| |

Phishing Alert – Epsilon Data Breach

Information about the recent Epsilon Breach On March 30th, Epsilon, a major e-mail marketing services provider experienced a security breach that compromised the customer data of some of the businesses that utilize Epsilon for their e-mail marketing needs. The breach affects over 90 high profile companies including but not limited to drugstore chain Walgreens, electronics…

|

Hole in US Airways plane was caused by a bullet, sources say

A hole in a US Airways jet that landed in Charlotte, North Carolina, was caused by a bullet that pierced the passenger cabin, three government sources told CNN March 29. Officials believe the bullet was fired in Charlotte, after passengers had exited the aircraft, one source said. The hole was discovered after the Boeing 737-400…

Pay-at-the-Pump Scams Targeted

As pay-at-the-pump skimming scams grow in the United States and Europe, police in Camarillo, California, have taken the unique step of enlisting help from civilians to fight skimming crimes. Known as the citizen patrol unit, the group of 30 civilian volunteers has been tasked with monitoring pay-at-the pump terminals throughout Camarillo, looking for signs of…

Hackers make off with TripAdvisor’s membership list

Hackers make off with TripAdvisor’s membership list. Travel site TripAdvisor warned subscribers to expect more spam following the theft of its member database. The travel review and information Web site said an unspecified vulnerability allowed miscreants to make off with a portion of its email database. TripAdvisor does not collect members’ credit card or financial…

Microsoft patches Windows, IE

Microsoft issued three “critical” security bulletins as part of its monthly patch Tuesday. The top of the list is MS11-003, which is a cumulative update for Internet Explorer that resolves four vulnerabilities. CSS bug outlined in Security Advisory 2488013 is a bug that could give attackers control of people’s computers. Read More….

|

Cyber Ethics

From the Desk of Chad M. Barr, CISSP, CISA The explosion of social networking and the ubiquitous sharing and posting of so much information online have changed the way we communicate. We must ensure that users understand their responsibilities for conducting themselves online. An important component of that is Cyber Ethics. Cyber Ethics refers to…

Microsoft to patch 22 bugs, 3 zero-days next week

Microsoft to issue 12 securities updates next week to patch 22 vulnerabilities in Internet Explorer (IE), Windows, its Internet server and Visio, the company’s data diagramming tool. Microsoft also announced it will provide patches next Tuesday for three bugs it has already acknowledged, including one that has been exploited by criminals for several weeks. Read…

|

Increase in Java Exploits

From the Desk of Chad M. Barr, CISSP, CISA Java is a programming and computing platform widely used for stand-alone and web-based applications/applets, including utilities, games, and business applications. The platform was first released by Sun Microsystems in 1995. Many applications and websites require end-users to have Java installed, and the software is used extensively…