Uncategorized


Facebook and the Never-Ending Privacy Discussion

By Stefan TanaseAs each day goes by, I see more and more people complaining
when it comes to Facebook and privacy: I’d like to make my friend list private. Cannot. I’d like to have my profile visible only to my friends, not my boss.
Cannot. I’d like to support an anti-abortion group without my mother or the
world knowing. Cannot.


One of the most common complaints I hear from information security
executives in large organizations is that they are constantly playing
defense, not offense. Their network security apparatus is designed to
wait for an attack, see if it’s successful and, if it is, to plug the
hole, then repeat.

Estafas en Facebook

Tenga cuidado con las estafas en Facebook.

Dos estafas comunes son:

1) Uno de sus amigos de pronto le manda un mensaje de que necesita
dinero de emergencia porque ha sido asaltado o algo así en una tierra lejana. Entonces
usted se ve involucrado en una conversación para prestarle dinero. Esto es lo
que sucede cuando la cuenta de su amigo ha sido robada.

The Veteran Affairs Department’s inspector general has launched a criminal investigation into a physician assistant’s alleged downloading of veterans’ clinical data at its Atlanta medical center.The assistant allegedly recorded two sets of patient data on to a personal laptop for research purposes. One set included three years’ worth of patient data and another held 18 years of medical information.  Read the full story [nextgov]

Facebook is susceptible to certain types of attacks that could allow someone to hijack an account while a user is interacting with another Web site, a security researcher warned on Monday.Reseacher Nitesh Dhanjani also said a design flaw in Facebook is granting third-party apps permission to access user profile data without express approval from users. Read the full story [CNet]

Mozilla Firefox

by

The JavaScript engine in Mozilla Firefox before 3.0.12 and Thunderbird
allows?remote attackers to cause a denial of service (memory corruption
and application crash) or possibly execute arbitrary code

by