Data Conversion - security

11g Really Does Support Case Insensitive Passwords

Wed, 26 Mar 2008 10:07:09 +0000

LewisC's An Expert's Guide To Oracle Technology This one is an oopsy. I am playing with 11g again. Having fun too. I'll be writing up some of my experiences shortly. One of the things I have been playing with is Heterogeneous Services. Oracle makes connecting to remote databases (of a non-Oracle persuasion) incredibly easy. Anyway, I

Review: Practical Oracle Security

Wed, 09 Jan 2008 08:22:51 +0000

Practical Oracle Security

Size: 250 pages
Paperback: $49.95
PDF (from Syngress.com): $19.98
Publisher: Syngress (August 15, 2007)
Language: English
ISBN-10: 1597491985
ISBN-13: 978-1597491983

Let me start this review by saying I have never heard of Syngress, the publisher. From a little research, I found

Guilty Plea in Fidelity/Certegy Data Breach

Wed, 05 Dec 2007 22:11:23 +0000

Hopefully, this story is just about finished. I have written several times about the Fidelity/Certegy data breach. Well, it looks like at least one of the people involved has pleaded guilty. According

Data Breach Part 2: Different Day, Same Company

Wed, 31 Oct 2007 22:53:00 +0000

Remember a while back when I wrote about a data breach at Certegy/Fidelity National Information Services? In that entry, I explained how the original estimate of 2.3 million records stolen was actually more like 8.5 million. Guess what, the same company has now managed

EBay Hacked?

Wed, 26 Sep 2007 13:08:14 +0000

Has EBay or paypal been hacked? A co-worker of mine lost thousands of dollars last night. Another co-worker has been notified by paypal of problem transactions (he was notified by phone, not email) that he didn't make. And now, there's a headline on Mashable, eBay Hacked??. According to mashable, We're getting reports in our

Data Breach Leads to Class Action Lawsuit

Sat, 25 Aug 2007 23:28:12 +0000

If you remember a few weeks ago, I wrote in a couple of blog entries about a data breach at a local company, DBA accused of stealing 2.3 Million Customer Records and Remember

Beware XPath Injection

Fri, 20 Jul 2007 11:40:04 +0000

I did not know XPath injection even existed. Kind of makes sense that it does though. XPath is a way to address specific nodes in an XML document. For example, in this document: <doc> <Title>ABC Document</Title> </doc> I would address the Title element as: /doc/Title Kind of like walking through directories on a disk. Of course, XPath can get much more complicated

Google's "Blogger" Gets Hacked

Mon, 09 Oct 2006 16:59:07 +0000

Further to my post last week Hackers Intrude on Social Communities, yesterday Google reported that their blogging service "Blogger" was hacked. About that Fake Post A bug in Blogger enabled an unauthorized user to

Hackers Intrude on Social Communities

Thu, 05 Oct 2006 13:25:48 +0000

Party crashers annoy me. These are people that invite themselves where they are not welcome. Normally, party crashing results from poor social skills. Though their presence may be irritating, their intrusion is benign. In the virtual world, "parties" are

Phishing by SMiShing

Wed, 04 Oct 2006 09:32:08 +0000

SMiShing isn't the sound made when you step in a muddy puddle of water. It is spam received through an SMS message. The message contains a URL that leads to a fraudulent site used for phishing. With new and exciting

Oracle Data Vault

Thu, 27 Apr 2006 22:26:27 +0000

I just ran across this post from EWeek, Oracle Locks DBAs in the Vault. A quick read of it shows that it's a security add on to restrict DBA access to privacy data. A solution for audit requirements for things like Sarb-Ox and HIPAA.