Details of TJX Hacks Emerge
Thanks to Gary Warner more details of how criminals hacked into the TJX network have come to light. It makes very interesting reading.
Upcoming SANS WhatWorks Event
SANS are running a WhatWorks in Penetration Testing & Ethical Hacking Summit on September 17th 2008 at the Le Meridien Piccadilly in London. The summit is a one day indepth look at the latest techniques and best practises you should employ to run penetration tests against your networks. So whether you are responsible for securing […]
More Coverage of The TJX Cybercrime Ring Bust
I was interviewed this morning on the Loose Talk show on LMFM Radio to discuss the recent chargesagainst eleven individuals for hacking into TJX’s networks and stealing over 40 million credit card details. The focus of the chat was on wireless networking and why it is so important to ensure it is set up securely. […]
11 Charged in US with Cyber Crime
Eleven people have been charged in connection with a major hacking ring that allegedly compromised over 40 million credit card records at TJX Corporation, which also runs the TK Maxx stores here in Ireland. Three Americans are amongst those arrested with two other individuals held in Turkey and Germany. The remaining six people are still […]
Cyber Crime and Small Businesses in Ireland
The Small Firms Association released their 6th annual crime survey which focuses on how crime impacts on small businesses in Ireland. An interesting point in the press release highlights that the companies surveyed reported an increase in online crime with the average cost on an incident being €2,250 and it appears the largest cost was […]
Serious Concerns over Protection of Social Welfare Data
The Data Protection Commissioner released the audit report it conducted in the Department of Social and Family Affairs. The report highlights a number of “serious concerns” relating to the security of personal details of over 300,000 people whose avail of the services of the Department. Some of the key findings include; Claim forms stored in […]
CAG Loses Laptop with Confidential Information
Just as I finished posting about the serious security issues identified in the Department of Family and Social Affairs I read about the government’s auditing body, the Comptroller and Audit General, losing a laptop containing sensitive information about staff in a government department and details on companies recieving grant aid from the government. Details are […]
NIST Publications
The US National Institute of Standards and Technology, NIST, have released a number of publications that are well worth reading; Draft SP 800-68 Revision 1, Guide to Securing Microsoft Windows XP Systems for IT Professionals, has being released for public comment SP 800-48 Revision 1, Guide to Securing Legacy IEEE 802.11 Wireless Networks SP 800-123, Guide […]
Now This is Identity Theft
One thing that annoys me is when people mix terms and use them in the wrong sense. This can lead to confusion at best but in most likelihood undermines the message you are trying to deliver. A classic phrase that gets abused by many people, especially in the press, is “identity theft”. Too often it […]
Sunday Times Interviews Brian Honan
Today’s edition of the Sunday Times has an article on information security in its business supplement. The article, “The Virus That Spreads Cybercrime”, focuses on the information security risks faced by owners of Small to Medium Enterprises. The Sunday Times interviewed me to get my thoughts on where the major concerns lie for business owners. […]