Author: admini

The Homeland Security Department has also stopped posting documents with security information, either in full or in part, on the Internet until the TSA review is complete, Mr. Heyman told the Senate Homeland Security and Governmental Affairs committee.

Among many sensitive sections, the document outlines who is exempt from certain additional screening measures, including U.S. armed forces members, governors and lieutenant governors, the Washington, D.C., mayor and their immediate families.

It also offers examples of identification documents that screeners accept, including congressional, federal air marshal and CIA ID cards; and it explains that diplomatic pouches and certain foreign dignitaries with law enforcement escorts are not subjected to any screening at all.

http://www.post-gazette.com/pg/09344/1019885-84.stm

The service was launched by a well-known security researcher who goes by the name of Moxie Marlinspike.

Hackers have known for some time that these WPA-PSK networks are vulnerable to what’s called a dictionary attack, where the hacker guesses the password by trying out thousands of commonly used passwords until one finally works.

WPA Cracker customers get access to a 400-node computing cluster that employs a custom dictionary, designed specifically for guessing WPA passwords.

If they find the $34 price tag too steep, they can use half the cluster and pay $17, for what could be a 40-minute job.

The service could save security auditors a lot of time, but it will probably make it easier for senior management to understand the risks they’re facing, said Robert Graham, CEO of penetration testing company Errata Security.

http://news.techworld.com/security/3208347/new-cloud-hacking-service-steals-wi-fi-passwords/

BSI explained the plan at the Information Technology Summit, an annual meeting between industry chiefs and Chancellor Angela Merkel.

The survey offered a ranking of 15 nations’ competitiveness in the overall information and communications technology field, awarding the United States the top score.

Even more damning were the judgements of Chinese and US experts asked to say where they had noticed excellence in Germany.

http://in.news.yahoo.com/43/20091208/838/tbs-germany-plans-internet-virus-phoneca.html

The United States marked October as a month of cybersecurity awareness, but analysts said the rest of the world still needs to catch up on the full implications of new security risks posed by technologies that are open to attack by hostile forces.

This [enhanced information exchange betweem the suppler and the customer] will enable utilities to combat fraud, introduce effective real-time management of the grid and slow down their investment in new energy generation capabilities, a DS2 study said.

However, any vulnerability in the smart grid could have an impact on that utility’s energy distribution grid, which could result in power cuts, and could be used by hackers and fraudsters to gain access to consumers’ private personal information.

So, alongside high-speed communications and robust features, what the smart grid also requires is cybersecurity — the protection required to ensure the confidentiality, integrity and availability of the electronic information communication system.

It said that expansion of the networks increases the complexity of the grid, which could expose it to potential attackers and unintentional errors.

http://www.upi.com/Business_News/Security-Industry/2009/12/08/Smart-grids-may-be-prone-to-cyberattacks/UPI-30271260314731/