http://www.secuobs.com Observatoire de la securite Internet fr webmaster@secuobs.com 2008-07-06 00:05:37 - Slashdot Your Rights Online : orenh writes "Viacom has recently obtained a court order that requiresGoogle to hand over a complete list of every video watched by YouTubeusers These logs will include the login names and IP addresses of theusers Google are now asking Viacom if they can anonymize the logsbefore turning them over; Viacom hasn't responded yet But thisprivacy nightmare could have been greatly reduced if Google hadanonymized the data in advance Google's privacy policy states thatthey keep personally identifiable information for 18 months There isno real reason to do so; Google can achieve everything they need evenif they anonymize their search logs after just one month, and it'stime users told them to do so"IMAGERead more of this story at SlashdotIMAGEIMAGEhttp://www.secuobs.com/revue/news/36277.shtmlhttp://www.secuobs.com/revue/news/36277.shtml 2008-07-05 14:18:50 - Hack In The Box : An appeal by Google against the decision of a federal judge in New Yorkthat it must hand over details of every video ever viewed on YouTubeto Viacom was not only widely expected, but thought to be pretty mucha given A comment by Google's senior litigation counsel seems tosuggest otherwise File under 'almost as big a shock as the originalruling as Google lets slip a comment which would seem to rule out anappeal over the YouTube video privacy debacle The Boston Globeyesterday published a brief statement from Catherine Lacavera, thesenior litigation counsel at Google It was not what the world wasexpecting "We are disappointed the court granted Viacom'soverreaching demand for viewing history" she said, which on its owncould win the understatement of the year award But this is wherethings get really interesting, because Lacavera also added "We willask Viacom to respect users' privacy and allow us to anonymize thelogs before producing them under the court's order"http://www.secuobs.com/revue/news/36241.shtmlhttp://www.secuobs.com/revue/news/36241.shtml 2008-07-05 12:49:52 - SecuMania.org Headlines News : Google expressed disappointment and privacy groups voiced outrageThursday after a judge ordered Google to give entertainment giantViacom details of video-watching habits of visitors to its popularvideo-sharing websitehttp://www.secuobs.com/revue/news/36230.shtmlhttp://www.secuobs.com/revue/news/36230.shtml 2008-07-05 00:50:14 - SecuMania.org Headlines News : A US judge has ordered Google to expose to Viacom the video-viewinghabits of everyone who has ever used YouTube in a decision condemnedby the Internet giant and privacy advocates US District CourtJudgehttp://www.secuobs.com/revue/news/36185.shtmlhttp://www.secuobs.com/revue/news/36185.shtml 2008-07-04 21:46:43 - News : For Google, ready Privacy: That could be the subliminal message Googlewants to send by replacing its name on its famously spartan home pagewith a link to its privacy policyread moreIMAGEhttp://www.secuobs.com/revue/news/36146.shtmlhttp://www.secuobs.com/revue/news/36146.shtml 2008-07-04 18:06:04 - Slashdot Your Rights Online : theodp writes "In its just-published patent application for Network NodeAd Targeting, Google hatches plans for identifying the mostinfluential of a circle of friends and providing this 'influencer'with 'financial incentives from advertisers in exchange for permissionto display advertisements on the member's social network profile'sound familiar, Jeremy Doing so will 'provide advertisers with theoption of targeting either all members in the community or advertisingonly on the profile of the influencer, thereby targeting the entirecommunity,' explains Google Who says you can't buy friendship"IMAGERead more of this story at SlashdotIMAGEIMAGEhttp://www.secuobs.com/revue/news/36099.shtmlhttp://www.secuobs.com/revue/news/36099.shtml 2008-07-04 15:49:00 - FSecure Antivirus Research Weblog : Happy Independence Day USAFireworks SpamOur use of Google Earth was a weblog topic several weeks ago We'vebeen working on additional features since thenThere were a few questions asked in the comments sectionQuestion —I like maps like these I like maps in general But – and I'm askingthis out of curiosity, not because I'm criticising your work – does itadd something to anti-malware researchAnswer —The map's data source comes from our statistics server, which is veryuseful in our forecasting efforts Analyzing the numbers helps drivethe direction of our researchThe application of the data to Google Earth adds to our presentationand education efforts Actually seeing a real-time view of malware inthe world really helps lab visitors understand the threat scope Thelive world map also shows real-time spikes in malware traffic andassists our shift managersQuestion —Are we able to subscribe to these feedsAnswer —Unfortunately the public is unable to subscribe to the feeds The datacontains IP addresses and because those IP address are the source ofspam, malware, et cetera — that means there are infected computers onthe other end Infected computers are vulnerable to furtherexploitationOne of the ways to build a botnet is to hijack someone else'sWe also consider IP addresses to be personal dataPhishing in FairbanksClick the image for a 1400x1050 viewSo because you can't subscribe to the feeds, we've created an offlineKML file that you can download and import into your own installationof Google Earth We've sanitized the IP addresses to 0000Here's the data from today, 20080704KMLLegend:Google Earth LegendGeoIP conversion can be very helpful The Warezov botnet usesfast-fluxing techniques with domain names registered in China Sendingabuse messages regarding the domains is fairly pointless New domainsquickly replace any that are actually taken downLocating the infected servers is more useful The last time weanalyzed our Warezov pharmacy site hosts lists, we found 397 uniquedomains online Those 397 domains resolved to 76 unique IP address, 40of which are located in the United States according to GeoIP Thatlist of 76 addresses is a much better target of abuseWarezov pharmacy website hosts KML file Seattle is infested…Warezov bots in SeattleJust out of curiosity, we can also do other things with GeoIPconversions such as determine where our readership resides, eg weconverted the IP addresses of those that answered our recent browserpollKML files can be viewed via Google Earth or they can be imported intoGoogle MapsGoogle Maps - Weblog Poll RespondentsOn 04/07/08 At 02:08 PMhttp://www.secuobs.com/revue/news/36056.shtmlhttp://www.secuobs.com/revue/news/36056.shtml 2008-07-04 14:18:27 - Latest from Computerworld : For Google, ready Privacy: That could be the subliminal message Googlewants to send by replacing its name on iIMAGEIMAGEhttp://www.secuobs.com/revue/news/36045.shtmlhttp://www.secuobs.com/revue/news/36045.shtml 2008-07-04 13:35:13 - Rootsecure.net : BBC News: Google faces 'Street View block' "Google's plans to launch amapping tool in the UK could be referred to the InformationCommissioner"http://www.secuobs.com/revue/news/36043.shtmlhttp://www.secuobs.com/revue/news/36043.shtml 2008-07-04 13:34:45 - Journal du Net Solutions l'actualité en bref : Google a décidé de publier sous licence Apache 20, le code source de sonoutil de sécurité RatProxy Ce dernier permet d'auhttp://www.secuobs.com/revue/news/36040.shtmlhttp://www.secuobs.com/revue/news/36040.shtml