National Infrastructure Protection Center
NIPC Daily Open Source Report for 9 Dec 2002
Daily Overview
. The National Infrastructure Protection Center has released
Information Bulletin 01-011: Software Firm Investigation Serves as a
General Information Security Reminder. (See item 2)
.
National Infrastructure Protection Center
NIPC Daily Open Source Report for 10 December 2002
Daily Overview
. CERT has released Vulnerability Note VU#961489 - University of
Washington IMAP Server vulnerable to buffer overflow after login. (See
item 15)
. CBS News reports United
-Original Message-
From: UNIRAS (UK Govt CERT)
Sent: 10 December 2002 15:47
To: [EMAIL PROTECTED]
Subject: UNIRAS Brief - 440/02 -Advanced Fee Fraud (4-1-9)
-BEGIN PGP SIGNED MESSAGE-
-
--
National Infrastructure Protection Center
NIPC Daily Open Source Report for 12 December 2002
Daily Overview
. The Wichita Business Journal reports SC Telecom is working on
fixing the remaining internal problems in its system after overseas
hackers (from Asia and the Middle East) broke
REVIEW: The Art of Deception, Kevin D. Mitnick/William L. Simon
BKARTDCP.RVW 20021028
The Art of Deception, Kevin D. Mitnick/William L. Simon, 2002,
0-471-23712-4, U$27.50/C$39.95/UK#19.95
%A Kevin D. Mitnick
%A William L. Simon
%C 5353 Dundas Street West, 4th Floor, Etobicoke, ON
National Infrastructure Protection Center
NIPC Daily Open Source Report for 11 December 2002
Daily Overview
. CERT has announced Vulnerability Note VU#630355 - Netscape and
iPlanet Enterprise Servers fail to sanitize log files before they are
displayed using the administration client.
-Original Message-
From: UNIRAS (UK Govt CERT)
Sent: 13 December 2002 10:19
To: [EMAIL PROTECTED]
Subject: UNIRAS Brief - 444/02 - Microsoft - Flaw in Microsoft VM Could
Enable System Compromise
-BEGIN PGP SIGNED MESSAGE-
-
National Infrastructure Protection Center
NIPC Daily Open Source Report for 13 December 2002
Daily Overview
. Microsoft has released Security Bulletin MS02-069: Flaw in
Microsoft VM Could Enable System Compromise (Critical). (See item 15)
. Microsoft has released Security Bulletin
==
@@@ @@ @
@ @ @ @ @@ @ @ @ @ @@
@@@@ @ @ @ @@@ @@@ @
@ @ @ @ @
CRYPTO-GRAM
December 15, 2002
by Bruce Schneier
Founder and CTO
Counterpane Internet Security, Inc.
[EMAIL PROTECTED]
http://www.counterpane.com
A free monthly newsletter providing summaries,
National Infrastructure Protection Center
NIPC Daily Open Source Report for 16 December 2002
Daily Overview
. CNN reports President Bush announced Friday that he is ordering
500,000 military personnel and others in high-risk parts of the world
receive the smallpox vaccine. (See item 14)
_
London, Monday, December 16, 2002
_
INFOCON News
_
London, Tuesday, December 17, 2002
_
INFOCON News
_
London, Wednesday, December 18, 2002
_
INFOCON News
National Infrastructure Protection Center
NIPC Daily Open Source Report for 18 December 2002
Daily Overview
. CERT has received reports of increased scanning of port 445.
This may be evidence of the propagation of a worm known as W32/Lioten.
