Language Selection

English French German Italian Portuguese Spanish

Computer worm taxes Revenue Dept.

Filed under
Misc

A computer worm that infected Washington state Revenue Department's system caused some businesses to be charged twice for their taxes.

The department has reversed 1,400 faulty transactions, Deputy Director Ralph Osgood said. He said officials don't know where the computer worm originated.

The Washington State Patrol is investigating. "No confidential taxpayer information was compromised, no data was lost and there was no loss of funds," Osgood said.

The worm entered the Revenue Department's computer system Monday and infected all 13 offices statewide.

It shut down the network, which affected the department's billing system.

The system failed to flag accounts of businesses that paid their taxes over the Internet and charged the businesses for their taxes a second time.

Osgood said all the mistaken charges have been accounted for and the money has been returned to the affected businesses. "It wasn't their fault. So far, the businesses have been very understanding," Osgood said.

Monday was the monthly due date for certain business taxes. As the agency's 1,060 employees turned on their computers, the worm spread rapidly.

The entire computer system was shut down Monday and Tuesday and was starting to come back on line yesterday afternoon.

The FBI's Northwest cybercrimes task force is investigating.

Source.

More in Tux Machines

Security: Updates, Trustjacking, Breach Detection

  • Security updates for Monday
  • iOS Trustjacking – A Dangerous New iOS Vulnerability
    An iPhone user's worst nightmare is to have someone gain persistent control over his/her device, including the ability to record and control all activity without even needing to be in the same room. In this blog post, we present a new vulnerability called “Trustjacking”, which allows an attacker to do exactly that. This vulnerability exploits an iOS feature called iTunes Wi-Fi sync, which allows a user to manage their iOS device without physically connecting it to their computer. A single tap by the iOS device owner when the two are connected to the same network allows an attacker to gain permanent control over the device. In addition, we will walk through past related vulnerabilities and show the changes that Apple has made in order to mitigate them, and why these are not enough to prevent similar attacks.
  • What Is ‘Trustjacking’? How This New iOS Vulnerability Allows Remote Hacking?
    This new vulnerability called trustjacking exploits a convenient WiFi feature, which allows iOS device owners to manage their devices and access data, even when they are not in the same location anymore.
  • Breach detection with Linux filesystem forensics
    Forensic analysis of a Linux disk image is often part of incident response to determine if a breach has occurred. Linux forensics is a different and fascinating world compared to Microsoft Windows forensics. In this article, I will analyze a disk image from a potentially compromised Linux system in order to determine the who, what, when, where, why, and how of the incident and create event and filesystem timelines. Finally, I will extract artifacts of interest from the disk image. In this tutorial, we will use some new tools and some old tools in creative, new ways to perform a forensic analysis of a disk image.

SUSE Launches Beta Program for SUSE Linux Enterprise High Performance Computing

While SUSE is working hard on the major SUSE Linux Enterprise 15 release, they recently announced that the SUSE Linux Enterprise High Performance Computing (HPC) platform is now a dedicated SUSE Linux Enterprise product based on SUSE Linux Enterprise 15, available for public testing on 64-bit and ARM 64-bit architectures. SUSE Linux Enterprise 15 will introduce numerous new features and improvements, including a brand new installer that offers a single unified method to install one of the supported SUSE Linux Enterprise products, including the SUSE Linux Enterprise High Performance Computing module, which comes with a set of components used in high-performance computing environments. Read more Also: SUSE Linux Enterprise 15 Prepares HPC Module

Programming: ThreadStack and Qt for WebAssembly

  • ThreadStack: Yet Another C++ Project Trying To Make Multi-Threading Easier
    ThreadStack is yet another C++ project trying to make it easier dealing with multiple CPU threads. This latest open-source C++ threading project comes out of academia research. ThreadStack is self-described by its developer, Erkam Murat Bozkurt, as "an innovative software which produces a class library for C++ multi-thread programming and the outcome of the ThreadStack acts as an autonomous management system for the thread synchronization tasks. ThreadStack has a nice and useful graphical user interface and includes a short tutorial and code examples. ThreadStack offers a new way for multi-thread computing and it uses a meta program in order to produce an application specific thread synchronization library." Erkam has been working the rounds trying to raise awareness for this research on the GCC and LLVM mailing lists.
  • Beta for Qt for WebAssembly Technology Preview
    WebAssembly is a bytecode format intended to be executed in a web browser. This allows an application to be deployed to a device with a compliant web browser without going through any explicit installation steps. The application will be running inside a secure sandbox in the web browser, making it appropriate for applications that do not need full access to the device capabilities, but benefits from a swift and uncomplicated installation process.
  • Qt for WebAssembly Tech Preview Reaches Beta
    As part of next month's Qt 5.11 tool-kit update, a new technology preview module will be WebAssembly support for running Qt5 user-interfaces within your web-browser.

today's howtos