With one simple tweet, “#tangodown godaddy.com…Hello everyone who wanna me to put 99% of the global Internet in #tangodown?” one lone hacker, with the Twitter handle, “AnonymousOwn3r,” took down internet giant GoDaddy.com, causing an outage to the GoDaddy site, 1000s, if not millions, of sites that have GoDaddy-hosted sites, and their DNS, GoDaddy hosted e-mail accounts, and GoDaddy phone service. #tangodown is taken from a military term, meaning a target was successfully attacked. Hackers also use it when it means that a website has been taken offline.

Death by CAPTCHA is a company that has figured out a way to bypass security CAPTCHAs by offering their technology to solve CAPTCHA phrases. While this may sound like celebratory news for those who are tired of face-palming every time they try to read the twisted words provided by websites looking to make things secure for their users, in reality, it is a gateway to spam.

Are smart meters (or as some call them “smartmeters”) the next great energy saver, or are they a privacy risk for someone hacking your wifi, Internet, or electricity usage data? Maybe both. Some are calling them a great way to save energy and money on our monthly energy bills, some are saying they are a sign that big brother is tightening his grasp, but either way, smart meters are stirring up some serious controversy. From public meetings in Vermont, to gun-toting homeowners chasing utility company workers who are aiming to install smart meters off their property, these tiny little devices have not arrived quietly.

While Dropbox file-sharing service is intended to be a mostly consumer-based product, many companies use it as a means to share files between employees. The problem with using cloud-based services, such as Dropbox, for business purposes is that businesses don’t have proper controls over the data stored in the cloud. This was driven home this week when Dropbox announced that an employee’s password was stolen and the hackers made off with some sensitive information, including user email addresses which led to the spamming of Dropbox’s European user-base.

There are few things as comforting to hear as, “Our nuclear program has been compromised again” from an Iranian nuclear facility, but it appears that someone behind a cyber attack, or possibly some snickering 12 year old boys in their parent’s basement, have unleashed a cyberattack on Iran’s Atomic Energy Organization; hard rock-style. That’s right, the latest Iranian nuclear cyberattack has the nuclear physicists shaking all night long to AC/DC rock music; “Thunderstruck” to be exact.

It’s one of those things that you never think will happen to you. You’re going along in life, hunky-dory, then boom! There are fraudulent charges on your credit card, or an unknown credit card shows up on your credit report, or you get a call from a collection agency demanding payment on an account that you never even knew existed. Unfortunately, credit fraud and identity theft protection are not one of those things that you think about until it is too late. And if the person who stole your identity is a family member, such as your mother, father, sibling or even your own child, you also have an additional set of special circumstances to deal with.

It seems like every week brings news of a new hacking, which in turn means that usernames, email addresses, and passwords are constantly being posted online by hackers, and this inevitably leads to a simple question: when should you change your password? Or, to frame the question in a slightly different way, how often should you change your password? In general, you should change your password about as frequently as you can tolerate changing your password. As long as you can keep track of your various passwords, there isn’t any disadvantage associated with changing it (besides the fact that changing your password can be a bit of a pain). Now, however, there is at least one definite answer to the question posed above: you should change your password when ShouldIChangeMyPassword.com tells you to.

A couple of weeks back, the hacker group Rex Mundi blackmailed AmeriCash Advance, demanding that the payday lender give the group around $20,000. If AmeriCash Advance didn’t pay up, Rex Mundi would publish the thousands of loan-applicant records it stole from the payday lender. Now, a couple of weeks later, AmeriCash Advance hasn’t paid the extortion fee, so Rex Mundi did in fact publish all those loan-applicant records. This is a newsworthy story in its own right, but what really makes it important is that it reveals how utterly unsecured so much of our private information (Social Security numbers, credit card numbers, banking data, etc.) is. And our private information and other data are not just vulnerable to skilled hackers – it’s vulnerable in general because it is often so poorly protected.

The Hacktivist group ‘Anonymous’, most recently best known for its role in attacking sites that withdrew services from Wikileaks after the infamous Wikileaks leak of the U.S. State Department documents, has announced that they intend to hack Facebook and take Facebook down – apparently permanently – on November 5th. (November 5th is Guy Fawkes Night (or Guy Fawkes Day, depending on your bent) in the U.K., honoring the day that, back in 1605, Guy Fawkes was caught beneath the House of Lords, guarding a cache of explosives intended to be used to assassinate King James I.)

It can be a pretty scary thing to log into your Gmail account and be met with a blazing red banner that says “Warning: We believe your account was recently accessed from:” followed by a geographic location that you decidedly aren’t, often a place such as Russia, Poland or China, and that followed by the options “Show details and preferences” and “Ignore”. Usually you can be certain that at that moment, the first thing you need to do is change your password, because your account was almost certainly hacked or otherwise compromised. However, that’s not always true if you get a warning of a remote access in the U.S., such as “We believe your account was recently accessed from: United States (CA).”

Aaron Swartz, a co-creator of RSS , open access advocate, and author of the Guerrilla Open Access Manifesto, and now a researcher at Harvard, has been arrested for hacking into the JSTOR system. JSTOR, which stands for “Journal Storage”, is a system that archives academic journals, and makes them available to institutions and, in a more limited version, to the public.

A Magistrate has recommended to the Federal court in Maine that a bank (in this case Ocean Bank of Maine) has no liability, even though it allowed hackers to remove more than $500,000 from one of the bank’s customers accounts. The customer, Patco Construction, had been the victim of the Zeus trojan, which steals passwords once surreptitiously installed on a victim’s computer.

Earlier this month, the NATO Rapporteur (and we explain what that is) released a draft report addressing, among other things, the scope and impact of the leaking of the Wikileaks documents by Private Bradley Manning, the threats and actions by “hacktivists” (activist hackers engaging in “hacktivism”), including the hacker collective known as “Anonymous”, and what counter-measures NATO and other such bodies might take.

If you have ever had an account – even just to leave comments to articles and posts – on Gizmodo, Lifehacker, Gawker, Jezebel, io9, Kotaku, Deadspin, Fleshbot or Jalopnik, then you are in for a nasty surprise. Odds are good that your account has been compromised, and your user name and password posted on the Internet, as the result of security breach of Gawker Media’s servers that happened over the weekend. Gawker media does get points for alerting all of their users as soon as they discovered the breach (about 10 minutes ago as of the time of this posting on 6:20 p.m. PST on Monday, December 13th, 2010).

The growing backlash against the arrest of Wikileaks founder Julian Assange, and the suspension of Internet hosting and financial funding services such as MasterCard, Visa and Paypal (through which Wikileaks was receiving donations) have led to retaliation by so-called ‘hacktavists’ in the form of DOS and other cyber-attacks against the websites of MasterCard, Visa, Paypal, and those Internet hosting and DNS services which have disconnected Wikileaks, in some cases bringing the services to their knees. Paypal was brought down yesterday, as were MasterCard and Visa.