DAILY BRIEF Number: DOB02-128 Date: 21 August 2002 http://www.ocipep.gc.ca/DOB/DOB02-128_e.html
NEWS Canada Still a Leader in Connectedness: Conference Board Study A new study released by the Conference Board of Canada reveals that Canada is ranked first in its use of online banking, government online services and broadband penetration, and second in its use of information and communications technologies. According to the study, activity in the e-business sector is on the increase. Wireless technology is identified as an area where improvement is needed, especially in connecting outside maintenance workers and oil field workers. Internet connectivity has also increased, with 32 per cent of Canadian households going online to access information. (Source: itWorldCanada.ca, 21 August 2002) Click here for the source article Comment: According to the Conference Board of Canada's news release, the Connectedness Index is the third in an annual series that compares Canada with nine other Organization for Economic Cooperation and Development (OECD) nations - the other G7 countries, plus Australia, Finland, and Sweden - on the availability and use of information, and communications technologies. The Conference Board briefing, Pursuing Excellence Through Connectedness: Canada's Quest for Global Best, can be downloaded from the news release link. Explosion in Downtown Calgary On August 20, an explosion at an underground electrical vault in downtown Calgary injured one worker and affected power in approximately 50 city blocks. Several office buildings were evacuated and workers were sent home. Incidents involving similar electrical vaults have been rare because the vaults are located underground where they are protected from weather and third party interference. (Source: calgary.cbc.ca, Calgary Herald, 20 August 2002) Click here for the source article - 1 Click here for the source article - 2 Comment: The cause of the explosion is still under investigation. Ontario Mayors' Meeting This week, Ontario mayors will discuss water delivery, emergency service standards and housing at the annual meeting of the Association of Municipalities of Ontario. Road repair and border crossing issues are also on the agenda for southern Ontario mayors. (Source: toronto.cbc.ca, 19 August 2002) Click here for the source article Comment: The AMO Annual Conference program states that best practices for emergency services will be identified and funding concerns will be addressed. Discussion on issues such as border crossing will likely include how municipalities can cope with problems related to U.S.-bound traffic delayed by heightened security at the border, including instances such as the one in Windsor reported in DOB02-095. IN BRIEF U.S. Developing National Security Information Sharing Network U.S. security and intelligence agencies will meet this week to discuss a new information sharing initiative known as the Intelligence Community System for Information Sharing (ICSIS). The intent of the ICSIS would be to enable federal, state and local agencies to share information that could detect, prevent or help respond to future terrorist attacks. The strategy would seek to use the existing billions of dollars in federal IT infrastructure and investments to build the system, rather than create new IT architecture and funding arrangements. (Source: Computerworld, 20 August 2002) Click here for the source article MS Windows Attacks on the Rise The latest data from the Internet consultancy firm mi2g indicates that attacks on MS Windows systems were on the increase from January to July 2002, accounting for 47 per cent of hacks. Linux systems received 36 per cent of the digital attacks. (Source: vnunet.com, 16 August 2002) Click here for the source article Comment: Further information about the mi2g study can be found at: http://www.mi2g.com/cgi/mi2g/press/140802.pdf CYBER UPDATES See: What's New for the latest Alerts, Advisories and Information Products Threats Symantec reports on Trojan.MSNTrick, which is a Trojan horse that is written in Visual Basic. The Trojan steals passwords from MSN Messenger users. http://securityresponse.symantec.com/avcenter/venc/data/trojan.msntrick.html Symantec reports on Trojan.Adnap, which is a Trojan horse that tries to spoof another vendor's antivirus program and connect to a Web page at www.geocities.com. http://securityresponse.symantec.com/avcenter/venc/data/trojan.adnap.html Symantec reports on Backdoor.Cabro, which is a Trojan horse that allows unauthorized access to the infected computer. http://securityresponse.symantec.com/avcenter/venc/data/backdoor.cabro.html Vulnerabilities SecurityFocus reports on a remotely exploitable vulnerability in MS Internet Explorer 6.0 Java Logging Executable Code. View the "Solution" tab for workaround information. http://online.securityfocus.com/bid/5491/discussion/ Patches: Package available to fix Caldera International UnixWare 7.1.1 and Open UNIX 8.0.0 rpc.ttdbserverd buffer overflow vulnerability (SecurityFocus). http://online.securityfocus.com/advisories/4408 Tools Hijetter is a tool to communicate directly with network printers via the Printer Job Language (PJL) using port 9100. http://www.phenoelit.de/ PFT is a command line tool to communicate directly with network printers via the Printer Job Language (PJL) using port 9100. http://www.phenoelit.de/ Pjam2 is an effective UDP packet flooder for windows. http://packetstorm.decepticons.org/DoS/pjam2.zip Blowdoor 01b is a UNIX backdoor with a definable port, password, executable to run, process to show job as, and logging facility. http://www.secworld.org/ CONTACT US For additions to, or removals from the distribution list for this product, or to report a change in contact information, please send to: Email: [EMAIL PROTECTED] For urgent matters or to report any incidents, please contact OCIPEP’s Emergency Operations Centre at: Phone: (613) 991-7000 Fax: (613) 996-0995 Secure Fax: (613) 991-7094 Email: [EMAIL PROTECTED] For general information, please contact OCIPEP’s Communications Division at: Phone: (613) 991-7035 or 1-800-830-3118 Fax: (613) 998-9589 Email: [EMAIL PROTECTED] Web Site: www.ocipep-bpiepc.gc.ca Disclaimer The information in the OCIPEP Daily Brief has been drawn from a variety of external sources. Although OCIPEP makes reasonable efforts to ensure the accuracy, currency and reliability of the content, OCIPEP does not offer any guarantee in that regard. The links provided are solely for the convenience of OCIPEP Daily Brief users. OCIPEP is not responsible for the information found through these links. IWS INFOCON Mailing List @ IWS - The Information Warfare Site http://www.iwar.org.uk