Todays Security News

Lots and lots of security news today, I will be detailing the SiteAdvisor report in more detail later.

Group rips Microsoft over Internet user profiling research Microsoft Corp. research on Internet user profiling could lead to tools that help repressive regimes identify anonymous dissidents, the Reporters Without Borders advocacy group warned last Friday. In a paper presented at the International World Wide Web Conference last month in Calgary, Canada, four researchers at Microsoft’s Beijing-based lab laid out work that predicted the age and gender ( PDF format) of unknown Web users based on the sites they visited. Their new algorithms correctly guessed the gender of a Web surfer 80% of the time, and his or her age 60% of the time.

The State of Search Engine Safety We find that AOL returns the safest search results, while Yahoo! returns the greatest percentage of risky results. Since May 2006, search engine results have become safer, primarily due to improved safety of sponsored results on Google, AOL, and Ask. Despite this improvement, dangerous sites are found in search results of all of the top five search engines, and sponsored results continue to be significantly less safe than search engines? organic results.

Online tunes are more risky than Web porn More data from the SiteAdvisor article. About 9% of adult sites produce spyware, adware or spam, compared with 19% of digital music sites found in a study by McAfee.

McAfee Reports Drop in Malicious Search Results Article from PCMag that talks about the drop in malware when compared to the previous years SiteAdvisor article.

Google As Terror Tool? Terrorists use Google Earth instead of their own video.

Microsoft unveils integrated security Microsoft shared details of its long-term security product strategy as part of its ongoing TechEd 2007 training conference on June 4, lifting the lid on plans to deliver an integrated suite of its software by mid-2009.

Gaping holes exposed in fully-patched IE 7, Firefox Polish hacker Michal Zalewski has ratcheted up his ongoing assault on Web browser security models, releasing details on serious flaws in fully patched versions of IE 6, IE 7 and Firefox 2.0.