SEARCH RESULTS
 
Showing 1-10 of 203 records
 
Expand article

Disk encryption easily cracked, researchers find

2008-02-21 00:00:00 by Network World Staff in Network World on Security
 
The disk encryption technology used to secure the data in your Windows, Apple and Linux laptops can be easily circumvented, according to new research out of Princeton University
 
Tags: disk encryption technology, linux laptops, princeton university, easily, apple, windows, research, secure, data
 
 
 
 
Expand article

Some IPFW students exposed through malware

The Article has images
2007-11-29 13:26:49 by Evan Francen in The Breach Blog
...easily detected by most current anti-virus programs. Many Trojan horse programs have pretty easily identifiable characteristics. I question whether this system had current protection installed. Kudos to school officials for conducting internal audits and responding to this incident well The security breach is the first known one in more than...
 
Tags: purdue university, university, information, personal information, university department, university fort wayne, computer, vulnerable information, students
 
 
 
 
Expand article

Again, On Criticality of Logs

2007-12-07 08:32:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -
 
...easily have seen us logged in there ," he said, adding that IT could have run its own scans, checking to see logged-in users. "If they had an intrusion detection system set up, they could have easily seen that these weren't their calls Amen to that, many of the successful and then-undetected attacks are due to stupidity, incompetence which...
 
Tags: logs, reliable logs, collect logs, decent logs, security, tjx, security managers, tjx months, log data
 
 
 
 
Expand article

Cyberattack! Manipulation and Subversion of Financial Markets!

2008-01-08 11:55:09 by Tim Bass in The Complex Event Processing Blog
 
...easily see how this is a very serious cybersecurity threat in 2008 and beyond.Unfortunately,thesetypes of attacks willcertainly get worse before it gets better. Welcome to the real world. In this vividly realexample, an analyst from a competing bank yells FIRE! and basicallysubverts the market, causing countless of investors to loss many...
 
Tags: etrade, etrade financial, etrade bank, etrade financialis, etrade stocks, cyberattack, etrade bankruptcy risk, market, free market
 
 
 
 
Expand article

Cost of vulnerability

2007-03-05 21:19:05 by RaviC in Musings on Information Security
 
...easily hijack a user session. I set up a demo scenario for this and walked up to his office to bring this to his attention. His response to my discovery was more amazing than the vulnerability itself. He thumped his clenched fist on the table and avered " My code is bullet proof". By his immature and stupid reaction the architect increased...
 
Tags: vulnerability, vulnerability determines, cost, demo scenario, easily, easily hijack, extremely brilliant, preserve company, bullet proof
 
 
 
 
Expand article

Oklahoma County Social Security numbers online

The Article has images
2008-03-13 09:46:09 by Evan Francen in The Breach Blog
...easily found by anyone with computerized research experience Social Security numbers of numerous prominent Oklahoma County residents were found with ease and in no case did we find a document where the Social Security number had been redacted, or blacked out, as is required under federal law Almost all of some 8.7 million documents - 17...
 
Tags: county, county commissioner, county clerks, oklahoma county residents, residents, oklahoma county, social security, court documents, county clerk
 
 
 
 
Expand article

SDL and Filtering

2008-03-13 15:00:00 by sdl in The Security Development Lifecycle
 
...easily divide up the responsibility for ramping up on the SDL instead of overloading a single person in their group with figuring out what needs to be done. For instance, a product group could assign a person from each discipline in their team to identify which SDL requirements need to be met and at what point in the product cycle. A program...
 
Tags: sdl, sdl requirements, product cycle, product, product team, sdl team, product type, type, code type
 
 
 
 
Expand article

Binghamton University mistaken email exposes students

The Article has images
2008-03-19 14:10:22 by Evan Francen in The Breach Blog
...easily this could happen in many organizations. I know I have sent emails to unintended recipients before. I am concerned that Social Security numbers were contained in the email and wonder why? I am also curious about how access is restricted to such personally identifiable information (PII Potential causes that can lead to a higher risk of...
 
Tags: university, students, management students vulnerable, management, binghamton university students, select students, email, binghamton university, social security
 
 
 
 
Expand article

End user security psychology, part I: Are small mobile computers less secure than larger mobile computers?

2008-03-27 11:30:35 by Bill Nagel in Security & Risk Management
 
...easily handled by debit cards (contact and contactless), NFC chips, and even good old-fashioned cash Problems with compatibility between Java-based OTP generating apps and "Java-enabled" phones that hinder OTP generation on the mobile The difficulty of switching back and forth between mobile phone apps to copy an OTP received, say, via SMS...
 
Tags: mobile, mobile signatures, mobile channel, authentication, mobile authentication, mobile phone apps, mobile device, online, online channel
 
 
 
 
Expand article

New parents exposed in Fresno County lost mail

The Article has images
2008-04-07 16:07:10 by Evan Francen in The Breach Blog
...easily stolen, or bundled up and dropped in the mail -- a packet that can be easily damaged during the mailing process Every year, tens of thousands of Californians become identity theft victims. Thieves create