听卡尔Schieneman, 主任分析和审查与JurInnov, talk with noted electronic discovery expert and former Magistrate Judge from New Jersey, Ron Hedges in what has become an annual E-Discovery recap show. Listen to Ron discuss his top 10 list of the most influential electronic discovery related cases from 2010 with a few key events thrown in as well. This is always an informative show for anyone trying to keep up with developing case law.
Mozilla来提供新功能,以提高在线隐私 – 计算机世界
一月 24, 2011 通过 发表评论
Mozilla的, Firefox浏览器的开发, 是工作的一项功能,可让用户选择在线行为广告.
我们的目标是向用户提供 “更深入的了解和控制网上个人信息,” Mozilla的负责人说,在上周日发布了博客的隐私.
该功能将允许用户配置他们的Firefox浏览器告诉网站和广告商,他们想退出基于他们的行为,任何广告, 亚历福勒 [CQ] 在他的博客中写道. 传达给用户的喜好,使用新的网站和第三方广告服务器 “不跟踪HTTP头”, 这是在Firefox每次点击或页面视图发送.
该功能不会完全块广告, 只有个性化的广告. 如果用户启用该功能, 广告客户将有一个标准的广告,以换取个性化的广告, 根据图表,包括在博客文章.
Mozilla的认为,头为基础的方法,从长远来看将更好地为网络, 相比cookies或黑名单. 使用一个头没有那么复杂, 比基于cookie的解决方案和更持久的,简单的同时,查找和使用. 它不依赖于用户的广告网络和广告商的名单,发现和装载工作, 福勒写道.
Stuxnet的作品: 法医证据显示 – 电报
一月 22, 2011 通过 发表评论
Payload
The Stuxnet payload, the part of the attack that makes and disguises alterations to nuclear centrifuges, sets a new standard for precision targeting of malicious software.
Once it is inside a Windows computer the payload checks to see whether it is connected to a Siemens Step7 industrial control system. It then checks whether that system controls at least 33 “frequency converter drives” made by one of two manufacturers (one of which is Iranian), which control the speed of centrifuges.
Before it siezes power the payload performs a final test on whether the centrifuges are programmed to spin at the very high speeds used in uranium enrichment.
The damaging speed increases Stuxnet then orders are only in force for for short periods, weeks apart. It also disguises its modifications by switching off warning systems.
总之, the Stuxnet payload is a highly sophisticated, precise sabateur, that only a team of advanced programmers could have created, with access to expensive and restricted equipment.
“There are a lot of skills needed to write Stuxnet,” explains Tom Parker. “Whoever did this needed to know [视窗] programming, 步骤 7, they needed platform process knowledge, the ability to reverse engineer a number of file formats, kernel rootkit development and exploit development.”
Is 2011 the Year of a Digital Privacy Revolution?
一月 22, 2011 通过 发表评论
You’re being watched when you’re online. If that makes you uneasy, 你并不孤单. Online privacy—especially in the social-media sphere—is becoming an increasingly contentious issue, but it’s one that largely is left to companies like Google and Facebook to decide. As sites and service-providers struggle to balance the interests of their users against the interests of their business, the question emerges: Is it time for the government to step up and enforce stricter regulation?
Experts say 2011 might just be the year where digital privacy will come to the forefront in Washington. 例如, the Boucher-Stearns bill, drafted by Rick Boucher, a Democrat from Virginia, and Cliff Stearns, a Republican from Florida, would require all websites to inform users how they collect and use personally identifiable information, like phone numbers or addresses. 上个月, the Federal Trade Commission proposed “不跟踪” technology that would be added to websites in order to allow users to “opt out,” making their actions on the site unrecorded.
It’s unclear so far which websites would be required to include the technology, or if the button would be built directly into the browser. But according to some, even if do-not-track and opt-out policies were to be adopted, the United States would still have a relatively laissez-faire attitude toward online privacy compared to much of the rest of the developed world.
LogicalDOC 6.0 得益于重新设计的界面, Microsoft Office集成
一月 22, 2011 通过 发表评论
开源文档管理厂商, 逻辑对象 (新闻, 网站), 已经宣布了一个社会和商业此外LogicalDOC软件升级, 拉入系统的内容与一个完全重新设计的界面和一个新的投递点功能.
逻辑对象已经包括从远程文件夹的文件导入之类的功能, WebDAV的, 一个搜索引擎,是软件的最强点和版本之一. 不过, 这个新版本 - 版本 6.0 - 该公司表示,LogicalDOC演变中的一个里程碑, 基于Google网页工具包的接口 (GWT). 谷歌Web工具包是一个开放源码构建基于浏览器的的应用程序开发框架.
进入军事黑客出售, 高校网站 | 新闻 & 意见 | PCMag.com
一月 22, 2011 通过 发表评论
Ever dreamt of controlling a dot-gov or dot-edu? A hacker is selling access to dozens of military, 政府, and university Websites for $55-499 a piece.
Discovered by security firm Imperva, the hacker advertises varying fees, services, and proofs for cracking into .mil, .州长, and .edu sites around the world.
The priciest, access to the homepage of the U.S. 陆军, National Guard, and Army Forces, goes for $499 each, followed by access of university and governmental Websites. You’ll also find passes to the Italian Official Government Website for $99 or a Taiwanese educational center for $88.
According to Imperva, the hacker is also selling personal data at the going price of $20 对 1,000 名称, 地址, and telephone numbers. 例如, Imperva lists a censored screenshot of University of Connecticut staff members’ 信息.
The hacker probably performed the hack through an SQL injection, Imperva says.
Brian Krebs of Krebson Security said he saw the back-end evidence of the hacks and found them legit.
Android OS bombshell: Did Google illegally lift copyrighted code? | ZDNet的
一月 21, 2011 通过 发表评论
去年夏天, Oracle announced it had filed a complaint against Google, 公司. for patent and copyright infringement. In the lawsuit, Oracle claims that Google “knowingly, directly and repeatedly infringed Oracle’s Java-related intellectual property” in the development and distribution of the Android operating system.
今天, in a bombshell post on his FOSS Patents blog, Florian Mueller, an expert on intellectual property law and open source code, reports that “evidence is mounting that different components of the Android mobile operating system may indeed violate copyrights of Sun Microsystems, a company Oracle acquired a year ago.”
Oracle provided one example in its original complaint showing line-by-line copying of its code. Mueller’s new work looks at a completely different set of files that were not previously disclosed. He found examples of at least six files in one directory that show a “pattern of direct copying.” Those files are part of Froyo (Android 2.2) and Gingerbread (Android 2.3). 此外, he found a significant number of files in the Android codebase that are clearly marked as belonging to Sun:
I have identified 37 files marked as “PROPRIETARY/CONFIDENTIAL” by Sun and a copyright notice file that says: “DO NOT DISTRIBUTE!” Those files appear to relate to the Mobile Media API of the Sun Java Wireless Toolkit. Unless Google obtained a license to that code (which is unlikely given the content and tone of those warnings), this constitutes another breach. [Emphasis in original]
通过 Android OS bombshell: Did Google illegally lift copyrighted code? | ZDNet的.
Twitter的Goo.gl蜗杆推假的防病毒保护 | 新闻 & 意见 | PCMag.com
一月 21, 2011 通过 发表评论
另一种蠕虫正在通过goo.gl网址缩短服务在Twitter轮, 经常指导用户假冒反病毒软件.
受影响的用户可能会注意到神秘的鸣叫,他们没有写上显示他们的饲料, 其中许多包括结尾的goo.gl链接 “m28sx.html。”
“虽然受影响最严重的Twitter用户似乎浑然不觉发生了什么, 几个发现邮件, 涉嫌违反安全,” Sophos的克鲁利在博客中写道.
如果你点击这些链接, 你采取一个网站,建议你的电脑已经感染了病毒. 该网站鼓励您下载它说的是反病毒保护,但实际上是恶意代码.
德尔哈维, 头Twitter的信任和安全的努力, 啾啾昨天,该公司 “努力消除恶意软件的链接,并重置密码受到威胁的帐户。”
英国的监管手表: 欧盟建议简化英国合并
一月 21, 2011 通过 发表评论
(Westlaw业务) Striving to unify business law throughout the EU and simplify the process of mergers and reorganisations of public companies in the UK, the Department for Business Innovation & Skills (BIS) has set out new draft regulations to comply with the latest EU business law directive.
The Draft Companies (Reporting Requirements in Mergers and Divisions) Regulations 2011 sets out to implement EU Directive 2009/109/EC and make various amendments to company law to simplify the process of mergers and reorganisations by making two broad categories of changes:
1. Enabling companies to take advantage of new technology; 和,
2. Removing over-regulation.
Under the regulations the process of a merger or division will be shortened by removing (in certain circumstances); the requirement to provide an expert’s report on the restructuring, the statement by the directors justifying the restructuring, the update on the company’s accounts, the approval by general meeting, and updates of any changes since the restructuring.
同步您经常访问云在与ShareFile业务文件
一月 21, 2011 通过 发表评论
工作流和多用户造成的苦难,为那些试图保持最新的文件,在云, 但ShareFile为中小企业提供的方式来处理这个棘手的杂耍行为.
区分云文件的世界
并非所有的云为基础的文件共享服务创建平等, 并作出有关其企业的噪音 2.0 方便营商的ShareFile, 其最新的产品, 同步. 针对企业用户, 它提供了文件和文件夹的连续同步. 它同时提供一个- 双向同步,以确保数据的有效性和SyncFile的增长平台的一部分.
此外它能够同步到手机和平板电脑, ShareFile也让用户的工作与他们现有的文件夹结构, 而不是要求一切进入一个Drop文件夹. 双向功能,通过一个Adobe AIR 2.0 应用程序, 而同步本身是ShareFile的电动工具套件的一部分,与桌面和移动应用程序, Outlook插件和其他的好东西.
