View Full Version : Security News



  1. October Patch Tuesday Preview (CVE-2013-3893 patch coming!), (Thu, Oct 3rd)
  2. CSAM: Web Honeypot Logs, (Thu, Oct 3rd)
  3. EU government telco provider was subjected to major attack
  4. Lawmaker: Snowden may have had help with leaks
  5. The safest cloud apps for the enterprise
  6. 1Password 4 for Mac released
  7. FBI busts operator of Silk Road, seizes $3.6M in Bitcoins
  8. Mocana unwraps protection for iOS 7 apps
  9. US demanded access to encryption keys of email provider Lavabit
  10. Bitcoin forum goes offline after hack
  11. Yahoo abandons T-shirt rewards for vulnerability information
  12. Senator vows fierce defense of NSA data collection, surveillance programs
  13. The Internet of Things will change everything
  14. Are workers drowning in a sea of ineffective technology?
  15. Free eBook: Guide to Monitoring Virtualized Environments
  16. Silk Road taken down, owner arrested
  17. Technology eliminates bot-infected traffic from advertising campaigns
  18. Bruce Schneier: The battle for power on the Internet
  19. McAfee solution remediates advanced malware
  20. Aruba Networks releases cloud Wi-Fi solution
  21. US DOJ opposes company requests to publish surveillance statistics
  22. Obamacare related domain registration spike, Government shutdown domain registration beginning, (Wed, Oct 2nd)
  23. CSAM: Misc. DNS Logs, (Wed, Oct 2nd)
  24. IE Vulnerability Update #Japan #Metasploit
  25. ZeroAccess: The Most Profitable Botnet
  26. Silent Circle moves away from NIST cryptographic standards, cites uncertainty
  27. Google adds search by image to Chrome browser
  28. Yahoo concerned that release of redacted FISA papers may mislead
  29. NSA encryption-defeating efforts will backfire, privacy advocates say
  30. More NSA leaks to come, Guardian says
  31. Could the EU cyber security directive cost companies billions?
  32. Innovation, big data and the future of information security
  33. Is wireless the Trojan horse in your network security?
  34. Get a VIP ticket to HITBSecConf and $1337 of travel money
  35. Portable USB drive fixes malware-crippled machines
  36. Get a VIP ticket to HITBSecConf and $1337 od travel money
  37. AlgoSec updates security management suite
  38. Splunk and ForeScout partner on big data and security intelligence
  39. Splunk Enterprise 6 released
  40. Whitepaper: Exploring white box cryptography
  41. Video: Cracking corporate passwords
  42. Connections between personality types and phishing
  43. "microsoft support" calls - now with ransomware, (Wed, Oct 2nd)
  44. SAP seeks an edge from NSA surveillance worries
  45. Public release of IE exploit could spark widespread attacks
  46. Privacy campaigners barred from releasing Facebook's response to complaints
  47. Former Qwest CEO out of prison, blames NSA for troubles
  48. Researchers sinkhole half a million ZeroAccess bots
  49. CSAM! Send us your logs!, (Tue, Oct 1st)
  50. Facebook extends Graph Search to include posts, updates, comments
  51. iOS 7 Adds Multipath TCP, (Tue, Oct 1st)
