Feb
25
2009
BigTimOBrien writes “In this interview with O’Reilly Broadcast, Carl Malamud discusses his grassroots effort to build support for his appointment as Public Printer of the United States, running the Government Printing Office — an agency that opened its doors the day Abraham Lincoln was inaugurated. Malamud has published his plans and platform on yeswescan.org: ‘For over 20 years, Carl Malamud has been publishing government information on the Internet. In 2008, Public.Resource.Org published over 32.4 million pages of primary legal materials, as well as thousands of hours of video and thousands of photographs. In the 1990s, Malamud fought to place the databases of the United States on the Internet. In the 1980s, Malamud fought to make the standards that govern our global Internet open standards available to all. Malamud would continue to work to preserve and extend our public domain, and would place special attention to our relationship with our customers, especially the United States Congress.'”
Read more of this story at Slashdot.
Comments Off on Transparency Advocate Campaigns To Lead GPO | tags: database, databases, google, news | posted in technical news
Feb
22
2009
McGruber writes “Northrup-Grumman’s Govtrip.com website has been shut down following a security breach, according to a report by ‘Security Fix’ blogger Brian Krebs. Being a federal employee and frequent work traveler, I am (was?) a Govtrip user. My agency required me to use Govtrip to book all of my trips, including my airfare, car rentals, and hotel reservations, so Northrup-Grumman’s Govtrip databases contain my frequent flier numbers, Avis & Budget car rental numbers and frequent hotel guest (Choice Privileges, Marriott Rewards, Priority Club, etc.) numbers. Northrup-Grumman also stored all of my trip itineraries, including destinations, dates & modes of travel and the particular vendors (airline, hotel, rental car brand, etc.) used on a particular trip. Also stored on the website were my work travel credit-card (it has a ,000 charge limit), personal checking account where my travel reimbursements were deposited, my home address, and emergency contacts … just imagine what an accomplished social engineer can do with that combination of information!”
Read more of this story at Slashdot.
Comments Off on Uncle Sam’s Travel Site Grounded By Breach | tags: database, databases, google, security, web | posted in technical news
Feb
19
2009
CrazyCanucklehead writes “At the Blackhat security conference in Washington, DC, researcher Michael Sutton has detailed how common XSS flaws in web applications employing (Google) Gears and HTML 5 Database Storage can leave local databases wide open to attack. This comes just as Gears is starting to take off, and just yesterday Google demonstrated a beta version of offline Gmail on phones, thanks to HTML 5 support in WebKit-based browsers, such as those used by Android and the iPhone. Sutton drove home the point by walking through a real world example on commercial site Paymo.biz, which has thankfully since been fixed.”
Read more of this story at Slashdot.
Comments Off on Attacking Local Browser Storage | tags: database, databases, gmail, google, iphone, Phone, security, web | posted in technical news
Feb
13
2009
DB Guy writes “There’s an article over on Read Write Web about what the future of relational databases looks like when faced with new challenges to its dominance from key/value stores, such as SimpleDB, CouchDB, Project Voldemort and BigTable. The conclusion suggests that relational databases and key value stores aren’t really mutually exclusive and instead are different tools for different requirements.”
Read more of this story at Slashdot.
Comments Off on Is the Relational Database Doomed? | tags: database, databases, developer, google, web | posted in technical news
Feb
9
2009
moderators_are_w*nke writes “The UK government is planning yet another database to track its citizens, this time keeping track of their movements in and out of the country for ten years. Just like all their other databases, this one ‘is essential in the fight against crime, illegal immigration and [of course] terrorism.'” I’d be very surprised if the US is not already doing this, and just not making a point to let anyone know.
Read more of this story at Slashdot.
Comments Off on UK Government Plans 10-Year Database of Citizens’ Travel | tags: database, databases, google, news, tv | posted in technical news
Feb
8
2009
secmartin writes “A hacker has managed to gain access to several databases via a SQL injection vulnerability on Kaspersky’s US website. He has posted several screenshots and a list of available tables; judging from the table names, the information available includes data on bugs and user- and reseller accounts. The hacker has indicated that no confidential information will be posted on the Internet, but since a large part of the URLs used was visible in screenshots, it will only be a matter of time before somebody else manages to duplicate this.”
Read more of this story at Slashdot.
Comments Off on Kaspersky Customer Database Exposed | tags: database, databases, google, sql, web | posted in technical news
Jan
29
2009
eldavojohn writes “Russell Tice, former NSA employee & whistleblower, has revealed yet more details claiming that wiretapping was combined with credit card data to target civilians. He also suggests the CEOs of major companies hold the truth: ‘To get at what’s really going on here, the CEOs of these telecom companies, and also of the banking and credit card companies, and any other company where you have big databases, those are the people you have to haul in to Congress and tell them you better tell the truth.’ Will congress follow his suggestions?” This adds to information revealed by Tice last week that the wiretaps targeted journalists in particular.
Read more of this story at Slashdot.
Comments Off on More Claims From NSA Whistleblower Russell Tice | tags: database, databases, google | posted in technical news