CRIME NIPC DAILY REPORT: 29 APR, '02

From: George Heuston (GeorgeH@private)
Date: Mon Apr 29 2002 - 06:42:49 PDT

Next message: Steve Nichols: "CRIME"

Previous message: Lyle Leavitt: "Re: CRIME Nigerian Email Scam"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

 
NIPC Daily Report 29 April 2002

Incidents and vulnerabilities reporting increase. The Carnegie Mellon 
Computer Emergency Response Team/Coordination Center (CERT/CC) 
operational statistics for the first quarter of 2002 show that the 
numbers of incidents reported in 2002 number just over half of the total

reported for all of 2001. If trends continue, the total for 2002 could 
double that reported in 200l. A look at historical data shows that the 
trend has been rapidly increasing since 1988. The number of reported 
vulnerabilities has also increased, and shows every sign that it may 
surpass the number reported in 2001 as well. This is to be expected as 
the number of people looking for vulnerabilities grows and the 
complexity of software increases. (CERT, 26 Apr)

Hackers snatch the Dod's Logistic's Agency's database. The hacking group

Deceptive Duo has hacked into some military servers belonging to the 
Defense Logistics Agency (DLA), gaining access to some databases and 
posting them to the defaced pages. The databases are reported to contain

names, passwords, phone numbers and codes to presumed employees of the 
DoD. Some codes refer to databases of some recorded conversations of DoD

employees, similar to the system in place to record the stock market 
purchase orders over the broker's phone. (SecurityNewsPortal, 26 Apr)

Cisco and Sophos spoofed in virus mail-outs. Cisco Systems has written 
to users to warn against forged messages containing computer viruses 
which purport to come from its Product Security Incident Response Team 
(PSIRT). Several forged viruses bearing e-mails apparently from 
psirt@private have been sent out. These messages are not authentic and

can be safely ignored, Cisco advises. Cisco is "actively looking at 
solutions to reduce or eliminate the forged messages", it said in a 
notice to subscribers. Authentic Cisco messages on the moderated mailing

list can be identified by a PGP signature and will originate from a 
verified "cisco.com" address, it advises. (The Register, 26 Apr)..

Next message: Steve Nichols: "CRIME"
Previous message: Lyle Leavitt: "Re: CRIME Nigerian Email Scam"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Sun May 26 2002 - 11:42:31 PDT