Security Briefing: September 2nd
Good afternoon folks. Here is today's security briefing. Of note today is...well, the lead off article makes me realize that I have no words...none. Have a great day! cheers, Dave Click here to subscribe to Liquidmatrix Security Digest!. And now, the news... Hack is wack | Todays THV Onapsis to Release ERP Vulnerability Testing Suite | PC World Heartland Payment, Discover settle data breach claims | Reuters Malware hosted on Google Code project site | ZDNet ArcSight: Where’s The Deal? | Barrons MP demands judicial inquiry into News of the World phone-hacking claims | The Guardian Google data gathering was not a crime: NZealand | AFP RIM should open up user data: UN ...
After BlackBerry, India Now Wants Access to Google, Skype, etc
...and there it is. RIM has backed down in the face of pressure from the Indian security establishment. Now the Indian security establishment appear to have become emboldened. As a result they're seeking out data from any source they can get their hands on. From USA Today: "The ministry of home affairs has made it clear that any communication through the telecom networks should be accessible to the law enforcement agencies and all telecom service providers including third parties have to comply with this," an official told the Times of India. "Any company with a telecoms network should be accessible," an ...
Security Briefing: September 1st
Good morning all. Here is the morning briefing. Of note this morning is some mobile news as well as news that RIM got some breathing room in India. The question that remains for RIM is, at what cost? Have a great day! cheers, Dave Click here to subscribe to Liquidmatrix Security Digest!. And now, the news... No private net neutrality deal... yet | Ars Technica Misconfigured networks main cause of breaches | Help Net Security Microsoft still mum on programs prone to DLL hijacking attacks | Network World BlackBerry wins the battle but not the war in India | The Guardian Sports gamblers getting BlackBerry app in Nevada | AP China ...
Google Scares Priority Inbox Customers With ‘Virus’
If the idea of having Google auto sort your email wasn't bad enough they apparently thought that adding some jazz music in the background was a good idea. As a result a large number of users thought that they had been infected with a piece of malicious software. From V3.co.uk Chrome users opening their inboxes heard a distinctive ragtime jazz tune playing in the background, causing a mixture of panic and anger, according to many complaints that deluged the Gmail help forum. "It sure creep me out. I thought I got some virus. Closed down all the windows, music was gone," wrote kasahmed. Don't ...
Russian Police Bust Hacker Gang
In an apparent rare instance, the Russian police busted a hacker gang in Moscow on Tuesday. This gang had managed to generate in excess of $30 million a month with a rather clever scheme. From RT: Russian police have detained ten people who managed to get one billion roubles, approximately $30 million, through a clever scheme involving a computer virus, blackmail and SMS billing. Website Lifenews.ru reported on Tuesday that ten members of the criminal group had been detained in Moscow. Operatives of the city police directorate for fighting economic crimes have told journalists that the suspects created a computer virus that blocked ...
Wireshark 1.4.0 Released
The protocol analyzer Wireshark has released a new version today. Here is the list of the new features available in version 1.4.0. From Wireshark: The following features are new (or have been significantly updated) since version 1.2: The packet list internals have been rewritten and are now more efficient. Columns are easier to use. You can add a protocol field as a column by right-clicking on its packet detail item, and you can adjust some column preferences by right-clicking the column header. Preliminary Python scripting support has been added. Many memory leaks have been fixed. Wireshark 1.4 does not support Windows 2000. Please use Wireshark 1.2 or ...
The Digest
Security Briefing: September 2nd
Good afternoon folks. Here is today’s security briefing. Of note today is…well, the lead off article makes me realize that I have no words…none. Have a great day! cheers, Dave Click here to subscribe to Liquidmatrix Security Digest!. And now, the news… Hack is wack | Todays THV Onapsis to Release ERP Vulnerability Testing Suite | PC World Heartland Payment, Discover settle... [Read more]
After BlackBerry, India Now Wants Access to Google, Skype, etc
…and there it is. RIM has backed down in the face of pressure from the Indian security establishment. Now the Indian security establishment appear to have become emboldened. As a result they’re seeking out data from any source they can get their hands on. From USA Today: “The ministry of home affairs has made it clear that any communication through the telecom networks should be... [Read more]
Security Briefing: September 1st
Good morning all. Here is the morning briefing. Of note this morning is some mobile news as well as news that RIM got some breathing room in India. The question that remains for RIM is, at what cost? Have a great day! cheers, Dave Click here to subscribe to Liquidmatrix Security Digest!. And now, the news… No private net neutrality deal… yet | Ars Technica Misconfigured networks main... [Read more]
Google Scares Priority Inbox Customers With ‘Virus’
If the idea of having Google auto sort your email wasn’t bad enough they apparently thought that adding some jazz music in the background was a good idea. As a result a large number of users thought that they had been infected with a piece of malicious software. From V3.co.uk Chrome users opening their inboxes heard a distinctive ragtime jazz tune playing in the background, causing a mixture... [Read more]
Russian Police Bust Hacker Gang
In an apparent rare instance, the Russian police busted a hacker gang in Moscow on Tuesday. This gang had managed to generate in excess of $30 million a month with a rather clever scheme. From RT: Russian police have detained ten people who managed to get one billion roubles, approximately $30 million, through a clever scheme involving a computer virus, blackmail and SMS billing. Website Lifenews.ru... [Read more]
Wireshark 1.4.0 Released
The protocol analyzer Wireshark has released a new version today. Here is the list of the new features available in version 1.4.0. From Wireshark: The following features are new (or have been significantly updated) since version 1.2: The packet list internals have been rewritten and are now more efficient. Columns are easier to use. You can add a protocol field as a column by right-clicking on its... [Read more]
Security Briefing: August 31st
A good morning to all. There are some interesting articles this morning. There is a good article by Adrian Lane leading off this morning (full disclosure: we’re both at Securosis, LLC) and we round out the list with news of a data breach in Delaware where a consulting firm, Aon Consulting, posted personal information of some 22,000 state retirees. Have a great day! cheers, Dave Click here to... [Read more]
PayPal Claims They Were Not Breached
So with the saga that is the iTunes account breach the finger pointing is in full swing. It appears that PayPal has ducked any responsibility. Now, with that on the heels of Apple’s insistence that they aren’t at fault it makes me pause and wonder who in fact is responsible? From SC Magazine UK: He said: “We’ve looked into this extensively, and want to assure you that: 1) the... [Read more]
Security Briefing: August 30th
Interesting security news afoot this Monday morning. I was especially intrigued with the article about breaking quantum crypto which leads off the briefing this morning. cheers, Dave Click here to subscribe to Liquidmatrix Security Digest!. And now, the news… Hackers blind quantum cryptographers | Nature.com Detective fined £4,000 for disclosing police data | BBC Hackers attack Philippine... [Read more]
Indian Voting Machine Hacker Released
Some good news from India this morning. From The Inquirer: According to Freedom to Tinker Prasad was released following an order from Magistrate D H Sharma. Sharma praised Hari and made strong comments against the police. Prasad did a great service for his country, the magistrate said. Prasad was arrested after he showed how to hack an electronic voting machine in front of a group of academics. The... [Read more]
