Home / Blog / Archives for Android Forensics
 January 19th, 2012 by lhaas
We’ve been preaching for years that organizations needs to take a more proactive approach to their security. Services, such as our liveForensics, add additional layers of security to protect against such breaches.
Unfortunately, the Postbank’s fraud detection system hasn’t performed as it should, and the crime was discovered only after everyone returned to [...]
November 14th, 2011 by lhaas
Closing out a two-year investigation, U.S. law enforcement has reportedly shut down a huge Internet fraud scheme centered in Estonia that it says “injected malware in more than four million computers in over 100 countries while generating $14 million in illegitimate income.” Infected computers include over 500,000 U.S. computers, including some belonging to [...]
October 11th, 2011 by lhaas
A recent study shows that mobile users are getting hacked at high rates. And as many as 62% aren’t even aware that they are even at risk.
The results of a survey presenting statistics on the theft, abuse and eventual recovery of Gmail, Yahoo, Hotmail and Facebook accounts, shows that:
Less than one-third [...]
September 26th, 2011 by lhaas
Three new bills strengthening data breach security notification regulations bring us a step closer to Federal standards. The bills (1) require businesses to develop data privacy and security plans; (2) set a federal standard for notifying individuals of breaches of sensitive personally identifiable information; and (3) focus the Computer Fraud and Abuse Act statute more narrowly on [...]
September 12th, 2011 by lhaas
A medical privacy breach led to the public posting on a commercial Web site of data for 20,000 emergency room patients at Stanford Hospital in Palo Alto, Calif., including names and diagnosis codes, the hospital has confirmed. The information stayed online for nearly a year.
via Patient Data Posted Online in Major Breach of [...]
September 1st, 2011 by lhaas
On July 19th 2011, DigiNotar detected an intrusion into its Certificate Authority (CA) infrastructure, which resulted in the fraudulent issuance of public key certificate requests for a number of domains, including Google.com.
Once it detected the intrusion, DigiNotar has acted in accordance with all relevant rules and procedures. At that time, an external [...]
August 30th, 2011 by lhaas
Roger A. Grimes warns: you’re only as strong as your weakest link. Have your partners and vendors undergone a security audit? Have you?
The successful hack attacks on RSA and Sony have served as wake-up calls to the world’s CEOs. Both attacks, aptly dubbed “reputational events,” have resulted in hundreds of millions — potentially billions — of dollars [...]
August 4th, 2011 by lhaas
Charlie Miller of Accuvant Labs responds to a question on the Defenders Dilemma:
I have to say, things are a bit bleak when you put it that way. There will always be vulnerabilities and there will always be criminals, so it’s hard to figure the way out. Especially as end users there is [...]
July 25th, 2011 by lhaas
The European Commission is examining whether additional rules are needed on personal data breach notification in the European Union.
Telecoms operators and Internet service providers hold a huge amount of data about their customers, including names, addresses and bank account details. The current ePrivacy Directive requires them to keep this data secure [...]
July 22nd, 2011 by lhaas
Legislation cracking down on rogue websites could inadvertently help hackers who have struck major corporate and government targets in recent weeks, a group of computer science experts said on Thursday.
“America is getting hacked,” security consultant Dan Kaminsky said at a Center for Democracy and Technology briefing. “On a deep architectural level, we [...]
|
|
