InfoSec News


A list of countries considering BlackBerry bans
One News Page
News with a list of countries considering #BlackBerry bans -http://yhoo.it/aQB6Ot #security #privacy #infosec - about 2 hours ago PrivacyDigest RT ...

and more »
 
Oracle appeared to confirm this week what many in the computer industry already suspected: The OpenSolaris project is dead.
 
I sync my calendar and contacts data across my Mac and all my iOS devices (iPhone, iPad, and iPod touch) using the MobileMe option. On most days, this works spectacularly well. It means that, whenever I make a data change on any one of the devices, the change is propagated nearly instantly to every other synced device.
 
On vacation, forgetting your sunscreen may lead to a painful burn, but forgetting key components of an organization's business continuity (BC)/disaster recovery (DR) plan hurts a lot more. Overlooking even one item can weaken your entire network and mean significant losses in revenue and productivity.
 
The Shadowserver Foundation has made available a new and free public service to test the MD5's or SHA1's of binaries to see if they are already a know set of software. The initial service is based on the lists from NIST but over time they plan to add other sources. The service is offered via HTTP and the responses via a JSON object.
The service can be accessed here.
-----------
Guy Bruneau IPSS Inc. gbruneau at isc dot sans dot org (c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.
 
Laptops are getting faster, more portable and cheaper as the back-to-school season rolls in. A new range of lightweight laptops from PC makers priced between US$400 to $600 are as portable as netbooks but offer much better performance.
 
The reign of Hewlett-Packard's former CEO Mark Hurd was bookended by scandal -- only where the first one, in which the HP board was caught spying on journalists and others, allowed Hurd to consolidate power and nab the chairman's job, the second has sent him packing. Meanwhile, Oracle has sued Google, claiming that the Android mobile OS infringes on patents it acquired from Sun Microsystems.
 
Well, Oracle seems determined to make this a memorable Friday the 13th. Just as the open source community reels from the impact of an Oracle lawsuit against Google for alleged Java patent infringements, it has now been revealed that Oracle has internally killed OpenSolaris.
 
Google will put up a fight in response to the patent- and copyright-infringement lawsuit that Oracle filed over the use of Java in the Android mobile phone platform.
 
After the Stuxnet worm exploited a zero-day vulnerability in a popular industrial controller, it's clear that operators of large-scale infrastructure management systems need to work with the IT security community to better safeguard these critical systems.
 
The belief that IT professionals don't need business acumen is a dangerous and destructive myth.
 
After wowing onlookers at the Consumer Electronics Show earlier this year, the highly anticipated Adam tablet is out of the experimental phase and could become available to users by the end of this year.
 
Apple yesterday yanked the popular Camera+ iPhone app from the App Store, apparently in a dispute over a violation of the company's developer agreements.
 
Looking to book a ticket on Delta Airlines? Now you can just go to the airline's Facebook page.
 
Organizations hoping to streamline their deployments of Linux have two new options for running the open source OS remotely.
 
IBM said Friday it intends to purchase marketing software maker Unica for roughly US$480 million, in a move that will boost Big Blue's capabilities for creating focused marketing campaigns. The deal is expected to close in the fourth quarter of this year.
 
Virgin America's CIO says free and open source software is giving the fast-growing airline a competitive edge in providing guest services.
 
Dell on Friday refuted accusations that it was withholding evidence in connection with a long-running case charging the PC maker of willingly selling faulty PCs.
 
Nvidia has signed an agreement to license Rambus patents on memory controllers following a ruling against Nvidia at the U.S. International Trade Commission, the two companies announced.
 

AISA Branch Meeting and Membership Drive
Secure Computing
Please forward the invitation to this meeting to InfoSec colleagues who may be interested in joining AISA. If there is sufficient demand we can continue to ...

 
Gibbs sees the opinions of Google's CEO on online anonymity as the end of an era
 
Instead of the 'pink stickie' approach to pointing out employee security violations, Career Catalyst Michael Santarcangelo suggests a more positive approach that builds on the best the day has to offer
 
Despite a high degree of opposition, Google is defending its net neutrality proposal co-authored with broadband and wireless provider Verizon.
 
Facebook said Friday it has restored a feature that lets users receive e-mail notifications of new messages sent by their friends.
 
You found something cool on the Web--say, a photo or incredibly helpful Hassle-Free PC tip. Now you want to share it with friends, and maybe add a few comments to what you're sharing.
 
The iPad is a curious device—not quite an iPod, not quite a laptop. I typically bring it to work with me during the day, and keep it on my nightstand at home at other times.
 
IBM said Friday it intends to purchase marketing software maker Unica for roughly US$480 million, in a move that will boost Big Blue's capabilities for creating focused marketing campaigns. The deal is expected to close in the fourth quarter of this year.
 
A convention for Apple II diehards provides an opportunity to compare and contrast a 30-year-old Apple tablet device with today's state-of-the-art iPad.
 
India may ask Google, Skype and other online service providers to allow the country’s law enforcement agencies to access communications on their networks, the head of an Internet association said on Friday.
 

CESG adopts IISP skills framework for Information Assurance
Infosecurity Magazine
The institute says it will also continue to operate the related Infosec Training Path and Competencies scheme (ITPC) accreditation process on behalf of the ...

and more »
 
Oracle has filed a lawsuit against Google, charging that its Android phone software infringes Oracle patents and copyrights related to Java, Oracle said on Thursday.
 
