Mar 31
Saturday, March 31st, 2007
TJX leading the industry in IT security? Probably not today but you can bet that 18 months from now they’ll be an example to follow. After loosing perhaps millions of customer’s credit card and personal information they’re now taking IT security seriously. TJX owns T.J. Maxx, Marshalls, HomeGoods, Bob’s Stores, and several other retail companies. They’ve publicly admitted that hackers had access to some of their customer information for a period of time and is now stating that intruders may have had access as early as 2003.
Read more…
Posted in News | No Comments »
Mar 31
Saturday, March 31st, 2007
Security experts at the Black Hat conference in Amsterdam have demonstrated how Cisco’s NAC network access control can be fooled. In a live demonstration using a modified Trust Agent, Michael Thumann and Dror-John Rocher from ERNW were able to gain full access to an NAC protected network using a computer which did not comply with network policies. According to the two security experts, Microsoft’s equivalent NAP system also suffers from this problem, but because of its deeper integration within Windows’ Active Directory, in practice it presents greater obstacles than the Cisco system.
Read more…
Posted in News | No Comments »
Mar 31
Saturday, March 31st, 2007
A malicious e-mail purportedly from Microsoft actually serves up a worm dubbed “Grum” to trusting users. The Grum worm is an appender virus that infects executable files referenced by Run keys in the Windows Registry, according to officials at security provider Sophos. It always pays to be suspicious when unsolicited e-mails arrive, and on Friday new evidence underscored the point: A malicious e-mail Email purportedly from Microsoft actually serves up a worm dubbed “Grum.”
Read more…
Posted in News | No Comments »
Mar 31
Saturday, March 31st, 2007
If you receive an e-mail offering a download of Internet Explorer 7 Beta 2, delete it. A new virus is making the rounds that comes disguised as a test version of Microsoft Corp.’s current Web browser. Security experts reported no widespread damage Friday morning, but they said the virus is notable for a couple of reasons. The e-mail includes a convincing graphic that looks like it could really be from Microsoft, and the virus is delivered when recipients click on a link rather than in an attachment, which makes it harder to stop it from reaching in-boxes. “The idea of sending a link seems to be a trend among attackers; it’s still fairly new and it works much better than sending a file,” said Mikko Hypponen, chief research officer at F-Secure Corp.
Read more…
Posted in News | No Comments »
Mar 31
Saturday, March 31st, 2007
Pharmaceutical supplier sued former employee, claiming use of a secure file deletion utility violated federal hacking laws. U.S. District Judge Richard Lazzara ruled on March 21. Temporary restraining order granted against ex-employee until court hearing on March 30. PharMerica sued. Its complaint claims that Arledge violated the Computer Fraud and Abuse Act, a federal computer crime law, by deleting the files.
Read more…
Posted in News | No Comments »