-----Original Message----- From: NIPC Watch To: daily@private Sent: 8/16/01 7:53 AM Subject: NIPC Daily Report, 16 August Significant Changes and Assessment - No significant changes Private Sector - Microsoft has released Security Bulletin MS01-044, Cumulative Patch for IIS. This patch is a cumulative patch that includes the functionality of all security patches released to date for IIS 5.0, and all patches released for IIS 4.0 since Windows NT( r) 4.0 Service Pack 5. In addition to including all previously released security patches, this patch also includes fixes for five newly discovered security vulnerabilities affecting IIS 4.0 and 5.0. Additional information can be found at the following link: www.microsoft.com/technet/security/bulletin/MS01-044.asp (Source: Microsoft, 15 August) CERT Coordination Center (CERT/CC) has issued CERT Advisory CA-2001-24, Vulnerability in OpenView and NetView. "Ovactiond" is a component of OpenView by Hewlett Packard Company and NetView by Tivoli, an IBM Company. These products are used to manage large systems and networks. According to CERT, there is a serious vulnerability in ovactiond that allows intruders to execute arbitrary commands with elevated privileges. This may subsequently lead to an intruder gaining administrative control of a vulnerable machine. (Source: CERT/CC, 15 August) Help Net Security advised users of Novell's newest version of GroupWise to be concerned about a bug that can severely compromise the security of their e-mail system. The problem, which appears in GroupWise 6 and GroupWise 5 Enhancement Pack, allows users to view all files on all drives, a permission that would normally be disabled with policies. The security problem affects both the Windows client and server portions of GroupWise and is severe enough that Novell has issued a patch called Padlock Fix. (Source: Network World Fusion, 15 August) International - A Dutch cryptographer who claims to have broken Intel Corp.'s encryption system for digital video says he will not publish his results because he fears being prosecuted or sued under the Digital Millennium Copyright Act. Niels Ferguson announced last weekend that he has successfully defeated the High-bandwidth Digital Content Protection HDCP specification, an encryption and authentication system for the DVI interface used to connect digital cameras, high-definition televisions, cable boxes and video disks players. At the Hackers at Large 2001 Security conference, Ferguson stated that an experienced IT person could recover the master key in two weeks. (Source: businessweek.com, 15 August) The National Statistical Office (NSO) said that scores of statistical experts in Asia and the Pacific will gather in Seoul, Korea, on 17 August to discuss ways to develop technologies to protect data for national statistical offices. The seminar will focus on anti-hacking measures and the use of information technology for statistics. (Source: Seoul Yonhap, 16 August) Military - The US Air Force Research Laboratory in Rome, NY, selected Logicon Incorporated to develop a Network Early Warning System (NEWS) prototype capable of providing advance warning of impending Internet- based coordinated attacks on DoD computer networks. In recent months, the Pentagon has reported numerous such attacks on its computer systems. (Source: Space Daily, 16 August) The US armed services are working to develop effective doctrine and rules of engagement that will enable them to more effectively conduct information operations (IO) and defend their computer networks. Noting that the US government "is essentially limited to computer network defense" operations, Brigadier General Keith Alexander, head of the US Army Intelligence and Security Command, predicted it will change over the next year. The Department of Defense and the Intelligence Community are working through the legal and ethical issues that will allow them to preempt would-be hackers as they are preparing an attack, he added. (Janes's Defense Weekly, 15 August) Government - NTR U.S. SECTOR INFORMATION: Electrical Power - Deregulation of the energy industry has led to the formation of dozens of online energy trading networks where buyers and sellers manage real-time sales of electricity over the Internet. Experts believe that such trading networks are less secure than computer networks maintained by utility companies. They also warn that increasing links between computers that control grids and those used for administration, e-mail or Web surfing make hacker-induced blackouts likely. For two weeks last spring, hackers wormed their way inside a computer system that plays a key role in moving electrical power where it is needed around California. The affected agency patched the flaw that allowed hackers to roam through portions of its network before power supplies were affected. (Source: Los Angeles Times, 15 August) Telecommunications - NTR Banking and Finance - NTR Transportation - NTR Water Supply - NTR Gas and Oil Storage Distribution -NTR Government Services - NTR Emergency Services - NTR NOTE: Please understand that this is for informational purposes only and does not constitute any verification of the information contained in the report nor does this constitute endorsement by the NIPC or the FBI.
This archive was generated by hypermail 2b30 : Sun May 26 2002 - 11:24:17 PDT