Home PSEPC Daily Brief DOB06-008
The PSEPC Daily Brief is a compilation of summaries of publicly available and PSEPC information concerning critical infrastructure protection and emergency management. DOB06-008 - 12 January 2006 News CCIRC releases Update to Advisory AV06-001: Denial of Service vulnerabilities related to the Research in Motion BlackBerry On January 11, the Canadian Cyber Incident Response Centre (CCIRC) released Update to Advisory AV06-001 to notify the public that in addition to the three vulnerabilities originally posted by CCIRC in AV06-001, the Research in Motion (RIM) BlackBerry Attachment Service contains a vulnerability in the way the service handles Portable Network Graphic (PNG) files. By causing the service to render a specially crafted PNG file and convincing a user to view the file on a BlackBerry Handheld device, an attacker could execute arbitrary code or cause a denial-of-service to the Attachment Service. (Source: Public Safety and Emergency Preparedness Canada, 11 January 2006) Source article CCIRC provides recent alerts and advisories on their website under Recent analytical releases. In brief Boil water order for Yukon First Nation Residents of the Little Salmon Carmacks First Nation in the Yukon are being advised to boil their water after tests have shown that many of the community's wells are contaminated with E.coli and fecal bacteria. The boil water advisory will remain in place until negative test results are received on a regular basis. (Source: cbc.ca NORTH, 11 January 2006) Source article Meeting to discuss influenza pandemic planning begins in Tokyo The Government of Japan and the World Health Organization are holding a meeting from January 12–13 in Tokyo to discuss the issues and challenges of, and create a plan for, the rapid response to a potential influenza pandemic. (Source: World Health Organization, 12 January 2006) Source article Source article Cyber risk assessmentOver the course of the past 24 hours, the Canadian Cyber Incident Response Centre (CCIRC) has released Update to Advisory AV06-001 regarding an additional vulnerability in the Research in Motion (RIM) BlackBerry Attachment Service -- handling of Portable Network Graphic (PNG) files. No significant incidents with the potential to affect critical infrastructure have been reported. Accordingly, based on the information available to CCIRC, the cyber risk facing Canadian critical infrastructure is assessed as low. Personnel responsible for information, systems and network security should continue to apply appropriate security precautions and monitor their systems. Recent cyber alerts and advisories issued by CCIRC can be viewed under “Recent analytical releases” at www.psepc.gc.ca/ccirc. See also...Note to readersPublic Safety and Emergency Preparedness Canada (PSEPC) collects information related to cyber and physical threats to, and incidents involving, Canadian critical infrastructure. This allows us to monitor and analyze threats and to issue alerts, advisories and other information products. Any suspected criminal activity should be reported to local law enforcement organizations. The Royal Canadian Mounted Police (RCMP) National Operations Centre (NOC) provides a 24/7 service to receive such reports or to redirect callers to local law enforcement organizations. The NOC can be reached at (613) 993-4460. National security concerns should be reported to the Canadian Security Intelligence Service (CSIS) at (613) 993-9620. Links to sites not under the control of the Government of Canada (GoC) are provided solely for the convenience of users. The GoC is not responsible for the accuracy, currency or the reliability of the content. The GoC does not offer any guarantee in that regard and is not responsible for the information found through these links, nor does it endorse the sites and their content. Some hyperlinks in the PSEPC Daily Brief direct users to sites of organizations or other entities that are not subject to the Official Languages Act. Users should be aware that these sources are only available in the language in which they are written.
|