InfoSec News 2012-04-20

Posted by on Apr 20, 2012 in ISN | 0 comments

InfoSec News for Friday April 20, 2012.

  1. Fake Instagram app slings SMS Trojan onto Android gear
    Russian site rather than irate Apple fanboi fingered: Virus lynchpins are distributing an Android Trojan under the guise of popular photo-sharing app Instagram.
  2. Android malware writers exploit Instagram craze to distribute SMS Trojan horse
    Malware writers have created fake Instagram websites to distribute Android Trojan horses, according to security researchers from antivirus firms Sophos and Trend Micro.
  3. European Parliament agrees to send airline passenger data to U.S.
    The European Parliament approved a controversial data transfer agreement with the U.S. that has legislators sharply divided.
  4. Security, privacy ideas emerge at Demo Spring conference
    The cool new Internet ideas of yesteryear often create the headaches of today, and some startups at the Demo conference are starting to try to solve those problems.
  5. FBI seizes Mixmaster servers
    Pittsburgh Uni threat investigation heating up: Non-profit Riseup claims the FBI has seized a Mixmaster server from a colo shared by Riseup Networks in New York City.
  6. Berners-Lee: Demand your data from Internet companies
    Tim Berners-Lee has said that the problem with companies like Facebook and Google is not that they collect vast troves of data about their users, but that they don’t share with them what they learn from it.
  7. 2,500 copycat hack attempts on abortion provider site report
    BPAS under siege following hacker’s arrest: Five weeks after a man was cuffed by police for swiping around 10,000 records of women who registered with British Pregnancy Advisory Service (BPAS), the site remains under sustained hack attempts, the BBC reports.
  8. Business Lack Confidence in Data Security: Report
  9. Mac Trojan Fallout: Apple Security Glory Days Gone?
  10. F5 Networks Announces Results For Second Quarter Of Fiscal 2012
  11. Google warns 20,000 websites they could be infected with JavaScript redirect malware
  12. FBI Former Cybercrime Chief: Same Hunt, New Startup
  13. Mac OS X invulnerability to malware is a myth, says security firm
  14. Employee working in the Medicaid program inappropriately transferred personal information of 228,435 Medicaid beneficiaries to his personal email account
  15. Infected WordPress blogs to blame for Mac Flashback Trojan
  16. Spam campaign combines phishing, malware and survey scams
  17. Safe Shepherd offers one-click way to scrub your personal data off most sites
  18. Kaspersky says SabPub is an ‘Advanced Persistent Threat’
  19. Compliance isn’t security, but companies still pretend it is, according to survey
  20. Google warns 20,000 websites they could be infected with malware
  21. Internet ad revenue hit $31.7 billion in 2011, topping previous record
  22. Infected WordPress blogs blamed for Mac Flashback Trojan
  23. LeaseWeb And StopBadware Unite To Combat Cybercrime
  24. 2012 Faces of Fraud Survey: More Consumer Engagement Needed For Trust In Online Banking
  25. HP: Fewer but More Dangerous Software Security Vulnerabilities
  26. Afghanistan soldiers go viral with war photography
  27. Investigation after cruise liner reportedly ignores pleas to rescue three men adrift at sea
  28. Motorcycle Clubs Attorney Scoffs at FBI Assessment
  29. WordPress sites served as launching pad for Flashback
  30. Trojan designed to take screenshots of hotel payment apps
  31. Sex assualt video forces South Africa to confront rape crisis
  32. Employee emailed list with insureds’ names and SSN to her home and to her son’s email acct
  33. Anonymous builds its own PasteBin-like site
  34. Macs, iPhones, iPads Are Now Bigger Targets for Malware, Attackers
  35. Estonian fraudster extradited to the US appears in federal court
  36. The importance of ethical hacking
  37. Two tortured to death in Bo Xilai scandal: report
  38. How cybercriminals are infecting networks
  39. Android malware writers exploit Instagram craze with SMS Trojan
  40. Breivik studied al-Qaeda methods
  41. Judges Drive Truck Through Loophole in Supreme Court GPS Ruling
  42. Fake “Steam Cracker” steals user credentials
  43. DarkComer RAT disguised as Skype encryption software
  44. Hackers continue to target abortion provider
  45. Norway mass killer Anders Behring Breivik tells terror trial he was a normal, nice person

InfoSec News 2012-04-19

Posted by on Apr 19, 2012 in ISN | 0 comments

InfoSec News for Thursday April 19, 2012.

