Irregular Expressions


April 24, 2011  11:30 PM

Data Breach Report



Posted by: Dan O'Connor
data breach report, verizon business, verizonbusiness data breach report

That time of year again, good reading as always.

http://www.verizonbusiness.com/resources/reports/rp_data-breach-investigations-report-2011_en_xg.pdf

April 13, 2011  8:25 PM

Gucci network attack



Posted by: Dan O'Connor
Gucci hack

http://www.theregister.co.uk/2011/04/05/gucci_bofh_revenge_hack/

While able to damage the network, he was not able to cover his tracks effectively so he was not identified.  I find in cases like this that the person involved are either too sure of their abilities and or have too much emotion tied in to the situation to see the failure bound to happen.  I wish in cases like this there was more information available about it, it would great to know what was the the information that lead them to him.


April 13, 2011  8:18 PM

Keylogger



Posted by: Dan O'Connor
keylogger, server keylogger

Keyloggers are bad thing to have on any machine, it can be really bad on a server.

http://it.tmcnet.com/topics/it/articles/162069-hartford-insurance-company-falls-victim-hack-attack.htm

After all your security precautionary measures are in place, there is always a risk that something will happen.  All you will do is reduce your risk, you can’t totally remove that risk.  With numbers in the hundreds or thousands being discovered every day, eventually something will get in.  Given enough time anything is possible.

I am surprised that this even made the news, I would think that something like this happens more then every week.  It could be that newer data leakage laws that it’s being released, but it takes an informed reporter to understand the severity of something like this.


April 13, 2011  8:10 PM

Law Makers Want Piracy Sites Filtered



Posted by: Dan O'Connor
google filtering, piracy google filter, search engine filtering

http://www.computerworld.com/s/article/9215580/Lawmakers_question_whether_search_engines_aid_piracy?taxonomyId=17

While the idea looks appealing, this leave a big door for others to come back in with more demanding requests on the kinds of sites to remove from search results.  This could also totally back fire, if a search engine is filtering results go use another.  Now what do you do block access to that site?

Does the great firewall of China ring a bell?

The suggestion by the Google exec to me makes more sense, go after the ads funding of these sites.

While the intent of the law makers is great, I think it’s a lack of knowledge issue.


April 13, 2011  8:03 PM

TJX Hacker Is Attempting To Have Plea Repealed



Posted by: Dan O'Connor
tjx hack

http://www.wired.com/threatlevel/2011/04/gonzalez-plea-withdrawal/

After reading the details, I doubt that he has much of a chance.  But when you are trying to get out of forty years and a day, I guess you start scraping the bottom of the barrel.  This even seems a little more then that, and he is acting as his own lawyer now.  I am assuming the best he can get out of this is another trial, but I can see the Judge seeing this all as a waste of time.

The plea is around that he believes that he was acting on the behalf of the Secret Service while committing the crimes, and also he had an agreement to have his three charges combined.  Only two of the three where, and he ended up with two sentences instead of one.


April 13, 2011  7:42 PM

Epsilon Databreach



Posted by: Dan O'Connor
Epsilon Databreach, spam, spear fishing

http://news.cnet.com/8301-27080_3-20051796-245.html?tag=mncol;title

It appears that the Epsilon databreach was not the first in the chain, it appears that upstream providers where targeted first to gain a list of other addresses to spear fish.  I kinda doubt that this was all planned, I think it was more targets of opportunity.  The class of target may have been the target, but not Epsilon it self.

As a side note I am enjoying all of the new spam.


April 13, 2011  7:34 PM

New Google Chrome Feature



Posted by: Dan O'Connor
chrome, IE, new google chomre features, safe browsing service

http://www.computerworld.com/s/article/9215593/Chrome_tips_users_to_dangerous_Windows_downloads

Chrome will start to warn a user when they are downloading something that looks suspicious.  This is to match a service provided by IE.

http://www.computerworld.com/s/article/9201282/IE9_s_App_Rep_bumps_browser_s_anti_malware_score_to_99_

Chrome will leverage the safe browsing service that Google provides, this is the same service that Safari and Firefox already use.


April 5, 2011  8:52 AM

Stuxnet at TED.com



Posted by: Dan O'Connor
centerfuge, iran, nuke, Stuxnet, ted talks

http://www.ted.com/talks/ralph_langner_cracking_stuxnet_a_21st_century_cyberweapon.html

My favourite TED talk in the last few months.


March 30, 2011  10:15 PM

Finding FastFlux Botnet



Posted by: Dan O'Connor
botnet, fastflux, links

Very cool way of locating fastflux botnets.

http://www.ece.tamu.edu/~reddy/papers/imc2010-yadav.pdf

I’m still reading it, but it’s very interesting.


March 30, 2011  10:02 PM

Anti-Zombie Bill



Posted by: Dan O'Connor
anti-virus, botnet, south korea, virus

http://www.zdnet.com/blog/security/zombie-pc-prevention-bill-to-make-security-software-mandatory/8487

I wonder if this will catch on?

I don’t think this will stop everything but it can’t hurt.  You will still get infected, but at least there is something there.


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: