tagged w/ National Security
-
-
The hackers ages 19 and 20 at the time known as Defiant and EBK from a group calling themselves Kryogeniks. Where they screwed up during their stunt was when they changed the contact information for the Comcast.net domain to Defiant’s e-mail address. Brilliant hackers yet not so smart.
http://information-security-resources.com/2009/11/23/comcast-homepage-hackers-indicted/The hackers ages 19 and 20 at the time known as Defiant and EBK from a group calling... more
-
-
They start with basic questions: Are you a public company? Have you been in any actual or attempted merger, acquisition or divestment within the past two years? How many employees? What percentage of your revenue is international? From there they hone in on the specific controls and safeguards you have in place to secure your data and IT infrastructure. Here are seven areas that the insurance carriers are looking at…
http://information-security-resources.com/2009/11/22/cyber-security-red-flags-for-insurance/They start with basic questions: Are you a public company? Have you been in any actual... more
-
-
http://thinkprogress.org/2009/11/11/maddow-hoekstra-leak/
Maddow Rips Rep. Pete Hoekstra For Leaking Sensitive National Security Information
Last night, MSNBC host Rachel Maddow accused Rep. Pete Hoekstra (R-MI), the ranking member on the House Intelligence Committee and current gubernatorial candidate, of leaking sensitive intelligence information to the press. Hoekstra told the Washington Post this week that Maj. Nidal M. Hasan had e-mail conversations with a radical Yemeni cleric, Anwar al-Aulaqi. Maddow excoriated Hoekstra for letting Aulaqi know that his e-mail is being monitored:
MADDOW: Why is it Pete Hoekstra who’s taking it upon himself to tell the press that this radical cleric is having his email read by U.S. intelligence agencies? The FBI had not said publicly that this cleric had been emailing Hasan. The CIA, the NSA, the White House — nobody else had reported this cleric was e-mailing Hasan. This is just Pete Hoekstra letting us know — and letting the radical cleric who is under surveillance know — that he’s under surveillance.
Maddow’s guest, The Nation’s Chris Hayes, said Hoekstra’s reputation is “of an epic grand-stander.” Watch it:
Asked if there was a concern that Hoekstra was leaking sensitive information, a Republican spokesman for the House intelligence committee told Maddow’s show, “I do not know, guessing, since [Aulaqi] was deported, he knew he was a target anyways.” Maddow noted that Aulaqi wasn’t “deported,” but rather left the country voluntarily, according to the 9-11 Commission. (Aulaqi had contacts with some of the 9-11 hijackers.)
House Intelligence Committee Chairman Silvestre Reyes (D-TX) said, “I am disappointed that some have rushed to the news media with unfounded information in order to gain headlines.”
Hoekstra has been trying to use the Ft. Hood shootings to engage in a political attack against Obama, claiming “administration officials delayed briefing members of Congress about the alleged gunman,” thus raising “red flags” about what the White House was hiding. “What do they know that they don’t want us to know?” Hoekstra said on Fox News.http://thinkprogress.org/2009/11/11/maddow-hoekstra-leak/
Maddow Rips Rep. Pete... more
-
-
Once a predator uses your Internet connection to go to into the bowels of the web, your Internet Protocol address, which is connected to your ISP billing address, is now considered one that is owned by a criminal. If law enforcement happens to be chatting with that person, who’s using your Internet connection to trade lurid porn, then someone may eventually knock on your door at 3 AM with a battering ram. And in freakish and relatively new twist, hackers can use a virus to crack your network and gain remote control access, and then store illicit porn on your hard drive.
http://information-security-resources.com/2009/11/13/what-could-possibly-be-worse-than-a-virus/Once a predator uses your Internet connection to go to into the bowels of the web,... more
-
-
-
There are four pillars to the cyber war realm: intelligence, technology, logistics, and command. By understanding these factors IT security practitioners can gauge the threat to their own organization from cyber war and perhaps take steps to prepare for either direct attacks or the fallout from an outbreak of cyber hostilities between nations.
http://information-security-resources.com/2009/11/09/four-pillars-of-cyber-warfare-intelligence/There are four pillars to the cyber war realm: intelligence, technology, logistics,... more
-
-
The short answer for persons leaving a company is to be very careful and to have a very clear understanding with the employer about what can and cannot be taken. The increasing involvement of government authorities in enforcing remedies involving trade secrets certainly signals a new level of risk for those who may be considering taking or copying trade secrets.
http://information-security-resources.com/2009/11/08/federal-statutes-aid-trade-secret-prosecution/The short answer for persons leaving a company is to be very careful and to have a... more
-
-
-
-
During this week’s Federal Executive Forum taping, Navy CIO Robert Carey discussed his views on cloud computing. Stating that the NGEN and CANES (Navy Consolidated Afloat Networks and Enterprise Services) programs will both leverage cloud computing, he also describes a future of “grey clouds” on each ship.
http://information-security-resources.com/2009/11/06/navy-cio-sees-future-in-cloud-computing/During this week’s Federal Executive Forum taping, Navy CIO Robert Carey discussed... more
-
-
Regardless of what you feel should or should not be private, we all have a right to set expectations that we trust will be met. And as technologists, we have the capability to improve the state of privacy in the face of technological advances that might otherwise undermine it. Privacy is not an Illusion, it is a challenge.
http://information-security-resources.com/2009/11/02/everyday-life-and-the-expectation-of-privacy/Regardless of what you feel should or should not be private, we all have a right to... more
-
-
Forget about vampires, ghouls and zombies. You were much more likely to receive a fright this year from something lurking in your e-mail. There were the usual crop of Trojan horses and phishing expeditions, and as the surprising list points out, some of the scares go all the way up to White House and the FBI.
http://information-security-resources.com/2009/11/01/top-ten-email-related-disasters-of-2009/Forget about vampires, ghouls and zombies. You were much more likely to receive a... more
-
-
William Landers general partner of Ameriborn Constitution News, interviews Congressman Joe Courtney.William Landers general partner of Ameriborn Constitution News, interviews Congressman... more
-
-
I recently saw an article entitled Compliance is the New Security Standard. The basic thesis of the blog post was that since companies have to spend money on compliance, they might as well spend the money once and rename the effort “security”. This is an interesting notion – although perhaps “placebo security” might be a cheaper approach. Compliance is not equivalent to security for several fundamental reasons…
http://information-security-resources.com/2009/10/28/pci-compliance-does-not-equal-security/I recently saw an article entitled Compliance is the New Security Standard. The basic... more
-
-
Oops, I just argued from scenario. Pundits often extrapolate from the current state of vulnerability of systems to predictions of massive power outages, financial collapse, and loss of command and control are falling into the scenario syllogism trap. Posing scenarios to support your anti-cyber war position can be just as dangerous…
http://information-security-resources.com/2009/10/28/security-scenarios-are-syllogistic-fallacy/Oops, I just argued from scenario. Pundits often extrapolate from the current state of... more
-
-
According to Sun Tzu, the Tao is the Way – the context that defines how actions are perceived and valued, and management must be able to accurately assess the program in the context of the company’s cultural and political reality. Failure to do this will inevitably create a clash between strategic security plans and the operational activities that enable that vision.According to Sun Tzu, the Tao is the Way – the context that defines how actions are... more
-
-
An intruder could eavesdrop on sensitive data sent across the Internet, manipulate the DNS address that redirects traffic from trusted sites to malicious ones, and possibly even infect other routers automatically. Chen says he informed Time Warner’s security department of the hole; they responded that they were aware of the problem but couldn’t do anything about it.An intruder could eavesdrop on sensitive data sent across the Internet, manipulate the... more
-
-
Many internal clouds will run on the back of VMware, but not all, and VMware alone will not satisfy all of the business’s requirements for running an effective internal cloud. Why not? I can think of several reasons…Many internal clouds will run on the back of VMware, but not all, and VMware alone... more
-
-
Carpathia Hosting has announced the formation of Carpathia Government Solutions, a unit dedicated to providing solutions specifically for federal civilian and defense agencies. The new business unit boasts ATOs (Authority to Operate) for over 20 federal agencies, support for private agency networks and an active facility clearance.Carpathia Hosting has announced the formation of Carpathia Government Solutions, a... more
-
