_
London, Friday, March 29, 2002
_
INFOCON News
__
DAILY BRIEF Number: DOB02-029 Date: 28 March 2002
NEWS
Ottawa Learned Lessons from Anthrax Scares
The Citizen reports that Ottawa learned crucial lessons about emergency
response following a string of anthrax hoaxes last October. Dr. Cushman,
Ottawa's medical officer of health, said city hospita
NIPC Daily Report 28 March 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Officers arrest S.F. airport workers. Twenty-five workers
NIPC Daily Report 29 March 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Disaster exercise: flaws and progress. About 200 US, Maryland, Virgi
Below is the NIPC Daily Report for 1 Apr
NIPC WWU
dw
NIPC Daily Report 01 April 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Government trains cyber defenders, b
Commentary: Don't give 'bad guys' information
by Christine Saalbach
Air Force Personnel Center Operations Security Manager
03/29/02 - RANDOLPH AIR FORCE BASE, Texas (AFPN) -- John Wayne used to say,
"Talk low. Talk slow. Don't say too much."
That is good advice in today's military environment
_
London, Tuesday, April 02, 2002
_
INFOCON News
_
-Original Message-
From: UNIRAS (UK Govt CERT)
Sent: 02 April 2002 09:25
To: Undisclosed Recipients
Subject: FW: UNIRAS Alert - 12/02 - Malicious Software Report
Importance: High
-BEGIN PGP SIGNED MESSAGE-
-
Below is the NIPC Daily Report for 2 Apr 02.
Thanks,
NIPC WWU
dw
NIPC Daily Report 02
April 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nat
DAILY BRIEF Number: DOB02-030 Date: 02 April 2002
NEWS
Private Industry Offers Proposals for War on Terrorism
The U.S. Office of Homeland Security and other federal organizations have
been inundated with proposals from high-tech companies on how to better
fight terrorism. Howard Schmidt, vice-ch
Dear All,
I am currently looking for another sponsor for the web site. I am forced to
do this as the site has eaten up all my financial reserves and I will be
doing my 'self-sponsored' MSc project over the summer (focused on IO/CIP).
Also I want to do a postgraduate certificate at the American Mi
_
London, Thursday, April 04, 2002
_
INFOCON News
NIPC Daily Report 03 April 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
US to issue more secure passports. The State Department unveiled a
new "state-of-the-ar
DAILY BRIEF Number: DOB02-031 Date: 03 April 2002
NEWS
FTC, Partners Pursuing Internet Fraud
The Federal Trade Commission (FTC), with help from the FBI and several state
and Canadian agencies, has brought 63 cases against Internet scams in the
past six months. The initiative, called Internationa
[Sounds very interesting. WEN]
C O N F E R E N C E A N N O U N C E M E N T
National Cybercrime Conference
http://www.CybercrimeConference.org/
May 9-11, 2002
at The John Marshall Law School, Chicago, Illinois
In our current state of heightened national security, the law affecting
informatio
NIPC Daily Report 04
April 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
New options in assault on smallpox
[People who are interested in subscribing to
this newsletter should contact John
Sheridan @ [EMAIL PROTECTED] WEN]
Mfg.Trust is a monthly feature of the
NCMS InfraGard Manufacturing Industry Association
Infrastructure assurance for manufacturers.
-Original Message-
From: On Behalf Of Patrick O'Reilly
Sent: 04 April 2002 16:15
To: Multiple recipients of list
Subject: NIST Computer Security FIPS Publication 198
April 3, 2002 -- FIPS 198, The Keyed-Hash Message Authentication Code (HMAC)
(.pdf) (http://csrc.nist.gov/publications/fi
DAILY BRIEF Number: DOB02-032 Date: 04 April 2002
NEWS
Oil Spill Near Newfoundland Coast
The Coast Guard was keeping a close eye on the area where the Russian shrimp
trawler "Katsheshuk" sank off Cape St. Francis, approximately 20 kilometres
north of St. John's, Newfoundland. Local residents and
U.S. Pacific Chief Says Technology Enhances Military Capability
04/04/02
Information technology is "the key to transforming the Pacific Command's
war-fighting ability," the commander-in-chief of the U.S. Pacific Command
(CINCPAC) told members of the Pacific and Asian Affairs Council in Hawaii
Ap
[I hope that quite a few US list members will sign the
petition and thereby show their commitment to
Information Assurance. WEN]
*
With the public's support, we actively promote "Information Security
Awareness Week" by urging governors and
NIPC Daily Report 8 April 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Hacking up, disclosure down, FBI survey says. An FBI survey of 503 US
corporations, govern
_
London, Monday, April 08, 2002
_
INFOCON News
_
Article: Canada Forges Ahead With Master Plan To Guard Key Infrastructures
April 8, 2002
http://ocipep-bpiepc.gc.ca/pub_communi/article_ipent2_e.html
Article: Canadian Official Calls For Cyber-Security Exercise With United
States
April 8, 2002
http://ocipep-bpiepc.gc.ca/pub_communi/article_ipen
_
London, Tuesday, April 09, 2002
_
INFOCON News
_
[I have just seen this link in a DoD DISA newsletter.