  52. Twitter DM spam/malware, (Mon, Sep 30th)
  53. Do you have your network perimeter secured against downloading malicious content?, (Sat, Sep 28th)
  54. Tools for reviewing infected websites, (Fri, Sep 27th)
  55. Cigital nets $50M investment from LLR Partners
  56. Security company scours 'Dark Web' for stolen data
  57. Fake AdBlock Plus app removed from Google's Play store
  58. Intel to acquire network security firm Sensory Networks
  59. Shutdown could test IT security at federal agencies
  60. Is that hotspot safe to use? Wi-Fi Alliance wants to help
  61. Symantec seizes part of massive peer-to-peer botnet ZeroAccess
  62. Tech firms push for NSA surveillance transparency bills
  63. Hackers gather in Colombia for Security Zone 2013
  64. MEPs hear US privacy experts, whistleblowers and Snowden statement
  65. Over 50% don't protect their Android devices
  66. Cybercrime service providers arrested in Europe
  67. Whitepaper: Top mobile application security threats
  68. Common data breach handling mistakes
  69. Rapid7 offers free tools and terabytes of its own research
  70. BrowserCheck gets automated daily scanning and Mac support
  71. NSA creates US citizens' profiles by collecting metadata, public and commercial data
  72. Security industry in 'rut,' struggling to keep up with cybercriminals
  73. Forget fingerprints: Your iris is your new identity
  74. Brute-force malware targets email and FTP servers
  75. Privacy: a Core Finnish Value
  76. Latest IE 0-day still unpatched, attacks exploiting it go back three months
  77. 7 sneak attacks used by today's most devious hackers
  78. The motives behind nation state driven cyber attacks
  79. UK to create new cyber defence force
  80. Two youngsters arrested for different DDoS attacks
  81. Average online bank account is accessed by 2.4 unique devices
  82. The impact of false positives on web application security scanners
  83. Guidelines to manage increased IT risk
  84. Average online bank account is accessed by 2.4 unique devices
  85. Set, manage and monitor privileged account security
  86. Protect high-value transactions on iOS and Android
  87. Cyberoam launches next-generation firewall appliances
  88. Free guide: Server-gated cryptography
  89. Week in review: Data broker databases breached, Apple Touch ID hack, and possible solution to click fraud problem
  90. Microsoft received 37,000 end-user data requests in first half of year
  91. Iran accused of hacking into US Navy computers
  92. Rights groups plan anti-NSA surveillance rally in D.C.
  93. France sanctions Google for European privacy law violations
  94. Google finally squashes IM bug
  95. US gov't shutdown could take money from IT workers, contracts
  96. IE zero-day vulnerability exploited more widely than previously thought
  97. Hack of major data brokers weakens bank authentication
  98. Cisco IOS updates fix 10 denial-of-service vulnerabilities
  99. Researchers may have solved the click fraud problem
  100. US intelligence heads speak for FISA preservation
  101. Government IT Leaders Wrestle With Security Risks
  102. NSA admits employees spied on loved ones
  103. Usage-based auto insurance found to pose privacy risks
  104. NSA: Surveillance court says no upper limit on phone records collection
  105. New information-theft malware 'Napolar' is gaining traction, researchers warn
  106. Tor-using Mevade botnet is stealthy new version of old threat
  107. New TDL Dropper Variants Exploit CVE-2013-3660
  108. Legislation aims to end bulk collection of phone records
  109. Challenges faced by top CSOs
  110. Windows 8 Business Checklist
  111. Cloud Security Alliance releases Cloud Controls Matrix 3.0
  112. Users want a seamless experience in public Wi-Fi
  113. Microsoft, Facebook and Mozilla hunt for developers at HackWEEKDAY
  114. Cybercriminals exploit most news within 22 hours
  115. Watchful Software updates its information protection solution
  116. Espionage campaign targeting Asian supply chains uncovered
  117. NSA chief seeks more data from private sector in sharing offer
  118. Egnyte launches 'PRISM protection' file sharing appliance to beat cloud worries
  119. 5 Ways CIOs Need to Prepare for Obamacare
  120. Malicious browser extensions pose a serious threat and defenses are lacking
  121. Suitcase-size device may help save lifes of disaster victims
  122. US government security background checks fumbled by investigators
  123. How do you monitor DNS?, (Thu, Sep 26th)
  124. Amateur hacker behind DDoS attack on China?
  125. New US bill aims to curb NSA collection of phone and other records
  126. 'Viceroi' algorithm improves detection of click fraud
  127. 'Icefog' spying operation targeted Japan, South Korea
  128. Is mobile anti-virus even necessary?
  129. Industry leaders perceive numerous security threats to their data
  130. New TDL dropper variants exploit CVE-2013-3660
  131. Organizations fear their privacy activities are insufficient
  132. Whitepaper: Securing Multiple Domains with SSL
  133. Icefog cyber espionage campaign exposed
  134. Organizations are flying blind as they embrace cloud services
  135. Deploy endpoint encryption technologies with Wave Cloud 2014
  136. CORE Impact Pro 2013 R2 gets enhanced web services capabilities
  137. Amazon.com released Fire OS 3.0 "Mojito"
  138. Big data analytics for security intelligence
  139. Social media, mobile phones top attack targets
  140. Sudan drops off Internet amid internal strife
  141. Google gets kudos for tossing older Chrome plug-in API
  142. Data broker databases breached, stolen info used by ID theft service
  143. Yahoo ID recycling scheme is potential security minefield
  144. Review: 1Password: Manage passwords or die trying
  145. Apple Touch ID hack was easier than expected
  146. Employees keep using personal cloud services to store work documents
  147. Former senators say Congress needs to rein in the NSA
  148. Google yanks sketchy iMessage clone for Android from app store
  149. Indian biometric ID project faces court hurdle
  150. Virginia Tech breach exposes data on 145K job applicants
  151. Java exploits jump, Android malware emerges outside app stores
  152. Reactions from the security community to iOS 7
  153. Most tech executives planning for cyber attacks
  154. Free Wi-Fi, but at what cost?
  155. Budget and job trend data for CISOs
  156. Phishing and malicious attachments on the increase
  157. MEPs raise suspension of EU-US bank data deal
  158. Free eBook: 5 Things You Need to Know About Disaster Recovery Planning
  159. Cancel data sharing deal with US, EU politicians urge
  160. Chrome will block NPAPI plug-ins over stability, security concerns
  161. Dropbox joins bid to publish spy data requests
  162. Attackers sharpen skills: What that really means for CISOs
  163. Survey highlights ignorant IT behavior in the workplace
  164. Twitter fixes Tweet button issue that downloaded a torrent file
  165. Apple is a tempting phishing target for scammers
  166. Unofficial Android iMessage app can steal info and download malware
  167. Major increase in Filecoder malware
  168. Concerns around insider threats escalate
  169. Rootkit detector for OS X
  170. Widespread disregard for corporate cloud policies
  171. Researcher despairs of critical SIM flaws being fixed before attacks happen
  172. Cisco enhances safety and security solutions
  173. A short overview of Android banking malware
  174. Apache Struts security update disables vulnerable feature
  175. How do you spell "PSK"?, (Mon, Sep 23rd)
  176. IE 0-day attack reports push ISC to raise official threat level
  177. Federal cyber security pros lack confidence in FISMA
  178. Encryption is still the best defense, despite NSA code-cracking
  179. Security org raises Internet threat level after seeing expanded IE attacks
  180. Rather than walling off from NSA, Brazil should welcome whistleblowers
  181. LinkedIn denies harvesting user email accounts without permission
  182. German hackers say old technique can bypass Apple's Touch ID
  183. CCC hackers say they cracked Apple's Touch ID
  184. Big data investments continue to rise
  185. Is your status update also a red flag for danger?
  186. Investigating the security of the Firefox OS
  187. Free guide to iOS 7
  188. HP unveils new family of next-generation firewall appliances
  189. Week in review: Undetectable hardware Trojans, Chinese hackers for hire, and latest IE 0-day insight
  190. Sen. Franken seeks data on privacy controls in iPhone 5s fingerprint tech
  191. RSA advises customers to stop using NSA-influenced encryption algorithm
  192. Threat Level Yellow: Protection recommendations regarding Internet Explorer exploits in the wild, (Fri, Sep 20th)
  193. Gang exploits both physical and system security during bank robbery
  194. Apple's iOS 7 patches 80 vulnerabilities
  195. Experts praise Pentagon's march to security standards
  196. PHP updates released 19 SEP 2013 - http://www.php.net/downloads.php, (Fri, Sep 20th)
  197. Clever email campaign delivers deadly ransomware to orgs
  198. Belgacom was breached by Britain's GCHQ
  199. Eight arrested over £1.3 million theft from Barclays bank
  200. Websites of energy sector companies compromised in watering hole attack
  201. Tech group asks 21 countries to disclose surveillance requests
  202. US FTC lacks data breach authority, says accused medical lab
  203. Vulnerability in IE Could Allow Remote Code Execution
  204. HP helps government agencies protect information
  205. ENISA report on top cyber threats
  206. Cost of cyber crime study: United States
  207. DeviceLock now prevents data leakage from Macs
  208. Acronis advances secure BYOD with mobilEcho
  209. Another flawed Office update tells users to buy the suite
  210. Hacking courses offer cybercrooks tips on how to hone skills
  211. Healthcare IT Security Is Difficult, But Not Impossible
  212. Critics say federal court got it wrong in defense of NSA activity
  213. Researchers discover ties between TDSS and ZeroAccess rootkit families
  214. iOS 7 Security Prompts
  215. Snowden's role provided 'perfect cover' for NSA data theft
  216. Government Networks Unprepared for Cloud, Big Data Transitions
  217. Hackers exploit critical IE bug; Microsoft promises patch
  218. 7 Biggest IT Compliance Headaches and How CIOs Can Cure Them
  219. New wave of Shylock Trojan targets bank customers
  220. Beware of 419 scam emails delivered via CNNís "Email This" feature
  221. The legal implications of BYOD
  222. Mobile data security remains weak
  223. Latest IE 0-day insight: Background, severity and solutions
  224. Phishers increasingly target brands
  225. Whitepaper: Critical priorities in enterprise security
  226. What keeps IT pros up at night?
  227. CloudSigma launches hybrid hosting with private patching
  228. HP unveils community-sourced threat intelligence platform
  229. More Goodies in the Apple Security Update Basket!, (Wed, Sep 18th)
  230. 10,000+ to compete at world's biggest hacking competition
  231. Apple DDOS? Nope, just the update coming down!, (Wed, Sep 18th)
  232. Rootkit freezes computers' hard disk to respawn itself
  233. Cisco DCNM Update Released, (Wed, Sep 18th)
  234. Apple IOS 7 - Brace for Impact!, (Wed, Sep 18th)
  235. iTunes 11.1 released, fixes CVE-2013-1035 remote code execution vulnerability. (Look for specifics at http://support.apple.com/kb/HT1222 sometime soon), (Wed, Sep 18th)
  236. Chinese hackers for hire tied to Bit9 and Aurora attacks
  237. Microsoft issued Fix it for actively exploited IE 0-day
  238. LynuxWorks releases a rootkit detection system
  239. Vulnerability in IE Could Allow Remote Code Execution
  240. Security researchers create undetectable hardware trojans
  241. Space storms causing satellite failures that blunt Internet and TVs
  242. China-based hacking group behind hundreds of attacks on U.S. companies
  243. Firefox 24 delivers 17 security updates
  244. Self-healing BIOS security from HP
  245. Kaspersky Lab launches solution for multi-device security
  246. USB "condom" protects from mobile device juice jacking
  247. Software for DIY data recovery, data protection and data destruction
  248. Free guide: The Top 10 Reports for Managing Vulnerabilities
  249. Firefox 24.0 and Thunderbird 24.0 just released, both including security flaws., (Tue, Sep 17th)
  250. Apple releases security advisory to update to OS X Server v2.2.2, more here: http://support.apple.com/kb/HT1222, (Tue, Sep 17th)