2008 intrusion of networks spurred combined units |
- 2008 intrusion of networks spurred combined units
- Lieberman Bill Gives Feds 'Emergency' Powers to Secure Civilian Nets
- Microsoft to fix 34 holes in Windows, Office, IE
- New Open-Source OS Will Feature 'Disposable' Virtual Machines
- Data Breach at U-Louisville
| 2008 intrusion of networks spurred combined units Posted: InfoSec News: 2008 intrusion of networks spurred combined units: http://www.washingtontimes.com/news/2010/jun/3/2008-intrusion-of-networks-spurred-combined-units/ By Bill Gertz Washington Times June 3, 2010 A foreign computer intrusion two years ago reached classified Pentagon computer networks, prompting a reorganization of offensive and defensive [...] |
| Lieberman Bill Gives Feds 'Emergency' Powers to Secure Civilian Nets Posted: InfoSec News: Lieberman Bill Gives Feds 'Emergency' Powers to Secure Civilian Nets: http://www.wired.com/dangerroom/2010/06/lieberman-bill-gives-feds-emergency-powers-to-secure-civilian-net/ By Noah Shachtman Danger Room Wired.com June 2, 2010 Joe Lieberman wants to give the federal government the power to take over civilian networks' security, if there's an "imminent cyber threat." It's part of a draft bill, co-sponsored by Senators Lieberman and Susan Collins, that provides the Department of Homeland Security broad authority to ensure that "critical infrastructure" stays up and running in the face of a looming hack attack. The government's role in protecting private firms. networks is one of the most contentious topics in information security today. Several bills are circulating on Capitol Hill on how to keep power and transportation and financial firms running in the event of a so-called "cybersecurity emergency." Last week, Deputy Defense Secretary William Lynn floated the idea of extending a controversial cybersurveillance program to hacker-proof the firms. Meanwhile, the military's new Cyber Command is readying itself to march to these companies' aid. Lieberman and Collins' solution is one of the more far-reaching proposals. In the Senators' draft bill, "the President may issue a declaration of an imminent cyber threat to covered critical infrastructure." Once such a declaration is made, the director of a DHS National Center for Cybersecurity and Communications is supposed to "develop and coordinate emergency measures or actions necessary to preserve the reliable operation, and mitigate or remediate the consequences of the potential disruption, of covered critical infrastructure." "The owner or operator of covered critical infrastructure shall comply with any emergency measure or action developed by the Director," the bill adds. These emergency measures are supposed to remain in place for no more than 30 days. But they can be extended indefinitely, a month at a time. [...] |
| Microsoft to fix 34 holes in Windows, Office, IE Posted: InfoSec News: Microsoft to fix 34 holes in Windows, Office, IE: http://news.cnet.com/8301-27080_3-20006781-245.html By Elinor Mills InSecurity Complex CNet News June 3, 2010 Microsoft will on Tuesday issue 10 bulletins fixing 34 vulnerabilities affecting Windows, Office, and Internet Explorer. Six of the bulletins affect Windows, with two of those rated critical by Microsoft. Two bulletins target Office, one targets both Windows and Office, and one critical bulletin affects Internet Explorer, according to a Microsoft Security Response Center blog post on Thursday. Microsoft also said that with the June bulletins it will be closing Security Advisory 983438, which involves a vulnerability in SharePoint Services 3.0 and SharePoint Server 2007 that was disclosed in late April and which could lead to a cross-site scripting attack via the browser. Proof-of-concept exploit code has been published for that. The bulletins also address Security Advisory 980088, which involves a hole in IE that could allow information disclosure for users running the browser on Windows XP. It was disclosed in February. [...] |
| New Open-Source OS Will Feature 'Disposable' Virtual Machines Posted: InfoSec News: New Open-Source OS Will Feature 'Disposable' Virtual Machines: http://www.darkreading.com/insiderthreat/security/app-security/showArticle.jhtml?articleID=225300299 By Kelly Jackson Higgins DarkReading Jun 03, 2010 A new open-source operating system will come with the option of creating one-time, disposable virtual machines on the fly as a way to protect [...] |
| Posted: InfoSec News: Data Breach at U-Louisville: http://www.healthdatamanagement.com/news/breach-notification-university-lousiville-40419-1.html Health Data Management Breaking News June 3, 2010 The University of Louisville in Kentucky on June 2 posted a public notice of a data breach in which protected health and financial [...] |
| You are subscribed to email updates from [ISN] InfoSec News Mailing List To stop receiving these emails, you may unsubscribe now. | Email delivery powered by Google |
| Google Inc., 20 West Kinzie, Chicago IL USA 60610 | |
0 comments:
Post a Comment