We’ve got a bumper crop this week. There are the obligatory links to the GoDaddy affair. I get the distinct feeling that the GoDaddy event was not nearly as sensational as the security community would have liked. Still it’s a sad commentary when your best PR move was to claim self-inflicted gunshot wound to the foot. , 
It looks like the fine folks who brought us the BEAST attack have now given us CRIME. Juliano Rizzo and Thai Duong have developed yet another attack against SSL. This one is a side channel attack focusing on compression ratios. Does this make anyone else feel nervous about the protocol holding the global e-commerce system together? , 
There is an interesting article about BMW being sued for a weakness in their technology for creating ignition keys. Car thieves figured this one out and started stamping out their own keys. This is a new twist on an old problem. I’m just not sure if the problem is copying hard keys or copying mag stripe data. 
I’ll wrap it up with some mobile device articles. It looks like Apple’s cryptosystem for iOS devices have crossed a threshold. Is iOS good enough for enterprise security now?  Also, there is research suggesting around half of Android devices contain known software weaknesses.  That in turn drive the growing underground economy for installing applications on mobile devices. 
As always, I’d love to hear from you in the comments!