|
|
|
archives If you want an RSS feed try this
Saturday, October 25, 2003California Attorney General's Office $2m fines PWM Spammers
 Bill Lockyer the California Attorney General has fined internet marketing company PW Marketing of Los Angeles 2 million dollars in a landmark case, for sending millions of unwanted emails, SPAM, to Californian residents. The action was brought under the 1998 anti-spam law, and specifically because the emails did not include a free-phone number for recipients to call to be able to request they be removed from the list to prevent future mailings. In addition the emails did not include a vaid return email address and were deliberately sent in such a way as to hide the identity of the company.The two owners of the company, Paul Willis and Claudia Griffin have also been banned from owning or managing any company that advertises over the internet for a period of 10 years. Next year the laws are going to get much tougher too as individuals will be able to bring cases against those who send unsolicited email. Related Links California Attorney General's Office Getting Tough on Spammers California wins anti-spam case - BBC - By Maggie Shiels California Attorney General MXtreme Anti-SPAM appliance MXtreme : Microsoft Exchange & Outlook Web Access security vulnerabilities Anti-SPAM white paper posted by Robert Campbell 8:23 AM Thursday, October 23, 2003Secure Mobile Computing Seminar
 CAP Gemini Ernst & Young and Microsoft to appear at ecommnet's forthcoming seminar on Secure Mobile Computing to be held in London on the 19th November 2003.Key note speakers will be Nick Naylor, a CLAS Consultant from CAP Gemini Ernst & Young will speak about managing the risks posed by the increasing use of mobile devices and Microsoft's Chris Harman who will be discussing their future mobility strategy and associated business benefits. Related Links Full details and registration for this free seminar posted by Robert Campbell 6:05 PM Wednesday, October 22, 2003e-mail from hell
 In what's  being dubbed as a new form of DDoS or Demon No Service, the recent outages of email and web services by the ISP owned by THUS Plc. has had customers fuming.Many of our own customers were experiencing email delays of 16 hours or more; and today Demon's network status page still is showing delays within the system.The moral of the story is if email or internet connectivity is vital to your business make sure its reliable, and preferably dual sourced. Related Links ISP outage: users told to get back-up network - Computer Weekly Fault-tolerant IP and ISP Connections posted by Robert Campbell 2:04 PM Flawed DCOM RPC again!
 Microsoft's pit of gloom must be ever deeper with new vulnerabilities being found the the DCOM - RPC mechanisms in Windows 2000 and XP. These , according to Integralis, are new ones and not the same as the two recently exploited by the Blaster series of viruses and detailed in the MS03-026 or MS03-039 patches. The vulnerable ports are 135/tcp, 139/tcp, 445/tcp, 593/tcp, 135/udp, 137/udp, 138/udp and 445/udp. Related Links SECURITY: New RPC flaw in Windows - Computer Shopper All FUD over RPC-DCOM MSS flaw highlights e-security laziness The same MSS flaw article in The Register Department of Homeland Security Advisory (updated) MSFT bulletin (MS03-026) Growing fears over net threat posted by Robert Campbell 11:15 AM Tuesday, October 21, 2003Microsoft Office 2003 email could destroy itselfMicrosoft with it's recent announcement of Office 2003's capability to automatically destruct email and other so called e-mail security controls could make it fall foul of many significant laws. There are several key acts Sarbanes Oxley, SEC 17a in the USA, and several parts of the UK RIP; Data Protection Act, and other EU and UK employment legislation make it obligatory to keep records. Overall this much vaunted feature doen't seem all its cracked up to be. Related Links Self-destructing emails? Or just 'best before'? - Silicon.Com Microsoft backs e-mail controls - BBC News posted by Robert Campbell 8:54 PM Victoria's Secret is out
 Victoria's Secret is out, or rather their customer's are. In a case very similar to the Guess and reported earlier in the year Victoria's Secret the well known clothing retailer has been fined by the New York Attorney General, Eliot Spitizer for revealing their customer's panty buying habits online. The fine, $50,000 is not large by any standards, has been agreed by Victoria's Secrets without admitting any wrong doing, yet the Attorney General's remarks hit hard at the company and forced then to compesate hundreds of customers. The flaw in the company's web site enabled users to see other people's buying habits simply by manipulation the customer ID. The most surprising thing that in this day and age that a retailer of such a reputation when told of the web site compromise did nothing about it, despite at least the two high profile court cases mentioned earlier. Related Links PetCo.com Victoria's Secret Guess Who'ss Fault it is Yours! Federal Trade Commission's analysis of Guess Ruling posted by Robert Campbell 8:21 PM
|