The page contains useful information regarding email
security, network security by the lovely people
from Fort Mead. WEN]
*
http://nsa2.www.conxion.com/emailexec/download.htm
National Secur
[Interesting speech. WEN]
08 April 2002
Ridge Says States Must Develop Plans to Thwart Terrorism
(Remarks to meeting of American Hospital Association April 8) (3880)
Homeland Security Director Tom Ridge says all 50 U.S. states must
develop local, regional, and then statewide comprehensive plan
NIPC Daily Report 9 April 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
NRC opens centralized nuclear security office. Nuclear Regulatory
Commission (NRC) officia
DAILY BRIEF Number: DOB02-035 Date: 09 April 2002
NEWS
Cyber Division Forming Within FBI
The FBI has been forming a new cyber division apparently which will
coordinate the various on-line disciplines within the Bureau and investigate
exploitations of federal computer systems, according to a gove
_
London, Wednesday, April 10, 2002
_
INFOCON News
___
-Original Message-
From: [EMAIL PROTECTED]
Sent: 10 April 2002 00:18
To: [EMAIL PROTECTED]
Subject: 2002 CSI/FBI Computer Crime & Security Survey
Dear Wanja Eric,
Thank you for your interest in the 2002 CSI/FBI Computer Crime & Security
Survey. The 2002 survey is now posted.
To downloa
_
London, Friday, April 12, 2002
_
INFOCON News
__
DAILY BRIEF Number: DOB02-037 Date: 11 April 2002
NEWS
Security of G8 Site Compromised: Report
A Public Works and Government Services Canada tender that has been posted on
the Internet since February provides security details regarding the location
of the June 2002 G8 Summit in Kananaskis Countr
National Infrastructure Protection Center
"Multiple Remote Vulnerabilities in Microsoft's Internet Information
Services (IIS) "
Advisory 02-002
11 April 2002
The NIPC is issuing this advisory to highlight the significance of the
above vulnerability addressed in Microsoft Security Bulletin MS02
NIPC Daily Report 11 April 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Microsoft releases patch to fix security flaws. Microsoft Corp.
released a patch on 10 Ap
-Original Message-
From: [EMAIL PROTECTED]
[mailto:[EMAIL PROTECTED]]On Behalf Of EPIC News
Sent: 11 April 2002 20:00
To: [EMAIL PROTECTED]
Subject: EPIC Alert 9.07
==
@@@ @@
FIPR-Bulletin: Government Data Sharing Report is Late and
Deeply Disappointing
--
You have received this message from the FIPR Bulletin mailing list run by
the Foundation for Information Policy Researchhttp://www.fip
-Original Message-
From: UNIRAS
Sent: 11 April 2002 22:19
To: [EMAIL PROTECTED]
Subject: UNIRAS Alert - 13/02 - Malicious Software Report
Importance: High
-BEGIN PGP SIGNED MESSAGE-
- - - -
--
_
London, Monday, April 15, 2002
_
INFOCON News
__
DAILY BRIEF Number: DOB02-038 Date: 15 April 2002
NEWS
TransCanada Pipeline Explodes in Manitoba
A section of the TransCanada pipeline exploded on Sunday night near
Brookdale, Manitoba. The natural gas explosion and ensuing fire led
authorities to evacuate the few homes that were within an eight
DAILY BRIEF Number: DOB02-040 Date: 16 April 2002
NEWS
OCIPEP Advisory Posted - W32/MYLIFE VIRUS - Multiple New Variants
OCIPEP has posted Advisory AV02-019 regarding multiple new variants of the
W32/MyLife virus that have been released in the wild and are beginning to
spread. The worm variants
_
London, Wednesday, April 17, 2002
_
INFOCON News
___
OCIPEP DAILY BRIEF Number: DOB02-041 Date: 17 April 2002
NEWS
Networks at Risk From Hackers and Terrorists
The Auditor General warned yesterday that the Government of Canada's
critical computer infrastructure is exposed to malicious cyber attacks.
