Home > Security/Privacy

Security/Privacy

U Wyoming Adopts Emergency Alerts

4/23/2008

The University of Wyoming has selected Rave Alert as its platform for sending emergency notifications to its campus community. Before buying the solution, the school did two tests of service. According to a statement by the company, in the second campus-wide test, 7,000 students, faculty and staff members received a text message on their cell phones. Of the students polled, nine out of 10 reported receiving the text messages within one minute; the longest wait was up to four minutes.

Students Get Taste of Real-life Cyber Defense in National Championship

4/22/2008

Texas A&M University looked to defend its National Champions title against five teams at the National Collegiate Cyber Defense Competition (NCCDC) this weekend but lost out to Baker College of Flint, MI. The third-annual NCCDC was hosted by the University of Texas at San Antonio's Center for Infrastructure Assurance and Security (CIAS), a cyber security education and research center.

Publishers Sue Georgia State over Digital Distribution

4/22/2008

A group of publishers has filed suit in federal court to stop what it calls "widespread copyright infringement" at Georgia State University (GSU). The complaint, filed by Oxford University Press, Cambridge University Press, and SAGE Publications and supported by the Association of American Publishers (AAP), charges that GSU administrators are violating the law by systematically enabling professors to provide students with digital copies of copyrighted course readings without publisher authorization.

Microsoft Investigating LocalSystem Access Bug

4/22/2008

Security personnel in Redmond are investigating a newly reported zero-day bug vulnerability in Microsoft operating systems and server systems. The bug, disclosed Thursday by Bill Sisk, security response communications manager for Microsoft, allows escalation of privilege to occur for authenticated users under specific conditions.

Virtual Security Gets a Boost

4/21/2008

How secure is your virtual environment? Recent US-CERT Cyber Security Bulletins list several vulnerabilities for versions of software from VMware that allow attackers to cause denial of service attacks, generate buffer overflows, expose password logging and gain unauthorized privileges that can be used to hijack processes. The exposures have been addressed in patches by the company, but concern has been growing that virtual machines may get less security-related attention from IT staff than physical boxes.

BizTalk RFID Mobile Unveiled

4/18/2008

Microsoft Thursday described its new platform to help developers more easily create mobile applications that make use of radiofrequency identification (RFID) technology. The company unveiled BizTalk RFID Mobile, a solution designed to work with Microsoft BizTalk Server 2006 R2 and other Microsoft products.

U Miami: Stolen Back-up Data 'Unlikely' To Be Misused

4/17/2008

The University of Miami reported Thursday that computer back-up tapes containing personal information from some 2.1 million patients were stolen from a third-party storage facility in March. The university said it's confident that the information on those tapes is inaccessible to the thieves but is notifying patients anyway.

Louisiana Campuses Sign on for Emergency Alerts

4/17/2008

Omnilert, which sells the e2Campus emergency notification system, said it has sold its services to several Louisiana colleges and universities in recent months. The company also recently posted a discount pricing structure to the Louisiana state contract system, which allows schools in the contract system to purchase the service without going through a bid process.

IBM Academic Initiative Tackles Compliance at U Missouri

4/15/2008

The University of Missouri (MU) has teamed with IBM to arm its students with the latest information technology (IT) security and compliance training. This training will help MU students acquire the expertise required to help reduce the risk of financial losses caused through non-compliance.

Symantec: Online Security Concerns Growing in the Workplace

4/14/2008

In the world if IT security, it's a well known secret that end users in Windows processing environments put themselves at risk whenever they check their MySpace and Facebook pages, or shop for plane tickets, computers and other goods and services--all while at the workplace.

Assess Security and Boost Innovation, Says RSA Exec

4/14/2008

Art Coviello kicked off RSA Conference 2008, his company's namesake information security conference, April 8 in San Francisco with a warning.

Windows Live OneCare 2.5 Beta Released

4/14/2008

A beta release of Windows Live OneCare 2.5, Microsoft's automated security suite for home users and small businesses, is available for testing from the Microsoft Connect Web site. Microsoft stated through its blog that there is little apparent difference between the beta and standard versions.

