Info Security News

Data security measures for Bord Gais

Fri, 06 Nov 2009 06:55:14 GMT

Posted by InfoSec News on Nov 05

http://www.irishtimes.com/newspaper/breaking/2009/1105/breaking2.htm

By Elaine Edwards
irishtimes.com
November 5, 2009

Bord Gais is to introduce new security procedures after it accepted it
was in breach of Data Protection legislation in relation to the theft of
details of some 93,000 customers on a laptop.

A report on the investigation by the Office of the Data Protection
Commissioner (ODPC) into the theft of four laptops from Bord Gais's...

Experts gather for Cyber Operations Symposium

Fri, 06 Nov 2009 06:53:48 GMT

Posted by InfoSec News on Nov 05

http://www.ftleavenworthlamp.com/articles/2009/11/05/news/news6.txt

By Capability Development Integration Directorate
Fort Leavenworth Lamp
November 5, 2009

The Combined Arms Center Capability Development Integration Directorate
hosted a Cyberspace Operations Symposium Oct. 27-30 at Fort Leavenworth.

More than 100 attendees from more than 25 organizations across Training
and Doctrine Command and the greater community of interest actively...

Little-Known Hole Lets Attacker Hit Main Website Domain Via Its Subdomains

Fri, 06 Nov 2009 06:52:17 GMT

Posted by InfoSec News on Nov 05

http://www.darkreading.com/security/vulnerabilities/showArticle.jhtml?articleID=221600496

By Kelly Jackson Higgins
DarkReading
Nov 05, 2009

Turns out an exploit on a Website's subdomain can be used to attack the
main domain: A researcher has released a proof-of-concept showing how
cookies can be abused to execute such an insidious attack.

Michael Bailey, senior researcher for Foreground Security, published a
paper this week that...

Cybercriminals down five British police forces in a year

Fri, 06 Nov 2009 06:50:07 GMT

Posted by InfoSec News on Nov 05

http://www.theregister.co.uk/2009/11/05/police_breaches/

By Chris Williams
The Register
5th November 2009

In the last year five British police forces have suffered major computer
failures lasting three days or more as a result of malicious internet
attacks.

The spate of intrusions by cybercriminals and the resulting outages was
revealed recently by a senior authoritative source, who can't be
identified because the disclosure was made...

Secunia Weekly Summary - Issue: 2009-45

Fri, 06 Nov 2009 06:48:15 GMT

Posted by InfoSec News on Nov 05

========================================================================

The Secunia Weekly Advisory Summary
2009-10-29 - 2009-11-05

This week: 63 advisories

========================================================================
Table of Contents:

1.....................................................Word From...

DOD approves new credentials for security professionals

Fri, 06 Nov 2009 06:46:27 GMT

Posted by InfoSec News on Nov 05

http://defensesystems.com/articles/2009/11/04/dod-approves-new-security-certification.aspx

By Kathleen Hickey
Defense Systems
Nov 05, 2009

The Defense Department has approved new credentials for information
security professionals. The directive is expected to result in more than
100,000 personnel obtaining professional credentials.

DOD approved the (ISC) 2 Certification and Accreditation Professional
(CAP), which requires that all DOD...

Call for Papers: Conference on Cyber Conflict, Estonia

Thu, 05 Nov 2009 08:51:55 GMT

Posted by InfoSec News on Nov 05

Forwarded from: k g <kgconference (at) gmail.com>

Call for Papers!

Cooperative Cyber Defence Centre of Excellence (www.ccdcoe.org),
Tallinn, Estonia

Conference on Cyber Conflict, June 15-18, 2010

CCD CoE seeks research papers from academia and the professional world
that offer an original and substantial contribution toward understanding
conflict in cyberspace.

The 2010 agenda has three tracks:

- Strategic Viewpoints
- Technical...

Men allegedly broke into computers of former employer

Thu, 05 Nov 2009 08:50:20 GMT

Posted by InfoSec News on Nov 05

http://www.theregister.co.uk/2009/11/05/computer_intrusion_charges_filed/

By Dan Goodin in San Francisco
The Register
5th November 2009

Federal authorities on Wednesday filed intrusion charges against two men
accused of accessing the computer systems of their former employer.

