SEARCH RESULTS
 
Showing 1-10 of 38 records
 
Expand article

University of Iowa inadvertently posts personal data to the Internet

The Article has images
2008-01-15 11:25:40 by Evan Francen in The Breach Blog
...publish files and other information to the Internet at the University of Iowa? Typically, web servers should be segregated from the internal network and access restricted to those people that are authorized to publish content. Content is published after testing and change control. Does any of this exist here Someone outside the university...
 
Tags: university, information security risk, information, iowa, sensitive personal information, social security, internet, breach description, financial information
 
 
 
 
Expand article

Why making health records public is not a great idea

2008-05-20 07:21:10 by HASH0x8911db8 in StillSecure, After All These Years
 
...publish this data and make it public. Fred would like to have a sidebar widget for his blog with his health profile. Many people wrote to Fred telling him why Google does not do this. Many of them centered on the fact that insurance companies would use this information against you to deny or limit your coverage. Some took shots at Fred's...
 
Tags: health, health records public, public, fred, fred wilson, records, health profile, fred feels, google health service
 
 
 
 
Expand article

Did the Chinese PLA Attack the U.S. Power Grid?

2008-06-02 06:37:31 by schneier in Schneier on Security
 
...published in November and based on detailed research by a panel of government and industry officials, blames the blackout on an unlucky series of failures that allowed a small problem to cascade into an enormous failure The Blaster worm affected more than a million computers running Windows during the days after Aug. 11. The computers...
 
Tags: government, government officials, august 14th blackout, august, computer, officials, blackout, status computer, computer hackers
 
 
 
 
Expand article

Thwarting a large-scale phishing attack

2007-06-11 11:35:00 by Niels Provos in Google Online Security Blog
 
...publish a blacklist of known phishing sites. This blacklist is the basis for the anti-phishing features in the latest versions of Firefox and Google Desktop. Although blacklists are necessarily a step behind as phishers move their phishing pages around, blacklists have proved to be reasonably effective Not all phishing attacks target sites...
 
Tags: myspace, myspace profiles, real myspace content, myspace account, attack, dummy myspace account, phishers move, phishers, lower-value sites
 
 
 
 
Expand article

The top 10 spam characteristics (#1-5)

2006-10-03 04:13:56 by Administrator in Email security & compliance blog
 
...publish their email list. Some persons might add recipients to the Bcc: field for sending out legitimate mailings, but these will tend to be of a more personal nature (which you might wish to block anyway) since most professional companies do not use this method for sending newsletters or mailings. Note however that if you do block emails...
 
Tags: spam, spam characteristics, top spam characteristics, spam characteristic, spam mails, avoid spam messages, html comment tags, comment tags, flag spam correctly
 
 
 
 
Expand article

Hacking tool guidance finally appears

2007-12-31 17:50:32 by Richard Clayton in Light Blue Touchpaper
 
...publish the guidance to prosecutors so wed all know where we stood Anyway, that guidance is now out and theres no mention, surprise, surprise , of 50%. Instead, the tests that the CPS will apply are Has the article been developed primarily, deliberately and for the sole purpose of committing a CMA offence (i.e. unauthorised access to computer...
 
Tags: bad, bad people download, cma offence, offence, bad guys, guys, offence stage, tool, article widely
 
 
 
 
Expand article

Highlighting the importance of data privacy... one person at a time

2008-01-11 09:29:07 by Jen Albornoz Mulligan in Security & Risk Management
 
...published his personal information in a newspaper column trying to diminish the idea that harm could come from the data breach. And that has come back to haunt him, as someone set up an automatic debit from his account of 500 GBP a month to be given to charity. My favorite part of the story is his new attitude We must go after the idiots who...
 
Tags: data, data protection laws, data breach, easy data, lost, protection, account, lost valuable time, bank account
 
 
 
 
Expand article

Financial Ombudsman losing it?

2008-01-23 15:14:58 by Ross Anderson in Light Blue Touchpaper
 
...publish them on the somewhat surprising grounds that the information in them might be used to commit identity theft against the customers in question. Eventually they published our submission minuss the two appendices of case papers. (If knowing someones residential address and the account number to a now-defunct bank account is enough for a...
 
Tags: ombudsman, financial ombudsman service, service, submission, submission minuss, customers, bank customers, independent hunt review, fipr submission
 
 
 
 
Expand article

Prospects Brightening for a Common Event Standard

2008-02-25 08:38:57 by Burton Group in Security and Risk Management Strategies Blog
 
...publish APIs and so on. Any comprehensive standard released in the future should work with existing technologies like these as much as possible. Also, there are a number of complexities, including mapping event semantics between different systems, synchronizing time while managing clock drift, and maintaining dynamic event handling policies ...
 
Tags: common event standard, standard, event standards space, space, standards, common event standards, standards deliberation, cee, cee web site
 
 
 
 
Expand article

Prospects Brightening for a Common Event Standard

2008-02-25 08:38:57 by Burton Group in Security and Risk Management Strategies Blog