Sheila Fraser indicated that computer systems an
-Original Message-
From: UNIRAS (UK Govt CERT)
Sent: 17 April 2002 17:32
To: Undisclosed Recipients
Subject: UNIRAS Alert - 14/02 - Malicious Software Report - new variant
of K l e z
Importance: High
-BEGIN PGP SIGNED MESSAGE-
-
NIPC Daily Report 17 April 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Lab helps Seattle pilot federal-local security project. The Lawrence
Livermore National Laborato
_
London, Thursday, April 18, 2002
_
INFOCON News
NIPC Daily Report 18 April 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Power blackouts could stop flow of water in valley. A dispute between
power and water utility c
DAILY BRIEF Number: DOB02-042 Date: 18 April 2002
NEWS
OCIPEP Issues Advisory - New Variant of Klez.A
OCIPEP issued Advisory AV02-020 to bring attention to a new version of the
worm W32.Klez.A@mm, which was first discovered on 25 October 2001. This new
variant of Klez is currently spreading thro
-Original Message-
From: UNIRAS (UK Govt CERT) [mailto:[EMAIL PROTECTED]]
Sent: 18 April 2002 17:09
To: Undisclosed Recipients
Subject: FW: UNIRAS Alert - 15/02 - UNIRAS - Multiple Vulnerabilities in
Microsoft IIS
Importance: High
-BEGIN PGP SIGNED MESSAGE-
- -BEGIN PGP SI
[Interesting. WEN]
Information Security: Subcommittee Post-Hearing Questions
Concerning the Additional Actions Needed to Implement Reform
Legislation. GAO-02-649R, April 16.
http://www.gao.gov/cgi-bin/getrpt?GAO-02-649R
IWS INFOCON Mailing List
@ IWS - The Information Warfare Site
http://ww
-Original Message-
From: Opscen (OCIPEP / GEOCC)
Sent: 20 April 2002 00:27
To: Opscen (OCIPEP / GEOCC); OCIPEP EXTERNAL DISTRIBUTION LISTS
Subject: Terrorist Threat to U.S. Financial Institutions
Importance: High
Dear All,
Due to lack of time and funding the INFOCON list
will be suspended until further notice (It might continue
at the beginning of June depending on whether we will be
able to sort out our finances till then, ...).
Regards,
WEN
Wanja Eric Naef
Webmaster & Principal Researcher
IWS - Th
Dear All,
The INFOCON list will resume, but there will be slight changes as
I cannot commit too much time to it anymore. This is due to the fact
I will have to earn money in order to support the site as I did not
manage to find another sponsor. So instead of building up the site
as previously pla
_
London, Monday, May 27, 2002
_
INFOCON News
OCIPEP DAILY BRIEF Number: DOB02-068 Date: 27 May 2002
OCIPEP Issues Paper on Mobile Telephone Services
OCIPEP recently issued a paper entitled "Commercial Mobile Telephone
Services and the Canadian Emergency Management Community: Prospects and
Challenges for the Coming Decade." The paper discus
_
London, Tuesday, May 28, 2002
_
INFOCON News
___
-Original Message-
From: DEFENSE PRESS SERVICE LIST
Behalf Of [EMAIL PROTECTED]
Sent: 24 May 2002 19:22
To: [EMAIL PROTECTED]
Subject: Pentagon Rolls Out 'Latest, Greatest Prototype' Soldier System
By Sgt. 1st Class Kathleen T. Rhem, USA
American Forces Press Service
WASHINGTON, May 23,
NIPC Daily Report 28 May 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Hackers gain access to records of state workers. Computer hackers
working secretly over the past seve
DAILY BRIEF Number: DOB02-069 Date: 28 May 2002
NEWS
Terrorist Threat in Canada Still Exists: CSIS Director
There were "warnings of something coming" before September 11 but "nobody
had any specific warnings," according to CSIS Director Ward Elcock.
