|
|
 |
|
|
DISCLAIMER: Logging other people's keystrokes or breaking
into other people's computer without their permission can
be considered illegal by the courts of many countries.
The monitoring software reviewed here is ONLY for authorized
system administrators and/or owners of computers.
We assume no liability and are not responsible for any misuse
or damage caused by the keylogging software. The end user of
this software is obliged to obey all applicable local, state,
federal and other laws in his country of residence.
December 17, 2005
Fortune 100 firms' websites leaking sensitive data
The websites of many Fortune 100 firms host publicly accessible files that reveal potentially sensitive metadata and hidden information such as user names and email addresses, newly published research has revealed.
The recent analysis of Microsoft Word, PowerPoint and Excel files available on the websites of some of the world's biggest firms resulted in the identification of 'thousands of user IDs and email addresses, comments and track changes, hundreds of PowerPoint files containing obsolete text and speaker notes, and thousands of files that contain network paths'.
The study conducted for Bitform, a software component developer of tools for content inspection and security, analyzed 8,038 files for more than two dozen specific types of metadata and hidden information which have the potential to expose proprietary or confidential information, breach corporate policies and open security holes.
The type of information most commonly exposed, as a percentage of the total documents analyzed, ranks as follows:
* 45.4 percent contain Author History - a list of user names of individuals who have opened and saved the document.
* 36.7 percent of the files included a path associated with the user name indicating where the file was stored on a user's system.
* 30.9 percent contained printer information, which is the name of the default printer associated with the author's system. 18 percent of the files include printer information that also exposes a network share name.
* 14.4 percent of the documents included both an Author History and an associated network share name where the document was stored at some point in its lifecycle.
* 17.1 percent expose 'Outlook Properties,' which are custom properties that include a user's email display name, email address and the subject line from the email that included the file as an attachment.
* 13.6 percent of the files were PowerPoint presentations that included speaker notes.
* 10.1 percent contained Fast Save data - text from Word files and PowerPoint presentations that have been deleted (no longer visible through the application interface), but which are still part of the electronic file.
Source: SC Magazine
All news for August, 2008
All news for 2008 year
All news for 2007 year
All news for 2006 year
All news for 2005 year
All news for 2004 year
DONATION: Keylogger.org is an independent research
project supported by a team of enthusiasts. If you find this
project useful or would like to help foster its continued
development please consider making a donation using PayPal`s
online secure payment service. A PayPal account is not required.
All major credit cards are accepted (MasterCard/Eurocard,
Visa/Delta/Electron, American Express, Switch/Maestro, Solo).
Simply click the button below.
Any amount would be useful and appreciated!
Thanks in advance for your support!
|
|
|
|
|