After news hit that Facebook developers are furiously trying to fix a bug that lets spammers harvest users' names and photos, the issue of online safety has reared its ugly head again.
 
These tips from the latest edition of the Unix and Linux system Administration Handbook will help your code be more readable and easier to use.
 
Asustek Computer plans to launch its first tablet device with Google's Android mobile operating system in March, the company's CEO said Friday.
 
Microsoft will release a public beta of Internet Explorer 9 on Sept. 15, a little less than five weeks from now.
 
A new version of the PCI Data Security Standard scheduled for release later this year is likely to attract more attention for what it leaves unaddressed rather than what it changes, analysts say.
 
InfoSec News: Heartland denies systems involved in new data breach: http://www.computerworld.com/s/article/9180660/Heartland_denies_systems_involved_in_new_data_breach
By Jaikumar Vijayan Computerworld August 12, 2010
Heartland Payment Systems, which last year suffered the largest ever data breach involving payment card data, is downplaying reports out of [...]
 
InfoSec News: Server-based botnet floods net with brutish SSH attacks: http://www.theregister.co.uk/2010/08/12/server_based_botnet/
By Dan Goodin in San Francisco The Register 12th August 2010
Updated -- A server-based botnet that preys on insecure websites is flooding the net with attacks that attempt to guess the login [...]
 
InfoSec News: Hackers turn Palm Pre into secret bugging device: http://www.belfasttelegraph.co.uk/lifestyle/technology-gadgets/hackers-turn-palm-pre-into-secret-bugging-device-14909790.html
By Stephen Foley belfasttelegraph.co.uk 13 August 2010
A British internet security company has demonstrated how to turn the [...]
 
InfoSec News: Secunia Weekly Summary - Issue: 2010-32: ========================================================================
The Secunia Weekly Advisory Summary 2010-08-05 - 2010-08-12
This week: 70 advisories [...]
 
InfoSec News: Do you need network security and privacy loss insurance?: http://www.networkworld.com/columnists/2010/081210-andreas.html
Security: Risk and Reward By Andreas M. Antonopoulos Network World August 12, 2010
If your business manages personal information about health or finances, a security breach can cost millions. [...]
 
Asustek Computer plans to launch its long awaited Eee Tablet with an 8-inch LCD touchscreen in October for around $300, though prices vary by market.
 

Posted by InfoSec News on Aug 13

http://www.belfasttelegraph.co.uk/lifestyle/technology-gadgets/hackers-turn-palm-pre-into-secret-bugging-device-14909790.html

By Stephen Foley
belfasttelegraph.co.uk
13 August 2010

A British internet security company has demonstrated how to turn the
Palm Pre into a secret bugging device, ideal for corporate espionage,
and issued a warning that many other popular smartphones are also
vulnerable to hackers.

In-house hackers at...
 

Posted by InfoSec News on Aug 13

========================================================================

The Secunia Weekly Advisory Summary
2010-08-05 - 2010-08-12

This week: 70 advisories

========================================================================
Table of Contents:

1.....................................................Word From...
 

Posted by InfoSec News on Aug 13

http://www.networkworld.com/columnists/2010/081210-andreas.html

Security: Risk and Reward
By Andreas M. Antonopoulos
Network World
August 12, 2010

If your business manages personal information about health or finances,
a security breach can cost millions. HITECH and other regulations not
only apply fines, but they require disclosure and notification of those
affected. In some cases, companies must pay for free credit reports too.
These...
 

Posted by InfoSec News on Aug 13

http://www.computerworld.com/s/article/9180660/Heartland_denies_systems_involved_in_new_data_breach

By Jaikumar Vijayan
Computerworld
August 12, 2010

Heartland Payment Systems, which last year suffered the largest ever
data breach involving payment card data, is downplaying reports out of
Austin, Texas linking the payment processor to a data breach at a local
restaurant chain.

Heartland CIO Steven Elefant told Computerworld by e-mail late...
 

Posted by InfoSec News on Aug 13

http://www.theregister.co.uk/2010/08/12/server_based_botnet/

By Dan Goodin in San Francisco
The Register
12th August 2010

Updated -- A server-based botnet that preys on insecure websites is
flooding the net with attacks that attempt to guess the login
credentials for secure shells protecting Linux boxes, routers, and other
network devices.

According to multiple security blogs, the bot compromises websites
running outdated versions of...
 

'Hackers Profiling will help trace cyber crimes'
Express Buzz
... up' in the 80's and 90's today are working in the information security area, both as freelancers or are employed at the infosec enterprises,” he said. ...

 
Oracle has filed a lawsuit against Google, charging that its Android phone software infringes Oracle patents and copyrights related to Java, Oracle said on Thursday.
 
Heartland Payment Systems, which last year suffered the largest-ever data breach involving payment card data, is downplaying reports out linking the payment processor to a data breach at a restaurant chain in Austin, Texas.
 
Sen. Chuck Schumer (D-N.Y.) says that the H-1B program has created 'multinational temp agencies' that undercut U.S. wages and discourage students from entering tech fields.
 

Internet Storm Center Infocon Status