DAILY BRIEF Number: DOB02-123 Date: 14 August 2002 http://www.ocipep.gc.ca/DOB/DOB02-123_e.html
NEWS U.S. Department of State Endorses OECD Cybersecurity Guidelines The U.S. State Department said that it will encourage all levels of government, businesses and individuals to implement the Organization for Economic Cooperation and Development's (OECD) new cybersecurity guidelines. These guidelines were made with the intent of ensuring security in the Information and Technology (IT) environment. The U.S. State Department, which the guidelines describe as a partisan of a "culture of security," is presently in the process of developing outreach plans that will enable them to get the message across. (Source: Government Computer News, 12 August 2002) Click here for the source article Comment: Industry Canada played an active role in developing the OECD guidelines, which the Treasury Board Secretariat (TBS) has incorporated into its draft Management of IT Security standard. The latter document will be submitted shortly for review by Government of Canada departments and final approval given by the Information Management Board of TBS. The OECD guidelines are available at: http://www.oecd.org/EN/document/0,,EN-document-0-nodirectorate-no-12-33186-0,00. html Residents of East Montreal Left Without Power and Water Since August 12, approximately 22,000 residents of an east Montreal neighbourhood have been without running water after a major water-main ruptured. Most people who had to be evacuated have found shelter. (Source: CBC News, 13 August 2002) Click here for the source article Comment: For more information regarding this incident, click on the Incident Mapping button at the top of the OCIPEP Daily Brief. IN BRIEF Winnipeg West Nile Virus Mosquitos Isolated Scientists claim that the species of mosquitoes carrying the West Nile virus in Winnipeg have been isolated. Officials report that the infected mosquitoes have now evolved into a "non-biting" stage and that there are no further plans to fog mosquitoes this summer. (Source: CBC News, 13 August 2002) Click here for the source article Wireless Network Attacks on the Rise Attacks on wireless networks are reported to be intensifying. Identity thefts and denial-of-service attacks are common, especially on "enterprises that have deployed 802.11 infrastructure," according to an analyst with Allied Business Intelligence. (Source: 80211-planet.com, 13 August 2002) Click here for the source article White-Hat Hate Crimes on the Rise It appears that a new trend is emerging involving attacks aimed at white-hats and prominent information security professionals. (Source: Wired News, 13 August 2002) Click here for the source article CYBER UPDATES See: What's New for the latest Alerts, Advisories and Information Products Threats Symantec reports on Prophecy.Worm, which is a DOS executable that propagates via Outlook e-mail. It arrives with the subject line "I Finally Found it!" and the attachment "Prophecy.exe". http://securityresponse.symantec.com/avcenter/venc/data/prophecy.worm.html Symantec reports on Wyx.C (b), which is a polymorphic virus that infects boot sectors on local hard disks and floppy disks. It carries no payload, but may destroy FAT32 partitions when infecting them. http://securityresponse.symantec.com/avcenter/venc/data/wyx.c.html Symantec reports on Backdoor.Osirdoor, which is a Trojan horse that gives an attacker unauthorized access to a compromised computer. http://securityresponse.symantec.com/avcenter/venc/data/backdoor.osirdoor.html Vulnerabilities Cisco reports on remotely exploitable vulnerabilities in Cisco VPN Client (multiple versions and platforms) that could prevent the program from functioning correctly. Follow the link for upgrade information. http://www.cisco.com/warp/public/707/vpnclient-multiple-vuln-pub.shtml Patches: A patch has been released for Novell iManager eMFrame v 1.2.1 (SecuriTeam). http://www.securiteam.com/securitynews/5RP0C0U80Y.html Additional vulnerabilities were reported in the following products: SGI Bulk Data Services (BDS) confidential information exposure vulnerability (SecurityFocus). http://online.securityfocus.com/advisories/4378 Internet Key Exchange (IKE) (multiple vendors) buffer overflows and denial-of-service vulnerabilities (CERT/CC). http://www.kb.cert.org/vuls/id/287771 Tools Nikto 1.20 is a PERL, open source web server scanner that supports SSL. http://www.cirt.net/code/nikto.shtml CONTACT US For additions to, or removals from the distribution list for this product, or to report a change in contact information, please send to: Email: [EMAIL PROTECTED] For urgent matters or to report any incidents, please contact OCIPEP’s Emergency Operations Centre at: Phone: (613) 991-7000 Fax: (613) 996-0995 Secure Fax: (613) 991-7094 Email: [EMAIL PROTECTED] For general information, please contact OCIPEP’s Communications Division at: Phone: (613) 991-7035 or 1-800-830-3118 Fax: (613) 998-9589 Email: [EMAIL PROTECTED] Web Site: www.ocipep-bpiepc.gc.ca Disclaimer The information in the OCIPEP Daily Brief has been drawn from a variety of external sources. Although OCIPEP makes reasonable efforts to ensure the accuracy, currency and reliability of the content, OCIPEP does not offer any guarantee in that regard. The links provided are solely for the convenience of OCIPEP Daily Brief users. OCIPEP is not responsible for the information found through these links. IWS INFOCON Mailing List @ IWS - The Information Warfare Site http://www.iwar.org.uk