SEARCH RESULTS
 
Showing 1-10 of 151 records
 
Expand article

Laptop stolen from R.E. Moulton may affect 19,000

The Article has images
2008-06-15 22:15:45 by Evan Francen in The Breach Blog
...parties who arranged for the insurance quotes Evan] It seems to me that the "employers or the third parties" have a significant role in this breach also. I wonder if information security personnel at the "employers or the third parties" were aware and approved of the sharing of personal information with R.E. Moulton. If they were, then I...
 
Tags: sensitive personal information, personal information, information, information security practices, confidential information, information security, moulton, laptop, information security personnel
 
 
 
 
Expand article

A Localized Bankers Malware Campaign

The Article has images
2008-03-25 14:59:06 by HASH0x8b6136c in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...parties. What's particularly interesting about this campaign, is that they're using a hardcoded list of already breached email accounts of mostly Brazilian users, and using it as a foundation for the distribution of the malware under the clean IP reputation - which explains why the email makes it through anti-spam filters. The message...
 
Tags: malware, bankers malware campaign, malware malware, malware campaigns, malicious malware, banker malware, bankers malware, malware authors, campaign
 
 
 
 
Expand article

Deloitte & Touche and IKON lose confidential information

The Article has images
2007-12-20 14:23:09 by Evan Francen in The Breach Blog
...parties access and/or store. Information security controls surrounding vendor access must be addressed in policy, and then followed up standards and controls. I wonder what Deloitte & Touche's policy is around vendor access to confidential information if you have any additional questions about this incident, please call the Personal Service...
 
Tags: information, touche, ikon, confidential information, information security controls, deloitte, third-parties secure information, touche partners, ikon office solutions
 
 
 
 
Expand article

3Com, Bain, Huawei rises from the dead - Where there is a will, there is a way

The Article has images
2008-02-29 19:53:35 by HASH0x8ae8b00 in StillSecure, After All These Years
...parties time to work out a new plan and submit a new plan to those wild and crazy free trade hippies at CFIUS As I have written before CFIUS just does not take kindly foreign companies buying US based security companies, let alone a Chinese company run by a former Peoples Republic Army Officer owning a piece of the action. However, timing is...
 
Tags: 3com, healthy competitive, healthy, healthy 3com, plan, parties time, parties, acceptable plan, current stock price
 
 
 
 
Expand article

Wired.com and History.com Getting RBN-ed

The Article has images
2008-03-10 14:20:33 by HASH0x8aeaaa0 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...parties in the face of the RBN introducing a new malware, in between the pharmaceutical scams that they serve on the basis of an affiliation model . So, after " CNET stops IFRAME site attacks - who's next? " in terms of high-profile sites, that is Wired.com and History.com Key summary points the same malicious parties behind the CNET and...
 
Tags: malware, vbs malware, malware attack, rbn, media malware gang, iframe injection attack, iframe injection, malware research, high-profile sites
 
 
 
 
Expand article

Can you hear me now?

2008-06-27 10:56:10 by Gunnar Peterson in 1 Raindrop
 
...parties The internal/external divide is pretty silly these days, as is companies' recanting "inside the firewall and outside the firewall", I spend most of time hooking things up together precisely so they intereoperate remotely. The firewall is a speed bump at best. At any rate external sources is a primary concern in Web services security,...
 
Tags: web services, web services world, web services security, data breach report, report, attack, massive attack surface, companies follow verizon, data
 
 
 
 
Expand article

Identity Framework Probable Feature List

The Article has images
2007-12-16 06:42:00 by Keith Brown in Security Briefs
...parties There's a custom config section that configures this module. Vittorio uses it to say, "use my SSL cert as my relying party cert". This is probably required in case the client wants to authenticate using a card Issuing managed cards Fx provides a function to generate a managed card, as well as a class that represents it (it's currently...
 
Tags: informationcard login control, login control, information card serializer, information, control, user authentication methods, user, custom sts, card
 
 
 
 
Expand article

Which CAPTCHA Do You Want to Decode Today?

The Article has images
2007-11-28 15:22:59 by HASH0x89f1f84 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...parties empowered by proprietary tools , publicly available DIY CAPTCHA breakers , or services like this one doing it on demand The following service is offering the possibility for CAPTCHA decoding on a per web service basis, and enticing future customers by providing percentage of accuracy, the price, and the ease of difficulty of breaking...
 
Tags: captcha, diy captcha breakers, malicious parties, service, web service basis, process, directly decode, future customers, decent level
 
 
 
 
Expand article

Malware Serving Exploits Embedded Sites as Usual

The Article has images
2008-01-09 18:04:58 by HASH0x8957398 in Dancho Danchev's Blog - Mind Streams of Information Security Knowledge
...parties in China that have also started combining the Internet Explorer VML Download and Execute Exploit (MS07-004), thanks to recent localized forum postings on modifying the third exploit. Let's assess several sample domains 8v8.biz/ms07004.htm (58.53.128.98) is such a domain that's serving a combination of these starting with...
 
Tags: htm, load uc147, uc147, loads 8v8, 8v8, load 8v8, iframes, recent realplayer exploit, secondary iframes