newspaper.jpgBelow is a round up of news stories relating to information security that we have collated from the past few days.  For ease of use we have categorised the stories under the most appropriate headings.  If there are other stories that may be of interest please let us know via the comments feature. 

VULNERABILITIES

Vulnerability in SUN’s TCP/IP stack
http://www.heise-online.co.uk/security/Vulnerability-in-SUN-s-TCP-IP-stack–/news/110179

Two vulnerabilities found in VMware virtualization products
http://www.scmagazine.com/uk/news/article/786041/two-vulnerabilities-found-vmware-virtualization-products/

PATCHES

Vista update sniffs out illegally activated copies
http://www.heise-online.co.uk/security/Vista-update-sniffs-out-illegally-activated-copies–/news/110177

VMware patches five holes in ESX Server
http://www.scmagazine.com/uk/news/article/785963/vmware-patches-five-holes-esx-server/
http://www.theregister.co.uk/2008/02/22/vmware_update/

Adobe details workaround, fix timeline for Adobe 7 users
http://www.scmagazine.com/uk/news/article/785955/adobe-details-workaround-fix-timeline-adobe-7-users/

EXPLOITS & ACTIVE ATTACKS

Sky Broadband WiFi router security misconfigured
http://www.heise-online.co.uk/security/Sky-Broadband-WiFi-router-security-misconfigured–/news/110169
http://www.theregister.co.uk/2008/02/21/sky_broadband_wi_fi_keys_unpicked/

Scareware package planted in ITV.com ads
http://www.theregister.co.uk/2008/02/21/itv_scareware_peril/

SPAM AND PHISHING

Spam lures to eclipse videos laced with malware appear
http://www.scmagazine.com/uk/news/article/785959/spam-lures-eclipse-videos-laced-malware-appear/

Money for spam
http://www.nzherald.co.nz/section/story.cfm?c_id=5&objectid=10493997

HMRC data debacle used to bait phishing lure
http://www.theregister.co.uk/2008/02/22/hmrc_phishing_attack/

GOVERNMENT SECURITY ISSUES 

Government admits to 200 more laptop thefts
http://www.silicon.com/publicsector/0,3800010403,39170099,00.htm

Will HMRC breach cost £625 million?
http://www.itpro.co.uk/news/170937/will-hmrc-breach-cost-625-million.html

Auditors urge better security for TSP board’s laptops
http://federaltimes.com/index.php?S=3384995

Government tries to ignore security risk to millions of families
http://www.egovmonitor.com/node/17307

 

PIRACY & COPYRIGHT

‘Hacker’ ISPs could face piracy sanctions
http://news.bbc.co.uk/2/hi/technology/7258437.stm

DATALOSS/INFORMATION SECURITY BREACHES

Liechtenstein’s LGT Records Hold Data on 1,400 People
http://www.bloomberg.com/apps/news?pid=20601085&sid=a_LpINIqHzSY&refer=europe

Mecklenburg County Personal Information Compromised
http://www.wbtv.com/news/topstories/15934452.html

IT security controls partly blamed for SocGen debacle
http://www.theregister.co.uk/2008/02/21/socgen_probe_latest/

Hackers Break Into GSAS Computer Network, Post Protected Content to Downloading Web Site
http://www.thecrimson.com/article.aspx?ref=521958

Scotland Yard careers website defaced
http://www.theregister.co.uk/2008/02/25/met_police_defacement/

Patients’ medical histories stored on stolen laptop
http://news.scotsman.com/scotland/Patients39-medical–histories-stored.3811245.jp

Hackers gain personal data on Eslite bookstore shoppers
http://www.chinapost.com.tw/business/2008/02/22/143948/Hackers-gain.htm

Patients’ records stolen
http://www.wigantoday.net/wigannews/Patients39-records-stolen.3805701.jp

Another Liechtenstein Bank Suffers Theft of Client Data
http://online.wsj.com/article/SB120354364328180891.html?mod=googlenews_wsj

ARRESTS, SENTENCING & CONVICTIONS

Japanese police arrest spammer
http://www.heise.de/english/newsticker/news/103912

Police unveil $1 million internet scam
http://www.smh.com.au/news/security/police-unveil-1-million-internet-scam/2008/02/23/1203467457719.html

