reporting

now browsing by tag

 
 

#cybersecurity | #hackerspace | Analyst Discusses Reporting Hack Of Computer System At Indian Nuclear Reactor | Avast

Source: National Cyber Security – Produced By Gregory Evans This week a report of hackers gaining access to an Indian nuclear power plant’s computer network led to alarm, confusion, and denial before officials admitted the hack took place. The threat analyst who reported the issue experienced a unique vantage point in the middle of that […] View full post on AmIHackerProof.com

US #rules on #reporting #cybersecurity #flaws set to change #according to #source

Source: National Cyber Security – Produced By Gregory Evans

The Trump administration is set to release its rules for determining whether to disclose t that they find, according to a national security official in the US.

Speaking to the Reuters news agency, the anonymous source stated that the revised rules would be released on whitehouse.gov on Wednesday. The changes are expected to make the process, which federal agencies go through when dealing with finding cybersecurity flaws, more transparent.

The move is seen as an attempt by the US government to fend off criticism that it routinely exposes internet security by keeping cybersecurity flaws and vulnerabilities secret. for

According to the report on Reuters.com, the proposed rule change will name the agencies involved in the process, such as the Departments of Commerce, Treasury and State.

Currently the US government employs an inter-agency review, created under former President Barack Obama. Known as the Vulnerability Equities Process, it is tasked with deciding what happens to any cybersecurity flaws that is discovered by the National Security Agency (NSA).

This approach to online security has received criticism from experts who claim a failure to disclose findings has a more negative impact on the industry, with Reuters pointing out the dangers experts find with the approach:

“The criticism grew earlier this year when a global ransomware attack known as WannaCry infected computers in at least 150 countries, knocking hospitals offline and disrupting services at factories.

The attack was made possible because of a flaw in Microsoft’s Windows software that the NSA had used to build a hacking tool for its own use.

Named WannaCryptor, but also referred to as WannaCry, it spread rapidly by utilizing the eternalblue SMB exploit, part of a large collection of files that leaked from the NSA.

The post US #rules on #reporting #cybersecurity #flaws set to change #according to #source appeared first on National Cyber Security Ventures.

View full post on National Cyber Security Ventures

Regents postpone legislation on campus rape reporting

South Dakota higher education officials won’t ask state lawmakers to do away with a requirement that schools automatically report sexual assaults to police.

Mike Rush, executive director of the South Dakota Board of Regents, said Thursday that too many questions arose from law enforcement groups in trying to put together a legislative proposal that would allow the state’s six colleges and two special schools to provide confidential sexual assault reporting. Currently, when student victims of sexual assault come forward, school officials must file a report with law enforcement.

South Dakota statute says anyone with knowledge of a felony who doesn’t disclose that to the proper authorities could face misdemeanor charges punishable with up to one year in jail, a $2,000 fine or both.

Read More

The post Regents postpone legislation on campus rape reporting appeared first on Parent Security Online.

View full post on Parent Security Online

Is state’s child-abuse reporting system working? Audit seeks to find out

The world of child protection in Pennsylvania has turned upside over the past year or so with two dozen new laws put in place to bolster child safety along with new systems installed for reporting child abuse and neglect.

Given all those changes spurred at least in part by the Jerry Sandusky child sexual abuse scandal, state Auditor General Eugene DePasquale wants to take a look at how well the ones affecting ChildLine are working.

DePasquale announced on Wednesday his auditors last month began the first-ever state audit of this program overseen by Department of Human Services that runs the state’s child abuse hotline and processes applications for child abuse clearances.

Read More

The post Is state’s child-abuse reporting system working? Audit seeks to find out appeared first on Parent Security Online.

View full post on Parent Security Online

Educator no longer charged with not reporting child abuse

A New Mexico physician and private school operator is no longer facing charges of failing to report child abuse leading up to an infant’s death.

The Las Cruces Sun-News reports Davis Ruark, the lead prosecutor in the case, filed for dismissal Nov. 13, saying there was a significant change in evidence.

Ann Mercer was charged in 2014 almost two weeks after 35-year-old Annette Smith was arrested in the death of her daughter, 7-month-old Shania Boddie Smith.

Smith’s then-13- and 12-year-old daughters had told police they informed Mercer about abuse in the home before their infant sister died.

State law requires school officials to report child abuse.

Read More

The post Educator no longer charged with not reporting child abuse appeared first on Parent Security Online.

View full post on Parent Security Online

Exemptions for child abuse reporting weighed

A Delaware judge is considering the constitutionality of a state law thatexempts priests from being required to report suspected child abuse disclosed during confessions — and, if the law is constitutional, whether it should protect elders in a Jehovah’s Witnesses congregation.

The Attorney General’s Office filed a lawsuit against the Laurel Delaware Congregation of Jehovah’s Witnesses last year alleging two elders failed to report to state authorities a sexual relationship between a woman and a 14-year-old boy, both of whom were members of the congregation.

State law says individuals and organizations must report suspected child abuse and neglect immediately via a 24-hour state hotline, unless they learn of the abuse in an attorney-client setting or “that between priest and penitent in a sacramental confession.

Read More

The post Exemptions for child abuse reporting weighed appeared first on Parent Security Online.

View full post on Parent Security Online

Researchers got Rewarded by $10,000 for Reporting XXE Vulnerability in Google

A critical bug XXE vulnerability has been found by researchers which let researchers access the internal files of Google’s production servers. Sounds surprising but it has been really found by hackers which let hackers read any internal files.

As shown, the vulnerability was in Google Toolbar Button Gallery. Team of Researchers found a bug when they noticed that google allows users to customize their toolbars with adding new buttons. For developers its easy to make their own new buttons by uploading XML files containing Meta Data for styling.

This vulnerability can be called as “XML External Entity(XXE) or “XML Injection“. The researchers crafted there own buttons, by uploading it they gained access to internal files of Google Production server like they managed to read “/etc/passwd” and “/etc/hosts“.
The team of researchers reported the vulnerability to Google  as we all know , Google is having a famous bug bounty program, When they reported XXE vulnerability to Google so they rewarded the researchers which $10,000 for identifying bug in search engine’s feature.

Source: http://whogothack.blogspot.co.uk/2014/04/researchers-got-rewarded-by-10000-for.html#.Vhp1Lfmqqko

The post Researchers got Rewarded by $10,000 for Reporting XXE Vulnerability in Google appeared first on Am I Hacker Proof.

View full post on Am I Hacker Proof

U.S. Supreme Court case from Cleveland could set child abuse reporting precedent

WASHINGTON, D.C. – Whip marks that a preschool teacher spotted on a 3-year-old’s face in 2010 triggered a criminal case in Cuyahoga County that has made its way to the U.S. Supreme Court — litigation that could set precedents for how prosecutors can use child-abuse reports filed by teachers.

The case set for March 1 arguments will decide whether statements children make to teachers and day-care workers can be used as evidence in abuse trials where the child can’t testify.

“Child abusers in this case are saying that where you can’t bring a child into court to testify, nothing the child has said can be considered as evidence, and that’s absurd,” says Assistant Cuyahoga County Prosecutor Matthew Meyer, who will deliver the county’s arguments before the U.

Read More

The post U.S. Supreme Court case from Cleveland could set child abuse reporting precedent appeared first on Parent Security Online.

View full post on Parent Security Online

Virginia considering mandatory reporting in wake of Rolling Stone rape article – Parent Security Online

parentsecurityonline.com – As 20,000 students return to school at the University of Virginia this week, they will find the turmoil stirred up by Rolling Stone’s investigation into the institution’s handling of alleged sexual…

View full post on Hi-Tech Crime Solutions Weekly

Spurt in cyber crimes: more victims are reporting them National Cyber Security

nationalcybersecurity.com – Mumbai: The rate of cyber crime in the city, especially obscene emails, SMSs and MMSs and credit card frauds, has gone up drastically in the period under review (January-September this year, as com…

View full post on Hi-Tech Crime Solutions Weekly