(See item 15)
. Infoworld reported a
-Original Message-
From: Opscen (OCIPEP / GEOCC) [mailto:[EMAIL PROTECTED]]
Sent: 16 December 2002 23:09
To: OCIPEP EXTERNAL DISTRIBUTION LISTS
Subject: OCIPEP AV02-053
La version française suit
THE OFFICE OF CRITICAL INFRASTRUCTURE PROTECTION AND EMERGENCY
PREPAREDNESS
See also Beware the Latest MP3 Worms
http://www.wired.com/news/technology/0,1282,56924,00.html
-Original Message-
From: UNIRAS (UK Govt CERT) [mailto:[EMAIL PROTECTED]]
Sent: 19 December 2002 10:43
To: [EMAIL PROTECTED]
Subject: UNIRAS Brief - 461/02 - Microsoft - Unchecked Buffer in
_
London, Thursday, December 19, 2002
_
INFOCON News
National Infrastructure Protection Center
NIPC Daily Open Source Report for 19 December 2002
Daily Overview
. ZDNet reports several critical vulnerabilities have been found
in the MySQL database system, a light database package commonly used in
Linux environments but which runs also on
National Infrastructure Protection Center
NIPC Daily Open Source Report for 20 December 2002
Daily Overview
. CERT has released Advisory CA-2002-3: Buffer Overflow in
Microsoft Windows Shell. (See item 20)
. Foundstone reports a buffer overflow exists in Microsoft
Internet
Risk management perfect tool for holiday, winter season
by Lt. Col. Juan Gaud
Electronic Systems Center chief of safety
12/18/2002 - HANSCOM AIR FORCE BASE, Mass. (AFPN) -- In our haste during
this time o! f the year we often make decisions without giving much
thought to the risks involved or
_
London, Friday, December 20, 2002
_
INFOCON News
(Usually I send my detailed comments only onto the IWS Limited List, but as the paper
is so interesting I make an exception. I like the paper, even though the definition of
Cyberterrorism is not the greatest one and I do not like the bit about the WWII as it
is too simplistic ('know thy
(The study is available at
http://books.nap.edu/books/0309087023/html/index.html. WEN)
Study Finds Internet Showed Resilience in Terrorist Attacks
(Analysis explores how to brace information technologies for future
attacks) (1050)
The Internet sustained minimal damage when terrorists attacked
20 December 2002
The Military View of Peace and Security, by General Richard B. Myers
(Access to advanced technology increases threat environment) (3020)
(The following article by General Richard Myers, chairman of the Joint
Chiefs of Staff, appears in the International Information Program
I wish everyone a Merry Christmas.
WEN
***
NORTH AMERICAN AEROSPACE
DEFENSE COMMAND
Directorate of Public Affairs, Headquarters, North American Aerospace
Defense Command
250 S. Peterson Blvd, Suite 116, Peterson AFB, Colo. 80914-3190
Phone: (719) 554-6889 DSN: 692-6889
National Infrastructure Protection Center
NIPC Daily Open Source Report for 26 December 2002
Daily Overview
. Internet Security Systems has raised its AlertCon Internet
threat indicator to Level 2, in part due to ISS observations of multiple
distributed denial of service (DDOS) attacks
National Infrastructure Protection Center
NIPC Daily Open Source Report for 30 December 2002
Daily Overview
. SecuriTeam reports that certain Cisco products containing
support for the Secure Shell (SSH) server are vulnerable to a Denial of
Service (DoS) if the SSH server is enabled on the
National Infrastructure Protection Center
NIPC Daily Open Source Report for 31 December 2002
Daily Overview
. The Washington Post reports that U.S. intelligence officials
have identified approximately 15 cargo freighters around the world that
they believe are controlled by al Qaeda or
National Infrastructure Protection Center
NIPC Daily Open Source Report for 2 January 2003
Daily Overview
. The Stars and Stripes reports the enrollment and claim files of
550,000 beneficiaries of the military's managed-care medical network
were stolen on December 14. (See item 8)
.
Dear All,
The web site has been on hold for a very long time as I could not afford
the bandwidth anymore. Luckily, I have final managed to get a secure
server to host the site and mailing list(s) and about a month ago I
redesigned the site with a friend of mine to make it more user-friendly
and
101 - 131 of 131 matches
Mail list logo