InfoSec News

If you're looking for a portable multimedia machine, the Gateway NV5933u--which features an Intel Core i3 processor and a Blu-ray Disc player--might be for you. This 15.6-inch all-purpose laptop multitasks with ease, and it even has a number pad next to its big, flat keyboard. Our review model, priced at a modest $649 (as of June 3, 2010), came with a 2.13GHz Intel Core i3-330M processor, 4GB of RAM, a 320GB hard drive, a 15.6-inch 1366-by-768-pixel display, and Windows 7 Home Premium (64-bit). The system also has a built-in Webcam and microphone, 802.11b/g/n Wi-Fi, and--perhaps its biggest selling point--a 4X Blu-ray Disc/DVD-Super Multi double-layer drive.
 
OCZ today announced it is selling two new series of 1.8-in solid state drives, targeted at netbook and ultra-thin notebook owners.
 
The mobile OS battle is joined: The next generation of the Motorola Droid smartphone is being announced next week, the day before the iPhone 4 ships.
 
The increasing adoption of agile software development is apparently changing the skill sets needed by QA professionals, according to a survey by Capgemini and HP.
 
When business intelligence is used to inform business process changes, companies find new ways to save money and connect more closely with customers.
 
Apple's iPhone 4 has double the amount of RAM used in last year's iPhone 3GS and the newer iPad tablet -- a hardware tweak that will mean better multitasking, a hardware expert said.
 
The newly released WordPress 3.0 gears the blogging software for enterprise content management duties as well
 
The increasing adoption of agile software development is apparently changing the skill sets needed by QA professionals, according to a survey by Capgemini and HP.
 
Intuit said that its various Web sites, including TurboTax Online and QuickBooks Online, were restored after being brought down in a site outage Tuesday night.
 
Twitter kicked off a test of a new revenue source using its trending topics.
 
Just a quick word of caution.... Be careful what you type. We have just received information from one of our

readers, thanks Aaron, that w w w . malware domain lists . com is masquerading as legitimate site

www.malwaredomainlist.com (without the s). A quick check finds articles referencing this bad

boy site as part of the Personal Antivirus infector group.
Deb Hale Long Lines, LLC (c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.
 
The U.S. Supreme Court has ruled that the Ontario, Calif., police department has the right to search through personal text messages sent by employees on city-issued devices.
 
Apple's iPad may soon put a stake in the heart of netbooks, research analysts said this week.
 
Microsoft will release a new mobile OS for enterprise handheld devices later this year as it tries to simplify the Windows Mobile upgrade cycle for customers, the company said.
 
Microsoft, eBay and Citizens Bank have started Internet Fraud Alert, a service that will let them better share information about compromised accounts.
 
WiMax service provider Clearwire introduced its first 4G/3G modem that works with Mac laptops, as well as its first Wi-Fi hotspots with integrated 4G or 4G/3G radios.
 
Qualcomm faces another antitrust complaint in Europe, this time filed by Icera, a U.K. fabless semiconductor company.
 
Motorola on Thursday brought out the ES400 smartphone targeted at business users who need rugged equipment.
 
The trouble with creating a "cloud strategy"? You're focusing on technology, not business benefit. Forrester's Randy Heffner advises you focus on how cloud can enhance your existing architecture strategy.
 
GoFlex Net, by Seagate, is docking cradle that supports connections of two GoFlex portable drives; MyDitto network storage server, by Dane-Elec, becomes a NAS drive for your network, capable of storing files.
 
Toshiba announced today it will soon begin shipping its highest density embedded memory chip for mobile devices, offering up to 128GB of capacity.
 
Apple on Wednesday prepared customers for next weeks' release of the iPhone 4 and iOS 4 by updating iTunes to make it compatible with the new mobile operating system.
 
The U.S. Federal Communications Commission took a first step toward imposing limited regulations on broadband providers by voting Thursday to launch a notice of inquiry exploring the change.
 
So you just stumbled across (or StumbledUpon) a killer blog post, maybe something to do with, oh, I don't know, solving PC hassles. It's so good, you immediately want to share it with friends and family members.
 
Samsung is preparing to ship its fastest SSD, which uses a new synchronous NAND flash interface to achieve higher bandwidth.
 
Conrado Bryson Bush wants to resize the partitions on his hard drive.
 
The mobile OS battle is joined: The next generation of the Motorola Droid smartphone is being announced next week, the day before the iPhone 4 ships.
 
Vendors are adding cheaper and simpler Android-based phones to their portfolios to get smartphones in the hands of more users -- and close the gap between Android and Apple's iPhone, according to analysts.
 