  1. Microsoft tears the wraps off Windows 8 Enterprise
    USB boot from your own device: Remember the enterprise? Despite what has become a fanatical focus on consumers to beat Apple with Windows 8 tablets and Windows phones, Microsoft does just about.
  2. Chinese residents charged with selling $100M worth of pirated software
    A U.S. grand jury has charged two residents of China with 46 criminal counts, including infringing software copyrights and illegally exporting technology to China, for allegedly operating a website that sold pirated software with a commercial value of more than $100 million.
  3. CompSci boffins tout file encryption for Google Docs
    Plugin scrambles data en route to Chocolate Factory cloud: Computer scientists in Ireland have developed a technology for Google Docs that allows for the “real-time” encryption of data before it is uploaded to the Google servers.
  4. Russian charged with hacking into brokerage accounts
    A Russian national has been charged in the U.S. with allegedly hacking into brokerage accounts and executing fraudulent trades, which several brokerage houses claim caused $1 million in losses.
  5. Met issues mug-shot gallery mobe app to finger wanted crooks
    Curtain-twitchers tap CCTV trove: The Metropolitan Police is pushing a mug-shot gallery smartphone app so Londoners can help nab petty criminals across the capital.
  6. Trojan sneaks into hotel, slurps guests’ credit card data
    No reservation required: Cyberooks are selling malware through underground forums which they claim offers the ability to steal credit card information from a hotel point of sale (POS) applications.
  7. Anonymizer Universal Shields You From Content-Targeting
    When you browse the Web, you are constantly being tracked. It’s not personal: It’s marketing. Website owners and ad networks want to learn as much as they can about you, so they can target their content and ads effectively. After all, there’s not much use in showing ads for anti-aging products to a sixteen-year-old. That said, not all users appreciate being tracked so meticulously, and this is where Anonymizer Universal and other VPN applications come in.
  8. White House raises concerns over CISPA bill
    The White House joined the growing chorus of voices expressing concern over the proposed Cyber Intelligence Sharing and Protection Act (CISPA) legislation that is scheduled for a vote in the U.S. House of Representatives next week.
  9. Spy tech exports from Europe face tighter scrutiny
    Strasbourg mulls new rules on surveillance software by 2013: The EU could soon introduce rules to monitor the deployment of internet censorship technology in autocratic regimes including China and Saudi Arabia.
  10. Anonymous offers alternative to Pastebin.com
    The Anonymous hacking collective has launched a new site that it claims will allow users to post material without fear of being tracked down.
  11. Berners-Lee: Net snoop law tosses human rights into the shredder
    Web grandfather slams UK.gov’s online surveillance plan: Sir Tim Berners-Lee has warned the Tory-led Coalition not to push through a bill to legislate plans to massively increase surveillance of the internet.
  12. Personal Information is Top Target of Cyber Attacks: CDW
  13. Flashback Malware Still Affects 140,000 Macs
  14. Top FBI cyber cop joins startup CrowdStrike to fight enterprise intrusions
  15. Internet Founder Berners-Lee: CISPA a Threat to Privacy Rights
  16. Terence Corcoran: Money supply versus oil supply
  17. The Windows 8 Enterprise SKU: Windows To Go and new Software Assurance benefits
  18. Stolen computer equipment contained patient insurance information
  19. 10 backup discs with data on 315,000 patients, including 228,000 Social Security numbers and protected health information on all 315,000 patients, missing from storage
  20. CORE, NTO Partner To Provide Web App Security Analysis
  21. Sophos Survey Reveals Need For IT Security Education Within Organizations
  22. A case for crowdfunding
  23. Flashback/Flashfake Botnet Now Reduced to 140,000 Macs
  24. Russian national charged with $1.4 million hacking scam
  25. Securities fraud hacker charged after $1 million heist
  26. CISPA Isnt Son of SOPA (But Thats Not Saying Much)
  27. 90% of Energy Security Pros Say We Need Smart Grid Security Standards
  28. Assads pictured packing food aid after U.N. wives attack Syrian first lady in YouTube video
  29. Analysis: “Cybersecurity” bill endangers privacy rights
  30. Candidate for student body president may have stolen 700 students’ userids and passwords in election voting
  31. Two incidents involving web exposure of e-mail addresses, phone numbers, and signatures
  32. Mozilla blocks Java in Firefox for some Mac users
  33. Cybersecurity Bill Revised to Ease Privacy Concerns
  34. Flashback Malware Eradication Campaign Slower Than Expected
  35. Flashback waning, but still infecting about 140,000 Macs
  36. Mac Flashback Infections Now Down to 140,000: Symantec
  37. In gloomy narrative of failures, RIM sees fresh hope in Asia

InfoSec News 2012-04-18

Posted by on Apr 18, 2012 in ISN | 0 comments

InfoSec News for Wednesday April 18, 2012.

