Vulnerabilities in Canadian IT systems are nothing to joke about

[InfoSec News <alerts () infosecnews org>]

http://www2.canada.com/nanaimodailynews/news/story.html?id=7320810

By Jordan Press
Postmedia News
September 29, 2012

OTTAWA - When a federal cyber-security expert gave his colleagues a 
rundown of the hacktivist collective Anonymous, his coworkers were 
impressed with his expertise - so impressed they jokingly became 
suspicious.

"Seems like Ken is awfully knowledgeable about the inner workings of 
Anon.," reads a Feb. 3 email to Luc Beaudoin, chief of cyber operations 
at the Canadian Cyber Incident Response Centre (CCIRC). "Should we turn 
him in?"

The jokes about Anonymous do not abate there, but amid the jokes 
contained in hundreds of pages of emails and reports released to 
Postmedia News are details of the potential vulnerabilities in Canadian 
IT systems, from government websites to heating and cooling systems, and 
how some system designers haven't considered security in their designs.

Contained in the reports are summaries of successful targeted cyber 
attacks against private sector organizations, which ones were of 
"national interest," which ones are routine, and the origins of each 
attack, such as Brazil, Korea and China.

[...]


--
Certified Ethical Hacker and CISSP with ExpandingSecurity.com gives the best
training and support. Last 2012 CISSP and CEH starts Oct. 1! Take action now
and be done before 2012 ends. Best program, best price.
CISSP info signup
http://www.expandingsecurity.com/product/cissp-live-online-10-week-course/
CEH info signup
http://www.expandingsecurity.com/product/ceh-certified-ethical-hacker-online/
Our Live Online classes will not wreck your schedule.