Articles Tagged with "Encryption"


From the Web

Analyst Study Shows Employees Continue to Put Data at Risk

March 10, 2010 from: Office of Inadequate Security

...the results from the annual "Human Factor in Laptop Encryption" study performed by Absolute Software and the Ponemon Institute reveal some very interesting metrics about the use/adoption of encryption software and the risk posed to businesses from the loss of unencrypted media.

Comments  (1)


From the Web

Taken to the Cleaners

January 20, 2010 from: Office of Inadequate Security

Earlier this month, CSO reported on a worldwide recall on several hardware-encrypted USB sticks from multiple vendors because they contain a flaw which could allow hackers to easily gain access to the sensitive information contained on the device. With the quality of security questionable in many USB drives, it would stand to reason that losing any stick carrying sensitive information now carries ...

Comments  (0)


From the Web

Code That Protects Most Cellphone Calls Is Divulged

December 28, 2009 from: Office of Inadequate Security

A German computer engineer said Monday that he had deciphered and published the secret code used to encrypt most of the world’s digital mobile phone calls, in what he called an attempt to expose weaknesses in the security of the world’s wireless systems.

Comments  (0)


From the Web

Cloud Based Wireless Cracking Services

December 15, 2009 from: AEON Security Blog

Security researchers are leveraging cloud computing to crack WPA wireless passwords at a cost and we’re wondering what other nefarious deeds are being done via cloud computing that we’ve never heard about. To be fair about this, for starters if you take notice of PC World’s title for the article, “New Cloud-based Service Steals Wi-Fi Passwords” it’s completely w...

Comments  (0)


From the Web

Highmark changes it procedures in wake of BCBS breach

October 07, 2009 from: Office of Inadequate Security

that their Social Security numbers or tax ID numbers were on the stolen laptop containing their unencrypted data. A BCBS employee had reportedly breached policy by downloading the unencrypted database to a personal computer that was later stolen from the employee’s vehicle.

Comments  (0)


From the Web

Heartland CEO: Credit Card Encryption Needed

September 15, 2009 from: Office of Inadequate Security

Grant Gross of IDG News Service reports that in testimony before the Senate Homeland Security and Governmental Affairs Committee yesterday, Heartland Payment Systems CEO Robert Carr was hit with a question about how the payment processor could have been breached for over one year and yet not detected it:

Comments  (0)


From the Web

TJX settles banks’ lawsuit

September 02, 2009 from: Office of Inadequate Security

The Associated Press reports that TJX has settled TJX said it has paid $525,000 to settle claims by some banks about costs they incurred as a result of the retailer’s massive data breach. Other banks — AmeriFirst Bank, HarborOne Credit Union, SELCO Community Cre...

Comments  (0)


From the Web

Three indicted for hacking Heartland, 7-Eleven, and Hannaford; Over 130 million credit and debit card numbers stolen

August 17, 2009 from: Office of Inadequate Security

An indictment [pdf] was returned today against three individuals who are charged with being responsible for five corporate data breaches, including the single largest reported data breach in U.S. history, announced Acting U.S. Attorney Ralph J. Marra, Jr., along with Assistant Attorney General of the Criminal ...

Comments  (0)


From the Web

Heartland says breach has cost $32 million so far

August 06, 2009 from: Office of Inadequate Security

Heartland Payment Systems on Tuesday (Aug. 4) said it spent $32 million this year paying for costs related to the major data breach it disclosed in January, including $22.1 million to cover fines from key payment card brands and a settlement offer. Heartland did not say how the $22.1 million was split between the fines and the settlement offer, but it did provide clues.

Comments  (1)


From the Web

Heartland breach felt in Bermuda

July 23, 2009 from: Office of Inadequate Security

Hundreds of Bermudians may have been the victims of credit card fraud stemming from a US security breach in January.

Comments  (1)


From the Web

Hash Information Disclosure Via Collisions - The Hard Way

July 14, 2009 from: Rsnake's blog at ha.ckers.org

Every hashing algorithm has possible collisions once you allow a certain number of chars to be hashed. Let’s say you found out that “bob” and “sam” collided in whatever hashing algorithm. If you created an account on a web server with the password of “bob” and then later typed in the password of “sam” assuming no salts you would be able to get ...

Comments  (0)