U.S. intelligence agencies traced a recent cyber intrusion into U.S. Army database that holds sensitive information about vulnerabilities in U.S. dams.

The U.S. Army Corps of Engineers National Inventory of Dams contains information about 79,000 dams throughout the country and tracks such information as the number of estimated deaths that could occur if a specific dam failed.

The database also holds sensitive information, including vulnerabilities, of every major dam throughout the country. Michelle Van Cleave, a former consultant to the CIA, told the Beacon that the data breach appeared to be part of a greater effort to collect vulnerability and targeting data for future cyber or military attacks.

The Corps of Engineers National Inventory of Dams was hacked by an unauthorized user believed to be from Chinese government or military cyber warriors, beginning in January and uncovered earlier this month.

“In the wrong hands, the Army Corps of Engineers’ database could be a cyber attack roadmap for a hostile state or terrorist group to disrupt power grids or target dams in this country,” Van Cleave said.

All users had been sent an e-mail notification to this effect, which apparently told them that their account username had been changed to their e-mail address and included the new password in plaintext that the Corps did not ask users to change.

According to the Corps website, the dam inventory was created under a 1972 law and was updated in 1986 to require coordination between the Corps and the Federal Emergency Management Agency

Read Full Article

Armed with confidential memos to Hillary Clinton that were stolen from the e-mail account of a former White House aide, a hacker has distributed some of the documents to a wide array of congressional aides, political figures, and journalists worldwide.

In a series of weekend e-mail blasts, the hacker known as “Guccifer” disseminated four recent memos to Clinton from Sidney Blumenthal, a longtime confidant of the former Secretary of State.

he 64-year-old Blumenthal, who worked as a senior White House adviser to President Bill Clinton, had his AOL e-mail account hacked last week by “Guccifer,” who has conducted similar illegal assaults against a growing list of public figures, including Colin Powell, relatives and friends of the Bush family, and a top United Nations official.

The hacker’s e-mails went to hundreds of recipients, though the distribution lists were dotted with addresses for aides to Senate and House members who are no longer in office. But many of the addresses to which the Blumenthal memos were sent are good (though it is unclear whether karl@rove.com is a solid address for the Republican mastermind).

Read Full Article

The hacker who has spent the past several months breaking into the e-mail accounts of family, friends, and political allies of the Bush family has crossed party lines and illegally accessed the AOL account of a former senior White House adviser to President Bill Clinton.

The intrusion into Sidney Blumenthal’s e-mail account apparently occurred this week, days after the hacker–who uses the alias “Guccifer”–defaced Colin Powell’s Facebook page and breached the former Secretary of State’s AOL account.

The 64-year-old Blumenthal–who was unaware that he had been hacked by “Guccifer”–worked as an assistant and senior adviser to Clinton for about 3-1/2 years, ending in January 2001. He worked as a senior adviser to Hillary Clinton’s 2008 presidential campaign and has remained one of her closest confidants.

Read Full Story

The deputy social media editor for Reuters has been indicted by the US Justice Department for allegedly conspiring with members of the hacktivist movement Anonymous.

According to a Justice Department statement released on Thursday, 26-year-old Matthew Keys of Secaucus, New Jersey was charged in the Eastern District of California with a number of counts involving his alleged cooperation with the international hacking group while employed as the web producer of Sacramento-based television station KTXL FOX 40.

The Justice Department believes that Keys assisted members of Anonymous with hacking into the Los Angeles Times website by providing them with log-in credentials for a computer server belonging to KTXL’s corporate parents, the Tribune Company, after he was terminated from his role at the television station in October 2010.

Read full article

Firefox will soon begin blocking third-party advertising cookies by default, preventing ad networks from tracking users’ browser activity.  Advertisers use cookies to track users’ Web activity to deliver more-targeted ads.

The U.S. Federal Trade Commission requested a mechanism to block online tracking, Mozilla offered Do Not Track technology to prevent Web pages from tracking people’s online behavior for advertising purposes.  That means sites you’ve visited can leave cookies on your computer but ad networks that don’t already have one on your machine can’t.

Some people think it’s a matter of privacy.  What if, for instance, you’re researching something online that you don’t want anyone to know about or associate with you.  Things like a medical condition, political issue or religion?  Firefox 22 will release April 5.  Apple’s Safari and Firefox do not allow third-party cookies, Google’s Chrome and Microsoft’s Internet Explorer still allow them by default.

A Security Flaw in Universal Plug & Play (UPnP) is exposing more than 50 millions of computers, printers and storage drives to attack by hackers remotely.

The problem lies in routers and other networking equipment that use a commonly employed standard known as Universal Plug and Play or UPnP.

UPnP allows networked devices to discover each other and automatically establish working configurations that enable data sharing, media streaming, media playback control and other services.

In one common scenario a file-sharing application running on a computer can tell a router via UPnP to open a specific port and map it to the computer’s local network address in order to open its file-sharing service to Internet users.

There are two tools to check if your router is infected one cloud based one you must download and install.

Cloud Based Tool – https://www.grc.com/su/UPnP-Rejected.htm

Download and Install – http://www.rapid7.com/resources/free-security-software-downloads/universal-plug-and-play-jan-2013.jsp

Here are some other tips you can use to add extra security to your wireless router.

