CORE FORCE is definitely worth looking at as a personal PC security solution (not be-all end-all, but part of a defence in depth strategy including AV, antispyware, etc).

CORE FORCE is the first community oriented security solution for personal computers. CORE FORCE is free and provides a comprehensive endpoint security solution for Windows 2000 and Windows XP systems.

The security framework provided by CORE FORCE is leveraged by a community of security experts that share their security configurations for a growing list of programs. These security profiles can be downloaded by any user of CORE FORCE from the community Web site and they're also completely open so that they can be peer-reviewed to minimize security hazards. The community approach to endpoint security also allows end-users who are not security experts to work in a secure environment.

Non-standard Incident Prediction, (Sat, Jun 3rd) - We are all familiar with the use of firewall logs, intrusion detection alerts, antivirus warning ...(more)... [SANS Internet Storm Center]

A very good point is raised by this ISC handler diary entry. The World Cup is one of those real-world events that has resulted in spikes in related malware, such as battling Germany v. Brazil email-bourne malware. Will we see a similar spike this year? Batten down the hatches...

Update on Word 0-Day Issue, (Tue, May 23rd) - Microsoft and eEye have each released advisories related to the issue this evening.

Microsoft's ...(more)... [SANS Internet Storm Center]

As per ISC, there is more at F-Secure's blog. The F-Secure guys are pretty clueful, as far as malware research experts go. When they say stuff, its usually not a waste of space.

News Flash: Arbor Networks Joins the Security “Blogosphere” - Call me a cynic, but when I heard from our marketing folks a pitch for an Arbor blog, Guy Kawasaki’s wry definition of a blogger was the first thing that came to mind: Someone with nothing to say writing for someone with nothing to do!
But after almost six years of building the products and technology [...] [Arbor Networks Security Blog]

I've added the feed for Arbor SERT's Arbot Networks Security Blog.

Massive Surveillance in an Online Gaming World - Interesting.... [Schneier on Security]

Yes, the information is "publicly" available. However, it would be, or should be, argued that the users of WoW have a reasonable expectation of privacy in regards to their gaming activities, conversations, etc Normally, consent from members of a population under study would be required. Shouldn't something of that nature be required for what appears to be a wholesale surveillance program and massive privacy violation?

I've added RSS feeds to the aggregator for three of the US-CERT feeds, specifically the Technical Cyber Security Alerts, Cyber Security Bulletins, and Tips. I didn't bother, for obvious reasons, with the non technical alerts.

I've recently discovered a free certificate authority that will let you get an SSL certificate without having to resort to paying money for security. I, obviously, believe in security, and agree with CAcert.org that securing traffic shouldn't cost money. They use some automated systems to establish the authenticity of sites applying for certs, and so far everything seems to work pretty smoothly.

The only hitch is that the CA's root certificate isn't in browsers by default. You need to go here and install the root certificate if you want to trust certs granted by them: CAcert Root Certificate.

Universal Automobile Surveillance - Universal automobile surveillance comes to the United Arab Emirates: IBM will begin installing a "Smart Box" system in vehicles in the United Arab Emirates next year, potentially generating millions in traffic fines for the Gulf state. The UAE signed a... [Schneier on Security]

It was only a matter of time for this technology to make it into this sort of production use. When I was in University, I did some research on intelligent vehicle-highway systems (IVHS). The use of GPS, RFID, and other wireless communication systems would have been for enhanced safety and navigation as direct goals, not enforcement. It doesn't surprise me in the slightest that the concepts have been extended into satellite tracking rather than IVHS which integrate vehicle and roadways into a communication network.

Quantum crypto comes to Blighty - Yay! [The Register - Security]

Very interesting stuff... potentially even useful, however the uncrackability of quantum cryptography as described in The Reg is predicated on the data being altered if intercepted. Essentially, encrypting data between two directly connected endpoints is of little use unless it takes a form that can be intercepted and also remain encrypted. As the article notes, risk remains at the weak points: user password, etc.

Quite simply, if I was the person to which the following was sent in response, I'd never send email to the list in question again:
Subject: Re: [ISN] How To Save The Internet

Pure ownage.

All the laughing that fatkid and I have had over this piece, the fact remains that it contains some interesting thoughts on competing views over intellectual property. I think I tend towards agreeing with Jason Coombs ;)