MySQL: Admins, Update Your Databases to Avoid the MySQL Bug. Two critical privilege escalation vulnerabilities in MySQL, MariaDB, and Percona Server for MySQL can help take control of the whole server, which is very bad for shared environments. Read more
SECURITY: Cerber Ransomware Now Targets Databases. Security company McAfee warns that the cybercriminals behind the Cerber ransomware have begun to target businesses as well as individuals by encrypting their databases until payment is received. Find out more
FEDERAL GOVERNMENT: New DOJ Database to Track Police Shooting Deaths, Address Implicit Bias. The U.S. Department of Justice is committing $750,000 to establish a national database of police-related shootings. It will be the first of its kind and, said Federal Bureau of Investigation Director James B. Comey, aims to resolve an “embarrassing” predicament: The federal government often lacks up-to-date information on police-involved shootings. Find out more
GAO: Agencies Need More Access to Databases to Stop Improper Payments. The Government Accountability Office says agencies are only getting partial or no access to information they need to help stop improper payments. The system developed by the Treasury Department and Office of Management and Budget to reduce improper payments doesn’t give agencies full access to databases they need to do so. The Government Accountability Office said the Do Not Pay working system offers only partial or no access to three of the six databases required by the Improper Payments Elimination and Recovery Improvement Act of 2012. The blockages mostly result from other regulations prohibiting unauthorized access to information within those databases. Read the rest
NOW ON SLIDESHARE: Tech Update Summary from Blue Mountain Data Systems October 2016 http://www.slideshare.net/BMDS3416/tech-update-summary-from-blue-mountain-data-systems-october-2016.
IT SECURITY SUPPORT: Blue Mountain Data Systems is actively involved in implementing FISMA and NIST standards with Federal Civilian Agencies. Due to our extensive experience in this area, Blue Mountain has developed processes and organizational techniques to help ensure security deliverables are completed on time, and performed in the most efficient manner possible. We ensure that NIST-800-53 control requirements are treated consistently during definition, analysis, implementation, auditing, and reporting phases of a system. Find out more about Blue Mountain Data Systems IT Security Support Services. Call us at 703-502-3416.
BLUE MOUNTAIN DATA SYSTEMS HAS THE EXPERIENCE: 1994 to Present – U.S. Dept. of Labor, Employee Benefits Security Administration. Responsible to the Office of Technology and Information Systems for information systems architecture, planning, applications development, networking, administration and IT security, supporting the enforcement of Title I of the Employee Retirement Income Security Act — ERISA. Within the EBSA, Blue Mountain is responsible for design, development and support for its various enforcement database management systems, as well as all case tracking and customer service inquiry systems. Blue Mountain also provides IT security services to the EBSA, in the form of FISMA Assessment and Authorization, System Security Plans, Risk and vulnerability assessments, monitoring and investigation support. Read more.