US, Europe Seize Phony Computer Parts
http://news.smh.com.au/us-europe-seize-phony-computer-parts/20080223-1u33.html
http://www.nzherald.co.nz/section/story.cfm?c_id=5&objectid=10494389

Linkin Park cyber-stalker sent to jail
http://www.theregister.co.uk/2008/02/22/linkin_park_stalker_jailed/
 

COURT CASES AND LEGAL ISSUES

Solicitors fined under Data Protection Act
http://www.theregister.co.uk/2008/02/22/lawyers_fined_4_data_breach/
http://www.ico.gov.uk/upload/documents/pressreleases/2008/skipton_financial_services_final.pdf

 

DATA PRIVACY & PROTECTION 

Laptop theft breaks data protection law
http://www.silicon.com/financialservices/0,3800010322,39170125,00.htm

Invisible dots left by printers ‘breach privacy’
http://www.telegraph.co.uk/news/main.jhtml?xml=/news/2008/02/18/wpriv118.xml
http://www.theregister.co.uk/2008/02/15/secret_printer_tracking_dots/

Google to Store Patients’ Health Records
http://news.wired.com/dynamic/stories/G/GOOGLE_HEALTH?SITE=WIRE&SECTION=HOME&TEMPLATE=DEFAULT&CTIME=2008-02-21-07-32-38

EU data privacy regulators say Internet search engines must follow EU rules
http://news.smh.com.au/eu-data-privacy-regulators-say-internet-search-engines-must-follow-eu-rules/20080222-1tu7.html
http://www.theregister.co.uk/2008/02/22/eu_article_29_group_hear_our_roar/

Tax authorities pay for Britons’ bank details
http://business.timesonline.co.uk/tol/business/money/tax/article3423610.ece

EU seeks privacy safeguards with RFID tags
http://arstechnica.com/news.ars/post/20080222-eu-seeks-privacy-safeguards-with-rfid-tags.html

REPORTS & RESEARCH

Google
Police say computer crimes on the rise
http://newsinfo.inquirer.net/breakingnews/infotech/view/20080223-120767/Police-say-computer-crimes-on-the-rise

DDOS DANGER FOR ONLINE GAMBLING SITES
http://www.online-casinos.com/news/news6272.asp

 

STUDIES AND SURVEYS

How much does a data breach cost UK companies?
http://www.theregister.co.uk/2008/02/25/data_breach_real_cost/
http://software.silicon.com/security/0,39024655,39170163,00.htm
http://www.itpro.co.uk/security/news/170787/data-breaches-cost-47-per-record.html

 

DISASTER RECOVERY & BUSINESS CONTINUITY 

YouTube outage blamed on Pakistan 
http://news.bbc.co.uk/2/hi/technology/7262071.stm
http://technology.timesonline.co.uk/tol/news/world/asia/article3427816.ece
http://www.nzherald.co.nz/section/story.cfm?c_id=5&objectid=10494435

MISC

The battle against the botnet hordes
http://news.bbc.co.uk/2/hi/technology/7256501.stm

Reed Elsevier acquires ChoicePoint in $4.1 billion deal
http://www.scmagazine.com/uk/news/article/786040/reed-elsevier-acquires-choicepoint-41-billion-deal/

Hackers Recruit for Local Language Skill
http://news.smh.com.au/hackers-recruit-for-local-language-skill/20080222-1trp.html
http://www.nzherald.co.nz/section/story.cfm?c_id=5&objectid=10494376

Insurance Company Reimburses TJX Almost $19 Million For Data Breach
http://storefrontbacktalk.com/story/022208tjx

Stories courtesy of the following sources, RTE, The Irish Independent, SiliconRepublic.com, ZDNet, The Register, Pogowasright.org, Heise MagazineBBC, SC Magazine, VNUNET, Sydney Morning Herald, New Zealand Herald, EU Observer, The Times & the Web Hacking Incidents Database.

About the Author: bhimport

Let’s Talk

Head Office

The LINC Centre,
Blanchardstown Road North,
Dublin 15, Ireland

Email

info@bhconsulting.ie

Call

+353 1 440 4065

Please leave your contact details and a member of our team will be in touch shortly.

"*" indicates required fields

Name*
This field is for validation purposes and should be left unchanged.