  1. Chinese and US military square off for cyber war games
    Tensions mount as APT attacks continue: The United States and Chinese military have been locking horns in secret cyber warfare exercises designed to help prevent the outbreak of real war between the two.
  2. Tosh UK rewards competition hopefuls by exposing their privates
    ICO slaps wrist after URL twiddling leaked personal info: Toshiba Information Systems UK breached the Data Protection Act, the Information Commissioner’s Office (ICO) has ruled.
  3. Grading the Tech Policy Makers: A First Quarter Recap
    It’s been a busy 2012 on the Hill. As legislators and policymakers grapple with an array of issues central to the policy agendas of companies in the technology industry, CIO.com takes stock of how Washington has moved on intellectual property, cybersecurity, privacy and spectrum in the first quarter of 2012.
  4. Hackers ramp up attacks against Tibetan activists
    Hackers are ramping up their attacks against Tibetan activists and are using increasingly sophisticated techniques to deliver malware, according to researchers from security firms FireEye and Trend Micro.
  5. Privacy watchdog, lawmaker push for Google probe
    Privacy groups and lawmakers are calling for a new and broader investigation into Google and its privacy practices after the U.S. Federal Communications Commission announced that it had found no evidence that the company broke eavesdropping laws.
  6. Speaking in Tech: Forget G-Drive hype, try Dropbox-for-Big-Biz
    Plus: iOS versus Android in enterprise security:
  7. Google facing WHOPPING FTC fine for Safari privacy gaffe
    Millions of juiced Apple surfers adds up to financial blow: Google is reportedly going to be slapped with a bigger regulatory fine than the meagre one handed down to it from the US Federal Communications Commission (FCC) late last week.
  8. ICANN battled dot-word TLD registration leak bug for WEEKS
    Reopening of wonky application site stalled: Red-faced ICANN has delayed its new generic top-level domains programme again as it struggles to deal with the fallout of a security bug that exposed confidential data about applicants.
  9. Flashback botnet decline not as fast as expected
  10. FBI: Motorcycle Gang Trademarked Logo to Keep Narcs at Bay
  11. Malware disguised as new Instagram Android app
  12. Oracle fixes 88 security vulnerabilities
  13. CISPA: Embraced by Facebook, Scorned by Privacy Advocates
  14. Roughly 140K Flashback-infected computers remain
  15. E-mail attachment error exposed 258 students’ GPA’s to class president, who, not realizing error, forwarded it on to all 258 seniors
  16. Web design error exposed 20 competition entrants’ names, dates of birth, and contact details via url manipulation
  17. Rogers shutting down video-rental business
  18. Broadcasters Demand Barry Diller Explain $20.5 Million Aereo Investment
  19. IT consultant whose firm worked for various firms in FL allegedly stole some of their employees’ identify info for credit card fraud. He also allegedly stole SSN and names from FAA pilots’ licenses provided to his father’s business
  20. Briefcase stolen from social worker’s home contained sensitive details on 18 child protection cases
  21. Malware inserted on system exfiltrated customers’ credit and debit card numbers
  22. Sneaks on a plane: Pearson airport officials investigate alleged security breach
  23. New Report: Data Loss Keeping IT Professionals Up At Night
  24. Cybercrime loss estimates about as reliable as piracy estimates
  25. Norway killer Anders Behring Breivik tells terror trial al-Qaeda inspired him, would repeat attacks if he could
  26. Macs under attack, who is safe?
  27. Check Point harnesses cloud security to deter botnet infections in enterprise
  28. Hackers ramping up attacks against Tibetan activists
  29. Privacy Advocates Call for New Google Probe Over Street View
  30. One in three faulty breast implants may rupture: British surgeons
  31. Britain resumes bid to deport radical cleric Abu Qatada, Osama bin Ladens right-hand man in Europe
  32. Behind the scenes of the cleanest ISP in the world
  33. Emsisoft Warns Of A New Windows Servers Threat: Poor Password Policies Open The Gates For Hackers

InfoSec News 2012-04-17

Posted by on Apr 17, 2012 in ISN | 0 comments

InfoSec News for Tuesday April 17, 2012.

  1. Microsoft Responds to Critics Over Botnet Bruhaha
    Microsoft’s most recent anti-botnet campaign — a legal sneak attack against dozens of ZeuS botnets — seems to have ruffled the feathers of many in security community. Their chief criticism is that the Microsoft operation exposed sensitive information that a handful of researchers shared in confidence, and that countless law enforcement investigations may have been delayed or derailed as a result. In this post, I interview a key Microsoft attorney about these allegations.
  2. Guest Post: Six Risks from Not Using Internet Monitoring Software
    When you start talking about Internet monitoring software, most times you see folks divide up into two camps. The first is all for it, convinced that the company must watch what users are doing at all times to catch those who violate policy. The second considers monitoring as an infringement on their privacy, and that [...]
  3. Operators of online drug ring arrested in global sweep
    The alleged ringleader of an online marketplace for illegal drugs was arrested Monday in Lelystad, Netherlands, capping two days of arrests and the indictment of eight men on federal drug trafficking and money laundering charges.
  4. Google-backed research fights review spam
    Seeing through the sockpuppet: University of Illinois at Chicago researchers are taking aim at fake reviews, which they say can seriously damage online businesses.
  5. Facebook to combine profile URL usernames, email handles

