Liquidmatrix Security DigestLiquidmatrix Security DigestYour Source For Network and Information Security News Articles
Did Someone Forget To Lock The Digital Back Door?
2008-05-17 00:27:00 It seems that more and more stories about fake Cisco gear are popping up. And, shocker, most of the gear originated in China. This has led to the inevitable thrust and parry of the media’s lust for anything scandalous. “If it bleeds it leads” my old editor used to tell me. Which is funny when ... More About: Back , Digital , Door , Lock
Jane?s Launches Terrorism Events Map
2008-05-16 18:46:00 If you are at all involved in physical security as a portion of your portfolio no doubt you have considered terrorism in your risk assessments. The grand dame of mil space security information, Jane ’s, announced a new service for tracking terrorism and insurgent activities around the globe. From the press release: Jane?s Terrorism and Insurgency Centre ... More About: Events , Military , Physical Security
Security Briefing: May 16th
2008-05-16 15:19:00 OK, first day jitters are starting to kick in. The funny thing is that my first day doesn’t start until this Tuesday. Breathe. And now, the news… DNS trouble knocks NSA off Internet The Ethics of Vulnerability Research Hardened stateless session cookies Security hole in Internet Explorer allows attackers to execute arbitrary programs Of PRNGs and annoying alerts ... More About: News
Fawcett Forgives Woman Who Leaked Medical Info
2008-05-16 14:55:00 Always one for grabbing the spotlight (inexplicably at times) Farrah Fawcett has forgiven the hospital staffer that leaked her personal info. From Starpulse: Farrah Fawcett has forgiven the hospital worker accused of selling her confidential medical details to the media, insisting she’s just a “pawn” in the system. Lawanda Jackson has been indicted by a federal jury and ... More About: Medical , Data Security , Info , Privacy , Woman
Last Hope To Track Visitors
2008-05-16 14:43:00 As I was reducing my email inbox down to zero (miracle of miracles) I noticed that the Last Hope mailing list had an interesting gem. From the email: This summer, hackers from around the world will track the movements of thousands of visitors to New York City. As part of a social experiment, attendees at a hacker ... More About: Conventions , Privacy , Track , Visitors
Yahoo Search Security Beta Draws Ire
2008-05-16 05:46:00 Ah the growing pains of a new product. Imagine that, it labeled Google as a malicious site. From eWeek: A company says Yahoo ’s new feature incorrectly flagged its Web site and was slow to respond. The beta version of Yahoo’s Search Scan security feature has come under fire for false positives and other mistakes. SearchScan is the ... More About: Security , Beta , Yahoo search
Security Briefing: May 15th
2008-05-15 16:10:00 Spilled coffee on my keyboard…ugh. And now, the news… Where The Web Is Weak Preparation Key to Managing Data Breaches The Cost Of Privacy Colonel suggests using hackers’ tool against them Guide to VoIP Security Phishing botnet expands by hacking legit sites Kaminsky on DNS rebinding attacks, hacking techniques OSU: Important Security Alert Click here to subscribe to Liquidmatrix Security Digest! Tags: News , ...
Microsoft: Four Updates Close Six Holes
2008-05-15 15:47:00 From Heise.de: As previously announced, Microsoft published four security bulletins along with updates for six security holes on May patch day. The Redmond developers classify four of the holes as critical because they allow attackers to inject malicious code. Security Bulletins MS08-026 and MS08-027 remedy two security holes in Word and one in Publisher that attackers could ... More About: Updates , Patches , Close , Holes
Responding To A Financial Security Breach
2008-05-15 15:44:00 There has been a large number of data security breaches recently involving financial institutions. Here is a write up by Inno Eroraha on the response to a breach. From SC Magazine: Financial institutions are heavily regulated. They are required to implement security programs following regulations such as SOX, GLBA, SEC, NASD, etc. In fact, most of these ... More About: Security , Data Security , Breach
Three Indicted For Dave & Buster?s Hack
2008-05-15 15:39:00 Marcia Savage has a nice write up on the Dave & Buster s data breach. From Search Security: Three men were indicted on charges of hacking into computer systems at 11 Dave & Buster’s restaurants and stealing credit and debit card numbers. The 27-count federal indictment unsealed Monday in New York charges Maksym Yastremskiy of Kharkov, Ukraine, and Aleksandr ... More About: Crime , Hack , Hacker
Security Briefing: May 14th
2008-05-14 14:50:00 Finally catching up on my reading. Good times. And now, the news… Microsoft Refutes Windows Vista Vulnerability Report Guide to Secure Web Gateways Breaches Make a Mockery of PCI Security Standards Charter To Begin Tracking Users’ Searches And Inserting Targeted Ads HP buys EDS for $13.9 billion WhiteHat Security Named Web Application Security Innovator by Bank Technology News Brute-Force SSH Server Attacks Surge Mobile ...
