Richard Nicholson

Online games in China should move away from "lowbrow" content such as monster hunting, Chinese regulators said late Wednesday, highlighting the uncertain regulatory conditions faced by game operators in the country. Game operators should also limit highly popular systems that let players kill other human-controlled characters, the country's culture ministry said in a statement on its Web site. The game features the regulators dislike, especially monster hunting as the main way for players to gain experience points and new powers, exist in virtually all hit online games.

Game operators using violence, erotic content and gambling to attract players "have adversely influenced consumers and especially the physical and mental health of minors," the statement said. China's online gaming sector is huge and still growing, but ruled by sometimes-erratic regulators. The ministry also ordered game operators to create monitoring divisions to censor their own products and to strengthen systems that limit play time for minors. World of Warcraft, the hit online game from Blizzard Entertainment, spent months offline this year as its new local operator awaited clearance to reopen the game. The culture ministry's order follows earlier government campaigns to clean up pornography and violence in online games as concern grows about Internet addiction among the country's youth.

And China's publishing regulator, which is battling with the culture ministry over which of them has authority over the online game sector, recently ordered the local operator of World of Warcraft to stop charging player fees until further approval, although the game is still online. So what should online games do instead of letting players kill monsters? "Take the core socialist value system as the guide, strengthen cultural elements in products, and vigorously promote the spirit of the times and illustrious ethnic culture," the ministry said.

If you're feeling whiplash over the state of iPhone security, you're in good company. But the only people who were vulnerable were people who had jailbroken their phones, turned on SSH services, and neglected to change their root password. Last month, the first iPhone worms were reported, which either rickrolled your iPhone with a background picture of Mr. Astley, or did far worse things to your software and data. And we all know that people who use default root passwords are silly, right?

He demonstrated that installed applications can read your address book, steal your phone number, peruse your browser history, track your GPS movements, and get all sorts of other personal data on you. On Friday, Slashdot reported on a presentation given by Nicholas Seriot (PDF link), a Swiss software engineer, about the security risks of a stock, non-jailbroken iPhone. Which is kind of understandable, since many legitimate apps rely on access to this data for their features. But if Loopt does the same thing, because you've told it to do so in order to share your location with your friends, that's okay. Yes, if an application secretly records your GPS location and uploads it to the software's author, that's a serious breach of your privacy.

So, how are the good apps to be distinguished from the bad? Trojan horse software is nothing new in the computer industry, but it's a bit more scary when it's attached to an always-on device that's always on your person. Seriot contends that the volume of iPhone app submissions implies that, invariably, some malware is going to sneak through, probably in the form of an innocuous app which does one thing on the surface, and quite another under the hood. While it's probably not worth it to get too concerned about this, it's always prudent to be, well, prudent. Delete apps which appear to be acting strangely, or which just don't feel right. People who like to download the newest software on day one are the most exposed to this risk; the rest of us can rely on the community to alert us when apps are acting nefariously.

And you can always keep your important data in encrypted applications, such as 1Password. Also, you might want to think about leaving really sensitive data off your iPhone entirely, no matter how cute you look in that bunny suit.

IBM has expanded its server lineup with a new mainframe system designed just for Linux that may be aimed, in particular, at higher-end x86 systems. It does not use the mainframe operating system z/OS but includes mainframe management software as well as IBM's z/Virtual Machine system. The new system uses IBM's specialty Linux processor and runs either Novell SUSE or Red Hat systems. Together, they constitute the company's latest "solutions edition," or what IBM says are lower-cost, integrated stacks for the mainframe.

This system is intended to be competitive with large multicore systems used for virtualization consolidation. There are two servers in the Enterprise Linux Server line, and the starting price on the lower-end model, with two processors, is $212,000; it scales up from there. The Linux-specific line is IBM's latest effort to reduce the cost of its mainframe. But several years ago, IBM started producing a smaller model, the z10 Business Class , which was initially offered at about $100,000, to compete with a broader range of enterprise servers. It's high-end z10 Enterprise Class system can cost millions.

Reed Mullen, the System z virtualization lead product planner, said that potential customers include companies that want to virtualize a lot of systems but aren't necessarily mainframe customers. IBM expects to upgrade its z10 next year , in keeping with its three-year upgrade cycle. Among the arguments that IBM will make for this system is its ability to dynamically add capacity in a running environment, Mullen said. IBM's mainframe sales have been off 26% in the most recent quarter compared with the same quarter last year, and server sales have been flat across the board. With this new hardware, IBM likely wants to compete with x86 systems with 16 processor cores and above, he said.

Brad Day, an analyst at Forrester Research Inc., said IBM has been working to reduce the cost of its mainframe software, which can account for half the cost of a mainframe, including personnel, energy and maintenance. Anything that lowers the life-cycle cost of the system is critical, and by focusing on Linux, IBM is "putting meat to where most of the workloads are going," Day said. "About half of the new growth of applications on mainframe is led by Linux."

Banging the drum for security awareness never gets old. Online, the biggest battle these days is against botnets: networks of infected computers which hackers can use - unbeknownst to the machine's owner - for online crimes including sending out spam or launching a denial of service attack. As much as CSOs try to get folks to bone up on safe practices (both online and in the office), there are always going to be some who need reminding. Unfortunately, the black-hat techniques employed to snare users into a botnet web have evolved to a level that makes them often undetectable by even the most sophisticated security products.

