www.faberbrent.com

Wednesday, 20 May 2009

So called "secret questions" are too easily guessed

We will see this week a new study showing how vulnerable our "secret questions" actually are.

Posted by www.faberbrent.com at 09:14 0 comments

Town Centre CCTV has little effect on crime

Home Office funded research shows what most security experts already knew. CCTV is not (and never was) a cure-all for the urban crime environment. 

It can be very effective when used correctly for a specific purpose, but anyone who has ever tried to use cctv to identify suspects will know most cameras are defeated by a baseball cap.

Hundreds of millions of pounds have been spent on urban cctv systems in recent years with very little solid data on it's effectiveness (but sure looks impressive when you see a control room with walls of screens). If you have a legacy cctv system and want to know if it doing all it, can contact us for impartial advice.

Posted by www.faberbrent.com at 09:06 0 comments

Austrian Government hide security vulnerabilities in Citizen Card

It has been revealed that the Austrian government has known abouut security vulnerabilities in its Citizen card since 2006. 

The real issue here is not that there are vulnerabilities in this system but to understand there are vulnerabilities in all systems. Therefore no single ID system will ever fix the security challenges they profess to address. A legitimate ID card is simply that, a legitimate card. It does not mean the person holding it is legitimate or the data on it is genuine. UK ID card fans please take note.

Posted by www.faberbrent.com at 08:57 0 comments

Personalities most likely to be victims of scammers

A new study by the Office of Fair Trading (OFT) has identified the 20% of people most likely to fall victim to scams and cons.

A very interesting study showing that likely candidates were often successful business men and people with extensive experience in the area the scams were targeted.

It is human nature that we can fall victim to cons (especially in a pressurised business environment where we encourage people to take any advantage) but this can be very costly if it is your companies funds or data that are the ultimate target. The two pillars to mitigate your risk are systemic controls and staff education. If you are concerned and need help contact FaberBrent.

Posted by www.faberbrent.com at 08:48 0 comments

Could GPS fail?

The Global Positioning System (GPS) is a free satellite service run by the US military.

Whilst it seems very unlikely there is a real problem it is an interesting to think of how many companies and individuals are reliant on a service with no contracts, SLA's or comebacks. One could imagine that this story is more about fundraising than anything else.

Posted by www.faberbrent.com at 08:43 0 comments

Tuesday, 19 May 2009

Secret taping in Valeo boardroom by former Chief Exec

Accusations and denials are flying regarding the 'secret' recording of boardroom meetings at major French car parts manufacturer Valeo.

Thierry Morin, the former chairman and chief exec does not deny the recording system but claims it was "unthinkable that no one else was aware". 

French Radio station RTL says that digital recording devices connected to the boardrooms conferencing system automatically activated when the mics switched on. The memory cards were then covertly removed after the meeting. Sounds a lot like a bugging device to us.

Conferencing equipment is a major vulnerability to your business privacy. It doesn't take much imagination to understand that several high-sensitivity microphones connected to a phone line (in other words a conference phone) can easily be manipulated to record/broadcast all of your meetings. Look out for the warning signs and contact FaberBrent to find out how to mitigate this risk.

Posted by www.faberbrent.com at 09:12 0 comments

Teens see hacking as a casual pastime

A report of 4000 14-18 year-olds shows some very surprising data.

20% have some 'advanced' hacking knowledge and a third of them sat they have used it.

66% say they have successfully hacked instant messaging and/or social networking accounts of people known to them.

Even allowing for teenage braggadocio these are still significant figures. What will it mean as this generation grows up?

Posted by www.faberbrent.com at 08:52 0 comments

Monday, 18 May 2009

Controversial children's database ContactPoint launches today

The government today launched ContactPoint, the much debated and delayed database of children's information.

The idea of the database is to allow all agencies involved in children's welfare to share information. There has been a very mixed reception to the database from child welfare bodies and charities.

Our fear is with the current track record of major government IT projects it is only a matter of time before the first breach/failure of the system, lets hope we are proved wrong.

Posted by www.faberbrent.com at 22:59 0 comments

MoD loses 32 computers and 20 USB memory sticks so far in 2009!

