Donald Sears

A flaw in the module pam_motd (message of the day), which
displays the daily motto and other information after login (to the
shell), can be exploited under Ubuntu to expand access rights. Read the full article. [The H Security]

More than 53,000 people, who did business with the
University of Hawaii at Manoa parking office’s data base from 1998-2009,
are being notified by mail that they may be affected by a computer
security breach. Read the full article. [Honolulu Star Advertiser]

A new approach to adding an encrypted watermark to digital images allows
the an image to be validated against a pass key, according to research according to research published in the International Journal of Signal and Imaging Systems Engineering. Read the full article. [Science Daily]

A former senior database administrator for GEXA Energy in Houston was
sentenced to 12 months in prison for hacking into his former employer’s
computer network. Read the full article. [Help Net Security]

An anonymous group of security researchers last
week published information about an unpatched Windows bug, saying that
they were disclosing the vulnerability because of the way Microsoft
treated a colleague. The flaw in Windows Vista and Server 2008
could be used by attackers to gain unauthorized access to a PC or cause
it to crash. Read the full article. [Computerworld]

Here are six of the more eye-popping
database-related breaches so far this year — and some lessons learned
from each. Read the full article. [Dark Reading]

Senior engineers at Facebook responsible for SRE (site reliability
engineering) challenged Facebook employees to try to compromise him and
gain access to Facebook’s administrative system via information obtained
from him. They succeeded. Read the full article. [TechCrunch]