Accurate, Focused Research on Law, Technology and Knowledge Discovery With Daily Postings Since 2002
Danger Room: “A computer virus has infected the cockpits of Americas Predator and Reaper drones, logging pilots every keystroke as they remotely fly missions over Afghanistan and other warzones. The virus, first detected nearly two weeks ago by the militarys Host-Based Security System, has not prevented pilots at Creech Air Force Base in Nevada from …
Information Security – Weaknesses Continue Amid New Federal Efforts to Implement Requirements, GAO-12-137, October 3, 2011 “Weaknesses in information security policies and practices at 24 major federal agencies continue to place the confidentiality, integrity, and availability of sensitive information and information systems at risk. Consistent with this risk, reports of security incidents from federal agencies …
2011 Payment Card Industry Compliance Report – A Study Conducted By The Verizon PCI And RISK Intelligence Teams “This report analyzes findings from actual Payment Card Industry (PCI) Data Security Standard (DSS) assessments conducted by Verizons team of Qualified Security Assessors (QSAs). The report describes where these organizations stand in terms of overall compliance with …
News release: “Check Point® Software Technologies Ltd. announced the results of a new report revealing 48 percent of enterprises surveyed have been victims of social engineering, experiencing 25 or more attacks in the past two years, costing businesses anywhere from $25,000 to over $100,000 per security incident. The report, The Risk of Social Engineering on …
Identity Theft – Trends, Patterns, and Typologies Based on Suspicious Activity Reports. Filed by the Securities and Futures Industries January 1, 2005 December 31, 2010. Report released September 2011. “This report focuses on identity theft in the securities and futures industries. Based on Suspicious Activity Report by the Securities and Futures Industries (SAR-SF) filings, …
News release: “Stanford Universitys Center on Longevity and the FINRA Investor Education Foundation have joined together to launch the Research Center on the Prevention of Financial Fraud, an interdisciplinary resource for law enforcement, government and research groups studying financial fraud. Financial fraud, ranging from Ponzi schemes to online phishing scams and work from home schemes, …
“Symantec Corp. announced the results of the August 2011 Symantec Intelligence Report, now combining the best research and analysis from the Symantec.cloud MessageLabs Intelligence Report and the Symantec State of Spam & Phishing Report. This months analysis reveals that once more spammers are seeking to benefit from fluctuations in the turbulent financial markets, most notably …
Department of Homeland Security Office of Inspector General, Improvements in Patch and Configuration Management Controls Can Better Protect TSAs Wireless Network and Devices (Redacted) OIG-11-99 July 2011 “Overall, TSA has implemented effective physical and logical security controls to protect its wireless network and devices. We did not detect any high-risk vulnerabilities on its wireless network …
Trends in Circumventing Web-Malware Detection. Moheeb Abu Rajab, Lucas Ballard, Nav Jagpal, Panayiotis Mavrommatis, Daisuke Nojiri, Niels Provos, Ludwig Schmidt. Google Technical Report rajab-2011a, July 2011 “Malicious web sites that compromise vulnerable computers are an ever-present threat on the web. The purveyors of these sites are highly motivated and quickly adapt to technologies that try …
Revealed: Operation Shady RAT by Dmitri Alperovitch, Vice President, Threat Research, McAfee: “An investigation of targeted intrusions into more than 70 global companies, governments, and non-profit organizations during the last five years.” “…the targeted compromises we are focused on known as advanced persistent threats (APTs) are much more insidious and occur largely without …
Haystack Logo…and how well hidden is YOUR needle? “Every password you use can be thought of as a needle hiding in a haystack. After all searches of common passwords and dictionaries have failed, an attacker must resort to a brute force search ultimately trying every possible combination of letters, numbers and then symbols until …
Data-Enabled Government: How Well Is Our Personal Information Used and Protected? – HP Business White Paper “This is a summary of a longer report written in co-operation with the Economist Intelligence Unit. It examines the key issues surrounding the use and protection of personal data and draws on in-depth interviews with experts working on the …