Some pretty shocking numbers that seem to have got very little press.

In the first 131 days of 2009, 4 desktop and 28 laptop pc's are missing from the MoD. Additionally 20 USB devices are missing. No mention is made regarding data but one could probably assume that at least some of these 52 devices contained sensitive information.

Posted by www.faberbrent.com at 22:32 0 comments

Saturday, 16 May 2009

Financial districts are wide open for Wifi hacking

A new survey of 6 US cities and London discovered an alarming number of unsecured and poorly secured wireless networks.

A shocking 57% had either no encryption or were using the older WEP system that can be easily cracked. If you want to know how to secure your systems contact FaberBrent.

Posted by www.faberbrent.com at 09:54 0 comments

Friday, 15 May 2009

Another reason why you should never use pirate software

Whilst I am sure none of you ever use pirate software, can you say the same for your employee's or children.

Apart from the legal and moral issues there is a very real threat of compromising your data from malicious code.

A recent pirate release of Windows 7 contained malicious code to build a bot-net army and was infecting more than 200 machines per hour.

Posted by www.faberbrent.com at 10:38 0 comments

10,000 medical records may have been compromised

Police are investigating a string of identity theft cases that all appear to have a common thread; the victims all had records at Johns Hopkins hospital in Maryland.

Once again the breach appears to be caused by an insider threat.

Posted by www.faberbrent.com at 10:33 0 comments

$500K netted in NYC ATM fraud

It seems that we still do not close the doors even when a threat is well known.

Another skim and cam ATM fraud has been committed in NYC netting $500K.

Posted by www.faberbrent.com at 10:23 0 comments

Intelligent CCTV to spot retail fraud

StopLift Inc are trialing a new system that claims to be able to mathematically spot the signs of "sweethearting". This is when the checkout person obscures the bar code of some of the items, passing them free of charge to their accomplice.

This sounds like quite a challenge for a piece of software and the accuracy of its decision making will be under great scrutiny but there can be no doubt that we will see more behaviour based CCTV systems.

Posted by www.faberbrent.com at 10:16 0 comments

EU looses nerve for data breach disclosure law

The EU have been unable to agree a new disclosure law. Even though this legislation was only for communication and Internet providers they were still unable to reach an agreement.


We say DISCLOSE ALL DATA BREACHES NOW, the campaign starts here.
Posted by www.faberbrent.com at 10:12 0 comments

Death by Facebook!

A very real demonstration of the dangers of exposing too much personal data on-line.

Posted by www.faberbrent.com at 10:06 0 comments

Despite increase in cases there is no increased budget for e-crime unit

Once again the goverment demonstraits that it puts no priority on our privacy by refusing to increase the budget for the (already underfunded) Police Central e-crime unit.

Posted by www.faberbrent.com at 10:03 0 comments

Social engineering and confidence tricks - the easiest way to obtain passwords?

This is a great article on the BBC showing how easy it is to obtain passwords and other confidential information by using basic social engineering and confidence tricks.

A recent report by PGP showed that 70% of all data breaches were down to insider failings, not outside hackers.

How much of your ITSec budget is spent educating your people to avoid being part of the 70%?

Posted by www.faberbrent.com at 09:48 1 comments

Sunday, 10 May 2009

Scope Phase II scrapped - multi-million pound secret IT communications system scrapped by British government

It has been revealed that the government have had to scrap another major IT project. This one was a secret communications network called Scope and the plug has been pulled during the attempted implementation of phase II.

Scope was intended to improve communications between agencies internationally. 

Posted by www.faberbrent.com at 08:58 0 comments

Friday, 8 May 2009

US top secret missile defence system details on EBay hard drive

For the fourth time BT's information research team have carried out a random study of second-hand computer equipment to see if there is any significant data to be retrieved.

Some of the data found included patent medical records, security logs from embassy's, trading figures for a major fashion house and automotive manufacturer and details of a 50 billion proposed currency exchange.

Companies still do not grasp the importance of hard-drive disposal, if you need help contact FaberBrent.

Posted by www.faberbrent.com at 09:56 0 comments
Subscribe to: Posts (Atom)