Archive for May, 2011

Cyber Combat: Act of War:

The Pentagon has concluded that computer sabotage coming from another country can constitute an act of war, a finding that for the first time opens the door for the U.S. to respond using traditional military force

A self-licking ice cream cone for homeland security?

I had an opportunity last week to travel on the nation’s largest ferry system. The Washington State ferry system carries almost 23 million people per year.  It is the third largest ferry system in the world.  (I think British Columbia has the…

Backdoor instructions for Allied Telesis switches leaked:

A simple categorizing mistake has resulted in the publishing of an internal Allied Telesis document that reveals how to set up backdoor accounts for the company's switches

In Memoriam

We shall not cease from exploration And the end of all our exploring Will be to arrive where we started And know the place for the first time. Through the unknown, unremembered gate When the last of earth left to discover Is that which was the beginnin…

Readout of Secretary Napolitano’s Visit to Hackleburg, Alabama

As part of the Obama administration’s ongoing commitment to assisting the long-term recovery efforts of communities affected by recent severe weather, Secretary of Homeland Security Janet Napolitano today joined Congressman Robert Aderholt (R-Ala.), Ha…

Secretary Napolitano Announces “If You See Something, Say Something™” Campaign Partnership with the Indianapolis 500

Secretary of Homeland Security Janet Napolitano today joined Indianapolis Mayor Gregory Ballard, Indiana State Homeland Security Advisor and Emergency Manager Joe Wainscott, and Indianapolis Director of Public Safety Frank Straub to announce a new part…

ICS-CERT has released an Advisory "ICSA-11-147-01A – Ecava IntegraXor DLL Hijacking" (PDF)

This Advisory details a DLL Hijacking vulnerability in the Ecava IntegraXor SCADA product

ICS-CERT has released an Advisory "ICSA-11-147-02 – Ecava IntegraXor XSS" (PDF)

This Advisory concerns several cross site scripting (XSS) vulnerabilities in the Ecava IntegraXor SCADA product

ICS-CERT has released an Advisory "ICSA-11-147-02 – Ecava IntegraXor XSS" (PDF)

This Advisory concerns several cross site scripting (XSS) vulnerabilities in the Ecava IntegraXor SCADA product

ICS-CERT has released an Advisory "ICSA-11-147-01 – Ecava IntegraXor DLL Hijacking" (PDF)

This Advisory details a DLL Hijacking vulnerability in the Ecava IntegraXor SCADA product