tagged w/ Sarbanes-Oxley
-
A former IT analyst at the Federal Reserve Bank of New York and his brother were arrested Friday on charges that they took out loans using stolen information, including sensitive information belonging to federal employees at the bank.A former IT analyst at the Federal Reserve Bank of New York and his brother were... more
-
-
Last week, Secretary of Defense Robert Gates testified that the military had spent $100 million on cybersecurity in the last six months alone responding to attacks, which are on the rise. Federal agencies reported to the U.S. Computer Emergency Readiness Team that they had been victims of 18,050 cybersecurity attacks in fiscal 2008, more than triple the number from 2006.Last week, Secretary of Defense Robert Gates testified that the military had spent... more
-
-
The computer file contained the names, Social Security numbers, birth dates and home addresses of Oklahoma’s Human Services’ clients receiving benefits from programs such as Medicaid, child care assistance, nutrition aid and disability benefits, the agency announced Thursday.The computer file contained the names, Social Security numbers, birth dates and home... more
-
-
“It’s not necessary to retain all of that data,” he said. “Once the data is held under this particular regime, you will probably find it will be used for a whole range of other purposes, just as RIPA has been,” Davies said. “With data preservation, what would not have occurred is the gross infringement of local authorities using that data to investigate dog-fouling or littering.”“It’s not necessary to retain all of that data,” he said.... more
-
-
“It’s pretty messed up,” said Metro parent Steven Blair. The private contractor — Public Consulting Group or PCG — removed the information from the server March 5. The information was removed from Google by March 31 at PCG’s request. The data was available online from Dec. 28 to March 31.“It’s pretty messed up,” said Metro parent Steven Blair. The private... more
-
-
A global survey conducted by Unisys last year found that 72% of US citizens would be willing to undergo fingerprint scans to verify their identities when dealing with banks and government organisations.A global survey conducted by Unisys last year found that 72% of US citizens would be... more
-
-
The raids were part of an investigation prompted by complaints from AT&T and Verizon about unpaid bills allegedly owed by some data center customers, according to court records. One data center owner charges that the telecoms are using the FBI to collect debts that should be resolved in civil court. But on Tuesday, an FBI spokesman disputed that charge.The raids were part of an investigation prompted by complaints from AT&T and... more
-
-
The spies came from China, Russia and other countries, these officials said, and were believed to be on a mission to navigate the U.S. electrical system and its controls. The intruders haven’t sought to damage the power grid or other key infrastructure, but officials warned they could try during a crisis or war.The spies came from China, Russia and other countries, these officials said, and were... more
-
-
The accused allegedly went on a spree between 28 September and 8 October last year as Barclaycard migrated cardholders from the Goldfish credit card business it acquired from Discover Financial Services earlier in the year.The accused allegedly went on a spree between 28 September and 8 October last year as... more
-
-
Personal information for 7,845 town taxpayers was exposed on the Internet last weekend due to a vendor’s mistake, town officials said late Thursday.
In a statement, town manager Jeff Muzzy said the problem was discovered March 27 and the information was removed by March 30.Personal information for 7,845 town taxpayers was exposed on the Internet last weekend... more
-
-
A former child support worker was arrested after attempting to sell the personal information — including names, Social Security numbers and bank account numbers — of 1,600 people.A former child support worker was arrested after attempting to sell the personal... more
-
-
Research to be presented at the Black Hat security conference in Amsterdam later this month will show how so-called SQL injection attacks open the door to much more serious exploits that give hackers unfettered access to a website’s database and the operating system that runs it. Penetration tester Bernardo Damele Assumpcao Guimaraes says his techniques prey on design flaws in three of the most popular databases, including MySQL, PostgreSQL, and Microsoft SQL Server.Research to be presented at the Black Hat security conference in Amsterdam later this... more
-
-
Anyone who has been following the cascade of security failures plaguing the payment card industry in the last year, and punctuated by the still-shrouded breaches at RBS WorldPay (RBS) and Heartland Payment systems (HPY), has to acknowledge that there are major problems with security that need to be addressed pronto. But the greatest threat to the survival of PCI DSS (Payment Card Industry Data Security Standard) may not be the ever-evolving tactics of the criminal hackers intent on a “big score,” but instead the dysfunctional nature of the relationships between the very parties the standards are meant to serve.Anyone who has been following the cascade of security failures plaguing the payment... more
-
-
2008 was the busiest year yet for online fraudsters according to an annual Internet Crime Report released Monday by the U.S. Federal Bureau of Investigation. The FBI’s Internet Crime Complaint Center (IC3) logged more than 275,000 complaints last year — a jump of 33 percent from the year before — accounting for about US$265 million dollars worth of losses, according to the center’s 2008 Internet Crime Report.2008 was the busiest year yet for online fraudsters according to an annual Internet... more
-
-
Google’s search rankings are being stuffed with links to fake security software that purports to remove Conficker, a widespread worm that’s currently the Internet’s number one security threat, but doesn’t. Certain search terms will bring up a host of Web pages that could either infect a PC with malicious software or try to sell a dodgy security program, said Rik Ferguson, senior security advisor for the vendor Trend Micro.Google’s search rankings are being stuffed with links to fake security software... more
-
-
IDG News Service — Symantec is warning a small number of customers that their credit card numbers may have been stolen from an Indian call center used by the security vendor.IDG News Service — Symantec is warning a small number of customers that their... more
-
-
The U.S. Department of Homeland Security (DHS) announced today the release of a DHS-developed detection tool that can be used by the federal government, commercial vendors, state and local governments, and critical infrastructure owners and operators to scan their networks for the Conficker/Downadup computer worm.The U.S. Department of Homeland Security (DHS) announced today the release of a... more
-
-
The credit card details of 19,000 Brits that shopped online were freely available on Google, it has been revealed. Anyone using the search engine could have easily accessed not only the name and addresses of thousands of Visa, Mastercard and American Express card holders, but also the full card details too.The credit card details of 19,000 Brits that shopped online were freely available on... more
-
-
I wondered how many of those were IT people and what percentage might turn to cyber crime. The BLS only obliquely breaks out what could represent IT workers as “professional and technical services.” Not surprisingly, manufacturing bore the brunt of February’s layoffs accounting for 47% of the unemployment claims, but IT folks could represent a small piece in all the 19 industry sectors that BLS follows.I wondered how many of those were IT people and what percentage might turn to cyber... more
-
-
Authorities investigating the RBS WorldPay breach, as well as the breach at Heartland Payment Systems, have used similar language to describe an international conspiracy that is targeting multiple financial institutions. Based on these similarities, it seems highly likely that Tenenbaum and his cohorts may indeed be the culprits behind a rash of major information security breaches that have the Payment Card Industry pointing fingers and attempting to dodge responsibility for security compliance.Authorities investigating the RBS WorldPay breach, as well as the breach at Heartland... more
-
