How can you tell when you have an easier target than TJX? The lawyers start duking it out before they get to court.
http://www.pogowasright.org/article.php?story=20080602125352599
Lawyers Vie To Lead Suit Over Hannaford Breach
Monday, June 02 2008 @ 12:53 PM EDT Contributed by: PrivacyNews News Section: Breaches
Nearly two dozen lawsuits arising from a computer security breach at Hannaford Bros. Co. are likely to be consolidated into a single class-action, with two competing groups of law firms vying to lead the case.
Source - WCSH
Too small to be interesting, except for the following article.
http://www.pogowasright.org/article.php?story=20080602135804287
UK: Children find secret bank files in street
Monday, June 02 2008 @ 04:51 PM EDT Contributed by: PrivacyNews News Section: Breaches
An investigation is under way after bank details of Wigan customers were found dumped in Cheshire. The confidential 60-page sheaf of A4 documents, featured lists of customers of high street bank HSBC.
Among the information contained in the papers were credit card applications and overdraft review dates, photocopies of a passport, driving licences, a marriage certificate, bank account sort codes and account numbers.
Source - Wigan Today
This breach was from last week. Props to The Breach Blog for catching what we missed.
Simultaneous “discoveries” in both the UK and Canada? Perhaps this is a new bank policy?
http://www.pogowasright.org/article.php?story=20080602140153954
Ca: Bag of HSBC client info found on side of the road
Monday, June 02 2008 @ 02:01 PM EDT Contributed by: PrivacyNews News Section: Breaches
A Richmond Hill man was driving in his neighbourhood Saturday night when he spotted a bank bag full of cancelled cheques on the side of the road.
He took the bag to a police station after a quick peek inside revealed the personal information of hundreds of bank customers.
Source - CTV.ca
...and this is even before employees start trading their laptops for iPhones in huge numbers!
http://it.slashdot.org/article.pl?sid=08/06/02/2255228&from=rss
Smart Phones "Bigger Security Risk" Than Laptops
Posted by kdawson on Monday June 02, @08:46PM from the low-hanging-fruit dept. Security IT
CWmike writes
"A recent survey of 300 senior IT staff found that 94% fear PDAs present a security risk, surpassing the 88% who highlighted mobile storage devices as a worry. Nearly eight in 10 said laptops were an issue. Only four in 10 had encrypted data on their laptops, and the remainder said the information was 'not worth' protecting. A key danger with PDAs was that over half of IT executives surveyed were 'not bothering' to enter a password when they used their phone. A VP at the company that performed the surbey said: 'Companies need to regain control of these devices and the data that they are carrying, or risk finding their investment in securing the enterprise misplaced and woefully inadequate.' Is this just iPhone fear-mongering? Do you think the passwords execs could remember would help with securing PDAs and smart phones?"
We have the technology so we must use it in the most annoying way possible.
http://www.pogowasright.org/article.php?story=20080603063842494
UK: 'We need your fingerprints if you want to pick up your children,' nursery tells parents
Tuesday, June 03 2008 @ 06:38 AM EDT Contributed by: PrivacyNews News Section: Non-U.S. News
A nursery has told parents and staff they will need to use a fingerprint scanner to gain access to the building.
They must press their finger on to an electronic pad every time they arrive at one of two private nurseries in Kent.
The door will only open if they are on the biometric database.
Critics have condemned the use of such technology in a nursery. They warned that children will grow up thinking it is normal to provide a fingerprint to get into a building - without appreciating the dangers of a surveillance society.
Source - Daily Mail
Does this mean I can't wear my Yosemite Sam T-shirt?
http://news.bbc.co.uk/2/hi/uk_news/england/london/7431640.stm
Page last updated at 14:19 GMT, Monday, 2 June 2008 15:19 UK
Gun T-shirt 'was a security risk'
A man wearing a T-shirt depicting a cartoon character holding a gun was stopped from boarding a flight by the security at Heathrow's Terminal 5.
Brad Jayakody, from Bayswater, central London, said he was "stumped" at the objection to his Transformers T-shirt.
Mr Jayakody said he had to change before boarding as security officers objected to the gun, held by the cartoon character.
... A BAA spokesman said there was no record of the incident and no "formal complaint" had been made.
"If a T-shirt had a rude word or a bomb on it, for example, a passenger may be asked to remove it," he said.
"We are investigating what happened to see if it came under this category.
"If it's offensive, we don't want other passengers upset."
Killing Gutenberg: Will this technology doom publishers or only printers?
http://www.nytimes.com/2008/06/02/books/02bea.html?_r=1&partner=rssnyt&emc=rss&oref=slogin
Electronic Device Stirs Unease at Book Fair
By EDWARD WYATT Published: June 2, 2008
LOS ANGELES — Is the electronic book approaching the tipping point?
That topic both energized and unnerved people attending BookExpo America, the publishing and bookselling industry’s annual trade show, which ended at the convention center here on Sunday.