Appearing at a House of Commons committee on
-Original Message-
From: CERT Advisory
Sent: 28 May 2002 19:47
To: [EMAIL PROTECTED]
Subject: CERT Summary CS-2002-02
-BEGIN PGP SIGNED MESSAGE-
CERT Summary CS-2002-02
May 28, 2002
Each quarter, the CERT Coordination Center (CERT/CC) issues the CERT
summary to
_
London, Wednesday, May 29, 2002
_
INFOCON News
_
[The daily report is a bit late as I spent 5 hours at a InfoSec
company yesterday where they showed me an amazing software
product which is light-years ahead of any other similar product. WEN]
NIPC Daily Report29 May 2002
The NIPC Watch and Warning Unit compiles this report to inform
reci
DAILY BRIEF Number: DOB02-070 Date: 29 May 2002
NEWS
Instant Messaging Programs Vulnerable to Attacks
Instant messaging (IM) applications, used by millions of computer owners to
chat in real-time with friends and co-workers, are being threatened by
hackers who can exploit the programs to steal p
For Immediate Release Press
Release #107-90
May 29, 2002
Contact: Christopher Frenze
Execu
NIPC Daily Report 30 May 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Yucca mountain: transport safety tests promised. On 23 May, Richard
Meserve, Chairman of the Nucl
DAILY BRIEF Number: DOB02-071 Date: 30 May 2002
NEWS
OCIPEP Issues Advisory - Buffer Overflow Vulnerability
OCIPEP has issued Advisory AV02-027 to bring attention to a remotely
exploitable buffer overflow in Macromedia JRun 3.0 and 3.1, earlier reported
by CERT/CC. The vulnerability can permit
http://www.nipc.gov/publications/highlights/2002/highlight02-02.htm
NATIONAL INFRASTRUCTURE PROTECTION CENTER HIGHLIGHTS
A publication providing information on infrastructure protection
issues, with emphasis on computer and network security matters.
Issue 2-02
May 15, 2002
Editors: Linda Gar
_
London, Friday, May 31, 2002
_
INFOCON News
[2] Virus warning: SQL worm trumps Nimda and Code Red
An internet worm that attacks Microsoft's SQL Server database has caused
more attacks in the past week than last year's most notorious worms, Nimda
and Code Red.
http://www.silicon.com/bin/bladerunner?30REQEVENT=&REQAUTH=21046&14001REQSUB
=RE
NIPC Daily Report31 May 2002
The NIPC Watch and Warning Unit compiles this report to inform recipients of
issues impacting the integrity and capability of the nation's critical
infrastructures.
Debate over exposing chemical risks. The chemical industry in recent months
has succes
-Original Message-
From: Stephen F. Argubright [Sent: 31 May 2002 16:39
To: [EMAIL PROTECTED]
Subject: NCIX WEB SITE UPDATE ADVISORY #7-2002
Dear Friends and Colleagues,
1. A new NCIX counterintelligence and security awareness poster, titled One
Evil, may be viewed and ordered by link
OCIPEP DAILY BRIEF Number: DOB02-072 Date: 31 May 2002
NEWS
FBI Warns of Shoulder-Fired Missile Attacks
The FBI warned yesterday that, although it has no substantiating information
on the subject, terrorists may try to shoot down U.S. commercial airliners
with shoulder-fired missiles. There is
NIPC Daily Report 3 June 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
California power grid operators issue first alert in nine months. State
power grid operators issue
NIPC Daily Report 4 June 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
Social engineering attacks via IRC and Instant Messaging. The CERT/CC
has received reports of soci
A collection of interesting GAO Reports (ranging from
Information Security to Missile Defence to Drinking Water)
from the last few months which are pilled up in my room in
one corner ... WEN
Coast Guard: Vessel Identification System Development Needs to Be
Reassessed. GAO-02-477, May 24.
http:/
[A good initiative. WEN.]
-
This message is sent to you as a service of Information Security
Awareness Week (ISAW). If this has been sent to you in error; or you
wish to discontinue getting information about ISAW related events,
DAILY BRIEF Number: DOB02-074 Date: 4 June 2002
NEWS
Canadian Forces Called In to Help Fight Alberta Forest Fires
The Canadian Forces (CF) will join Alberta firefighters in the battle
against forest fires burning close to the city of Edmonton. Edmonton's 1
Combat Engineer Regiment will start wor
National
Infrastructure Protection Center
"ISC BIND 9 DoS
Vulnerability"
Advisory 02-004
4
June 2002
T
NIPC Daily Report 5 June 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
NIPC issues Advisory 02-004, "ISC BIND 9 DoS Vulnerability." The
vulnerability is in version 9.x b
OCIPEP DAILY BRIEF Number: DOB02-075 Date: 5 June 2002
NEWS
OCIPEP Issues Advisory - Denial-of-Service Vulnerability
OCIPEP has issued Advisory AV02-028 concerning a denial-of-service
vulnerability in Domain Name System (DNS) servers running ISC BIND 9 prior
to 9.2.1, which allows a remote attac
La version française suit
THE OFFICE OF CRITICAL INFRASTRUCTURE PROTECTION AND EMERGENCY PREPAREDNESS
*
ADVISORY
*
Number: AV02-029
Date: 5 June 2002
**
Multiple Vulnerabilities - Yahoo! Messenger
***
-Original Message-
From: [EMAIL PROTECTED]
Behalf Of EPIC News
Sent: 05 June 2002 21:37
To: [EMAIL PROTECTED]
Subject: EPIC Alert 9.11
==
@@@ @@ @
@ @
-Original Message-
From: UNIRAS (UK Govt CERT)
Sent: 06 June 2002 12:21
To: [EMAIL PROTECTED]
Subject: FW: UNIRAS Alert - 16/02 - Malicious Software Report
Importance: High
-BEGIN PGP SIGNED MESSAGE-
- --
_
London, Thursday, June 06, 2002
_
INFOCON News
_
NIPC Daily Report 6 June 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
State CIOs advise on homeland security plan. On 23 May, Steve Cooper,
senior director of informati
I have just got my first copy of the ISR Journal (Intelligence Surveillance
Reconnaissance) and the Armed Forces Journal and I must say I like them.