Scott R. Burgess, 45, of Jasper, Indiana, and Walter D. Puckett, 39, of
Williamstown, Kentucky, both worked as managers for Indiana-based Stens
Corporation until...

IT Workers Building Security Into Their Career Strategies

Thu, 05 Nov 2009 08:48:46 GMT

Posted by InfoSec News on Nov 05

http://www.darkreading.com/security/management/showArticle.jhtml?articleID=221600343

By Tim Wilson
DarkReading
Nov 04, 2009

IT professionals are placing their bets on security as they plot their
next career moves, according to a new study published earlier today.

The survey of more than 1,500 IT workers, which was conducted by the IT
trade association CompTIA, found that 37 percent intend to pursue a
security certification over the next...

New cybersecurity role for NIST?

Thu, 05 Nov 2009 08:47:18 GMT

Posted by InfoSec News on Nov 05

http://fcw.com/articles/2009/11/04/web-cybersecurity-nist-bill.aspx

By Ben Bain
FCW.com
Nov 04, 2009

A bill that would expand the National Institute for Standards and
Technology's role in cybersecurity cleared a House subcommittee today.

NIST would be responsible for developing a plan to coordinate the
government's work with international organizations developing
cybersecurity standards under the bill approved by the House Science and...

IT budgets sacrificed despite rise in hack attacks

Thu, 05 Nov 2009 08:45:31 GMT

Posted by InfoSec News on Nov 05

http://www.theage.com.au/technology/security/it-budgets-sacrificed-despite-rise-in-hack-attacks-20091103-hubi.html

By Conrad Walters
theage.com.au
November 3, 2009

Even as companies acknowledge cyber attacks have rocketed to
unprecedented levels this year, many businesses are freezing or even
cutting the security budgets that fend off these dangers.

A study of nine countries has found mid-size companies - those with
between 51 and 1000...

Military Admits N. Korean Hacker Attack

Wed, 04 Nov 2009 06:29:17 GMT

Posted by InfoSec News on Nov 03

http://english.chosun.com/site/data/html_dir/2009/11/04/2009110400775.html

The Chosun Ilbo
Nov. 04, 2009

The North Korean military hacked into the South Korean Army command in
March and a password for the National Institute of Environmental
Research (NIER) website leaked out, Lt. Gen. Kim Jong-tae, commander of
the Defense Security Commend (DSC), admitted to a parliamentary audit on
Tuesday. That confirms a report last month in the Monthly...

Mossad Hacked Syrian Official's Computer Before Bombing Mysterious Facility

Wed, 04 Nov 2009 06:27:35 GMT

Posted by InfoSec News on Nov 03

http://www.wired.com/threatlevel/2009/11/mossad-hack

By Kim Zetter
Threat Level
Wired.com
November 3, 2009

Agents of Israel's Mossad intelligence service hacked into the computer
of a senior Syrian government official a year before Israel bombed a
facility in Syria in 2007, according to Der Spiegel.

The intelligence agents planted a Trojan horse on the official's
computer in late 2006 while he was staying at a hotel in the Kensington...

Lockheed Martin To Manage Pentagon Network

Wed, 04 Nov 2009 06:25:54 GMT

Posted by InfoSec News on Nov 03

http://www.informationweek.com/news/government/enterprise-architecture/showArticle.jhtml?articleID=221600125

By J. Nicholas Hoover
InformationWeek
November 3, 2009

Lockheed Martin has won a $293 million contract to provide network
operations support to the Pentagon and other military networks in the
Washington, D.C., area.

Lockheed will manage, operate, and secure the Pentagon's data networks
and provide 24 by 7 support to users. According...

International cooperation to shape common policies for cybersecurity and data protection

Wed, 04 Nov 2009 06:24:20 GMT

Posted by InfoSec News on Nov 03

http://gcn.com/articles/2009/11/03/us-eu-cybersecurity-agreement.aspx

By William Jackson
GCN.com
Nov 03, 2009

The United States and the European Union have agreed to treat
cybersecurity, cyber crime and data protection as international issues,
cooperatively developing polices based on shared values.

Mary Ellen Callahan, chief privacy officer of the Homeland Security
Department, called the recent joint statement on these principles by
U.S....