I chuckled when I read these words from Mikko Hypponen: "The problem is that this is not a botnet..." Of course, Mikko was referring to the Allaple worm and why worms in general never die (because there's no central command and control). But still, it was amusing to see a botnet referenced in a positive way. :-)

It seems safety issues with items made in China continue to be a concern. The most recent - the Energizer DUO - USB charger shipped with a backdoor trojan that infects PCs using the battery charging device. As with previously trojaned merchandise, the Energizer charger was manufactured in China. Forensics indicate that the trojan found on the devices was written on a Chinese language computer. CyberCrime & Doing Time has complete details in Energizer DUO: Trojan Yourself for Only $19.99.

Cybercriminals can hijack your online accounts to order items at your expense, gain access to your email, or use your good name to send spam, malware and scams to people you know. One way attackers can gain access is by taking advantage of lax security in your password reset and recovery options for that account. Here's how to police your password recovery options so you don't become a victim.

Most online accounts include a 'secret' question to assist in password recovery, the correct answer to which is supposed to validate that you really are the legitimate owner of that account. The problem is, the 'secret' question is generally none too secret and it's too easy for attackers to guess the right answer. You can't change the secret question, but here's how you can keep your secret answer secret.