SEARCH RESULTS
 
Showing 1-10 of 102 records
 
Expand article

File containing Interbank FX customer information exposed for almost a year

The Article has images
2008-04-15 23:57:04 by Evan Francen in The Breach Blog
...prior to April 2, 2007 Number Affected Unknown Types of Data social security number, driver's license, and passport information, and may also include your Interbank FX account information Breach Description In April, 2007 an employee posted a file to an insecure server that was accessible via the Internet. The file contained personal...
 
Tags: information, sensitive personal information, personal information, application information, handle sensitive information, information security, interbank, file, confidential information
 
 
 
 
Expand article

A Vocabulary of Confusion

The Article has images
2008-04-16 08:48:20 by Greg Reemler in The Complex Event Processing Blog
...prior art Myquestion iswhy,instead of creating andadvocating a seemingly new vocabulary and new event processing theory, why not leverage the excellentprior artover the past 30 years Why not leverage thedeep (very complex) event processing knowledge, well documented andsolving some of thechallengingCEP/EPproblems we face today, by some of...
 
Tags: event, successful operational event, reference architecture, intelligent event, reference, functional, functional event, complex event, complex
 
 
 
 
Expand article

The Impact of Dans DNS Debacle on Internet Risk

2008-07-30 08:11:30 by Burton Group in Security and Risk Management Strategies Blog
 
...prior to disclosure -- or, more properly, before the date of Dans invention of the technique (this also assumes prior art) with the period after invention/disclosure and into the future. If the disclosure reduces the number of those incidents, then risk is reduced; if the disclosure increases the number of those incidents, then risk is...
 
Tags: dns servers, servers, impact, dns, dns servers cache, risk impact revolves, major dns vendors, risk, major dns vulnerability
 
 
 
 
Expand article

EPTS: An Event Processing Marketing Society (EPMS)

2008-08-13 08:02:57 by Tim Bass in The Complex Event Processing Blog
 
...prior-art and science of CEP/EP (before the marketing folks took over). He insists on having the EPTS reinvent the wheel and develop their own vocabulary, as if event processing did not exist prior to one book on CEP Ophersfun-to-readblog counterpoints to myconcernsare evolving to a mixture of ad hominums and sarcasm,sometime wrappedin a...
 
Tags: epts, event, vendors onthe epts, epts committee, technical societyabout event, forhis epts, epts reinvent, narrow, community
 
 
 
 
Expand article

UltimateBet cheating goes undetected for almost 21 months

The Article has images
2008-06-04 10:55:17 by Evan Francen in The Breach Blog
...prior to the sale of the business to Tokwiro in October 2006 Evan] Shouldn't an information security and risk assessment be conducted as part of the acquisition and integration? If so, then wouldn't a code review of the proprietary software that came with the acquisition be included? This is the proprietary software that really drives the...
 
Tags: ultimatebet, tokwiro enterprises enrg, tokwiro enterprises, ultimatebet issues statement, ultimatebet prior, ultimatebet subsequently, ultimatebet immediately removes, ultimatebet servers, ultimatebet statement
 
 
 
 
Expand article

KimsCrafts e-commerce breach affects 4,500

The Article has images
2007-12-14 16:08:39 by Evan Francen in The Breach Blog
...prior to this breach report. If they were, then this leads to questions about why the Approved Scanning Vendor did not detect the vulnerability(ies I don't think KimsCrafts is all too much unlike many companies of similar size. These companies see the potential money to be made through the internet (e-commerce), but do not necessarily employ...
 
Tags: kimscrafts, breach, e-commerce, credit file, credit, credit card data, kimscrafts e-commerce site, data, data security firm
 
 
 
 
Expand article

Maryland Department of Assessments & Taxation web exposure

The Article has images
2008-01-05 14:02:15 by Evan Francen in The Breach Blog
...prior to production. If the site itself had not been properly tested, should we assume that the secure server had/has been For that minute or so there ... that wasn't encrypted," Mr. Young said. "If they submitted an application, it went to a different section that was encrypted Evan] My interpretation is that the "secure server" encrypts...
 
Tags: maryland, sensitive personal information, personal information, secure server hadhas, server, web application server, application, information, information security
 
 
 
 
Expand article

A breach that hits home with 2008 presidential candidates

The Article has images
2008-03-22 13:16:50 by Evan Francen in The Breach Blog
...Prior to employment, Stanley and its subcontractor candidates undergo several background checks, including security and credit checks. Candidates are also subjected to a Government-sponsored background check. In addition, candidates receive training on the Privacy Act and are required to sign a Privacy Act acknowledgement prior to starting...
 
Tags: stanley subcontractor employees, subcontractor employees, subcontractor, confidential information, information, information security, stanley, personal information, employees
 
 
 
 
Expand article

Unauthorized access to the Stryker Corporation VPN

The Article has images
2008-04-17 12:45:57 by Evan Francen in The Breach Blog
...prior knowledge of the network Evan] Could this have been a former IT employee that had prior knowledge of administrator account and services passwords? If so, then Stryker may have a serious deficiency in their onboarding/offboarding procedures. Privileged account passwords must be changed when there is a reasonable possibility that someone...
 
Tags: stryker, stryker corporation, stryker suspects, stryker immediately, immediately, stryker intends, stryker servers, servers, evan user
 
 
 
 
Expand article

Oh No! Security Metrics!

2008-04-18 12:43:00 by sdl in The Security Development Lifecycle
 
...prior blog post. The first vulnerability metric compares Microsoft to Microsoft, in other words we compare Windows XP to Windows Vista, SQL Server 2000 to SQL Server 2005 and so on. We use this metric while a product is being built; we track incoming security bugs for the prior version of the product to see how we're faring with the current...
 
Tags: bugs,