1. Change your WiFi password. Don’t just let it be the default setting because everyone knows that one.

2. Turn off Wide Area Network Administration (WAN). You don’t need it and it’ll prevent someone from taking control of your router from outside your network.

3. Turn off Universal Plug n Play.

4. Turn on WPA2 encryption.

5. Rename your SSID. Routers have their brand as the SSID by default and it’s best not to advertise that.

6. Turn Off Admiration Via Wi-Fi you do not want someone on your wireless to configure your router.  Make them hardwire into your system.

7. You can hide the name of your router by not broadcasting the SSID

For many of us we think sending our kids to school they are safe and that school computers are a place of sanctuary.  When it comes to security like I have said before in the past no one can be trusted.  We think of the recent tragedies with schools over the past few months but here is another school situation uncovered.

From the The Morning Call:

http://www.mcall.com/news/local/easton/mc-easton-schools-police-investigation-20130204,0,406917.story

An internal probe by Easton Area School District claims the man who helped craft its acceptable use policy for Internet and technology was spying on administrators and hiding 70 photos of nude “breasts and vaginal areas” on his district-issued computer, according to a police search warrant.

Forks Township police on Friday seized the work laptop of Thomas Drago, Easton’s former director of technology, during a search of the district’s administration building.

Police also seized six other items from the school district’s offices and 19 items from Drago’s Bushkill Township home, including four computers, five flash drives, a digital camera and an iPod, according to court documents.

No charges have been filed against Drago, who resigned from his $105,000 position last month. But police wrote in the search warrant that his alleged actions could constitute unlawful use of a computer, unlawful duplication and invasion of privacy. The number listed for Drago’s home is no longer in service.

In addition to the nude photos, the internal investigation found a photo that shows the “breasts and cleavage” of a woman who could be a district employee, possibly taken through a webcam, according to the court documents.

The district said Drago accessed Superintendent Susan McGinley’s and several employees’ computers hundreds of times without authorization, the court documents say.

The internal investigation also claims Drago had a recording of an executive session to discuss contract negotiations that was not open to the public and which administrators did not know he was recording, according to the search warrant return.

The district contacted police in January after its own investigation, the court records say.

Northampton County District Attorney John Morganelli confirmed that police have an ongoing investigation involving a former district employee, but said he didn’t know specifics of the probe. Forks police Chief Greg Dorney could not be reached for comment.

District solicitor John Freund said police took a computer from Drago’s office on Friday when they executed the search warrant.

“That’s all we know,” Freund said.

McGinley, who was served with the warrant, could not be reached for comment.

According to court records:

In October, Director of Teaching and Learning Steve Furst noticed a binoculars icon with Drago’s name on the top right display of his computer screen. He emailed Drago, asking what he was doing and the icon went away. Furst contacted McGinley, saying he was concerned Drago was accessing his computer without authorization.

Another member of the district’s technology staff was directed to perform an examination of Drago’s remote access usage. It was discovered that Drago had remotely accessed the computers of eight administrators, including McGinley’s.

Drago initially denied accessing Furst’s computer, but later said he did it mistakenly. Drago then said that he did have permission.

The district asked New Jersey company, Miles Technology, to conduct a forensic examination of Drago’s computer. The examination found that Drago accessed computers without authorization and copied sensitive files and documents that may have included student information.

The examination by Miles Technology said Drago was hiding the nude photos using what’s called a “dual platform.” While his computer used a Mac operating system he had also installed a Microsoft Windows operating system to conceal the images. It’s not yet confirmed if the images are adults or minors.

Police also seized the 14-page acceptable use policy that Drago helped write. It prohibits sending, receiving, viewing, downloading, or transmitting sexually suggestive, sexually explicit, obscene or pornographic material or child pornography.

“Unauthorized access, including hacking and logging into the network using another individual’s username and password, is strictly prohibited and will result in discipline and denial of privileges. Such unauthorized access may also result in criminal charges,” according to the policy.

Oracle has rushed out a new Java security patch designed to plug up a range of holes in the software.  Released Friday, the latest critical patch update contains fixes for 50 different security flaws, 44 of which affect the use of Java as a plug-in for Web browsers.

Friday’s fix was original scheduled for release on February 19. But Oracle said it decided to ramp up the schedule after finding that one of the flaws affecting the Java Runtime Environment was actively being exploited. The new update addresses that specific flaw and includes all of the fixes from January’s update.  Oracle has also been criticized in the past for not keeping Java properly protected or updated to guard against security exploits.

Following a recent addition of Java to its plug-in blacklist, Apple has issued an update to its supported Java versions.  Apple issued an update that added the latest versions to the system’s browser plug-in blacklist to protect users from any potential threats; however, in doing so it silently blocked a number of people from accessing required Java content, such as banking and financial Web sites.

Unfortunately the Java 7 runtime is not available for those using Snow Leopard, for which the latest version is Java 6. However, Apple has issued its own separate update to Java 6 for Snow Leopard to address the vulnerabilities in this version. The update, which should be available through its Software Update service, should run automatically or can be invoked by going to the Apple menu.

Now that Java is all buttoned up with security which has been an issue for several weeks.  It will be interesting to see if any new exploits are brought to the service last time it only took 24 hours.  We will have to wait and see how things go over the next week.