U.S. Military To Use RFID To Track Ordnance
2008-05-14 14:41:00 This strikes me as a troubling story. From RFID News: Axcess International has announced its Micro-Wireless RFID system will be used by the U.S. military to enable automatic inventory accounting and perimeter security for ordnance assets. Using the Axcess? Dot tag design, the system uses ultra-small, low cost RFID transmitters assigned to each asset, enabling automatic ... More About: Military , Track
Google Now Blurring Faces In Street View
2008-05-14 04:14:00 After numerous attempts by folks to get Google to remove their faces from Street View, Google is now blurring faces. A quick and easy way to obscure people’s identity. Especially helpful if you’re, say, a prominent musician leaving a German brothel. Nah, that wouldn’t have helped him. Damn you Roxanne. From CNET: The technology uses ... More About: Faces , Search , Privacy
Pfizer Faces Possible Data Breach
2008-05-14 00:09:00 Pfizer has been having a rough year with respect to data breaches. It turns out that a laptop containing the info for roughly 13,000 Pfizer employees is now in the wind. From The Day: The company said late Friday in an e-mail to affected employees, including many at Pfizer Global Research and Development campuses in Groton ... More About: Data Security , Faces , Data , Pfizer , Breach
Security Briefing: May 13th
2008-05-13 14:24:00 So, with the iPhone sold out in UK and USA could a new 3G version be arriving soon? And now, the news… McAfee?s HackerSafe: When all else fails, rebrand it! Study: Top Web Application Vulnerabilities Remain Unfixed FTC to scrutinize contactless payment technology Few expected to make June 30 PCI deadline for Web application security Deconstructing PCI 6.6 FBI Fears Counterfeit Networking ... More About: News , Security
Students Hack For Grades
2008-05-13 13:40:00 Apparently reporters at NBC San Diego have discovered that kid can get hacker tools from the internet. This is another case of kids hacking in to change grades. Sure, this is bad behaviour but, you do have to admire their creativity. I wish I thought of that when I was a kid. Mind you, my ... More About: News , Education , Students , Hack , Hacker
Hacker Publishes Personal Data Of 6 Million
2008-05-13 13:28:00 Ah Chile. Beautiful landscapes. Great wines. And apparently, some jackass that thought it would be fun to publish the personal information for 6 million folks on the web. From AFP via Yahoo News: “Its a serious matter and we’re investigating,” Police Cibercrime Brigade chief Jaime Jara told the newspaper. The data was displayed for several hours ... More About: Personal , Crime , Data Security , Data , Hacker
Of Vultures And Old Wireless Routers
2008-05-12 20:58:00 Ah the joy of the first panicked post departure phone call. Today is my first day away from the office and my now former day joy called. It turns out that an old wireless router that had been sitting in a box in my office had been pinched soon after I left. That’s fairly typical. ... More About: Wireless , Dumbass , Routers , Vultures
Security Briefing: May 12th
2008-05-12 13:11:00 Monday arrives. I thought I could have a nice quiet week to relax/recharge. Nope. The missus has provided me with “the list”. Uh boy. And now, the news… Proof of 3G iPhone launch ‘hidden in code’ (real or hoax?) Hackers Find a New Place to Hide Rootkits Is Real ID Really Going to Happen? Interview: Shlomo Kramer, CEO of Check Point Vista ... More About: News , Security
UK Companies Face Fines For Lax Data Security
2008-05-12 12:47:00 The day of data reckoning has arrived for UK businesses. From Contractor UK: Organisations that recklessly or deliberately commit breaches under the Data Protection Act can now be fined by Britain?s privacy watchdog. Under the Criminal Justice and Immigration Act, the Information Commissioner?s Office has the right to financially punish any outfit found in serious breach of ... More About: Security , Companies , Data Security , Face
Flaw Turns Gmail Into Spamming Machine
2008-05-12 04:19:00 Uh boy. The spammers are at it again. From CNET: A “serious security flaw” in Gmail turns Google’s e-mail service into a spamming machine, according to a recent security report. INSERT, the Information Security Research Team, has created a proof of concept that exploits the “trust hierarchy” that exists between mail service providers. By exploiting a flaw in ... More About: Spam , Spamming , Machine , Phishing
Proposed Bill Aims To Pressure DHS
2008-05-09 15:59:00 There was a bill tabled on Wednesday in US Congress that aims to hold DHS’s feet to the flames. From Securityfocus: Rep. Jim Langevin, D-RI, introduced a bill on Wednesday that aims to hold the U.S. Department of Homeland Security responsible for investigating every cyber attack and for shoring up its network security. The bill would better ... More About: News , Bill
Security Briefing: May 9th
2008-05-09 15:03:00 It’s here at last! Today is my last day in the salt mine. And now, the news… Wanted: Americans to join Al Qaeda Google security tool goes beyond the network Facebook partners with AGs for kids’ safety (every bit helps) Vista security credentials tarnished in malware survey Final EUSecWest 2008 Speakers Microsoft Cofee brews ‘back door’ fears Cell Phone Spying Is our minister of ... More About: News , Security
HSBC Issues Statement On MIA Server
2008-05-09 05:08:00 HSBC has been having a rough week with regards to data security stories in the media. Turns out that they lost a server at a location in Hong Kong two weeks ago. From The Asian Banker: The Hongkong and Shanghai Banking Corporation Limited confirms one of its computer servers went missing on 26 April 2008 at ... More About: Data Security , Issues , Server , Statement
Patch Tuesday Approaches
2008-05-09 03:52:00 It’s that time again. The only difference for me this time is that I’ll be relaxing on the deck. I’ll stop basking in it once I start the new gig. From PC World: Although Microsoft’s note does not describe the bugs in detail, it looks like the company is planning to fix a known bug in the ... More About: Patches , Patch , Tuesday
NeoCatena Firewall To Ensure RFID Network Security
2008-05-09 02:07:00 Hmm. OK. I’m not sure what to make of this one. RFID is not my specialty to say the least. Any one have thoughts on this one? From RFID Journal: NeoCatena, a Sunnyvale, Calif., startup company, has emerged to address an issue its founders believe is of growing importance to end users of RFID technology: system security. The ... More About: Security , Firewall , Wireless , Network Security , Network
Tomorrow, The Exit
2008-05-09 01:56:00 It’s been a long haul working in critical infrastructure. There were times were the boredom and politics were overwhelming but, I know that I was able to make a difference. Now, I’m moving on to new adventures. I think I’m going to keep the new job under wraps for now. Some of you know where ... More About: Tomorrow
What a Botnet Looks Like
2008-05-08 17:28:00 Over on CSO they have an interesting graphical representation of a botnet. David Vorel mapped interconnected bots to create the map. The map allows you to zoom in a la Google Maps. Check it out. Article Link More About: News , Botnet
US State Department Loses 1,000 Laptops
2008-05-08 17:19:00 Ouch! From vnunet: An audit at the US State Department has revealed the loss of over 1,000 laptops, some of which held security information. Around $30m worth of computing hardware is “unaccounted for”, the bulk of it laptops. These include over 400 from the Anti-Terrorism Assistance Program, some containing security material. Nita M. Lowey, a representative on the House ... More About: Laptops , Crime , Data Security , State Department
Security Briefing: May 8th
More articles from this author:2008-05-08 14:34:00 Cleaning out the office. What a time sucker that can be. And now, the news… Is China attacking Belgian computers? Rare SCADA bug poses power plant risk News Corp manager knew of hacking claim Hacking American Idol Cross-Site-Scripting with Morse code How to Prevent ID Theft at Your First Job Response team boosts open-source security Adobe comes clean on PDF bugs Click here to subscribe ... More About: Security 1, 2, 3, 4, 5, 6, 7 |
|
 |
|
 |
