TJ Max Hacker Charged With More Hits

August 17, 2009

albert-gonzalez TJ Max hacker, Albert Gonzalez has been indicted for the Heartland Payment Systems hack as well as the Hannaford Brothers, 7-Eleven, and two other hacks. Gonzalez was a former secret service informant and clearly is one of the most sophisticated hackers around. He is said to have collaborated with two unnamed Russians on the Heartland breach.

To read the entire article, click here.


Russia Steals US Information to Attack Georgia

August 17, 2009

It was recently released that the Russians used technology and personal information from the United States to attack Georgia last year before they invaded. They used the cyber attack to disrupt communication and disabled 20 websites including the president and defense ministers websites and the National Bank of Georgia’s website. They used social networking sites like Twitter and Facebook to steal most of the data.

To read the entire article, click here.

North Korean Cyber Attack on US Government

July 8, 2009

A recent string of Cyber Attacks against US Government websites is being attributed to the North Koreans by unnamed US Officials. The attacks which affected the Treasury Department, Secret Service, Federal Trade Commission and Transportation Department Web sites shut down the sites at various times over the weekend.

To read the complete article click here.

This is surprising to me because we are aware of the Chinese and the Russians and they’re cyber attack capabilities but I haven’t heard much about North Korea. This again shows that Cyber Attacks are a real threat and can happen to any business, government, or individual.

National Counterintelligence Executive Speech

May 21, 2009

I had the privledge of going to Los Angeles 2 weeks ago to hear Dr. Joel Brenner speak on the topic of network and data security.  It was a very small gathering and I got the opportunity to talk to him personally after the event.  We discussed the misconception that data loss is covered by a businesses insurance policy and that most businesses were unprepared to deal with a data loss.  During his speech he informed us that the Chinese and the Russians have already been seen in our electrical grids and in the networks of our major banks to illustrate how real of an issue this is.   He offered us some tips to protecting your companies network security which I’ll share below:  

  • Identify which information should be protected and for how long
  • Make sure to encrypt all extremely sensetive material 
  • To dispose of sensetive material, shred or make it unreadable
  • Do not leave vauable company information unattended in hotel rooms
  • E-mail and voicemail passwords must be protected and changed frequently
  • All sensitive materials must be removed from conference rooms and chalkboards and whiteobards erased after meetings
  • Where possible, conduct background investigations on all individuals with access to sensitive information
  • Obtain nondisclosure agreements from employees, vendors, and others with access to proprietary information

These tips were taken from the Department of National Intelligence document Safeguarding Information for the Security Professional.  You can get to their website here.