[2107] in Security FYI
[IS&T Security-FYI] SFYI Newsletter, November 30, 2009
daemon@ATHENA.MIT.EDU (Monique Yeaton)
Mon Nov 30 16:15:49 2009
Message-Id: <75C6B0B5-C913-46BB-80B5-E2A8579045FC@mit.edu>
From: Monique Yeaton <myeaton@MIT.EDU>
To: ist-security-fyi@MIT.EDU
Mime-Version: 1.0 (Apple Message framework v936)
Date: Mon, 30 Nov 2009 16:13:48 -0500
Cc: itss@MIT.EDU
Content-Type: multipart/mixed; boundary="===============0620976995=="
Errors-To: ist-security-fyi-bounces@MIT.EDU
--===============0620976995==
Content-Type: multipart/signed; boundary=Apple-Mail-47--11928702; micalg=sha1;
protocol="application/pkcs7-signature"
--Apple-Mail-47--11928702
Content-Type: multipart/alternative;
boundary=Apple-Mail-46--11928762
--Apple-Mail-46--11928762
Content-Type: text/plain;
charset=US-ASCII;
format=flowed;
delsp=yes
Content-Transfer-Encoding: 7bit
In this issue:
1. Flaws in Browsers
2. Preventing Data Loss on Web 2.0
--------------------------
1. Flaws in Browsers
--------------------------
Watch out when browsing! Firefox and Internet Explorer 6, 7 and 8 all
have flaws that were reported in the past week.
Firefox was found to have some poorly written extensions that could be
exploited to install malware on a victim's computer:
<http://blogs.techrepublic.com.com/security/?p=2710&tag=nl.e036>
A cross-site scripting (XSS) vulnerability can be exploited in
Internet Explorer 8 to allow attacks on web pages that are otherwise
safe:
<http://www.theregister.co.uk/2009/11/20/internet_explorer_security_flaw/
>
Microsoft also confirmed the existence of a zero-day flaw in older
versions of Internet Explorer. Proof-of-concept exploit code for the
vulnerability has been posted on the Internet; an attack could crash
vulnerable systems or allow arbitrary code execution:
<http://www.computerworld.com/s/article/9141363/Microsoft_confirms_IE6_IE7_zero_day_bug
>
----------------------------------------------
2. Preventing Data Loss on Web 2.0
----------------------------------------------
Everyone is using Web 2.0 these days. From advertising to and
communicating with your constituents via social media such as blogs,
Facebook and Twitter, to using tools such as webmail and Google for
managing your email and other documents, businesses are all using some
form of the newest Web 2.0 applications.
Sharing all this data on the World Wide Web makes communication so
much easier, but also comes with increased data risk, compliance
failure and loss of intellectual property. How can you prevent data
loss when you can't turn off social media?
What happens if, using a Web 2.0 application, a faculty member posts
the PII (personally identifiable information) of his or her students
to a public Internet site? Or what if an employee uses their Facebook
account to discuss confidential research information? Do you have any
controls over this information and any means to remediate its
exposure? Is the Institute liable?
In a Web 2.0 world, organizations want to look at how to ensure
regulatory compliance, with the focus on risk assessment and
implementing security controls that respond to the threats they face,
such as the situations described above.
Other than technical solutions, there should be policies and business
practices in place, outlining regulatory compliance for data
protection. Should employees handling sensitive data be allowed to
access social media on the same computer they use for work? Rather
than sharing files through Google Docs or other types of document
sharing websites, are there safer ways to share files containing
sensitive data? Asking and answering some of these questions could
just prevent the next big data breach.
Here are just a few examples of universities who have had their data
exposed through the Internet in the past few months:
<http://www.latimes.com/news/local/la-me-cal-poly16-2009nov16,0,503569.story
>
<http://www.chaminade.edu/infosecure/>
<http://www.ktla.com/news/landing/ktla-csula-computer-breach,0,1880242.story
>
<http://www.kentucky.com/latest_news/story/947409.html>
To learn more about protecting information at MIT, visit <http://web.mit.edu/infoprotect/
>.
The IT Security Services team (security@mit.edu) has also been teaming
up with Allison Dolan from the Program to Protect Personally
Identifying Information to share with the community best security
practices and the newest laws and regulations for protecting sensitive
information.
If you are interested in an informational session, please contact
Monique Yeaton (myeaton@mit.edu) or Allison Dolan (adolan@mit.edu).
They will be giving several of these sessions to the public during IAP
2010 as well: <http://student.mit.edu/iap/nsis.html>
=
=
=
========================================================================
Find current and older issues of Security FYI Newsletter: <http://kb.mit.edu/confluence/x/ehBB
>
Monique Yeaton
IT Security Awareness Consultant
MIT Information Services & Technology (IS&T)
(617) 253-2715
http://ist.mit.edu/security
--Apple-Mail-46--11928762
Content-Type: text/html;
charset=US-ASCII
Content-Transfer-Encoding: quoted-printable
<html><body style=3D"word-wrap: break-word; -webkit-nbsp-mode: space; =
-webkit-line-break: after-white-space; "><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; ">In =
this issue:</div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; ">1. =
Flaws in Browsers</div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; ">2. Preventing Data Loss on Web 2.0</div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
min-height: 17px; "><br></div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
">--------------------------</div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; ">1. Flaws in Browsers</div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
">--------------------------</div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
">Watch out when browsing! Firefox and Internet Explorer 6, 7 and 8 all =
have flaws that were reported in the past week.</div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
min-height: 17px; "><br></div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; ">Firefox was found to have some =
poorly written extensions that could be exploited to install malware on =
a victim's computer:</div><div style=3D"margin-top: 0px; margin-right: =
0px; margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; "><<a =
href=3D"http://blogs.techrepublic.com.com/security/?p=3D2710&tag=3Dnl.=
e036">http://blogs.techrepublic.com.com/security/?p=3D2710&tag=3Dnl.e0=
36</a>></div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; ">A =
cross-site scripting (XSS) vulnerability can be exploited in Internet =
Explorer 8 to allow attacks on web pages that are otherwise =
safe:</div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; "><<a =
href=3D"http://www.theregister.co.uk/2009/11/20/internet_explorer_security=
_flaw/">http://www.theregister.co.uk/2009/11/20/internet_explorer_security=
_flaw/</a>></div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
">Microsoft also confirmed the existence of a zero-day flaw in older =
versions of Internet Explorer. Proof-of-concept exploit code for the =
vulnerability has been posted on the Internet; an attack could crash =
vulnerable systems or allow arbitrary code execution:</div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
"><<a =
href=3D"http://www.computerworld.com/s/article/9141363/Microsoft_confirms_=
IE6_IE7_zero_day_bug">http://www.computerworld.com/s/article/9141363/Micro=
soft_confirms_IE6_IE7_zero_day_bug</a>></div><div style=3D"margin-top: =
0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: =
normal normal normal 14px/normal Helvetica; min-height: 17px; =
"><br></div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
">----------------------------------------------</div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; ">2. =
Preventing Data Loss on Web 2.0</div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; =
">----------------------------------------------</div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
min-height: 17px; "><br></div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; ">Everyone is using Web 2.0 these =
days. =46rom advertising to and communicating with your constituents via =
social media such as blogs, Facebook and Twitter, to using tools such as =
webmail and Google for managing your email and other documents, =
businesses are all using some form of the newest Web 2.0 =
applications. </div><div style=3D"margin-top: 0px; margin-right: =
0px; margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
">Sharing all this data on the World Wide Web makes communication so =
much easier, but also comes with increased data risk, compliance failure =
and loss of intellectual property. How can you prevent data loss when =
you can't turn off social media?</div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
">What happens if, using a Web 2.0 application, a faculty member posts =
the PII (personally identifiable information) of his or her students to =
a public Internet site? Or what if an employee uses their Facebook =
account to discuss confidential research information? Do you have any =
controls over this information and any means to remediate its exposure? =
Is the Institute liable?</div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; ">In =
a Web 2.0 world, organizations want to look at how to ensure regulatory =
compliance, with the focus on risk assessment and implementing security =
controls that respond to the threats they face, such as the situations =
described above. </div><div style=3D"margin-top: 0px; margin-right: =
0px; margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
">Other than technical solutions, there should be policies and business =
practices in place, outlining regulatory compliance for data protection. =
Should employees handling sensitive data be allowed to access social =
media on the same computer they use for work? Rather than sharing files =
through Google Docs or other types of document sharing websites, are =
there safer ways to share files containing sensitive data? Asking and =
answering some of these questions could just prevent the next big data =
breach.</div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
">Here are just a few examples of universities who have had their data =
