SEARCH RESULTS
 
Showing 1-10 of 260 records
 
Expand article

Confidential information sent to PinPay.net and SoftCard.biz is exposed

The Article has images
2008-05-08 13:26:03 by Evan Francen in The Breach Blog
...formation Reference URL Merchant 911 Blog Report Credit Tom Mahoney, the Founder and Director of Merchant 911 Response From the online source cited above and my own cursory investigation Back in January, I had short email dialog with a Kip Long, who claimed to be one of the principles of a company called Softcard out of Huntington Beach,...
 
Tags: information, drivers license card, license card, card, free card, social security card, sensitive information, sensitive personal information, encrypt sensitive information
 
 
 
 
Expand article

A tip on using ASP.NET validation controls

2008-09-03 17:16:35 by keith-brown in Security Briefs
 
...form, as opposed to the ValidationSummary) use the body of the control to define it In the past, I've used RequiredFieldValidator controls on my web forms to remind users that certain fields are required. I would set the ErrorMessage to something vanilla like, "This field is required", or even something simpler like "*" (an asterisk) if I...
 
Tags: shorter message, message, inline error message, validation control element, control, inline, display inline, errormessage, errormessage property
 
 
 
 
Expand article

Getting vulnerabilities in the application fixed

2007-10-27 13:20:07 by RaviC in Musings on Information Security
 
...form. The risk acceptance form could be as simple as a word document with a list of high severity/threat vulnerabilities and a narrative that states that signatories of the form acknowledge the existence of vulnerabilities (that you communicated) and have accepted the risk (posed by the vulnerabilities) for a time period specified in the...
 
Tags: vulnerabilities, software development manager, vulnerabilities based, risk acceptance form, risk, severitythreat vulnerabilities, form, form acknowledge, application
 
 
 
 
Expand article

Another Wisconsin mailing exposes Social Security numbers

The Article has images
2008-01-15 13:32:24 by Evan Francen in The Breach Blog
...Form 1099-G Reference URL Wisconsin Department of Revenue News Release The Associated Press Story at greenbaygazette.com Report Credit Wisconsin Department of Revenue Response From the online sources cited above The Department of Administration (DOA) and Department of Revenue (DOR) learned on January 9, 2008, that during a mailing, a...
 
Tags: security, taxpayers, taxpayers social security, social security, wisconsin, credit bureau, credit, breach description, breach
 
 
 
 
Expand article

Security Between Virtual Machines?

The Article has images
2008-06-22 15:30:57 by John Peterson in Security In The Virtual World
...Form Field Validation properly. A Form field is something you fill out on a web page like a form that asks for the user name and password. User names and passwords to log into the web site are stored on whats called a Database Server. Hmmm... So this means the web server needs to talk to the database server right? Yes! Keep this in the back...
 
Tags: web, web page, web site sends, server, file server, database backend server, web front, vulnerable web site, database server
 
 
 
 
Expand article

Mobile Malware Scam iSexPlayer Wants Your Money

The Article has images
2008-07-09 07:42:00 by Dancho Danchev in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...forming that he did go to some adult website and installed a software (I do not recall the name The name of the "software" as I've already pointed out is iSexPlayer. Let's dissect the scammers and their sites currently spammed across 100,000 sites using blackhat SEO tactics. Related domains sharing the same IP and internal pages 3g6.se...
 
Tags: isexplayer, install, install isexplayer, access, internet access, isexplayer access module, phone, blackhat seo sites, sites
 
 
 
 
Expand article

Security Between Virtual Machines?

The Article has images
2008-06-22 15:30:57 by John Peterson in Security In The Virtual World
...Form Field Validation properly. A Form field is something you fill out on a web page like a form that asks for the user name and password. User names and passwords to log into the web site are stored on whats called a Database Server. Hmmm... So this means the web server needs to talk to the database server right? Yes! Keep this in the back...
 
Tags: web, web page, web site sends, server, file server, database backend server, web front, vulnerable web site, database server
 
 
 
 
Expand article

Russia's FSB vs Cybercrime

The Article has images
2007-12-20 15:44:16 by HASH0x89b8758 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...formation, it was announced that it had been established who was the author of the notorious Pinch Trojan - two Russian virus writers called Ermishkin and Farkhutdinov. The investigation will soon be completed and taken to court. The arrest of the Pinch authors is on a level with the arrests of other well known virus writers such as the...
 
Tags: pinch, pinch authors, diy malware pinch, authors, malware authors, malware, notorious pinch trojan, source malware, pinch-ing
 
 
 
 
Expand article

35,000 T. Rowe price plan participants alerted

The Article has images
2008-01-29 12:51:35 by Evan Francen in The Breach Blog
...formation belonging to participants in several hundred T. Rowe Price retirement plans. CBIZ is a vendor for T. Rowe Price that was helping the company to prepare IRS Form 5500's Reference URL Investment News online story Report Credit Investment News Response From the online source cited above T. Rowe Price Retirement Plan Services...
 
Tags: sensitive personal information, personal information, information, confidential information, rowe price, insurance, identity theft insurance, cbiz benefits, cbiz