Browsing Category: Social Engineering

FBI: Law, PR Firms Targets of Email Hacks

[img_assist|nid=1788|title=|desc=|link=none|align=right|width=115|height=115]Hackers are increasingly targeting law firms and public relations
companies with a sophisticated e-mail scheme that breaks into their
computer networks to steal sensitive data, often linked to large
corporate clients doing business overseas. Read the full article. [NYTimes.com/AP]

Read more...

Q&A: Cloud Security with Former Sun CSO

[img_assist|nid=1776|title=|desc=|link=none|align=left|width=115|height=115]The recent ACM Cloud Computing Security Workshop in Chicago was devoted specifically to cloud security. Speakers included Whitfield Diffie, a cryptographer and security
researcher who, in 1976, helped solve a fundamental problem of
cryptography: how to securely pass along the “keys” that unlock
encrypted material for intended recipients. Diffie, now a visiting professor at Royal Holloway, University of
London, was until recently a chief security officer at Sun
Microsystems. He sat down with Technology Review’s chief
correspondent. Read the full article. [Technology Review]

Read more...

Nebraska’s Worker Comp Database Hacked

[img_assist|nid=1775|title=|desc=|link=none|align=right|width=175|height=88]A hacker has broken into the Nebraska Worker’s Compensation database,
prompting an FBI investigation and an effort to contact those who may
be affected. Several thousand people could be affected by the
breach, which was discovered last week when the state’s chief
information officer noticed an unusual amount of Internet traffic
traversing the Worker’s Compensation courts server. Read the full article. [KETV.com]

Read more...

Product or Malware? Android Spying App Released

[img_assist|nid=1663|title=|desc=|link=none|align=right|width=115|height=115]A well known commercial provider of spyware applications for numerous mobile platforms, has recently ported its Mobile Spy app to the Android mobile OS. Just like previous releases of the application, the Android version
keeps a detailed log of GPS locations, calls, visited URLs, and
incoming/outgoing SMS messages, available at the disposal of the
attacker who installed it manually by obtaining physical access to the
targeted device. Read the full article. [ZDNet]

Read more...

Security Pros React to Potential Federal Data Law

A federal cybersecurity law edged closer to reality late last week when the Senate Judiciary Committee approved a bill to protect the personal data of Americans. The bill is a bipartisan effort sponsored by Chairman Patrick Leahy, D-Vt., and co-sponsored by former Chairman Orrin Hatch, R-Utah, that would, among other things, force companies and data brokers to institute data privacy and security programs. Some technology professionals surveyed don’t think the Federal law will do much to help. Read the full article. [CSOonline.com] 

Read more...

Chaminade University Exposed Student SSNs

[img_assist|nid=1653|title=|desc=|link=none|align=left|width=115|height=115]Human error is to blame for the accidental exposure last week of
more than 4,500 Chaminade University student’s Social Security numbers
on the private Catholic college’s official Web site. University officials discovered the snafu Wednesday and quickly removed the obscure but accessible links from the Web site. The students’ Social Security numbers were exposed for about
eight months, according to a statement released by the Honolulu-based
university. Read the full article. [internetnews.com]

Read more...

Facebook Administrator Groups Hijacked

[img_assist|nid=1647|title=|desc=|link=none|align=right|width=115|height=115]As of this morning, an anonymous group hijacked more than 200 Facebook groups and renamed them “Control Your Info”. Pasted on each group’s Wall was a message announcing that it had been “hijacked” and reminding members to be careful about controlling personal information on social networking sites. “This means we control a certain part of the information about you on
Facebook. If we wanted we could make you appear in a bad way which
could damage your image,” the message said. Read the full article. [Computerworld] 

Read more...

Facial Recognition Research Claims Near 100% Accuracy

[img_assist|nid=1624|title=|desc=|link=none|align=right|width=115|height=115]Mohamed Abdel-Mottaleb, professor and chair in the UM Department of
Electrical and Computer Engineering has developed state-of-the-art
systems capable of photographing an image of someone’s face and ear and
comparing it against pre-stored images of the same person, with 95-100
percent accuracy. Read the full article. [Science Daily]

Read more...

New MySpace Attack Launches Zeus Spyware

The latest MySpace attac[img_assist|nid=1616|title=|desc=|link=none|align=left|width=115|height=115]k tries to lure recipients into giving up their
MySpace credentials, and then attempts to trick victims into installing
password-stealing malicious software. Attackers began blasting out the junk e-mails early Monday, according to researchers at the University of Alabama, Birmingham, Researchers at the school so far have tracked more than 30 Web site names associated with this attack, each beginning with “accounts.myspace.com” and ending in a United Kingdom country code domain (.uk). Read the full article. [Washington Post] 

Read more...

New System Preserves Right To Privacy In Web Searches

Categories: Social Engineering

[img_assist|nid=1595|title=|desc=|link=none|align=left|width=115|height=115]A team of Catalan researchers has developed a protocol to distort the
user profile generated by Internet search engines, in such a way that
they cannot save the searches undertaken by Internet users and thus
preserve their privacy.  Read the full story [Science Daily]

Read more...