Privacy
From the Web
Gmail Introduces Suspicious Activity Warning
July 05, 2010 from: Saumil's Infosec Blog
Recently, My gmail account was hacked by some botnet which sent out e-mails to all my contact asking them to check out a website. I only realized this when I checked my gmail "Sent Mail" folder and had to immediately send a warning message to all my contacts telling them that my account was hacked and not to click on any links from my previous mails.
Comments (1)
From the Web
Mozilla - Plugging the CSS History Leak
March 31, 2010 from: Mozilla Security Blog
From the Mozilla Security Blog - We’re close to landing some changes in the Firefox development tree that will fix a privacy leak that browsers have been struggling with for some time. We’re really excited about this fix, we hope other browsers will follow suit. It’s a tough problem to fix, though, so I’d like to describe how we ended up with this approach.
Comments (1)
From the Web
Defending Against Advanced Persistent Threats
February 08, 2010 from: AEON Security Blog
Google and other major companies and the report is both interesting and questionable. I have no reservations about the levels of expertise coming out of Mandiant or their findings; I do however, have reservations about the explanations and interpretation of what was summarized in the Wired article.
Comments (0)
From the Web
HIPAA complaints decreased significantly in 2009
February 01, 2010 from: Office of Inadequate Security
Dennis Melamed provides monthly HIPAA complaint statistics based reports by the HHS Office for Civil Rights (OCR). It seems that not only did breach reports in general decline in 2009 relative to 2008, but privacy and security complaints to HHS also declined.
Comments (1)
From the Web
Wait, Google - I Thought You Were Evil!
January 12, 2010 from: Rsnake's blog at ha.ckers.org
News is fast hitting about Chinese hacks against Adobe and Google. Very interesting stuff. But beyond the hacks themselves - in Google’s case targeting Chinese political dissidents - is this interesting news:
Comments (0)
From the Web
Looking back on 2009
January 03, 2010 from: Office of Inadequate Security
The breach of Heartland Payment Systems grabbed the headlines for much of the year and the entire population of Belize had their birth details stolen when a government employee left a laptop in a car, but what else went on?
Comments (0)
From the Web
Cybercrooks stalk small businesses that bank online
January 03, 2010 from: Office of Inadequate Security
A rising swarm of cyber-robberies targeting small firms, local governments, school districts, churches and non-profits has prompted an extraordinary warning. The American Bankers Association and the FBI are advising small and midsize businesses that conduct financial transactions over the Internet to dedicate a separate PC used exclusively for online banking.
Comments (0)
From the Web
Hacker hits NC community college system
December 17, 2009 from: Office of Inadequate Security
Patrons of North Carolina's community colleges may have had their drivers license and Social Security numbers stolen by a hacker.
Comments (0)
From the Web
NC: Kids’ Social Security numbers on school postcards
December 05, 2009 from: Office of Inadequate Security
The Wake County [North Carolina] school system accidentally sent out about 5,000 postcards with students’ Social Security numbers printed on the front, a mistake that angered parents and will cost the district nearly $100,000 to remedy.
Comments (0)
From the Web
If DOD can do this, why can’t they manage to remove SSNs?
December 03, 2009 from: Office of Inadequate Security
The Defense Department will not meet its end-of-the-year deadline for removing Social Security numbers from military ID cards as they are issued or renewed, the Pentagon has confirmed.
Comments (0)
From the Web
Many More Government Records Compromised in 2009 than Year Ago, Report Claims
December 03, 2009 from: Office of Inadequate Security
If you’re bummed about the data in your department that just got breached, you have some cold comfort. Although the combined number of reported data breaches in the government and the military has dropped in 2009 compared to last year, many more records were compromised in those breaches, according to recent figures compiled by a California nonprofit.
Comments (0)
From the Web
The Year Of The Mega Data Breach
November 24, 2009 from: Office of Inadequate Security
According to the Identity Theft Resource Center, government agencies and businesses reported 435 breaches as of Nov. 17, on track to show a 50% drop from the number of breaches reported in 2008. That would make 2009 the first year that the number of reported data breaches has dropped since 2005, when the ITRC started counting.
Comments (2)
From the Web
Forty-one percent of workers have stolen corporate data – survey
November 23, 2009 from: Office of Inadequate Security
Stealing employer data has become endemic in our culture. According to a survey conducted with 300 office workers in New York City examining the impact of the recession on ethics and security, 85 percent of the respondents admitted to knowing that downloading corporate information from their employer was illegal, yet a quarter of those surveyed would take the data regardless of the penalties.
Comments (0)
From the Web
Massive card processor breach in Spain affecting Europeans
November 18, 2009 from: Office of Inadequate Security
Back in October, this site reported that “tens of thousands” of Swedish banking customers and “tens of thousands” of Finnish banking customers had been affected by a breach in Spain that might involve a card payment processor.
Comments (0)
From the Web
NC loan processor sentenced for ID theft
November 17, 2009 from: Office of Inadequate Security
A former loan processor was sentenced Friday to to one year and one day imprisonment for wire fraud and aggravated identity theft charges. Senior United States District Judge James C. Fox also ordered Maria Lorena Croll, 24, of Raleigh, North Carolina, to pay restitution of $2,138.52.
Comments (0)
From the Web
Update: Stolen BCBS hard drives had data on 2 million insured
November 16, 2009 from: Office of Inadequate Security
One of Tennessee’s largest holders of personal information confirms that an October theft from a Chattanooga office affects about 2 million of its clients. Blue Cross Blue Shield said 68 computer hard drives that contained Social Security numbers and other sensitive information were taken from the office.
Comments (0)
- Improving Security by Failing Faster
- BYOD: Should It Be the Wave of the Future?
- Trend Micro Discovers "SafeNet" - a New Targeted Espionage Operation Online
- Managing My Company’s Security is a Nightmare
- Bridging the Cybersecurity Divide, Why Security Innovation Must Lead the Way
- The Evolution of Industrial Control System Information Sharing
- ATM Security (And Really Learning from the Past)
- Complimentary IT Security Resources [May 13, 2013]
- Steps Toward Weaponizing the Android Platform
- Mobile Security Processes Could Be Applied to Medical Devices: Bluebox