  6. Privacy groups launch protest against CISPA bill
    Several groups Monday launched a week of protests against a controversial proposed cybersecurity bill they claim would eviscerate online privacy rights.
  7. ‘Not guilty’ plea in Utah cop site hacking case
    Police twitter feed doesn’t wait for court hearing: An Ohio man pleaded not guilty today to charges that he hacked into a pair of police websites in Salt Lake City, Utah in January.
  8. FCC’s Ruling that Google’s WiFi Snooping is Legal Sets Horrible Precedent
    Anyone looking for assurance that the privacy of their home wireless networks would be protected from snoopers by government regulators won’t find it in the Federal Communication Commission’s recent action against Google.
  9. What is the top target of cyber attacks?
  10. Bo Xilai demoted police chief to block probe into wifes role in murder: sources
  11. Website vulnerabilities fall, but hackers become more skilled
  12. Stuxnet worm planted on Iranian PCs via USB stick, site claims
  13. Feds recruit companies to aid in cyberdefense
  14. Closing digital security gaps
  15. Google Fined $25,000 for Impeding FCC Street View Probe
  16. Ohio man charged with Anonymous-sponsored attacks on police websites
  17. One process for miners
  18. Databases with usernames and plain-text passwords, e-mail addresses and IP addresses dumped on the Internet; zipped archive includes a marriage license database and e-mail correspondence
  19. Contradicting a Federal Judge, FCC Clears Google in Wi-Fi-Sniffing Debacle
  20. Eight Suspects Arrested in Online Drug Market Sting
  21. New Mac Trojan Is Latest Attack on Apple Systems
  22. Databases with usernames and plain-text passwords, e-mail addresses and IP addresses dumped on the Internet with zipped archive of files that include a marriage license database and e-mail correspondence
  23. Sourcefire Protects Against 99 Percent Of Attacks In Recent NSS Labs Test
  24. Experts discover Mac OS X malware, “Sabpub,” used as APT
  25. Security Misconceptions: 96% Of IT Staff Do Not Trust Their End users To Make Sound Security Decisions
  26. Pippa Middletons car-mate waved gun at photographer in Paris, British tabloids report
  27. Researchers uncover new espionage malware preying on Mac users
  28. Two Mac Trojans: Apple Patching Fast Enough?
  29. Law firms see big money in healthcare breach cases
  30. Two More Mac Trojans Discovered, But Don’t Panic
  31. Android Trojan Found on Apps in Japan: McAfee
  32. Despite Flaws, Personal Health Records Are Smart Medicine
  33. University Of Texas At San Antonio To Host 2012 National Collegiate Cyber Defense Competition
  34. New Report Finds Core Vulnerabilities Persist In Web Applications
  35. DataMotion Announces Next-Generation Platform For Cloud-Based Secure Data Delivery Services
  36. FCC drops Google investigation over WiFi snooping, issues small fine
  37. New Mac Trojan is Latest Attack on Apple Systems
  38. APT attackers spoof email sent by malware researcher
  39. Facebook backs cyber-threat bill

InfoSec News 2012-04-16

Posted by on Apr 16, 2012 in ISN | 0 comments

InfoSec News for Monday April 16, 2012.

  1. MI5 stinks up website with dead SSL certificate
    Secret policeman’s balls-up: Blighty’s intelligence agency MI5 forget to replace the expired digital certificate for its website over the weekend.
  2. Hacker jailed for 32 months for attack on abortion-provider site
    Judge: No excuse for targeting the vulnerable: A self-identified member of Anonymous was jailed for two years and eight months on Friday over a hacking attack against Britain’s biggest abortion provider in March.
  3. Android Trojan distracts Japanese with anime and porn
    Video trailers mask data pilfering malware: Security experts are warning of yet more malicious applications found on Googles official online apps market Play, this time designed to steal personal data in the background while promising to show trailers for Japanese anime, video games and porn.
  4. Yet another OSX/Java Trojan spotted in the wild
    Kaspersky Labs tags MS Word as the vector: Hard on the heels of the Flashback Trojan, Kaspersky Labs is warning of a new OSX threat, which its dubbed Backdoor.OSX.SabPub.a.
  5. Facebook defends support for CISPA monitoring bill
    Other tech sponsors strangely silent: Facebook has issued a statement explained why it is supporting the Cyber Intelligence Sharing and Protection Act (CISPA) HR 3523, which is currently being considered by Congress.
  6. