Brad Antoniewicz of Foundstone presented at Shmoocon on attacking proximity card systems. HID is the most well known brand of cards. We’ll see if I can summarize accurately. Like the virtual pickpocketing of credit cards, and bad guy can also clone proximity cards. As some buildings, outside work hours you need a badge and PIN to enter the premises. But …
Continue reading ‘Shmoocon 2012: Attacking Proximity Card Systems’ »
A SAIC employee was tasked with taking backup tapes from one facility to another. The employee leaves the tapes in his 2003 Honda Civic for 8 hours. The tapes and car radio were stolen. The tapes contain 4.9 million Tricare medial records ( a good reason to not have your social security number as the ID number on …
There is a grade changing scandal over at Walt Whitman High School locally in Montgomery County Maryland. A teacher noticed that the grades in the system did not match what he or she entered. Investigation has found 54 changes. Montgomery County Schools CTO Sherwin Collette said they believe teacher’s passwords were obtained through the use …
At work the doors at the elevator lobby on each floor (other than the first and the cellar) started being propped open. I never saw any official notice that this was an authorized action rather than a rogue one. Scuttlebutt around the office was that someone had put in a suggestion to have the doors …
Source: Washington Post A former computer systems administrator for the Naval Research Laboratory pleaded guilty today to a federal charge stemming from the theft of nearly 19,000 pieces of computer and office equipment. Items were stolen from 1997 until August 2007. 100 personal computers, 167 keyboards, 275 mice, 80 monitors, 187 toner cartridges and nearly …
Continue reading ‘NRL Employee Pleads Guilty to Computer Theft’ »
Smash and grab thefts performed on parked cars have been in the news more recently. People purchase GPS, ipods and satellite radio units and leave them in their car. This allows thieves easy access to resell-able items. This week, we received notice that one of the other parking garages in our office park had been …
I just saw that CourtTV (CourtTV is TruTV as of 1/1/2008) had a pen testing show called Tiger Team that aired a couple of times last week. GrumpySecurityGuy calls it “It Takes a Thief” with a security twist. Don’t go in expecting this show to be about a Red Team in a dark room somewhere …
I was home last week when a couple of guys knocked on my door. I hate it when people ignore the no solicitation sign that is at the entrance to our community. They were wearing Honeywell shirts and said they were in the neighborhood offering to upgrade five people to the latest greatest alarm system …