SEARCH RESULTS
 
Showing 1-10 of 67 records
 
Expand article

J.C. Penney customers affected by lost GE Money backup tape

The Article has images
2008-01-18 10:24:59 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 1/18/08 Update to " GE Money and Iron Mountain unable to locate tape Organization J.C. Penney Contractor/Consultant/Branch GE Money Iron Mountain Victims J.C. Penney customers and the customers of "up to 100 other retailers" which include "many of the large retail organizations Number Affected...
 
Tags: penney, penney customers, tape, backup tape, money, sensitive personal information, personal information, penney card immediately, information security practices
 
 
 
 
Expand article

Computers stolen from J. Lohr Vineyards & Wines

The Article has images
2008-02-22 12:06:49 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 2/13/08 Organization J. Lohr Vineyards & Wines ("J. Lohr Contractor/Consultant/Branch None Victims Current and former employees Number Affected Unknown Types of Data Names, addresses, Social Security numbers, and dates of birth Breach Description Two computers were stolen from the office of J....
 
Tags: sensitive personal information, personal information, lohr, lohr vineyards, information, employees, lohr employees, information security dollars, personnel information
 
 
 
 
Expand article

J-PAKE: From Dining Cryptographers to Jugglers

2008-05-29 20:31:05 by Feng Hao in Light Blue Touchpaper
 
Password Authenticated Key Exchange (PAKE) is one of the central topics in cryptography. It aims to address a practical security problem: how to establish secure communication between two parties solely based on their shared password without requiring a Public Key Infrastructure (PKI The solution to the above problem is very useful in practice...
 
Tags: pake, past pake solutions, pake research, j-pake protocol, j-pake, protocol, protocol design inherits, security, practical security
 
 
 
 
Expand article

Steven J. Vaughan-Nichols is no Nobel economic laureate

2008-07-16 16:09:15 by HASH0x847303c in StillSecure, After All These Years
 
You have to both admire and laugh at zealots and extremists no matter what guise they come in. Whether it be religion, politics or technology they find God's hand guiding you towards their position in every event, good or bad. A perfect example was brought to my attention by Michael Farnum. Steven J. Vaughan-Nichols, the resident Cyber Cynic and...
 
Tags: vaughan-nichols, linux zealot, linux, economy, john kenneth galbraith, michael farnum, obvious pitfalls, obvious, resident cyber cynic
 
 
 
 
Expand article

O.J. Simpson guilty verdict could lead to malicious spam

2008-10-06 04:00:00 by Editor in Computerworld Security News
 
Friday's conviction of former pro football star O.J. Simpson on charges related to the armed robbery of two sports memorabilia dealers could be used by malicious spammers to trick computer users, according to MX Logic
 
Tags: sports memorabilia dealers, trick computer users, pro football star, malicious spammers, simpson, armed robbery, friday, charges, conviction
 
 
 
 
Expand article

O.J. Simpson guilty verdict could lead to malicious spam

2008-10-06 00:00:00 by HASH0x8b6be80 in Network World on Security
 
Users should be on guard for spam touting the guilty verdict of former professional football star O.J. Simpson, a security company warned Monday
 
Tags: guilty verdict, professional football star, spam, security company, simpson, guard, users, monday
 
 
 
 
Expand article

10,501 USAF members informed of missing laptop

The Article has images
2008-01-01 00:15:46 by Evan Francen in The Breach Blog
Technorati Tag: Security Breach Date Reported 12/28/07 Organization United States Air Force (USAF Contractor/Consultant/Branch None Victims Active-duty and retired veterans Number Affected 10,501 Types of Data Names, addresses, Social Security numbers, dates of birth, and telephone numbers Breach Description A laptop containing sensitive...
 
Tags: sensitive personal information, personal information, air force, air force base, laptop, personal information home, usaf band, air force officials, band
 
 
 
 
Expand article

WCF Security Guidance from P&P

2008-04-04 06:09:00 by Keith Brown in Security Briefs
 
This is new; J.D. and crew are hosting it on CodePlex to get feedback. From J.D.'s blog Our patterns & practices WCF Security Guidance Project is in progress on CodePlex. This is our first release of prescriptive guidance modules for WCF Security How Tos Our How Tos give you step by step instructions for performing key tasks How To - Create and...
 
Tags: wcf, wcf security, authentication, username authentication, windows forms, host wcf, windows authentication, message security, sql role provider
 
 
 
 
Expand article

Random Number Bug in Debian Linux

2008-05-19 06:07:59 by schneier in Schneier on Security
 
This is a big deal : On May 13th, 2008 the Debian project announced that Luciano Bello found an interesting vulnerability in the OpenSSL package they were distributing. The bug in question was caused by the removal of the following line of code from md rand.c MD Update(&m,buf,j); [ .. ] MD Update(&m,buf,j); /* purify complains These lines were...
 
Tags: random, openssl, openssl team, random data, process, debian, current process, openssl package, bug
 
 
 
 
Expand article

WCF Security Guidance from P&P

2008-04-04 12:09:00 by keith-brown in Security Briefs
 
This is new; J.D. and crew are hosting it on CodePlex to get feedback. From J.D.'s blog Our patterns & practices WCF Security Guidance Project is in progress on CodePlex. This is our first release of prescriptive guidance modules for WCF Security How Tos Our How Tos give you step by step instructions for performing key tasks How To - Create and...