2009 October | FireBlog by FireHost

Archive for October, 2009

Win a Flip Mino HD in Honor of Kyle Steed’s 2 year Blogiversary

by FireHost Evangelist on October 13th, 2009

This week, we’ve teamed up with Kyle Steed to Celebrate the Two-year Anniversary of his blog.

In honor of Kyle’s commitment to bringing design-inspired news to you, we’re giving away a Flip Mino HD Recorder with a custom case designed by Mr. Steed himself!

Here’s how to win:

Step 1: Follow @FireHost and @KyleSteed on Twitter
Step 2: Tweet the following phrase as many times as you’d like between Tuesday 10/13 and Monday 10/19 for a chance to win! “Win a Flip Mino HD from @kylesteed and @firehost – celebrating two years http://bit.ly/1saiqi RT to participate!“

You can improve your chances of winning the contest by posting a comment on Kyle’s contest page.

Good luck!

Follow up:

Congratulations David Yarde! You won the custom Flip.

Tags: contests, flip camera, flip mino hd, kyle steed
Posted in: FireHost News | No Comments »

Cyber Crime Targeting Financial Services Organizations Continues to Rise, Gain Success

by FireHost Evangelist on October 6th, 2009

financialTarget Of the 285 million successful data breaches investigated by Verizon Business last year, 99% of the data was stolen from servers and applications, not desktops, mobile devices, or portable media. Additionally, over 90% of the 285 million successful data breaches involved organizations that provide financial services.

Experts attribute the proliferation of cybercrime in the Financial Services sector to the recent and lucrative trend toward personal identification number (PIN) fraud.

Hackers who successfully associate a stolen PIN with the appropriate credit card or debit account information can steal cash directly from the consumer’s account. This type of attack, where money is taken “legitimately” from checking, savings, and/or brokerage accounts is more difficult to trace and almost impossible for consumers to defend.

Cyber criminals have been quick to react to the vulnerability, re-engineering processing and developing new memory-scraping malware making it easy to obtain and store PIN details.

While Financial Services Organizations accounted for most of the data compromises, they were not the most targeted sector:

Retail Industry #1 at approximately 33% of all attacks
Financial Services #2 at approximately 30% of all attacks (highest growth, +16% from previous years)
Food and Beverage Services #3 at approximately 14%

These statistics (30% of attacks, 90% of successful breaches) indicate that security measures presently in place with financial institutions are severely underdeveloped.

(more…)

Tags: cyber criminals, PCI Compliance, pin fraud, Secure Cloud Hosting
Posted in: Security | No Comments »

Vulnerabilities Affecting Personal Computers, 2nd Largest Threat Category for Internet Users

by FireHost Evangelist on October 2nd, 2009

Holy_pc Client-side (or Personal Computer) vulnerabilities are “holes” in the operating system or applications that run on personal computers. In addition to the core operating system, email clients, browsers, document viewers, and multimedia applications are susceptible to exploits in this category.

The top trends in browser exploits for this year include:

Web browsers in general made up the largest number of client-side vulnerabilities reported this year, and web browser plug-in ActiveX control accounts for three of the top five most popular web browser exploits.
New FireFox threat disclosures surpassed Microsoft Internet Explorer’s new disclosures. As with most browser-related incidents, attacks happened when users did not keep browser’s patched and current.
Organized and targeted web exploit toolkits are quickly replacing “one off’ web browser exploits because of the flexible delivery options that empower hackers to attack all a site’s visitors at once or customize victims based on data such as the visitor’s cookie set, geographic location, or referring url.
Obfuscation found in client side exploits is on the rise. In fact, the amount of suspicious, obfuscated content almost doubled from Q1 to Q2 of this year.
VBScript is now being used on 20% of malicious sites, up 13% from 2008. Researchers have observed that final attack code however is still usually JavaScript which has merely been obfuscated by Visual Basic Scripts.

(more…)

Posted in: Security | No Comments »