Systems can be hacked - even when switched off

Experts warn of hacker threat over Lights Out Management Exploit

Commenting on reports that Intel’s IPMI (Intelligent Platform Management Interface) allows hackers remote access to servers - even when the server is switched off - Philip Lieberman, President of the privileged identity management specialist Lieberman Software, says the technology is an electronic accident waiting to happen in many major corporations.

IPMI was introduced in the late 1990s by Intel to allow system administrators to manage a computer system and monitor its operation.

How Flame Succeeded - Spoofing Microsoft Updates

Have you heard of Flame – the latest high-profile cyber-attack – and are you concerned that you are vulnerable to attacks like it? Gartner released a report on Flame and recommended “using ‘whitelisting’ approaches for critical servers whenever possible” to “go beyond simple signature or pattern detection.”

“Flame, like all malware, exploits vulnerabilities in enterprise systems, processes and people, and a broad and highly experienced talent pool with varied motivations is at work producing powerful targeted malware,” stated John Pescatore, vice president, distinguished analyst with Gartner in a recent report. “Use ‘whitelisting’ approaches for critical servers whenever possible” he added.

Opinions have been divided about how sophisticated or novel Flame is in the security research community.  According to Bit9, Flame contains components with the most sophistication of anything discovered in the wild to date - by a long shot.


Bit9's latest blog post contains some more analysis of why Flame succeeded and how it spoofed Microsoft's update mechanism to spread...

By 2015, 80% of successful attacks will exploit well-known vulnerabilities....

Gaylord Hotel and Convention Centre, Washington, USA

At Gartner’s Security & Risk Management Summit (11-14 June 2012), Gartner has predicted that, “by 2015, 80% of successful attacks will exploit well-known vulnerabilities and will be detectable via security monitoring”.

The summit is the only time when the entire Gartner analyst and security and risk management community come together in one location to bring the latest research, insights and forward-thinking perspectives found nowhere else.

Tin and silver - the new electric metals

Record high prices for tin and silver are on the cards between now and 2018, as demand for the two metals in solder used in the electronics industry continues to climb and supply fails to keep pace, according to Jon Hykawy, head of global research at Byron Capital Markets, spesking at an April conference on electric metals sponsored by the investment dealer in Toronto and reported in Canadian Mining Journal.

Prices for the two metals started to climb sharply six years ago after the European Union banned the use  of lead in all products sold in Europe after July 2006. The reasoning behind the Restriction on  Hazardous Substances Directive (RoHS) is that a large percentage of electronic waste is never  recycled and that the metals and other materials in electronic devices will simply dissipate into the  environment.

UK decision can mean life or death for thousands of African elephants

DOHA Qatar: Will the lives of thousands, perhaps tens of thousands, of Africa’s beleaguered elephants be put at risk because of decision that the representatives of the United Kingdom make in the next few days.

Two proposals before the CITES conference in Doha seek to downlist elephants to allow for trade in ivory.

The one from Tanzania would result in trade of over 89 tonnes of ivory and the one from Zambia in trade of almost 22 tonnes.

Deadliest Year on Record for Elephants

Large seizures of elephant tusks made 2011 the worst year on record for elephants since ivory sales were banned in 1989, experts said on Thursday. Recent estimates suggest that as many as 3,000 elephants were killed by poachers, according to the International Fund for Animal Welfare, an advocacy group. Tom Milliken, an elephant and rhino specialist for Traffic, a wildlife trade monitoring network, said that most cases involve the smuggling of ivory from Africa into Asia, where growing wealth has fed the desire for ivory ornaments and for rhino horn that is used in traditional medicine, though scientists have proved it has no medicinal value.

A version of this brief appeared in print on December 30, 2011, on page A9 of the New York edition with the headline: Deadliest Year on Record for Elephants.