jump to navigation

Update on GlobalRiskInfo.com – Facebook, SPJ May 7, 2012

Posted by Chris Mark in News.
Tags: , , , , ,
add a comment

I realized that I was getting quite a few readers from Facebook so I took the plunge an have set up a Facebook page for GlobalRiskInfo.com.  If you are so inclined, please take a spin over to my page on Facebook.

In addition, since I talk enough about ethical journalism, I thought it prudent to put my money where my big mouth is.  I am proud to say that I joined, and was accepted into the Society of Professional Journalists.    Now we are cooking with fire!  Watch out cuz here comes my Pulitzer prize!! 😉

“Poisoned Apple?” – OSX Lion Encryption Passwords Insecure May 7, 2012

Posted by Chris Mark in cybersecurity, Industry News, InfoSec & Privacy, PCI DSS.
Tags: , , , , , , , , ,
add a comment

For years many Apple purists (I used to be one) have been touting the inherent security of the Apple operating system.  According to Techcrunch in February, 2012 it was discovered that OSX Lion (the newest OS from Apple) had a major security weakness and released widely within the last few days.  It was disclosed that the FileVault encryption passwords are now visible in plain text outside of a computer’s encrypted area.  This effectively renders the encryption useless as the keys (the passwords) are not secure.  While it was originally believed that the vulnerability as specific to the encrypted File Vault solution, it appears now that the vulnerability is larger…potentially much larger.  Sophos Naked Security blog states: “Anyone with access to the disk can read the file containing the password and use it to log into the encrypted area of the disk, rendering the encryption pointless and permitting access to potentially sensitive documents. This could occur through theft, physical access, or a piece of malware that knows where to look.”    Key management and password security continue to be the weakest link in most encryption implementations.

“Another One Bites the Dust”…Sarkozy out as France’ President…Socialist Hollande in May 6, 2012

Posted by Chris Mark in Politics.
Tags: , , , , , ,
add a comment

In what is proving to be a very interesting Sunday in the news, France has elected Socialist Francoise Hollande as president and voted out Nicolas Sarkozy.  Likely surprising to many American’s, Hollande will be the nation’s first left-wing president since Francois Mitterrand left office in 1995.  That being said, one of Hollande’ promises is to tax the “rich” at 75% of income.  Sarkozy’s defeat marks the latest — and most significant — of at least half a dozen European leaders swept from office during the eurozone economic crisis, including the Greek and Italian prime minister.

This is an interesting time in Global Politics.  While the Arab Spring seemed to signal a change in the Middle East, Europe has been moving, as well.  (more…)

Airstrike Kills Al Qaeda Leader wanted in USS Cole Bombing May 6, 2012

Posted by Chris Mark in Industry News, Risk & Risk Management, terrorism.
Tags: , , , , , ,
add a comment

Foxnews reported that an airstrike on Sunday killed an Al Qaeda leader on the FBI’s most wanted list for the 2000 bombing of the USS Cole.  According to Foxnews: ” Fahd al-Quso was hit by a missile as he stepped out of his vehicle, along with another Al Qaeda operative in the southern Shabwa province, Yemeni military officials said. They were speaking on condition of anonymity in accordance with military regulations.” 

“Al-Quso, 37, was on the FBI’s most wanted list, with a $5 million reward for information leading to his capture. He was indicted in the U.S. for his role in the 2000 bombing in the USS Cole in Aden, Yemen, in which 17 American sailors were killed and 39 injured. (more…)

ALERT: CyberAttack Underway Against US Gas Piplines May 6, 2012

Posted by Chris Mark in cybersecurity, Industry News, InfoSec & Privacy, Risk & Risk Management, terrorism.
Tags: , , , , , , ,
1 comment so far

According to stories on MSNBC, CNN, and other major outlets, “A major cyber attack is currently under way aimed squarely at computer networks belonging to US natural gas pipeline companies, according to alerts issued to the industry by the US Department of Homeland Security.”   On March 29th, 2012 the US Department of Homeland Security issued 3 confidential Amber Alerts warning that the US was facing a: “gas pipeline sector cyber intrusion campaign” against multiple pipeline companies.  The attacks, which began 4 months ago, are ongoing today.  The Industrial Control Systems Cyber Emergency Response Team (ICS CERT), which is responsible for helping secure the nation’s industrial control systems said: (more…)