exposed through the Internet in the past few months:</div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
min-height: 17px; "><br></div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; "><<a =
href=3D"http://www.latimes.com/news/local/la-me-cal-poly16-2009nov16,0,503=
569.story">http://www.latimes.com/news/local/la-me-cal-poly16-2009nov16,0,=
503569.story</a>></div><div style=3D"margin-top: 0px; margin-right: =
0px; margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; "><<a =
href=3D"http://www.chaminade.edu/infosecure/">http://www.chaminade.edu/inf=
osecure/</a>></div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; "><<a =
href=3D"http://www.ktla.com/news/landing/ktla-csula-computer-breach,0,1880=
242.story">http://www.ktla.com/news/landing/ktla-csula-computer-breach,0,1=
880242.story</a>></div><div style=3D"margin-top: 0px; margin-right: =
0px; margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; "><<a =
href=3D"http://www.kentucky.com/latest_news/story/947409.html">http://www.=
kentucky.com/latest_news/story/947409.html</a>></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Helvetica; =
min-height: 17px; "><br></div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; ">To learn more about protecting =
information at MIT, visit <<a =
href=3D"http://web.mit.edu/infoprotect/">http://web.mit.edu/infoprotect/</=
a>>. </div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Arial; "><span =
style=3D"font: 14.0px Helvetica">The IT Security Services team (<a =
href=3D"mailto:security@mit.edu">security@mit.edu</a>) has also been =
teaming up with Allison Dolan from the </span>Program to Protect =
Personally Identifying Information to share with the community best =
security practices and the newest laws and regulations for protecting =
sensitive information. </div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Arial; min-height: 16px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Arial; ">If you =
are interested in an informational session, please contact Monique =
Yeaton (myeaton@mit.edu) or Allison Dolan (adolan@mit.edu). They will be =
giving several of these sessions to the public during IAP 2010 as well: =
<<a =
href=3D"http://student.mit.edu/iap/nsis.html">http://student.mit.edu/iap/n=
sis.html</a>></div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Helvetica; min-height: 17px; "><br></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Arial; =
">=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=
=3D</div><div style=3D"margin-top: 0px; margin-right: 0px; =
margin-bottom: 0px; margin-left: 0px; font: normal normal normal =
14px/normal Arial; min-height: 16px; "><br></div><div style=3D"margin-top:=
0px; margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: =
normal normal normal 14px/normal Arial; ">Find current and older issues =
of Security FYI Newsletter: <<a =
href=3D"http://kb.mit.edu/confluence/x/ehBB"><span =
style=3D"text-decoration: underline ; color: =
#2151aa">http://kb.mit.edu/confluence/x/ehBB</span></a>></div><div =
style=3D"margin-top: 0px; margin-right: 0px; margin-bottom: 0px; =
margin-left: 0px; font: normal normal normal 14px/normal Arial; =
min-height: 16px; "><br></div><div style=3D"margin-top: 0px; =
margin-right: 0px; margin-bottom: 0px; margin-left: 0px; font: normal =
normal normal 14px/normal Helvetica; min-height: 17px; "><br></div><div =
apple-content-edited=3D"true"><span class=3D"Apple-style-span" =
style=3D"border-collapse: separate; color: rgb(0, 0, 0); font-family: =
Calibri; font-size: medium; font-style: normal; font-variant: normal; =
font-weight: normal; letter-spacing: normal; line-height: normal; =
orphans: 2; text-align: auto; text-indent: 0px; text-transform: none; =
white-space: normal; widows: 2; word-spacing: 0px; =
-webkit-border-horizontal-spacing: 0px; -webkit-border-vertical-spacing: =
0px; -webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: =
auto; -webkit-text-stroke-width: 0px; "><div style=3D"word-wrap: =
break-word; -webkit-nbsp-mode: space; -webkit-line-break: =
after-white-space; "><span class=3D"Apple-style-span" =
style=3D"border-collapse: separate; color: rgb(0, 0, 0); font-family: =
Calibri; font-size: 14px; font-style: normal; font-variant: normal; =
font-weight: normal; letter-spacing: normal; line-height: normal; =
orphans: 2; text-indent: 0px; text-transform: none; white-space: normal; =
widows: 2; word-spacing: 0px; -webkit-border-horizontal-spacing: 0px; =
-webkit-border-vertical-spacing: 0px; =
-webkit-text-decorations-in-effect: none; -webkit-text-size-adjust: =
auto; -webkit-text-stroke-width: 0px; "><div style=3D"word-wrap: =
break-word; -webkit-nbsp-mode: space; -webkit-line-break: =
after-white-space; "><div><div><span class=3D"Apple-style-span" =
style=3D"font-size: medium;"><br></span><div>Monique Yeaton</div><div>IT =
Security Awareness Consultant</div><div>MIT Information Services & =
Technology (IS&T)</div><div>(617) 253-2715</div><div><a =
href=3D"http://ist.mit.edu/security">http://ist.mit.edu/security</a></div>=
<div><br></div><br></div></div><br></div></span><br =
class=3D"Apple-interchange-newline"></div></span><br =
class=3D"Apple-interchange-newline"> </div><br></body></html>=
--Apple-Mail-46--11928762--
--Apple-Mail-47--11928702
Content-Disposition: attachment;
filename=smime.p7s
Content-Type: application/pkcs7-signature;
name=smime.p7s
Content-Transfer-Encoding: base64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--Apple-Mail-47--11928702--
--===============0620976995==
Content-Type: text/plain; charset="us-ascii"
MIME-Version: 1.0
Content-Transfer-Encoding: 7bit
Content-Disposition: inline
_______________________________________________
ist-security-fyi mailing list
ist-security-fyi@mit.edu
To Unsubscribe http://mailman.mit.edu/mailman/listinfo/ist-security-fyi
--===============0620976995==--
