[iwar] News
From: Fred Cohen
From: fc@all.net
To: iwar@egroups.com
Sun, 13 Aug 2000 08:43:04 -0700 (PDT)
fc Sun Aug 13 08:44:14 2000
Received: from 207.222.214.225
by localhost with POP3 (fetchmail-5.1.0)
for fc@localhost (single-drop); Sun, 13 Aug 2000 08:44:14 -0700 (PDT)
Received: by multi33.netcomi.com for fc
(with Netcom Interactive pop3d (v1.21.1 1998/05/07) Sun Aug 13 15:44:07 2000)
X-From_: sentto-279987-479-966181387-fc=all.net@returns.onelist.com Sun Aug 13 10:43:32 2000
Received: from c9.egroups.com (c9.egroups.com [208.50.99.230]) by multi33.netcomi.com (8.8.5/8.7.4) with SMTP id KAA08345 for ; Sun, 13 Aug 2000 10:43:32 -0500
X-eGroups-Return: sentto-279987-479-966181387-fc=all.net@returns.onelist.com
Received: from [10.1.10.36] by c9.egroups.com with NNFMP; 13 Aug 2000 15:43:08 -0000
Received: (qmail 28281 invoked from network); 13 Aug 2000 15:43:06 -0000
Received: from unknown (10.1.10.27) by m2.onelist.org with QMQP; 13 Aug 2000 15:43:06 -0000
Received: from unknown (HELO all.net) (24.1.84.100) by mta1 with SMTP; 13 Aug 2000 15:43:05 -0000
Received: (from fc@localhost) by all.net (8.9.3/8.7.3) id IAA05862 for iwar@onelist.com; Sun, 13 Aug 2000 08:43:04 -0700
Message-Id: <200008131543.IAA05862@all.net>
To: iwar@egroups.com
Organization: I'm not allowed to say
X-Mailer: don't even ask
X-Mailer: ELM [version 2.5 PL1]
From: Fred Cohen
MIME-Version: 1.0
Mailing-List: list iwar@egroups.com; contact iwar-owner@egroups.com
Delivered-To: mailing list iwar@egroups.com
Precedence: bulk
List-Unsubscribe:
Date: Sun, 13 Aug 2000 08:43:04 -0700 (PDT)
Reply-To: iwar@egroups.com
Subject: [iwar] News
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Avant charged with alleged trade secret violations
Avant, which makes software used to design computer chips, said
a grand jury in California indicted the company, chief executive
Gerald Hsu and three other employees. The indictment is based on
allegations relating to the company's ongoing dispute with Cadence
Design Systems, Avant said. A similar indictment brought by the
Santa Clara County District Attorney's office was dismissed by
Santa Clara County Superior Court in April. The new indictment
alleges conspiracy to commit trade-secret theft, conspiracy to
withhold and conceal stolen property, conspiracy to commit
securities fraud, theft of trade secrets, withholding or
concealing stolen property, and making an unauthorized copy
of an article containing a trade secret.
http://news.cnet.com/news/0-1003-200-2495439.html
EPA's computers are wide open to hackers, investigators report
The Environmental Protection Agency's most important computers
were "riddled with security weaknesses," and despite the EPA's
efforts to fix the problems, full repairs will take a while,
congressional investigators found. HACKERS WERE ABLE to tamper
with data, browse sensitive information or even attack other
agencies using EPA systems, investigators said in an unusually
blunt assessment. The risks "threaten its operations and data."
Investigators said the EPA's ability to detect hackers was so
flawed that it failed to notice the government's own security
experts poking through its computers.
http://www.msnbc.com/news/444703.asp
http://www.cnn.com/2000/TECH/computing/08/11/epa.security.ap/index.html
Woolworths hit by security breach
Woolworths, the general merchandise retailer owned by Kingfisher,
has been forced to close its website after a customer complained
of being able to see another user's financial details. The
retailer, which sells a limited range of products through the
site, says it is unlikely to reopen the operation until next week.
The breach, which follows similar problems experienced by Barclays
bank last week when customers were able to read other users' account
information, only affected the website, the company said. Its
interactive TV home shopping service, which is available on Sky's
Open platform, was unaffected.
http://www.netimperative.com/media/newsarticle.asp?ArticleID=3D4483
http://www.zdnet.co.uk/news/2000/31/ns-17267.html
Ex-cable worker ordered to pay firm $88,000
A fired Paragon cable employee was sentenced Thursday to two years
of probation and ordered to pay the firm $88,000 for hacking into
the Eden Prairie company's computer system and sabotaging its system
for inserting local advertising into cable channel programming.
Robert L. Dayton, Ramsey, had been charged with accessing a protected
computer without authorization and intentionally causing damage to a
computer system. He pleaded guilty May 8. According to a plea agreement,
Dayton acknowledged that he hacked into the Paragon, now Time Warner,
computer system after he was fired in June 1999. Dayton entered the
computer system with a Paragon laptop that he kept after he was fired.
Once inside the computer system, Dayton erased data and software that
allowed Paragon to overlay local advertising into the broadcast of more
than 100 cable channels.
http://www.startribune.com/stOnLine/cgi-bin/article?thisSlug=3DHACK11&date=11-Aug-2000&word=3Dparagon
Survey: 125,000 Smurf-friendly Nets
Project Gargimel aims peer pressure at squashing Smurf attacks.
A newly released Internet-wide survey counts over 125,000 corporate,
governmental and academic networks open to use as unwitting weapons
in the kind of packet flooding attacks that crippled some of the
largest e-commerce sites on the web in February. The networks at
issue allow 'IP-directed broadcast,' permitting outsiders to send
broadcast packets to a local network remotely, over the Internet.
