Ed Gardner – Page 6 – New England Safety Partners, LLC

I can’t remember the last time I thought about the US no-fly list: the list of people so dangerous they should never be allowed to fly on an airplane, yet so innocent that we can’t arrest them. Back when I thought about it a lot, I realized that the TSA’s practice of giving it to every airline meant that it was not well protected, and it certainly ended up in the hands of every major government that wanted it.

The list is back in the news today, having been left exposed on an insecure airline computer. (The airline is CommuteAir, a company so obscure that I’ve never heard of it before.)…

Drupal Releases Security Advisories to Address Multiple Vulnerabilities

January 20, 2023

Ed Gardner 0

Original release date: January 20, 2023Drupal has released security advisories to address vulnerabilities affecting multiple products. An attacker could exploit these vulnerabilities to access sensitive information.

CISA encourages users and administr…

Cisco Releases Security Advisory for Unified CM and Unified CM SME

January 20, 2023

Ed Gardner 0

Original release date: January 20, 2023Cisco released a security advisory for a vulnerability affecting Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME). A remote att…

CISA Releases One Industrial Control Systems Advisory

January 19, 2023

Ed Gardner 0

Original release date: January 19, 2023CISA released one Industrial Control Systems (ICS) advisory on January 19, 2023. This advisory provides timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

CISA encour…

Mozilla Releases Security Updates for Firefox

January 18, 2023

Ed Gardner 0

Original release date: January 18, 2023Mozilla has released security updates to address vulnerabilities in Firefox ESR and Firefox. An attacker could exploit some of these vulnerabilities to take control of an affected system.

CISA encourages users an…

CISA Adds One Known Exploited Vulnerability to Catalog

January 17, 2023

Ed Gardner 0

Original release date: January 17, 2023CISA has added one new vulnerability to its Known Exploited Vulnerabilities Catalog, based on evidence of active exploitation. This type of vulnerability is a frequent attack vector for malicious cyber actors and …

CISA Updates Best Practices for Mapping to MITRE ATT&CK®

January 17, 2023

Ed Gardner 0

Original release date: January 17, 2023Today, CISA updated Best Practices for MITRE ATT&CK® Mapping. The MITRE ATT&CK® framework is a lens through which network defenders can analyze adversary behavior and, as CISA Executive Assistant Director …

CISA Updates Best Practices for Mapping to MITRE ATT&CK®

January 17, 2023

Ed Gardner 0

CISA Releases Four Industrial Control Systems Advisories

January 17, 2023

Ed Gardner 0

Original release date: January 17, 2023CISA released four Industrial Control Systems (ICS) advisories on January 17, 2023. These advisories provide timely information about current security issues, vulnerabilities, and exploits surrounding ICS.

…

The FBI Identified a Tor User

January 17, 2023

Welcome Ed Gardner 0

No details, though:

According to the complaint against him, Al-Azhari allegedly visited a dark web site that hosts “unofficial propaganda and photographs related to ISIS” multiple times on May 14, 2019. In virtue of being a dark web site—that is, one hosted on the Tor anonymity network—it should have been difficult for the site owner’s or a third party to determine the real IP address of any of the site’s visitors.
Yet, that’s exactly what the FBI did. It found Al-Azhari allegedly visited the site from an IP address associated with Al-Azhari’s grandmother’s house in Riverside, California. The FBI also found what specific pages Al-Azhari visited, including a section on donating Bitcoin; another focused on military operations conducted by ISIS fighters in Iraq, Syria, and Nigeria; and another page that provided links to material from ISIS’s media arm. Without the FBI deploying some form of surveillance technique, or Al-Azhari using another method to visit the site which exposed their IP address, this should not have been possible…

« 1 … 4 5 6 7 8 … 48 »

Author: Ed Gardner