►A Delta employee was able to skirt security at John F. Kennedy International Airport, using his identification card to gain access to one of the airport's "most secure" areas, according to CBS New York. The individual has been arrested and has been suspended by Delta. The article reports that it took anywhere from nine to 45 minutes for TSA officials to respond to the security breach.
►North Korea has loaded two middle-range rockets onto launchers, CNN reports. The launchers have been moved to the east coast of North Korea. The North Korean government has increased its rhetoric against the United States and South Korea in recent days. According to CNN, "It is believed a missile launch would be a 'test' launch rather than a targeted strike. That is because it appears the North Koreans have only moved the components so far. The United States is waiting to see whether North Korea issues a notice to its airmen and mariners to stay out of the region." North Korea did ask the Russian embassy to consider staff evacuation.
►Plans to roll out new top-level domains next year, such as ".corp", ".bank", and ".ads", might open up security vulnerabilities, according to an article in Ars Technica. Digital certificates that may have been used only internally before might be able to be used to secure access to these new domains. "A secure sockets layer certificate used by employees to access a company intranet designated as ".corp", for instance, might be able to spoof a public credential for the website McDonalds.corp or Ford.corp. Employee laptops that are used at an Internet cafe or other location outside of a corporate network might also be tricked into divulging private information." To thwart attacks, companies are advised to stop issuing "internal name" certificates and to revoke valid certificates in the next few years.