Flash Phishing, MySpace Passwords and Hacking PDFs

* Google's blacklisted URL database is a goldmine for MySpace user names and passwords.

* RockDotRock is a band formed by anti-virus software vendor Symantec "as an alternative to broadcast advertising." The band -- five musicians from New York City -- sings and plays original songs about the dangers of Internet fraud. Who knew?

Imperva has discovered a critical vulnerability in DWR (Direct Web Reporting), a key underlying technology in the AJAX Web application development framework.

* Identity thieves are using Flash technology to hide phishing attacks from page-analysis anti-phishing tool bars.

* In 2005, Mozilla raked in $53 million in revenues, mostly from Firefox "search engine relationships."

* Interesting back-and-forth discussion between Month of Apple Bugs hacker Kevin Finisterre and the University of Wisconsin's Dave Schroeder on the value of releasing Mac exploits without prior warning to Apple.

* Be warned that PDF files posted online can be manipulated to execute JavaScript.