SecurityRatty: tag: hand-held

The STRIDE per Element Chart

2007-10-29 23:06:46 by sdl in The Security Development Lifecycle

Id like to talk about the STRIDE per element chart in the sixth post of my threat modeling series. Id like to talk about where its from, some of the issues that come with that heritage, and how you might customize it in your own threat modeling process Michael Howard and Shawn Hernan did an analysis of our bulletins and some CERT and CVE data....

Tags: element chart, chart, stride, specific, specific threats, cve data, data, stride chart, threats

Do not dismiss the dangers of being stalked

2008-02-25 16:48:00 by John Sexton in The Bullet Proof Blog

Q: My friend told me that she is being stalked. I am very worried for her safety. Are stalkers dangerous or just a nuisance A: You are right to be concerned for your friends safety. Stalkers are people with serious mental disorders. The ones we tend to hear about most often are the cases involving celebrities. We all know what happened when...

Tags: stalkers mind, mind, stalkers, stalker, john lennons stalker, clients husband, stalkers dangerous, clients, stalkers ability

268,000 donors exposed through stolen Memorial Blood Centers laptop

2007-12-06 14:09:42 by Evan Francen in The Breach Blog

Technorati Tag: Security Breach Date Reported 12/5/07 Organization Memorial Blood Centers Memorial Blood Centers is a nationally known, locally operated nonprofit community blood center that has supplied blood and blood components to area hospitals for nearly 60 years. Memorial Blood Center operates 10 donor centers at nine Minnesota sites...

Tags: donors, blood, security, security cameras, store social security, memorial blood centers, donors social security, breach description, blood components

Larry Sutos Paper Drama

2008-01-02 14:53:30 by RSnake in ha.ckers.org web application security lab

If you dont care about drama, skip this post, there isnt any new information in it Somehow I always end up being the center of controversy, even when Im really only vaguely interested in the subject matter at hand. This time it comes from the Full-Disclosure mailing list which is known for, among other things disclosing zero-day exploits in...

Tags: paper, larry sutos paper, scanners, commercial scanners, test environment, environment, test, time, people

University of Iowa inadvertently posts personal data to the Internet

2008-01-15 11:25:40 by Evan Francen in The Breach Blog

Technorati Tag: Security Breach Date Reported 1/11/08 Organization University of Iowa Contractor/Consultant/Branch None Victims May 2006 College of Engineering graduates Number Affected 216 Types of Data Names, Social Security numbers and grade point averages (GPAs Breach Description A list containing sensitive personal information...

Tags: university, information security risk, information, iowa, sensitive personal information, social security, internet, breach description, financial information

Difference Between of Adware, Spyware and Anti-virus

2007-04-18 04:24:00 by jack in adware and spyware

Difference Between Adware, Spyware and Anti-virus Adware, spyware and computer virus share some similarities, one of which is that all three are major nuisances for computer users. Let's differentiate the three Spyware is software that does not intentionally harm your computer. What they do is that they create pathways wherein someone else...

Tags: virus, spyware, computer virus share, adware, anti-virus, computer, spyware author, computer system, system

Lock-In

2008-02-12 06:08:15 by schneier in Schneier on Security

Buying an iPhone isn't the same as buying a car or a toaster. Your iPhone comes with a complicated list of rules about what you can and can't do with it. You can't install unapproved third-party applications on it. You can't unlock it and use it with the cellphone carrier of your choice. And Apple is serious about these rules: A software update...

Tags: lock-in, software, software development kit, custom software, software company, security, hardware, special security hardware, security mechanism

Unknown IP addresses access Lexmark personnel data

2008-02-15 15:32:04 by Evan Francen in The Breach Blog

Technorati Tag: Security Breach Date Reported 2/15/08 Organization Lexmark International Contractor/Consultant/Branch None Victims current and former employees Number Affected some As of December 31, 2006, of the approximately 14,900 employees worldwide, 3,900 are located in the U.S. and the remaining 11,000 are located in Europe, Canada,...

Tags: lexmark, senstive personal information, personal information, lexmark employees, information, employees, data, unknown, lexmark international

Benevolent Worms

2008-02-19 06:57:11 by schneier in Schneier on Security

This is a stupid idea: Milan Vojnovic and colleagues from Microsoft Research in Cambridge, UK, want to make useful pieces of information such as software updates behave more like computer worms: spreading between computers instead of being downloaded from central servers The research may also help defend against malicious types of worm, the...

Tags: software worms spread, worms, software, bad software distribution, worm, successful worm, beneficial worms, software distribution mechanism, worm quieter

Cashing in on employee theft, or honest whistleblower?

2008-02-25 14:03:19 by Evan Francen in The Breach Blog

Technorati Tag: Security Breach Date Reported 2/22/08 Organization LGT Group - The Wealth and Asset Management Group of the Princely House of Liechtenstein English Version German Version French Version Italian Version Contractor/Consultant/Branch LGT Treuhand AG LGT Trust Ltd in English Victims Clients of LGT Trust (prior to 2002 Number...

Tags: confidential, confidential data, kieber, named heinrich kieber, lgt, lgt trust, data, confidential information, information

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo