[iwar] Newsbytes

From: Fred Cohen (fc@all.net)
Date: 2002-06-17 22:32:01


Return-Path: <sentto-279987-4840-1024378290-fc=all.net@returns.groups.yahoo.com>
Delivered-To: fc@all.net
Received: from 204.181.12.215 [204.181.12.215] by localhost with POP3 (fetchmail-5.7.4) for fc@localhost (single-drop); Mon, 17 Jun 2002 22:33:10 -0700 (PDT)
Received: (qmail 31658 invoked by uid 510); 18 Jun 2002 05:31:36 -0000
Received: from n29.grp.scd.yahoo.com (66.218.66.85) by all.net with SMTP; 18 Jun 2002 05:31:36 -0000
X-eGroups-Return: sentto-279987-4840-1024378290-fc=all.net@returns.groups.yahoo.com
Received: from [66.218.67.201] by n29.grp.scd.yahoo.com with NNFMP; 18 Jun 2002 05:31:31 -0000
X-Sender: fc@red.all.net
X-Apparently-To: iwar@onelist.com
Received: (EGP: mail-8_0_3_2); 18 Jun 2002 05:31:30 -0000
Received: (qmail 23765 invoked from network); 18 Jun 2002 05:31:29 -0000
Received: from unknown (66.218.66.217) by m9.grp.scd.yahoo.com with QMQP; 18 Jun 2002 05:31:29 -0000
Received: from unknown (HELO red.all.net) (12.232.72.152) by mta2.grp.scd.yahoo.com with SMTP; 18 Jun 2002 05:31:30 -0000
Received: (from fc@localhost) by red.all.net (8.11.2/8.11.2) id g5I5W1a01914 for iwar@onelist.com; Mon, 17 Jun 2002 22:32:01 -0700
Message-Id: <200206180532.g5I5W1a01914@red.all.net>
To: iwar@onelist.com (Information Warfare Mailing List)
Organization: I'm not allowed to say
X-Mailer: don't even ask
X-Mailer: ELM [version 2.5 PL3]
From: Fred Cohen <fc@all.net>
X-Yahoo-Profile: fcallnet
Mailing-List: list iwar@yahoogroups.com; contact iwar-owner@yahoogroups.com
Delivered-To: mailing list iwar@yahoogroups.com
Precedence: bulk
List-Unsubscribe: <mailto:iwar-unsubscribe@yahoogroups.com>
Date: Mon, 17 Jun 2002 22:32:01 -0700 (PDT)
Subject: [iwar] Newsbytes
Reply-To: iwar@yahoogroups.com
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
X-Spam-Status: No, hits=3.2 required=5.0 tests=RISK_FREE,FREE_MONEY,DIFFERENT_REPLY_TO version=2.20
X-Spam-Level: ***

Denial-of-service attack strikes Fox News The home page for Fox News was
hit by a denial-of- service attack Friday, leaving the site periodically
inaccessible, the company confirmed.  As of 11:30 a.m.  PST, News
Corp.'s FoxNews.com was noticeably altered, with graphics and
advertisements missing.  Links to news stories still worked, but often
times the site's home page was inaccessible.  A Fox News representative
confirmed that the site was the victim of a denial- of-service attack
but did not say how long the site had been crippled or what the company
is doing to address the problem. 
http://zdnet.com.com/2110-1105-936091.html

Microsoft Ships Nimda To Korea in .NET Last September's super virus
comes free with the Korean-language version of Visual Studio .NET. 
Microsoft warned Thursday that copies of its Visual Studio .NET
development kit designed for Korea are infected with the Nimda worm. 
The company recommended that affected sites immediately install a
special program, available from its site, that is designed to clean the
infected files.  According to Microsoft, the infected files contain an
"inert" copy of the Nimda virus, which is "extremely" unlikely to be
activated by users.  http://online.securityfocus.com/news/480
http://zdnet.com.com/2251-1110-935611.html
http://news.com.com/2100-1001-935994.html

Spain May Force ISPs to Keep Tabs A proposal introduced in the Spanish
Senate would force ISPs to keep records of their customers' Internet
activity for a year, and make that information available to law
enforcement for criminal investigations.  Failure to do so would incur
fines of up to $500,000.  The measure, which is slated for vote next
week, is an attempt to bring the country into compliance with a European
Parliament directive advising the 15 European Union member countries to
keep detailed records of communications =96- including Internet, e-mail,
phone, fax and pager data -=96 in an effort to thwart future terrorist
attacks.  http://www.wired.com/news/business/0,1367,53195,00.html

Cult hero holds domain hostage The administrator of South Africa's web
addresses said on Thursday he had hidden the key to the country's ".ZA"
domain network abroad to prevent any government interference in access
to the Internet.  South Africa's parliament has given initial approval
to a law that will allow the government to take control of the country's
Internet address administration.  But critics, including ZA domain-name
administrator Mike Lawrie, say the government has no right to stage the
takeover and warn it could collapse the domestic Internet structure. 
http://zdnet.com.com/2100-1105-935968.html
http://news.zdnet.co.uk/story/0,,t269-s2111887,00.html

Feds set up security alliance Three federal agencies have formed an
alliance to help small businesses protect their information technology. 
The National Infrastructure Protection Center, a part of the Federal
Bureau of Investigation, the U.S.  Small Business Administration, and
the Commerce Department's National Institute of Standards and Technology
will provide computer and IT security to the companies.  The agencies
will sponsor a series of workshops in Washington, San Francisco and
Chicago to help train small-business owners to identify cost effective
security products, processes and services. 
http://zdnet.com.com/2110-1105-935951.html

Survey says firms need more protection from Internet risks Despite
increased interest in security since Sept.  11, companies are not doing
enough to protect themselves from risks on the Internet, according to a
survey released Wednesday by The St.  Paul Cos.  The lack of attention
to high-tech risks, such as computer viruses and theft of confidential
information, carries a high cost and could put some smaller companies
out of business, said Bill Rohde, president of global technology
underwriting for the St.  Paul-based commercial insurer. 
http://www.siliconvalley.com/mld/siliconvalley/news/editorial/3465285.htm

Wireless spectrum sale may be delayed Lawmakers have cut a deal to
postpone most of the sale of valuable wireless spectrum just days before
the government is slated to begin the auction, sources familiar with the
situation said Friday.  The Federal Communications Commission is poised
to begin auctioning 758 wireless licenses on Wednesday, but the sale has
attracted few big bidders or large wireless carriers because of concerns
about when the airwaves would be available. 
http://news.com.com/2100-1033-936161.html

Info sharing bill advances Working with unusual speed, the House
Judiciary Committee approved a bill on June 13 to make it easier for
federal agents to share intelligence tips with their state and local
counterparts.  The Homeland Security Information Sharing Act is one
piece in what is expected to be a growing arsenal of legislation to
protect Americans by relying on data mining to share details about
suspected terrorists.  It still faces debate in the Senate.  "State and
local officials will be the first to respond to a terrorist threat,"
said Rep.  James Sensenbrenner (R-Wis.), the panel's chairman.  "We must
provide a way to get this information quickly."
http://www.fcw.com/fcw/articles/2002/0610/web-bill-06-14-02.asp

Hackers cripple US news sites DoS attacks take out Foxnews and ABCNEWS
Foxnews.com, theweatherchannel.com, espn.com and ABCNEWS.com have
suffered denial of service attacks which disrupted services to hundreds
of thousands of internet users.  The attacks began on Thursday and
caused intermittent outages and slowdowns on the sites before normal
service was restored on Friday night. 
http://www.vnunet.com/News/1132665

Beijing closes unlicensed Internet cafes after fire Beijing officials
have closed the city's 2,400 Internet cafes after a fire at an
unlicensed cafe killed 24 people, a move that could temporarily keep
millions off the Internet.  While a city official in the Chinese capital
said Monday that the move was motivated strictly by safety concerns
following Sunday's fire, the closures coincide with a crackdown on
Internet cafes nationwide meant to tighten Chinese government control of
Web use. 
http://www.nandotimes.com/technology/story/437081p-3499358c.html
http://www.wired.com/news/politics/0,1283,53232,00.html
http://www.cnn.com/2002/WORLD/asiapcf/east/06/16/beijing.fire/index.html
http://www.siliconvalley.com/mld/siliconvalley/news/editorial/3486948.htm
http://news.zdnet.co.uk/story/0,,t269-s2111915,00.html
http://news.com.com/2100-1023-936773.html
http://www.theregister.co.uk/content/6/25747.html

White House cyber czar maps out intelligence and security strategy In
announcing the president's proposal for a new Department of Homeland
Security last week, Bush administration officials said protecting
information networks from electronic attacks and conducting more
thorough analyses of intelligence were among its top priorities.  Under
the new department, both of these functions would be housed in the same
division, covering "information analysis and infrastructure protection."
http://www.govexec.com/dailyfed/0602/061702h1.htm

Colleges Are Defending Against Computer Hacker Attacks One incident that
set off alarms at many schools was an attack at Georgia Tech, where
hackers broke into the network and dumped 350 GB of information,
including sensitive credit data.  Colleges and universities continue to
be prime targets for hackers because they have vast computer networks
and a reputation, at least, for being easier pickings than corporate
systems.  And with the number of overall attacks growing every year,
schools in Minnesota and across the nation have had to work harder to
thwart the intruders.  http://www.newsfactor.com/perl/story/18250.html

Threat of cyberterror ignored Valley companies not serious about
high-tech security.  This past week's headlines about the arrest of a
man suspected of plotting to attack the United States with a "dirty"
radioactive bomb reinforces the point that terrorist attacks can take
many forms.  Attacks on computer networks are one such form.  But
businesses, while aware of the risk, are slow to pay money or attention
to cyber-security, a new report shows.  (Business Journal article, free
registration required)
http://www.bizjournals.com/sanjose/stories/2002/06/17/story4.html

Companies doing little to protect against cyber risks Companies that are
doing business on the Internet aren't taking enough precautions to
protect themselves against risks such as a virus invading a company's
computers or hackers causing damage or stealing customer and other
confidential data.  A survey conducted for insurance company The St. 
Paul Cos.  in St.  Paul found that risk managers at companies are
usually much less aware of outside threats than information technology
managers.  (Business Journal article, free registration required)
http://twincities.bizjournals.com/twincities/stories/2002/06/10/daily28.html

FedCIRC will work with university's CERT The Federal Computer Incident
Response Center is putting together a pilot to stop hacker attacks on
agency Web sites.  FedCIRC, a General Services Administration unit that
is to be part of the proposed Homeland Security Department, is joining
with Carnegie Mellon University's CERT Coordination Center to collect
and analyze data from sensors in agency firewalls and intrusion
detection systems.  . 
http://www.gcn.com/vol1_no1/daily-updates/19008-1.html

Louder calls to sue the software makers Microsoft, a company known for
its popular software and its very deep pockets--but also glitches in
some products--is a liability lawyer's dream: the big game target that
always gets away.  For decades, software makers have been protected from
lawsuits as U.S.  courts have struggled with the task of defining
something as abstract and fast- changing as computer code. 
http://zdnet.com.com/2100-1104-936619.html
Iowa lets consumers sue Microsoft
http://zdnet.com.com/2100-1104-936621.html

Security Threat Or False Alarm? Improper programming around a
little-known but ubiquitous communication protocol used in networking
gear, Abstract Syntax Notation One, or ASN.1, has the government,
networking manufacturers, security researchers, and IT executives
worried that networks--including key parts of the Internet, phone
systems, and the electrical power grid--may be vulnerable to disruptive
buffer overflow and malformed packet attacks. 
http://www.informationweek.com/story/IWK20020614S0019

O Charney, Where Art Thou? Microsoft desperately needed a reformer as
security chief.  Instead, it looks like it got a talking head.  Well,
it's been 10 weeks now, so I thought it would be a good time to review
all the new security strategies and tactics that Scott Charney,
Microsoft's Chief Security Strategist, has been hard at work laying out. 
Kind of reads like "Clinton's Accomplishments While Wearing Pants." Okay
-- so maybe that is not entirely fair.  After all, it has only been two
months.  What can we really expect?
http://online.securityfocus.com/columnists/88

U.S.  to implement wireless emergency telecom network The U.S. 
government will establish an emergency wireless communications system
for the nation's top decision makers by the end of the year, a Bush
administration official said last week.  Implementation of the Wireless
Priority Services program, an effort of the 22-agency National
Communications System (NCS), is being sped up since the Sept.  11
terrorist attacks, according to Brenton Greene, the NCS deputy manager. 
http://www.govexec.com/dailyfed/0602/061702td3.htm

------------------------ Yahoo! Groups Sponsor ---------------------~-->
Free $5 Love Reading
Risk Free!
http://us.click.yahoo.com/3PCXaC/PfREAA/Ey.GAA/kgFolB/TM
---------------------------------------------------------------------~->

------------------
http://all.net/ 

Your use of Yahoo! Groups is subject to http://docs.yahoo.com/info/terms/ 



This archive was generated by hypermail 2.1.2 : 2003-08-24 02:46:32 PDT