SEARCH RESULTS
 
Showing 1-10 of 71 records
 
Expand article

J.C. Penney customers affected by lost GE Money backup tape

The Article has images
2008-01-18 10:24:59 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 1/18/08 Update to " GE Money and Iron Mountain unable to locate tape Organization J.C. Penney Contractor/Consultant/Branch GE Money Iron Mountain Victims J.C. Penney customers and the customers of "up to 100 other retailers" which include "many of the large retail organizations Number Affected...
 
Tags: penney, penney customers, tape, backup tape, money, sensitive personal information, personal information, penney card immediately, information security practices
 
 
 
 
Expand article

Computers stolen from J. Lohr Vineyards & Wines

The Article has images
2008-02-22 12:06:49 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 2/13/08 Organization J. Lohr Vineyards & Wines ("J. Lohr Contractor/Consultant/Branch None Victims Current and former employees Number Affected Unknown Types of Data Names, addresses, Social Security numbers, and dates of birth Breach Description Two computers were stolen from the office of J....
 
Tags: sensitive personal information, personal information, lohr, lohr vineyards, information, employees, lohr employees, information security dollars, personnel information
 
 
 
 
Expand article

Steven J. Vaughan-Nichols is no Nobel economic laureate

2008-07-16 16:09:15 by HASH0x847303c in StillSecure, After All These Years
 
You have to both admire and laugh at zealots and extremists no matter what guise they come in. Whether it be religion, politics or technology they find God's hand guiding you towards their position in every event, good or bad. A perfect example was brought to my attention by Michael Farnum. Steven J. Vaughan-Nichols, the resident Cyber Cynic and...
 
Tags: vaughan-nichols, linux zealot, linux, economy, john kenneth galbraith, michael farnum, obvious pitfalls, obvious, resident cyber cynic
 
 
 
 
Expand article

TSA Follies

2008-08-21 09:12:22 by schneier in Schneier on Security
 
They break planes : Citing sources within the aviation industry, ABC News reports an overzealous TSA employee attempted to gain access to the parked aircraft by climbing up the fuselage... reportedly using the Total Air Temperature (TAT) probes mounted to the planes' noses as handholds The brilliant employees used an instrument located just...
 
Tags: flies passenger planes, list, planes, list hassle, sneak lockpicks past, james robinson, denise robinson, terrorist, pilot
 
 
 
 
Expand article

10,501 USAF members informed of missing laptop

The Article has images
2008-01-01 00:15:46 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 12/28/07 Organization United States Air Force (USAF Contractor/Consultant/Branch None Victims Active-duty and retired veterans Number Affected 10,501 Types of Data Names, addresses, Social Security numbers, dates of birth, and telephone numbers Breach Description A laptop containing sensitive...
 
Tags: sensitive personal information, personal information, air force, air force base, laptop, personal information home, usaf band, air force officials, band
 
 
 
 
Expand article

WCF Security Guidance from P&P

2008-04-04 06:09:00 by Keith Brown in Security Briefs
 
This is new; J.D. and crew are hosting it on CodePlex to get feedback. From J.D.'s blog Our patterns & practices WCF Security Guidance Project is in progress on CodePlex. This is our first release of prescriptive guidance modules for WCF Security How Tos Our How Tos give you step by step instructions for performing key tasks How To - Create and...
 
Tags: wcf, wcf security, authentication, username authentication, windows forms, host wcf, windows authentication, message security, sql role provider
 
 
 
 
Expand article

Random Number Bug in Debian Linux

2008-05-19 06:07:59 by schneier in Schneier on Security
 
This is a big deal : On May 13th, 2008 the Debian project announced that Luciano Bello found an interesting vulnerability in the OpenSSL package they were distributing. The bug in question was caused by the removal of the following line of code from md rand.c MD Update(&m,buf,j); [ .. ] MD Update(&m,buf,j); /* purify complains These lines were...
 
Tags: random, openssl, openssl team, random data, process, debian, current process, openssl package, bug
 
 
 
 
Expand article

WCF Security Guidance from P&P

2008-04-04 12:09:00 by keith-brown in Security Briefs
 
This is new; J.D. and crew are hosting it on CodePlex to get feedback. From J.D.'s blog Our patterns & practices WCF Security Guidance Project is in progress on CodePlex. This is our first release of prescriptive guidance modules for WCF Security How Tos Our How Tos give you step by step instructions for performing key tasks How To - Create and...
 
Tags: wcf, wcf security, authentication, username authentication, windows forms, host wcf, windows authentication, message security, sql role provider
 
 
 
 
Expand article

WCF Security Guidance from P&P

2008-04-04 12:09:00 by keith-brown in Security Briefs
 
This is new; J.D. and crew are hosting it on CodePlex to get feedback. From J.D.'s blog Our patterns & practices WCF Security Guidance Project is in progress on CodePlex. This is our first release of prescriptive guidance modules for WCF Security How Tos Our How Tos give you step by step instructions for performing key tasks How To - Create and...
 
Tags: wcf, wcf security, authentication, username authentication, windows forms, host wcf, windows authentication, message security, sql role provider
 
 
 
 
Expand article

Data breaches: Technology, process or management?

2008-07-28 16:32:00 by Manu Namboodiri in Data Protection, Management and Leakage
 
Being part of a technology company, one tends to think of solutions to data breaches as mainly to be solved by technology. Well, with a bit of process thrown in for good measure as well! Did not think much about the important role of management till now Just came across an interesting opinion by Jonathan Armstrong , a partner at Eversheds , a...
 
Tags: management, data breaches, management till, technology, tylenol crisis, crisis, executives, jonathan armstrong, jonathan