InfoSec News

It's worse than stupidity; at times, it can be dangerous about technology, says Steven J. Vaughan-Nichols.
 

GovInfoSecurity.com

GovInfoSecurity.com Week in Review for Saturday, July 3, 2010
GovInfoSecurity.com
... Department's chief information officer, says most top business and government leaders don't infosec as being strategic, and that's a huge problem. ...

 
Apple has dropped the usual restocking fee for iPhone customers who want to return their smartphones, the company confirmed on Friday.
 
Google tops headlines with rumors about the company's social-networking plans, more changes it made in China and an acquisition during what proved to be a slower-than-usual week for IT news as we ease into the summer here in Boston, where we've been treated to some gorgeous days of late. We've clustered Google's news at the top for your reading pleasure and will end our list this week with some "how to" tips that may come in handy for the lazy days ahead (at least in the Northern Hemisphere), ending with some news from Australia where wintertime is buzzing, so to speak.
 
Clients often come to us asking how they can get rid of their IT supplier. Their reasons are many, and vary from performance-related concerns to wanting to reduce costs by deferring or going without the services. This has especially been the case during the recent economic downturn.
 
Jim Hagemann Snabe was appointed SAP co-CEO in February 2010. Jim Joined the organisation in 1990 and has been a member of the Executive Board of SAP AG since 2008. He spoke with CIO about how he fosters innovation within the enterprise.
 
Newer Technology's NuGuard Clear case isn't an iPad sleeve, and it certainly isn't an iPad bag. Rather, it's a clear, rigid, polycarbonate shell that snaps snugly onto the back of your tablet. As such, it will keep that back scratch- and grime-free and provide some protection if you happen to drop the tablet on its backside. The clear plastic case does nothing to hide--or to soften--the iPad's metallic look, but it does provide a slightly better grip than the iPad's own aluminum back. Still, the NuGuard Clear doesn't completely solve the iPad's holdability problem, and it doesn't do anything to protect the screen, either. In other words, if you want minimal protection, the NuGuard Clear case might be worth considering. But if you want fuller protection, you need a fuller sleeve.
 
The world of file transfer has changed dramatically over the last decade. A growing mobile workforce, increased business-to-business interactions and more stringent security and privacy requirements are causing many organizations to re-evaluate their current file transfer technologies.
 
Today IT mostly finds itself in an uncomfortable situation. To recycle a much over-used metaphor, IT has been caught in a perfect storm created by budgets that are collapsing or barely staying level, increasing internal demand for solutions to improve line of business financials, and external services that undermine IT's authority and the integrity of internal solutions.
 
You wouldn't go into a blizzard without a coat, scuba dive with a hungry shark or bungee jump without measuring the cord. Yet, according to the 2009 FBI Computer Crime and Security Survey, 71% of American companies endanger their financial stability by not having insurance that will cover Internet liability.
 
Monty Widenius, a leading open-source software proponent, lodged an appeal on Friday against the European Union's antitrust authorities over their decision to green-light Oracle's acquisition of Sun Microsystems at the beginning of this year.
 
Apple today blamed the iPhone 4 reception problems on a faulty algorithm used in the new smartphone.
 
More iPhone 4 troubles emerge, Jobs can't fight the email urge
 
The Federal Aviation Administration has approved a special permit Terrafugia Inc. that will allow it to begin delivering flyable cars to customers late next year.
 
This article is the seventh and final in a series of how-to stories on building a computer. For a video version or part seven, click here.
 
From obscure options to esoteric shortcuts and arcane add-ons, these hidden gems will help you master the programs you use every day.
 
This article is the sixth in a series of how-to stories on building a computer. For a video version of part six, click here.
 
As the agency's inspector general had predicted, the space shuttle program will continue into next year, with the final flight now scheduled to take off in late February.
 
Google's Blogger blog publishing and hosting service now has its own analytics feature that monitors a blog's usage, logs stats and displays reports and graphs.
 
Threatpost, billed as Kaspersky Lab’s independent, online news destination for the IT Security community, is now available to iPhone, iPad and iPod touch users.
 
Microsoft has offered a work-around to Windows XP users affected after a flaw in the operating system was exploited.
 
Cybercriminals are building country-specific botnets to target U.K. bank consumers with dedicated malware, security company Trusteer has reported.
 
This article is the fifth in a series of how-to stories on building a computer. For a video version of part five, click here.
 
This article is the fourth in a series of how-to stories on building a computer. For a video version of part four, click here.
 
SAP said Friday that it has extended its $5.8 billion bid for Sybase while it awaits approval under European merger regulations.
 
------

Johannes B. Ullrich, Ph.D.

SANS Technology Institute

Twitter (c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.
 
President Obama's administration will announce nearly $795 million in grants and loans for broadband deployment projects across the nation on Friday, officials with two federal agencies said.
 
IPhone users have come up with creative ways to work around the reception problem on the iPhone 4. Computerworld selected some of the best advice found so far.
 
Although Supreme Court nominee Elena Kagan appears to be mostly a recipient and not an author of the various memos about the H-1B visa program when she was with the Clinton White House, the debate over the administration's H-1B policy appears to unfold in her in-box.
 
Officials at Station Casinos say recent multimillion-dollar IT investments are easing its struggle to reorganize and emerge from Chapter 11 bankruptcy protection.
 
The appeal of Google Apps is being tested in Colorado under a program that will enable any state agency or local government entity to migrate to the service as part of a blanket contract.
 
U.S. President Barack Obama's administration will announce nearly US$795 million in grants and loans for broadband deployment projects across the nation on Friday, officials with two federal agencies said.
 
Earlier this week, Adobe released a patch for PDF Reader and Acrobat, resolving among many vulnerabilities the Launch vulnerability which allowed an attacker to execute arbitrary code [1]. One of the problems was that this vulnerablity existed due to a feature in the PDF specification and Adobe was not willing to alter the specs in order to fix this problem.
As pointed out in a blog post by Le Manh Tung, the vulnerability is still exploitable if the command is included in quotes. However, unlike in earlier versions of the PDF reader, it is no longer possible to modify the warning dialog giving users a fighting chance to not execute the code.
[1] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1240
------
Johannes B. Ullrich, Ph.D.

SANS Technology Institute

Twitter (c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.
 

Internet Storm Center Infocon Status