Ellison: Oracle looked at buying Novell

In a move that goes a long way to making my blood boil, Oracle is apparently looking to buy Novell. Why, you might ask, would this cause me heartburn? Well, I've been a SuSE user now for several years. I cringe at the thought of what could go wrong with this purchase. Oracle boss Larry Ellison has revealed that his company considered a takeover of Novell and may soon enter ...

Continue reading

Microsoft, Yahoo eying potato country

On the heels of the revelation that AT&T has been allowing the NSA to eavesdrop on the American people without warrants, we have this article from March 28th (via BoingBoing). So what, you might ask. Well just down the road is the Yakima NSA listening post. So, it can be safe to assume that the Narus folks can expect some new orders if these centers get built. Article Link

Rootkit numbers rocketing up

Ever since I wrote about DHS and their cutting edge take on the rootkits, they've been spreading. Now McAfee has released a report stating what we all know...they're on the rise and fast. In the first quarter, the number of rootkits seen by McAfee's Avert Labs grew by 700 percent, compared with the same period last year, the company said Monday. Article Link

Firefox Mulitple Vulnerabilities

An upgrade to Firefox 1.5.0.2 has been available for a couple days now. Sorry for the delay. I've been sick all weekend. Just love it. I have a long weekend and I have to spend it with a throbbing headache. Ah well. So here is the scoop... 1) An error exists where JavaScript can be injected into another page, which is currently loading. This can be exploited to execute arbitrary HTML and ...

Continue reading

China Outlaws Outlook

The Chinese government continues on its push to muzzle its people a la 1984. They have introduced regulations that effectively make it illegal to operate a mail server without being first licensed by the gov. This is part of China's new spam laws put forth by the Ministry of Information Industry. “Looking at the Chinese text, it is clear they have worded it carefully”, he [James Seng] told vnnet, “They know ...

Continue reading

Afghan Bizarre…US Troops Info For Sale

This is rather frightening. At an Afghan bazaar a CNN reporter was able to purchase USB drives...with data on them! Normally one would say 'yeah, so what'. Well it just so happens that the drives in question were stolen by Afghan workers from the Bagram US airbase. The shop keeper in the article explained that he ould care less about the data he's just interested in selling the USB ...

Continue reading

AT&T Seeks to Hide Spy Docs

Well, well, well. AT&T has allegedly been hard at work violating your rights. A former employee has leaked internal documents to the EFF. It would appear that secret rooms were installed to allow the NSA to intercept all sorts of communications without a warrant. Now AT&T is suing to suppress the docs. Mark Klein, a former technician who worked for AT&T for 22 years, provided three technical documents, ...

Continue reading

Lenovo Helping the Bad Guys

Part of what I do for a living is forensic investigations. That means recovering data from hard drives in part. Now Lenovo is offering a one button approach to smoking a hard drive. This is meant to allow for quicker formatting of corporate systems prior to lease rollover. If I were a nefarious type this would be the perfect one button solution to hit when the cops were busting down ...

Continue reading

Hydro Makes Changes After Security Plans Stolen

It would appear that there will shortly be a job vacancy at Hydro Quebec. A file folder containing security plans and passwords was found sitting on a Metro platform in Montreal. Now, for the uninitiated this is bad. Hydro Quebec is one of many companies that make up critical infrastructure for North America. The documents had been in a briefcase belonging to a Hydro-Quebec security adviser, who placed it at ...

Continue reading

German Bank Uses e-signatures to Curb Phishing

Well at least one bank gets it. German bank, Postbank, with roughly 12 million customers gets it. They have introduced digitally signed emails for their communications with customers. However, I'm sure it will be a matter a moments before the phishing lot discover how to work around this one. At least they're trying. Hell, it could be worse, it could be Citibank. But, to add to this is an interesting survey ...

Continue reading