit this page; detailed project documentation is available here.

FBI Director Robert Mueller warned Congress on Wednesday of ongoing al-Qaida efforts to acquire weapons of mass destruction to attack the United States. “Al-Qaida remains committed to its goal of conducting attacks inside the United States,” Mueller told a House appropriations subcommittee. “Further, al-Qaida’s continued efforts to access chemical, biological, radiological, or nuclear material pose a [...]This story comes to us via Homeland Security - National Terror Alert. National Terror Alert is America's trusted source for homeland security news and ...

An article on Air Cargo World reports that Gale Rossides, acting director of the Transportation Security Administration (TSA), told the House Homeland Security Appropriations Subcommittee it was feasible to screen all domestic cargo by the August 3 deadline. But she estimated that 65 percent was probably the best the TSA could do by that date [...]This story comes to us via Homeland Security - National Terror Alert. National Terror Alert is America's trusted source for homeland security news and information. ...

A radical Muslim cleric tied to the Fort Hood shooting suspect can be heard taunting President Obama, applauding the attempted bombing of a Detroit-bound flight on Christmas and clearly acknowledging a relationship with Maj. Nidal Hasan, in a newly released audiotape obtained by Fox News. The cleric, Anwar al-Awlaki, used the tape to go on a [...]This story comes to us via Homeland Security - National Terror Alert. National Terror Alert is America's trusted source for homeland security news and ...

A U.S. citizen of Pakistani extraction pleaded guilty on Thursday to a dozen federal terrorism charges, including an alleged plot to decapitate Danish journalists and throw their heads out of windows. According to court documents and a Justice Department press release, among the terrorist activities to which David Coleman Headley admitted were extensive involvement in [...]This story comes to us via Homeland Security - National Terror Alert. National Terror Alert is America's trusted source for homeland security news and information. ...

Mozilla was contacted by Evgeny Legerov, the security researcher who discovered the bug referenced in the Secunia report, with sufficient details to reproduce and analyze the issue.  The vulnerability was determined to be critical and could result in remote code execution by an attacker.  The vulnerability has been patched by developers and we are currently [...]

CNN reports an intercepted message indicates some members of al Qaeda are looking to the group's founder for more visible leadership, a U.S. intelligence official told CNN Wednesday after CIA director Leon Panetta talked about the message in a newspaper interview. Osama bin Laden is rarely seen, rarely heard, the official said, and that is troubling [...]This story comes to us via Homeland Security - National Terror Alert. National Terror Alert is America's trusted source for homeland security news and ...