[LINK] Identity theft virus infects 10,000 computers

Kim Holburn kim at holburn.net
Thu Aug 3 08:21:23 AEST 2006 

Identity theft virus infects 10,000 computers
http://www.smh.com.au/news/technology/virus-infects-10000-computers/ 
2006/08/02/1154198204613.html

> MORE than 10,000 Australian computers have been infected by a  
> trojan virus - invisible to most anti-virus software - that is  
> transmitting their owners' private details to identity thieves.
>
> The Australian Tax Office confirmed yesterday that 178 taxpayers  
> had unwittingly revealed their tax file numbers while lodging tax  
> returns online.
>
> These people had been notified and were being offered new tax file  
> numbers, a spokesman said.

Another reason not to use a windows version of etax.

Here is what I sent the tax office in feedback about a month ago:

> etax is sadly lacking in security.
>
> etax only runs on Microsoft Windows.
> It requires administrator access just to run.
> It stores or tries to store personal data in the application directory
> It tries to install in the directory C:/etax
> Your site wants to use Internet explorer and with ActiveX turned on  
> to check security.
>
> All of these things make it a serious security risk.
> As a security professional this is a series of badly thought out  
> decisions in regards to security.
>
> It is a fairly simple matter these days to use a development system  
> that creates applications that run on various systems like Linux  
> LSB or Macintosh.
>
> Security professionals these days are recommending people not run  
> Windows and if they do run windows they should not use Internet  
> Explorer and if they do run internet explorer they should turn off  
> ActiveX.
>
> Applications should be able to run without Administrative privileges.
> They should only store data in user directories.
>
> You really need to get a security professional to audit the whole  
> etax system.





--
Kim Holburn
Network Consultant
Ph: +61 2 61258620 M: +61 417820641  F: +61 2 6230 6121
mailto:kim at holburn.net  aim://kimholburn
skype://kholburn - PGP Public Key on request
Cacert Root Cert: http://www.cacert.org/cacert.crt
Aust. Spam Act: To stop receiving mail from me: reply and let me know.
Use ISO 8601 dates [YYYY-MM-DD] http://www.saqqara.demon.co.uk/ 
datefmt.htm

In pre 9/11 US, you check out books at the library. In Bush's  
America, the library checks out you!
                           -- with apologies to Yakov Smirnov

More information about the Link mailing list