TOORCON 12 CALL FOR PAPERS

TOORCON 12 CALL FOR PAPERS

TOORCON 12 CALL FOR PAPERS

Posted:

InfoSec News: TOORCON 12 CALL FOR PAPERS: http://sandiego.toorcon.org/
TOORCON 12 CALL FOR PAPERS
It's that time of year again! ToorCon 12 is coming so get your code finished and submit a talk this time around. We're letting you decide if you want to be a part of our 50-minute talks on Saturday, 20-minute [...]

Hackers steal customer data by accessing supermarket database

Posted:

InfoSec News: Hackers steal customer data by accessing supermarket database: http://www.japantoday.com/category/crime/view/hackers-steal-customer-data-by-accessing-supermarket-database
Kyodo News August 15, 2010
OSAKA -- Hackers stole customer data from eight online supermarkets in Japan, including Uny Co. and Neo Beat Co, in July using a hacking [...]

Inside Verizon's Insider Threat Data

Posted:

InfoSec News: Inside Verizon's Insider Threat Data: http://www.darkreading.com/insiderthreat/security/attacks/showArticle.jhtml?articleID=226700346
By Robert Lemos Contributing Writer DarkReading Aug 16, 2010
For security firms that argue malicious insiders are a greater threat than outside attackers, the latest Verizon Data Breach Investigations Report seems like vindication: The proportion of incidents with an insider agent doubled to 48 percent, while attacks with an external hacker dropped to 70 percent. Incidents involving data theft from the outside still account for the majority of attacks -- with insiders catching up.
The driving factor behind the increase in insider attacks was not the economic downturn -- an oft-argued opinion -- but rather the inclusion of a new data set in Verizon's database, says Alex Hutton, principal of research and intelligence for Verizon Business. The U.S. Secret Service joined much of its caseload data to Verizon's database, adding a large number of incidents where the victim had a better idea of the identity of the attacker and believed the person could be prosecuted. Both factors tend to favor incidents with an insider component. "With the Secret Service [cases], we got exposed to a whole new set of data," Hutton says of the report.
Overall, Verizon still sees external attackers as the major threat, however. When an outsider steals data, he absconds with a massive number of records. In 2009, breaches caused by outside criminals accounted for about 139 million stolen records, while insiders accounted for only 2.6 million records. "A record that has been exposed is 70 times more likely to have been exposed by an external source than in internal source," Hutton says.
Verizon doesn't refute the threat of insiders -- just the assertion that insiders pose the greatest risk. Companies should have defenses that work against insiders, outsiders, and partners, Hutton says. Identity and access management are essential controls that companies need to block -- or at least, slow down -- attackers.
[...]

Passwords Quickly Hacked With PC Graphics Cards

Posted:

InfoSec News: Passwords Quickly Hacked With PC Graphics Cards: http://www.informationweek.com/news/security/vulnerabilities/showArticle.jhtml?articleID=226700303
By Mathew J. Schwartz InformationWeek August 16, 2010
Passwords with fewer than 12 characters can be quickly brute-force decoded using a PC graphics processing unit (GPU) that costs just a few [...]

Hackers: 'ColdFusion bug more serious than Adobe says'

Posted:

InfoSec News: Hackers: 'ColdFusion bug more serious than Adobe says': http://www.theregister.co.uk/2010/08/16/adobe_coldfusion_vuln/
By Dan Goodin in San Francisco The Register 16th August 2010
A recently patched vulnerability in Adobe's ColdFusion application server may be more serious than previously thought following the public [...]

Career Bobs

Posted by Rohan ingale at 1:22 AM

0 comments:

Post a Comment