Date: |
Title: |
5/27/09 |
Protecting yourself!! Jury scams have been around for years, but have seen a resurgence in recent months. The jury scam is a simple variation of the identity-theft ploys that have proliferated in recent years as personal information and good credit have become thieves' preferred prey, particularly on the Internet. Click here to read more.
|
2/12/09 |
While there have been marked improvements in cellular phone security in recent years, users still need to be aware of the security risks associated with cell phones. Not only can a thief create a huge bill, but they can also wipe your bank account clean. Thiefs are sending text messages to people who are listed as having a close relationship to the phone owner and then asking sensitive questions, such as pin numbers to accounts. If the person's purse or wallet is stolen along with the phone, they can use credit cards or debit cards to wipe the accounts clean before the person even knows their phone is missing. Be cautious not to disclose relationships between yourself and the people on your cell phone when entering contact information. Avoid using names like home, hubby, mom, dad, etc. And most importantly, when sensitive information is being asked through text messages, confirm by calling back. The SEC-LLC would like to thank Becky Ramsey (NA-71) for sharing this information..
|
2/2/09 |
According to US-CERT, there are reports of malicious code circulating via spam email with messages related to Valentine's Day. These messages contain a link to a website that contains several images and instructs users to click the images which then download an executable file. If users accept the download, malicious code may be installed into their systems. For more information on this alert, visit http://www.us-cert.gov/current/index.html#malicious_code_spreading_via_valentine .
|
1/13/09 |
The Security Lessons Learned Center has been advised that there have been reports of incidents involving the Defense Technology 7000 series Distraction Device models. Please forward this information to your security personnel. Contact Darin Fulks from BAE Systems at 614-209-9324 or Simon Dixon from Defense Technology at 850-322-7840 with further questions or concerns. We'd like to thank Gary Branson from BEA at the Idaho National Laboratory for providing this alert.
|
12/09/08 |
The US Department of Justice through the Office of Health, Safety and Security, reports on injuries received by 3 men due to defective flash-bang grenades manufactured by Pyrotechnic Specialties, Inc (PSI). It is recommended that a search of purchasing records of flash bang devices be conducted to determine if they are manufactured by PSI. If PSI diversionary devices are located in current inventory, it is recommended that they be removed from service. Click here to read more.
|
12/01/08 |
The Security Lessons Learned Center received notification that a memorandum signed by Mr. Glenn S. Podonsky approving the proposed "Day Handgun Qualification Course of Fire" and "Tactical Response Force Combined Handgun/Rifle Qualification Course of Fire" has been released. Sites are authorized to phase the approved new courses during FY09 semiannual firearms qualifications. If you did not receive the memorandum sent out about these courses, contact your Security & Safeguards director for further information.
|
11/12/08 |
What should you do if you find a flash drive in the parking lot? Or, receive an e-mail from an official-looking source asking you to click on a link for new training on security badges? The answer: don't put a CD, or a flash drive, into a system without first verifying it comes from a legitimate source and is for work-related purposes. Ensure that the sensitivity of the information on the CD or flash drive is known (it should be marked) and can be processed on the system. Click here to read more on a test that was conducted at PNNL that illustrates the important role all employees play in protecting the security of Laboratory information. Thanks to PNNL and LANL for the information.
|
4/22/08 |
According to CNN, some of today's hottest gadgets are landing on store shelves with some unwanted extras from the factory: pre-installed viruses that steal passwords, open doors for hackers and make computers spew spam. Click here to read about how these electronic gadgets are the latest source of computer viruses!
|
4/17/08 |
Safety Alert: Following the March 31, 2008 Defective Ammunition Alert, the Office of Health, Safety and Security (HSS) is asking for specific action to be taken and reported back. Click here to read the Safety Alert distributed on April 15, 2008.
|
4/3/08 |
Field Evaluation of Skyhook Helikite - If considering the purchase of the Skyhook Helikite product, keep in mind that it may not be suitable for your location or needs. For more information on what was found after a field evaluation, please contact the DNS-LLC Team at dns-lessons@lanl.gov.
|
3/31/08 |
DEFECTIVE AMMUNITION ALERT: Poor quality ammunition being supplied to our allies in Afghanistan as well as to U.S. Government Agencies may result in potential safety problems. Click here to read the New York Times article.
|
2/13/08 |
FBI Issues Valentine's Day Email Warning: With the Valentine's Day holiday approaching, be on the lookout for spam e-mails spreading the Storm Worm malicious software (malware). The e-mail directs the recipient to click on a link to retrieve the electronic greeting card (e-card). Once the user clicks on the link, malware is downloaded to the Internet-connected device and causes it to become infected and part of the Storm Worm botnet. A botnet is a network of compromised machines under the control of a single user. Botnets are typically set up to facilitate criminal activity such as spam e-mail, identity theft, denial of service attacks, and spreading malware to other machines on the Internet. The Storm Worm virus has capitalized on various holidays in the last year by sending millions of e-mails advertising an e-card link within the text of the spam e-mail. Valentine's Day has been identified as the next target. Be wary of any e-mail received from an unknown sender. Do not open any unsolicited e-mail and do not click on any links provided.
|
1/15/08 |
Configuration Management and Change Control: A Lessons Learned that examines how the lack of procedures, processes, and adequate retraining led to a Protective Force safety event. For more information please contact the DNS-LLC at dns-lessons@lanl.gov.
|