Santorelli, director of global outreach with the non-profit security investigations firm Team Cymru, spends his days monitoring malicious online activity, particularly botnets. Combine that with a lack of user knowledge, and the threat of infection becomes very high. (See: Botnets: Why it's Getting Harder to Find and Fight Them). "The frustrating thing is they can make their chances of getting infected much, much smaller," said Steve Santorelli, who sees how users fall prey to easily avoidable traps every day. Santorelli notes that while just one strategy probably won't cover you, with several tools in the tool box, the rate of infection within an organization significantly drops. They might not realize the importance of working with IT to ensure they are up to date with patching and software upgrades. Tip 1: Have work AND home machines regularly updated with patches and antivirus software The average user doesn't necessarily have a lot of technological knowledge, said Santorelli.

This problem may be especially prevalent among workers who are exclusively remote. Sophos scanned 583 computers for 40 days and found that 81 percent of the machines failed one or more basic security checks. In fact, a study conducted by security firm Sophos last year found most computer users ignore security updates and turn off their firewalls. Most machines, 63 percent, were lacking security patches for the operating system, office application and programs like Windows Media Player and Adobe Flash. Those are exactly the folks that criminals love. "These people are going to go for the low-hanging fruit and unfortunately there is a lot of it out there," said Santorelli. "There are so many machines without updated AV on it." If your patching system isn't automated, your users need to be made aware of the risks they are taking by working with unpatched and out-dated security technologies.

More than half, 51 percent, had disabled their firewall and another 15 percent had outdated or disabled antivirus and anti-spam software. And while security updates are not the cure-all for malware infection, Santorelli said they certainly serve as a strong deterrent. "If you are walking down the street as a burglar and you see a house with a Rottweiler, and a visible sign from a security company, you probably won't attack that house," he noted. Unfortunately, that's less and less foolproof. "It used to be that if you surfed to places like CNN, or the Weather Channel, you weren't going to come across great deal of malware," said Santorelli. "That isn't the case anymore. Tip 2: Use the latest browser versions Staying away from dubious sites and sticking to known brands used to offer reasonable online safety. We've seen a number of cases recently where people have gone to a legitimate web site and there is an advertisement up there hosting some kind of malicious code." That is where the latest safe browsing technologies can help, said Santorelli. There is also a great deal of anti-phishing and anti malware that goes into them now.

The latest versions of today's browsers will often flag potentially dangerous content. "Browsers are so much more secure now that so many of the holes that existed in these browsers have been patched. So if you try and go to a link that contains malware, your AV might not pick it up. You can download the latest version of Internet Explorer or Firefox fairly easily and quickly, too (See: IE or Firefox: Which is More Secure?). "It will only take you five minutes to have the latest browser technology," said Santorelli. "It is just another string to your bow, so to speak." Tip 3: Be a little more careful when you get a link or an attachment. "Don't just blindly click on things and rely on other people to protect your computer," noted Santorelli. "You've got to take some responsibility for your own security." Team Cymru research reveals that the most common attack vectors for installing malware continue to be links in emails, or drive-by downloads. "We know from our recent investigations that there is a great deal of success to be had [for hackers] by just sending links out," he said. But your browser will say: "Are you sure?" The good news is most browsers are free. Just because you receive the email from someone you know and trust, it doesn't mean it is safe. See Five More Facebook, Twitter Scams to Avoid for examples of current attempts to exploit social media sites.

This includes friends and family, whose systems or accounts may have been compromised, and also well-known web sites you use, like social networking sites or banks. And large banks, such as Bank of America, often find their name is used in email phishing scams where thieves send out messages warning that customers their account has been compromised with a link that leads to a fake, but very legitimate-looking login screen. Of course, whether or not you should click any link or attachment also depends on if you have complied with steps 1 and 2 above. "You're going to have to take it on a case-by-case basis," said Santorelli "And my concern would be significantly raised if I didn't have my computer up to date with antivirus and browsing technologies."

Every year it seems that some foreign telecom company is in the running to purchase Sprint and this year is no exception. Hottest tech M&A deals of 2009 Deutsche Telekom is the parent company of U.S. wireless carrier T-Mobile USA, meaning that any purchase of Sprint would probably mean a merger of the two carriers. According to a report in the U.K.-based Telegraph newspaper, German carrier Deutsche Telekom is interested in purchasing Sprint and could submit an offer that will likely at least match the $10.6 billion that the company is estimated to be worth.

Sprint is the third-largest wireless carrier in the United States with an estimated 48.8 million wireless subscribers, while T-Mobile is the fourth-largest carrier with an estimated 33.5 million wireless subscribers. Deutsche Telekom was rumored to be interested in Sprint last year, when the company's credit rating was downgraded to junk status by Standard and Poor's. South Korean carrier SK Telecom was also rumored to have an interest in purchasing Sprint. A merger between the two companies would help T-Mobile match the subscriber numbers fielded by wireless giants AT&T, which has approximately 78 million subscribers, and Verizon, which has approximately 86 million subscribers. In 2007, Sprint nixed a $5 billion investment offer from SK Telecom and buyout firm Providence Equity Partners that also would have installed former Sprint chairman Tim Donahue as Sprint's CEO. SK Telecom and Providence Equity partners had proposed the investment to Sprint earlier in the month in a letter written to the telco in tandem to Donahue. Sprint's competitors, meanwhile, all seemed to extend their advantages over the beleaguered carrier.

Sprint has taken a major hit to its finances and market share in recent years, as the carrier not only posted an annual loss of $2.8 billion in 2008 but also lost more than 4 million wireless subscribers and wound up laying off 8,000 workers this past January. Buoyed by the release of the iPhone 3G, AT&T added nearly 7 million wireless subscribers in 2008 while posting earnings of $12.9 billion for the year, a 7.7% increase over its 2007 earnings. Verizon, meanwhile, added 6.3 million wireless customers while posting a net income of $6.4 billion, a 16.4% increase from 2007.