(I even like the ads as there quite different to normal journal ads
which kind of tells you something about the readership. Some ad sound bites:
PAC-
[If someone is going to the TechNet conference please let me
know as I quite curious what they have to say about Network
Centric Warfare & Homeland Security. I won't be able to go
as I am attending LE&NS in London. WEN]
*
Washington DC, USA
[I do not know whether I should send out all UNIRAS Briefings
or not. Some people complained, some did not. It is kind of
difficult to decide. I kind of decided to post the major
warnings and leave out all the rest. WEN]
-Original Message-
From: UNIRAS (UK Govt CERT)
Sent: 06 June 2002 15
[Interesting study by the UK Department of Trade
and Industry. I would at least have a look at
point 5.1 see below WEN]
5.1 Damage caused by Information Security Services
19. Incompetence or misbehaviour by consultants or providers of consultancy
services can result in significant damage to an o
OCIPEP DAILY BRIEF Number: DOB02-076 Date: 6 June 2002
NEWS
OCIPEP Issues Advisory - Yahoo! Messenger Vulnerabilities
OCIPEP has issued Advisory AV02-029 concerning multiple vulnerabilities in
Yahoo! Messenger version 5,0,0,164 and prior for Microsoft Windows. These
vulnerabilities may allow an
8 p.m. Eastern Time, June 6, 2002
'Tonight -- I have just gotten off the phone with the bureau chiefs for the
networks and others, and the President tonight will give an address to the
nation. We have requested time from the networks. And in that address, the
President will give an update on the
Url of the proposed Department of Homeland Security
http://www.whitehouse.gov/deptofhomeland/
General Section:
http://www.whitehouse.gov/deptofhomeland/toc.html
The Department of Homeland Security
Information Anal
Audio
http://www.whitehouse.gov/news/releases/2002/06/20020606-8.a.ram
Video
http://www.whitehouse.gov/deptofhomeland/remarks.v.ram
Text
http://www.whitehouse.gov/news/releases/2002/06/20020606-8.html
Remarks by the President in Address to the Nation The Cross Hall
8:00 P.M. EDT
THE PRESIDENT
_
London, Friday, June 07, 2002
_
INFOCON News
___
Homeland Security Agency Designed to Enhance Intelligence Efforts
(Senior official discusses proposed cabinet agency) (5940)
President Bush is proposing a terrorist-fighting, cabinet-level
Department of Homeland Security that contains four key elements
ranging from border and transportation secur
NIPC Daily Report 7 June 2002
The NIPC Watch and Warning Unit compiles this report to inform
recipients of issues impacting the integrity and capability of the
nation's critical infrastructures.
President Bush proposed a Cabinet-level Department of Homeland Security.
Among the new government fun
[WEN: Rick's nice commentary about the current hype of
issuing public terror warnings which most of us get
on a daily basis. I guess the US is in the same state
as me about six years ago when I moved to London. One
day there was a 'security alert' in the underground station,
so I kind of felt weir
OCIPEP DAILY BRIEF Number: DOB02-077 Date: 7 June 2002
NEWS
Bush Administration Announces Homeland Security Overhaul
President Bush went on national television Thursday night and asked Congress
"to join me in creating a single permanent department with an overriding and
urgent mission-securing
NIPC Daily Report 10 June, 2002
The NIPC Watch and Warning Unit compiles this report to inform recipients of
issues impacting the integrity and capability of the nation's critical
infrastructures.
Who protects the nation's infrastructure? Regardless of how the next major
terrorist attack may co
OCIPEP DAILY BRIEF Number: DOB02-078 Date: 10 June 2002
NEWS
OCIPEP Issues Report - Research Information
OCIPEP has posted a report entitled "Towards a National Mitigation Policy -
An Investigation of Efforts to Create Safer Communities: Experiences in
Canada and the United States." The full rep
1 - 100 of 390 matches
Mail list logo
