Wednesday, October 21, 2009

I'm not aware of anything like this before. Will they also fine TJX, et.al. For failure to encrypt their wireless connections?

http://www.databreaches.net/?p=7882

SEC fines broker-dealer $100,000 over computer security failures

October 21, 2009 by admin Filed under Of Note

Finextra reports:

US broker-dealer Commonwealth Financial Network has been fined $100,000 for failing to insist its registered representatives maintain anti-virus software on their computers. The failure led to an intruder gaining access to the firm’s Intranet, accessing customer accounts and entering unauthorised purchase orders worth over $523,000.

According to an SEC cease and desist order – first published by ZDNet – an intruder used a computer virus in November 2008 to obtain the login credentials of a Commonwealth registered representative.

Some time later that month, the intruder used the login credentials to enter Commonwealth’s Intranet site and view information on how to execute trades.

Read more on Finextra.com



I wonder if my Wi-Fi Router has the same bug?

http://news.cnet.com/8301-27080_3-10379477-245.html?part=rss&subj=news&tag=2547-1_3-0-20

Time Warner testing fix to hole in home router

by Elinor Mills October 20, 2009 2:45 PM PDT

Time Warner has rolled out a temporary patch and is testing a permanent fix for a security hole in a combination cable modem/Wi-Fi router that could allow anyone to access the private network of its customers, snoop on sensitive data, and direct customers to malicious Web sites.

… "We are aware of the issue and we are hard at work on a solution and have been for quite some time," [When were they going to tell their customers? Bob] Alex Dudley, a Time Warner Cable spokesman, said on Tuesday.

"The manufacturer has developed a fix," he added. "We believe it will work and we are testing it now to make sure it won't affect our network in other ways."

… Chen wrote that he discovered that the administration features of the router had been disabled via JavaScript and that he was able to access all the features of the router by disabling JavaScript in the browser. [Now that's a simple hack! Bob]



Attention Hackers and coding geeks! Here's you chance to see where your vote went!

http://politics.slashdot.org/story/09/10/20/2254210/Sequoia-Voting-Systems-Source-Code-Released?from=rss

Sequoia Voting Systems Source Code Released

Posted by kdawson on Tuesday October 20, @07:06PM from the redaction-fail dept.

Mokurai sends a heads-up about Sequoia Voting Systems, which seems to have inadvertently released the SQL code for its voting databases. The existence of such code appears to violate Federal voting law:

"Sequoia blew it on a public records response. ... They appear... to have just vandalized the data as valid databases by stripping the MS-SQL header data off, assuming that would stop us cold. They were wrong. The Linux 'strings' command was able to peel it apart. Nedit was able to digest 800-MB text files. What was revealed was thousands of lines of MS-SQL source code that appears to control or at least influence the logical flow of the election, in violation of a bunch of clauses in the FEC voting system rulebook banning interpreted code, machine modified code and mandating hash checks of voting system code."

The code is all available for study or download, "the first time the innards of a US voting system can be downloaded and discussed publicly with no NDAs or court-ordered secrecy," notes Jim March of the Election Defense Alliance. Dig in and analyze.



Attention Hackers! Now you can extend the “unplug grandma” feature of the Obama Health Care Plan to anyone in Oregon! Got an irritating neighbor? Unhappy with your local politician? Sign them up!

http://news.cnet.com/8301-27083_3-10379636-247.html?part=rss&subj=news&tag=2547-1_3-0-20

Oregon end-of-life forms go electronic

by Elizabeth Armstrong Moore October 20, 2009 7:35 PM PDT

Officials at Oregon Health and Science University (OHSU) announced Tuesday that the state's Physician Orders for Life-Sustaining Treatment (POLST) registry is going digital on or near December 1.



Interesting. Should we expect IBM to push non-Microsoft alternatives whenever they release new versions of their products? (IBM has free versions for most of them.)

http://linux.slashdot.org/story/09/10/20/1756215/IBMs-Answer-To-Windows-7-Is-Ubuntu-Linux?from=rss

IBM's Answer To Windows 7 Is Ubuntu Linux

Posted by kdawson on Tuesday October 20, @07:57PM from the riding-the-pr-coattails dept.

An anonymous reader writes

"It looks like IBM isn't much of a friend of Microsoft's anymore. Today IBM announced an extension of its Microsoft-Free PC effort together with Canonical Ubuntu Linux. This is the same thing that was announced a few weeks back for Africa (a program that began a year ago), and now it's available in the US. The big push is that IBM claims it will cost up to $2,000 for a business to move to Windows 7. They argue that moving to Linux is cheaper."



Q: How big is the Cloud? A: How big do you want it to be?

http://tech.slashdot.org/article.pl?sid=09/10/20/1731228

Google Envisions 10 Million Servers

Posted by kdawson on Tuesday October 20, @02:52PM from the up-scale dept.

miller60 writes

"Google never says how many servers are running in its data centers. But a recent presentation by a Google engineer shows that the company is preparing to manage as many as 10 million servers in the future. At this month's ACM conference on large-scale computing, Google's Jeff Dean said he's working on a storage and computation system called Spanner, which will automatically allocate resources across data centers, and be designed for a scale of 1 million to 10 million machines. One goal: to dynamically shift workloads to capture cheaper bandwidth and power. Dean's presentation (PDF) is online."



Is this the future of publishing? In theory, you could pick up your newspapers, magazines and book-of-the-month club selections at your local library or supermarket.

http://news.cnet.com/8301-19882_3-10379830-250.html?part=rss&subj=news&tag=2547-1_3-0-20

HP can't save print. But big props for trying

by Rafe Needleman October 21, 2009 12:01 AM PDT

Hewlett-Packard is announcing two projects at the Web 2.0 Summit in San Francisco on Wednesday it hopes will give new life to print--books and magazines in particular. Additions to two projects, BookPrep and MagCloud, let content that's been too expensive or difficult to print get out to readers more easily.



The future of the internet?

http://news.cnet.com/8301-13772_3-10379610-52.html?part=rss&subj=news&tag=2547-1_3-0-20

U2 concert to be streamed live from Rose Bowl

by Daniel Terdiman October 20, 2009 4:00 PM PDT



Tools & Techniques Test you hacks on someone else's computer.

http://codepad.org/

codepad

codepad.org is an online compiler/interpreter, and a simple collaboration tool. Paste your code below, and codepad will run it and give you a short URL you can use to share it in chat or email.

Language: C C++ D Haskell Lua Ocaml PHP Perl Plain Text Python Ruby Scheme Tcl



Is this a health site or a cover for a sex site? Or maybe it's just easier to market health if there's lots of sex talk too?

http://www.healthguru.com/

Health Guru



Something for the Business students?

http://www.techcrunch.com/2009/10/21/tracked-com-launches-massive-structured-database-of-people-and-companies/

Tracked.com Launches Massive Structured Database Of People And Companies

by Michael Arrington on October 21, 2009

It isn’t often that a startup can raise nearly $12 million dollars and work in stealth for a year and a half without anyone noticing. But that’s exactly what Tracked has done – and today they’re launching a massive structured database for tracking people and businesses.

...You can, for example, view public company financial statements, compensation data and insider trading for public company executives, or just overviews (and news items) for countless business people and other notable individuals. You can also create watchlists of people, companies or industries, and the service will create a customized feed of news relevant to the items on your watchlist.

No comments: