Terrorism database of 2.2 million people leaked

Security researcher Chris Vickery has a knack for finding unprotected databases, but this time it’s an especially explosive discovery, as he came across a “terrorism blacklist” that contains the names of 2.2 million “heightened-risk individuals and organizations.”Vickery asked Reddit if he should share a copy of the Thomson Reuters World-Check database from mid-2014. He wrote, “This copy has over 2.2 million heightened-risk individuals and organizations in it. The terrorism category is only a small part of the database. Other categories consist of individuals suspected of being related to money laundering, organized crime, bribery, corruption, and other unsavory activities.”To read this article in full or to leave a comment, please click here

Terrorism database of 2.2 million people leaked, a blacklist used by governments, banks

Security researcher Chris Vickery has a knack for finding unprotected databases, but this time it’s an especially explosive discovery as he came across a “terrorism blacklist” which contains the names of 2.2 million “heightened-risk individuals and organizations.”Vickery asked Reddit if he should share a copy of the Thomson Reuters World-Check database from mid-2014. He wrote, “This copy has over 2.2 million heightened-risk individuals and organizations in it. The terrorism category is only a small part of the database. Other categories consist of individuals suspected of being related to money laundering, organized crime, bribery, corruption, and other unsavory activities.”To read this article in full or to leave a comment, please click here

Terrorism database of 2.2 million people leaked, a blacklist used by governments, banks

Security researcher Chris Vickery has a knack for finding unprotected databases, but this time it’s an especially explosive discovery as he came across a “terrorism blacklist” which contains the names of 2.2 million “heightened-risk individuals and organizations.”Vickery asked Reddit if he should share a copy of the Thomson Reuters World-Check database from mid-2014. He wrote, “This copy has over 2.2 million heightened-risk individuals and organizations in it. The terrorism category is only a small part of the database. Other categories consist of individuals suspected of being related to money laundering, organized crime, bribery, corruption, and other unsavory activities.”To read this article in full or to leave a comment, please click here

Top 16 jobs for digital and creative pros

(Insider Story)

Installing Windows 10: What to do when there’s not enough storage space

By now, most people who want Windows 10 on their PCs (and some who don’t) have probably installed the upgrade by now.But there is at least one notable exception: If you don’t have enough free storage space on your hard drive, the installation won’t complete. This may result in a “Windows needs more space” dialog box, or one of several error codes (including 0x80070070 – 0x50011, 0x80070070 – 0x50012, or 0x80070070 – 0x60000).INSIDER Review: Enterprise guide to Windows 10 Time’s running out to clear some space and complete the installation. Here’s what you can do to make sure the upgrade goes through:To read this article in full or to leave a comment, please click here

Review: MongoDB Atlas shoulders the ops burden

To read this article in full or to leave a comment, please click here(Insider Story)

NFC-enabled ATMs make it easy to withdraw cash with a smartphone

Android Pay and Apple Pay may be picking up momentum, but cash is still relevant. So what do you do if you’re living a wallet-free life, but need to grab some paper money from the ATM? This is where NFC comes in handy. The same mobile-payments chip that you use with your smartphone at the checkout stand can be used at the ATM, too. Bank of America is one of the first major banks to deploy NFC-enabled ATMs. The company currently offers some 2,800 terminals around the U.S., with 5,200 more coming by year’s end. The nice thing about NFC is that no arduous setup is required. All you need is an Android Pay or Apple Pay profile with your debit card already activated. To read this article in full or to leave a comment, please click here

Microsoft’s big Windows 10 update launches on August 2

Microsoft's latest major refresh of Windows 10 will be released publicly on August 2, the company confirmed Wednesday morning. In a blog post, Microsoft outlined the full list of new features coming with the update, including security upgrades, improvements to Cortana and features aimed at making touchscreen devices with Windows 10 more useful. The news comes almost a year after the consumer launch of Windows 10, which has been one of the company’s major turning points under the leadership of CEO Satya Nadella. The operating system has seen massive (if, at times, unintentional) adoption by both business and consumer users in that time, and these upgrades may further spur adoption across those markets as well.To read this article in full or to leave a comment, please click here

Dangerous keyboard app has more than 50 million downloads

The Flash Keyboard app has been downloaded more than 50 million times -- but is capable of some extremely dangerous behaviors."It looked like it was a convenient keyboard that had some nice features," said Bill Anderson, chief product officer at mobile security company OptioLabs. "The marketing copy in the app store looked great."For a while, the app was in the top 20 downloads for the Google Play Store, he added.MORE ON NETWORK WORLD: 6 simple tricks for protecting your passwords "The problem was that it asked for just about every permission that an app could ask for," he said. "It was an especially long list. And surprisingly, most people said yes. But the permissions were so excessive that it turned this thing into a potentially marvelous way to hack phones."To read this article in full or to leave a comment, please click here

Dangerous keyboard app has more than 50 million downloads

The Flash Keyboard app has been downloaded more than 50 million times -- but is capable of some extremely dangerous behaviors."It looked like it was a convenient keyboard that had some nice features," said Bill Anderson, chief product officer at mobile security company OptioLabs. "The marketing copy in the app store looked great."For a while, the app was in the top 20 downloads for the Google Play Store, he added.MORE ON NETWORK WORLD: 6 simple tricks for protecting your passwords "The problem was that it asked for just about every permission that an app could ask for," he said. "It was an especially long list. And surprisingly, most people said yes. But the permissions were so excessive that it turned this thing into a potentially marvelous way to hack phones."To read this article in full or to leave a comment, please click here

When tech and fashion collide

How technology is transforming the fashion industryThe ideas flowing through designers’ minds are difficult to capture. Transforming precisely what they think and draw into tangible pieces of work can be laborious and time consuming. And the artists can become frustrated when what they produce doesn’t come out exactly as they imagine it.Technology has eliminated that struggle for many designers. Through the use of multi-material 3D printers, laser cutters and digital printers that print on material, designers are creating fashions exactly as they see them in their mind’s eye. Plus, the new tools enable them to create intricate designs that are impossible to make by hand.To read this article in full or to leave a comment, please click here

9 Ways IoT Will Change Enterprise Technology

25 Gigabit Ethernet Adoption: 3 Drivers

Does It Make Sense to Build Your Own Networking Solutions?

One of my readers was listening to the Snabb Switch podcast and started wondering “whether it’s possible to leverage and adopt these bleeding-edge technologies without a substantial staff of savvy programmers?”

Short answer: No. Someone has to do the heavy lifting, regardless of whether you have programmers on-site, outsource the work to contractors, or pay vendors to do it.

Why one Cisco shop is willing to give WiFi startup Mist a shot

Bowdoin College’s WiFi network encompasses 550 Cisco access points and handles the wireless needs of up to several thousand people depending on how busy things are on the Brunswick, Maine campus. But CIO Mitchel Davis says this WLAN still has plenty of room to grow.The college over the past couple of weeks has been testing new WiFi and Bluetooth Low Energy access points and accompanying cloud-based management tools from a Mountain View startup called Mist, formed by ex-Cisco WLAN big shots, as a possible way to expand its wireless services in exciting new ways.To read this article in full or to leave a comment, please click here

This malware pretends to be WhatsApp, Uber and Google Play

Hackers are stealing credit card information in Europe with malware that can spoof the user interfaces of Uber, WhatsApp and Google Play.The malware, which has struck Android users in Denmark, Italy and Germany, has been spreading through a phishing campaign over SMS (short message service), security vendor FireEye said on Tuesday.Once downloaded, the malware will create fake user interfaces on the phone as an “overlay” on top of real apps. These interfaces ask for credit card information and then send the entered data to the hacker.To read this article in full or to leave a comment, please click here

This malware pretends to be WhatsApp, Uber and Google Play

Hackers are stealing credit card information in Europe with malware that can spoof the user interfaces of Uber, WhatsApp and Google Play.The malware, which has struck Android users in Denmark, Italy and Germany, has been spreading through a phishing campaign over SMS (short message service), security vendor FireEye said on Tuesday.Once downloaded, the malware will create fake user interfaces on the phone as an “overlay” on top of real apps. These interfaces ask for credit card information and then send the entered data to the hacker.To read this article in full or to leave a comment, please click here

Be Careful with TCP Syslog and the ASA

I wanted to take just a moment to share a little gotcha that could take you by surprise. To demonstrate, I have a simple topology with an ASA in the middle. I am inspecting ICMP so ping traffic is stateful and flows properly.

To confirm connectivity,  I can ping from csr1000v-2 from csr1000v-1

csr1000v-1#ping 10.0.0.10 repeat 5
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.10, timeout is 2 seconds:
!!!!!
Success rate is 100 percent (5/5), round-trip min/avg/max = 2/6/16 ms

Now for the ASA change that can catch an administrator off guard

asav-1(config)#logging on
asav-1(config)#logging trap informational
asav-1(config)#logging host inside 1.1.1.1 tcp/1025

//clear the connection just to make sure the next connection will be new
asav-1(config)#clear conn

Now the connectivity from csr1000v-1 to csr1000v-2 is broken

csr1000v-1#ping 10.0.0.10 repeat 5
Type escape sequence to abort.
Sending 5, 100-byte ICMP Echos to 10.0.0.10, timeout is 2 seconds:
.....
Success rate is 0 percent (0/5)

So what is wrong? Let’s take one quick look at the logging configuration.

asav-1(config)# show run logging
logging enable
logging trap informational
logging host inside 1.1.1.1 6/1025
asav-1(config)#

Continue reading

Cisco Boosts Cloud Security Capabilities With CloudLock Buy

The Next Level: Agile Networking Part 2

You don't have to be a developer to benefit from Agile principles. Creative people can combine Agile concepts with engineering skills to solve problems. On today's episode we're joined by an experienced Agile coach and an IT recruiter to find out how Agile can improve IT infrastructure projects and careers.

The post The Next Level: Agile Networking Part 2 appeared first on Packet Pushers.