Much of the talk was focused on the Kindle, Amazon’s electronic reader, which has gained widespread acclaim for its ease of use. Jeffrey P. Bezos, the founder and chief executive of Amazon, spent much of a packed session on Friday evangelizing about the Kindle, which he said already accounts for 6 percent of his company’s unit sales of books that are available in both paper and electronic formats.
Another industry is doomed...
http://tech.slashdot.org/article.pl?sid=08/06/02/230247&from=rss
Google to Offer Real-Time Stock Quotes
Posted by kdawson on Monday June 02, @10:38PM Google The Almighty Buck
Apro+im writes
"Today, Google announced that Google Finance will report real-time prices on NASDAQ-listed securities. While real-time stock quotes are not new, they have long encumbered with subscriptions, legal agreements, or pay software. This may be the first free source for real-time quotes."
Speaking of Google, something for the geeks! Very Cool!
http://tech.slashdot.org/article.pl?sid=08/06/02/222234&from=rss
goosh, the Unofficial Google Shell
Posted by kdawson on Monday June 02, @07:26PM from the land-a-gooshen dept. Software Google The Internet
ohxten writes
"Stefan Grothkopp has come up with a pretty neat tool called goosh. It's essentially a browser-oriented, shell-like interface that allows you to quickly search Google (and images and news) and Wikipedia and get information in a text-only format. This is quite possibly the coolest thing I've seen in a good while."
The whole world is moving into the cloud.
http://www.readwriteweb.com/archives/adobe_launches_online_office_suite.php
Adobe Launches Online Office Suite and New Flash-Enabled Acrobat 9
Written by Sarah Perez / June 1, 2008 9:01 PM / 11 Comments
Back in March, we said Adobe was slowly building an online empire. Today, that news turns out to be true. Adobe is has just launched their version of an online office suite available at Acrobat.com, complete with word processor (Buzzword), web conferencing/whiteboard app (ConnectNow), online file sharing (Share), file storage, (My Files), and PDF converter. To complement this launch, Adobe has also announced a brand-new version of Adobe Acrobat, Acrobat 9, the biggest release since the initial one that introduced Acrobat to the world. The remarkable change in this new version is that Adobe is now incorporating Flash into the PDF experience.
Of course it works, it's digital after all...
http://it.slashdot.org/article.pl?sid=08/06/02/1449228&from=rss
Hiding Packets in VoIP Chat
Posted by CmdrTaco on Monday June 02, @12:40PM from the because-you-can dept. Security Encryption
holy_calamity writes
"Two Polish researchers say they have developed a system to hide secret steganographic messages in the packets of a VOIP connection. It exploits the fact VOIP uses UDP, not TCP; it is designed to tolerate some packets going missing so hijacking a few to transmit a hidden message is not a problem."
You may also be interested in reading the original paper.
For my hackers... Interesting stuff!
http://www.f-secure.com/weblog/archives/00001450.html
Creating malicous PDF files
Posted by Mikko @ 19:46 GMT
Yesterday's post discussed a mystery PDF file that was boopytrapped to drop a backdoor.
Today we'll look at how these documents are created.
The apparent purpose of this tool is to create trojanized PDF files. You select which EXE you want to embed, which PDF file you want to trojanize and which platform you expect the victim to be using.
Cool. Now, the real question is this: How an earth did we get our hands on such a tool?
You'd never guess it.
We received it inside a trojanized PDF file.
Here's what we believe happened:
A niche for the “shopping addicted?”
http://www.killerstartups.com/Web20/yardsalead-com-postfind-yard-sales/
YardSaleAd.com - Post, Find Yard Sales
Summer is ideal for yard sales. There’s no school, the kids can set up lemonade stands, people actually come out of hiding and want to find a good bargain, the weather’s nice, etc. The question is, ‘How do I sell my yard sale?’ Certainly, there’s the old school cardboard sign along the side of the road, and a clever ad in the Sunday classifieds. But those don’t really guarantee anything. Now you can try another method: YardSaleAd. It’s a website that lets you post your yard sale and all the important details. For those looking for a good sale, YardSaleAd makes it easy. Just enter your search criteria (location, categories, date, etc) and YardSaleAd will help you find it. Simply register to get all access for free.
This would be more fun if each entry generated a letter from you lawyer...
http://www.killerstartups.com/Web20/everycall-us-stopcomplain-about-telemarketers/
EveryCall.us - Stop, Complain About Telemarketers
You hate telemarketers (even the charity calls). No-call lists seemingly haven’t done damage to the legions of robot machine services that have sprung up in place of the real thing. The calls keep coming. So what is a fellow citizen to do? One method is to turn to the internets and to sites like EveryCall, which specialize in getting your message heard. EveryCall in particular, is a site that lets you find out exactly who it is that’s calling you. Type in the number to find out and leave a comment. Expose the companies that are harassing you and help others to put a stop to those pesky telemarketers. Plus, you may win an iPod while you’re at it.
No comments:
Post a Comment