Where a normal packet of network traffic is addressed to a single
computer, data sent to a broadcast address is like a voice on a
loudspeaker, effectively reaching every machine on a network at once.
http://www.securityfocus.com/frames/?content=3D/templates/article.html%3Fid=%3D71
http://www.msnbc.com/news/444815.asp
Tokyo 'Spy Capital' of the World
The worst-kept secret in diplomatic chanceries and corporate
boardrooms is that Tokyo is the spy capital of the world.
From industrial espionage and Internet codes to old-fashioned
surveillance and disinformation, analysts agree, no place can
hold a flickering candle to the capital of Japan. "There is so
much information of every kind from every nation available here,"
said a Western diplomat. "Because of scant preventive laws, foreign
spies can operate with near impunity." In one recent case, police
said they discovered that four Russian intelligence agents collected
information about unreleased electronic products in Japan.
http://www.antionline.org/2000/08/11/up/0000-8188-japan-spying-analysis.html
Nazis, libel, porn: The Web's legal minefield
France's attempts to stop its citizens accessing a Nazi
memorabilia website located in the United States has shown
again how nations are struggling to exercise the laws of the
land in cyberspace. The French case against Yahoo! Inc has
turned on the issues of whether an Internet service provider
(ISP) or portal is liable for distributing illegal material,
and whether it should or can block access to that content.
http://www.mercurycenter.com/svtech/news/breaking/merc/docs/029906.htm
Air Force tests phone firewalls
A novelty for telephone networks, the technology gets a field
test at two locations. The Air Force is studying the use of
telephone firewalls to improve security and management of its
phone systems. "We would like to have proactive, automated policy
enforcement," said Capt. Mary Plies, chief of information warfare
capabilities at the Air Force Information Warfare Battlelab in
San Antonio. "It is usually a smart idea to go automated any
chance you get." Firewalls=97standard equipment on data networks
still are a novelty for phone networks. To try out the concept,
the Air Force Space Command is installing 50 TeleWall appliances
from SecureLogix Corp. of San Antonio at Peterson and Schriever
Air Force bases in Colorado. TeleWall will monitor all incoming
and outgoing calls at the bases and enforce security policies set
by administrators.
http://www.gcn.com/vol19_no22/com/2574-1.html
Privacy advocates attack Postal Service e-mail plan
Technology industry groups are once against upset with the U.S.
Postal Service for its latest proposed foray into e-commerce=97a
plan that would assign individuals an e-mail address linked to a
physical mailing address=97they say could have dramatic implications
for individual privacy. Postal officials say they have backed down
from reports that they plan to link electronic and physical mailing
addresses by explaining that, "everything we are doing in the realm
of e-addressing is conceptual." But they are going forward with an
aspect of the plan that would permit users to send e-mails and have
them delivered to a physical address.
http://www.govexec.com/dailyfed/0800/081400td.htm
Online dissidents protest Chinese crackdown
Organizers of the first China-based dissident Web site on Friday
protested its closure by the government, saying China was risking
disaster by trying to curb free expression in the Internet age.
Security officials ordered the New Culture Forum shut down last
week as anti-government, according to a Beijing firm that hosted
the site. Police are hunting for its organizers, who include veteran
pro-democracy activists from the eastern province of Shandong.
http://www.mercurycenter.com/svtech/news/breaking/merc/docs/042828.htm
UK Linux group slams Sophos virus threat claims
Anti-virus software developer Sophos has been accused of spreading
fear, uncertainty and doubt over the safety of Linux systems by UK
pro-open source organisation NetProject. Sophos wrote to UK newspaper
Computer Weekly t'other week to claim that viruses targeting Linux
are already circulating. Not so, responded NetProject director Eddie
Bleasdale. Yes, anti-Linux viriuses can be written, but Linux, like
Unix, has sufficient systems in place to prevent unauthorised software
from running on any "correctly configured and administered Linux
computer".
http://www.theregister.co.uk/content/1/12545.html
Keep chemical spill info off Web
Fearing that the global reach of the Internet will prove too
helpful to terrorists, the Justice Department and the Environmental
Protection Agency have issued a final rule for keeping information
about potentially deadly chemical spills at U.S. industrial plants
off government Web pages. However, in an effort to inform the public
about chemical risks, the agencies propose creating a Web-based "risk
indicator system" that would tell people whether their homes, schools
or workplaces are in a "vulnerable zone" for a chemical spill.
http://www.fcw.com/fcw/articles/2000/0807/web-risk-08-11-00.asp
Despite warnings, e-mail hoaxes still fooling people
Telemarketing scams undoubtedly began just after the invention
of the telephone; e-mail hoaxes were no different. Along with the
convenience of e-mail came the scourge of those preying upon the
world's new interconnectedness. Messages offering everything from
medical advice to untold riches arrive from a friend, colleague or
loved one, appearing to be beneficial in nature. All they ask in
return is that you forward it to everyone you know, much like an
electronic chain letter. But before you send the message on its
way again, computer professionals say, "hold that click."
http://www.cnn.com/2000/TECH/computing/08/11/email.hoaxes/index.html
Weld Pond Says 'Talk to Hackers'
One of the original members of the L0pht speaks out on overcoming
stereotypes. When you hear the word "hacker," what image comes to
mind? Where did that image come from? The answer to that question
could be a problem-- because some hackers believe they are
misunderstood in the public view. Weld Pond, an original member of
the Boston hacker collective L0pht Heavy Industries and now a research
scientist at security firm @Stake (which merged with L0pht) says
there's a clear-cut way we can all change the perception of hackers.
http://www.zdtv.com/zdtv/cybercrime/chaostheory/story/0%2C9955%2C4436%2C00.html
---------------------------------------------------------------------
------------------
http://all.net/