Microsoft and the National Cyber-Forensics and Training Alliance (NCFTA), with the support of

Accuity, the American Bankers Association, Anti-Phishing Working Group, Citizens Bank, eBay Inc.,

Federal Trade Commission, National Consumers League and PayPal are introducing a new program to

help identify potential fraudulent financial activity due to online fraud and to notify the

institutions involved that their customers personal identity may be at risk of abuse. This

program:
Will offer a trusted and effective mechanism for participating researchers to report stolen

credentials discovered online -
The prgram was unveiled today and will go into effect immediately. For more information see:
http://www.microsoft.com/Presspass/press/2010/jun10/06-17FraudAlertPR.mspx
http://ifraudalert.org/
Deb Hale Long Lines, LLC (c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.
 
When I ask CIOs about their successor, I get one of three answers: Fifty percent tell me, "I am grooming two people, but they still have some development ahead of them." Roughly thirty percent say, "I have someone who could be CIO tomorrow." The rest of the time I hear, "Not by a long shot." Despite the fact that most CIOs have a successor in mind, I would wager that fewer than 10 percent of today's large-company CIOs have been promoted from within. Hence the paradox: You develop successors, yet the CEO almost always goes outside for the next CIO.
 
Google will unveil on Thursday what it calls significant improvements to Commerce Search, a cloud-hosted search service that online retailers can sign up for to power their e-stores' search functions.
 
Initial attempts at boosting magnetic hard-drive performance with a dose of flash memory fell flat; these so-called hybrid hard drives, released by Seagate and, in smaller quantity, by Samsung, didn't deliver on their promised speed gains. Now, nearly three years later, the concept of the hybrid drive gets new life, with the Seagate Momentus XT, the second generation of hybrid drive that mixes flash and hard disk. But does this drive deliver a measurable performance boost over its standard hard-disk cousins?
 
I just happened upon a CBS News video that gave me pause for thought.This once posted back in April however

I missed it until now.



http://www.cbsnews.com/video/watch/?id=6412572n
The video talks about the fact that modern digital copy machines, those sold after 2002, contain a hard

drive.These hard drives store the images copied. These machines are traded in for new models and then

refurbed and resold.However, the hard drives more than likely are not getting scrubbed to remove the content.

One of the copy machines in the video notonly contained content on the hard drive but also still had documents

left on the copy bed.
This brings up some interesting discussions. What is on your copymachine hard drive? When it is sent in for

repair what information may be gleaned from a quick glance at the drive? Is your copy machine another potential

target to aid in identity theft?



Food for thought. Should there be processes and procedures in place for the disposal of these devices? Do you

know what other devices in your organization contain a hard drive or other storage device?Is there a process

for cleaning before disposal?



Let me know what you think? What does your company do if anything to ensure that no confidential data is

leaked by disposal of old equipment?
Deb Hale Long Lines, LLC (c) SANS Internet Storm Center. http://isc.sans.org Creative Commons Attribution-Noncommercial 3.0 United States License.
 
Have you been thinking about upgrading your computer to Ubuntu 10.04? I recently made the leap, at the prompting of my Update Manager. The process went fairly smoothly, but I did have to deal with a couple of minor annoyances. Since you never know exactly what may happen when you decide to upgrade, here are a few tips to get you started.
 
Botnets are growing and security research teams are virtually powerless to do anything about it.

Add to digg Add to StumbleUpon Add to del.icio.us Add to Google

Security - Consultants - General and Freelance - Botnet - Malware
 
PC maker Lenovo announced its first 3D laptop, aimed at gamers and users who want to watch HD movies.
 
Swype's software that lets users input text on a touchscreen phone by gliding their finger from one letter to another on a virtual keyboard is now available in beta version for Android.
 
Home/small-business routers should be simple to set up and use -- but they're not. We lay out six typical problems and tell you how to solve them.
 
Microsoft exploits SharePoint to support internal podcasting network
 
One of the hackers in the group that snatched more than 100,000 iPad owner e-mail addresses from AT&T's servers was arrested Tuesday on felony drug charges after the FBI searched his Arkansas home
 
San Francisco is close to passing a bill that would require cell phone retailers to clearly mark how much radiation is emitted by the phones they sell.
 
Despite the flood of existing social networking tools, Hewlett-Packard Co. will soon introduce its own social network, albeit specifically aimed at IT pros.
 
A 13-year relationship with IBM and its Websphere application integration server has been critical in helping ING Direct of Canada quickly build and operate a mobile banking application, a bank official said.
 
A researcher heavily involved in studying the vulnerabilities in the systems that run power plants and other critical facilities, says a major disaster is unlikely.

Add to digg Add to StumbleUpon Add to del.icio.us Add to Google

Critical infrastructure - Power station - Business - United States - Government
 

Read all 'Mark Zuckerberg' posts in Politics and Law
CNET (blog)
I'm an InfoSec professional and I still have to think through what I'm doing. 11:27 am (Comment from reader Jon Pincus): Caroline, excellent point about the ...

and more »
 

Internet Storm Center Infocon Status