Dartmouth Transfers Cyber Research Collection to Naval Postgraduate School

4/11/2008

Dartmouth's Institute for Information Infrastructure (I3P) recently transferred control of its 7,000-resource cyber security library to the Naval Postgraduate School (NPS) Center for Homeland Defense and Security in Monterey, CA.

Real ID: Coming to a State Near You?

4/11/2008

The Department of Homeland Security has issued the regulations that will govern the Real ID Act that sets standards for drivers' licenses across the country. How will it impact you and your campus?

Antioch Breach Strikes Unpatched Solaris System

4/10/2008

A breach of an ERP system at Antioch University forced the school to send letters out to more than 60,000 students, former students and staff members informing them that they could become victim to identity theft. The problems surfaced on February 13, 2008, when an anti-virus program detected a virus on one of Antioch's computers. Forensic software investigators hired by the university to examine its systems found that an unauthorized intruder had gained access to one of the computers on three occasions during 2007 and that an IRC bot had been installed.

Microsoft Proposes Cross-Industry Effort To Address Online Trust Challenge

4/10/2008

Microsoft Corp. this week initiated a call for action to address the future of security and privacy on the Internet. In a speech by Chief Research and Strategy Officer Craig Mundie, the company proposed "End to End Trust," a pitch for organizations, including vendors and user organizations, to work together to create a more secure and trusted online environment.

Emergency Notification Firm Creates Consortium Pricing Scheme

4/10/2008

Omnilert, which offers e2Campus, an emergency notification system for higher education, has created a marketing program that allows participants to collectively purchase the software at a group rate.

Forefront Integrated Security System Beta Released

4/9/2008

Microsoft Corp.made available a public beta release of its Forefront security solution, code-named "Stirling." The software is an integrated security system designed to allow administrators to control, access, and manage security capabilities across an organization's IT infrastructure. It includes a central management console for security configuration and enterprise-wide visibility and works with other ForeFront products that secure clients, Exchange, SharePoint, and the next version of Internet Security and Acceleration Server (ISA Server).

Consulting Firm Launches Training To Show Educators How To Defuse Hostility

4/9/2008

Anzen, an Alexandria, VA company that provides personal security training for public and corporate organizations, announced a new program to address safety in educational institutions. Called USA Safe Schools, the initiative provides schools with tools and training to reduce hostile threats to teachers and students.

HP Makes Push into Data Encryption

4/9/2008

HP has introduced several products to address data protection and compliance in storage environments, including add-ons that do automated data encryption on tape drives and libraries. Among the offerings: a secure fabric switch; an encryption kit for tape autoloaders and libraries; integration of compliance and management appliances; and, a free online security assessment tool.

Network-based Alarm System Sends Silent Alert

4/9/2008

A Spokane, WA company has developed a computer network-based alarm system that allows users to trigger an emergency alarm through their computers to send a silent alert to all other users logged into the same network. Pentad Systems' LANalarm could complement text messaging-based notification systems, which tend to have a lag between the time the emergency is communicated to administrators and the notification is actually sent out to participants.

Microsoft Releases 8 Security Patches, 4 Deemed 'Critical'

4/8/2008

Microsoft released its latest security update, which includes eight cumulative patches addressing vulnerabilities in Office applications, Windows, and Internet Explorer.

Printer Vulnerability Exposed by Indiana U Security Engineer

4/8/2008

Security engineers in the Information Technology Security Office (ITSO) at Indiana University were at a loss when a user described a network-connected multifunctional printer that was acting strangely--even printing spam e-mail messages onto paper.

Honeywell Survey Shows Security Convergence Popular but Elusive

4/1/2008

A survey by Honeywell released in March reveals that although some organizations are integrating physical security measures such as video surveillance and access control with traditional IT security system, significant barriers to convergence still exist.

Compliance Framework Database Updated

3/31/2008

Consulting and publishing firm Network Frontiers has released the Q1 2008 Unified Compliance Framework (UCF), a database used in compliance management systems. UCF maps hundreds of regulations, including privacy information, HIPPA, PCI-DDS and Medicaid/Medicare mandates, into a master hierarchal framework. This latest version of the UCF consolidates cross platform configuration management controls into a single set of controls.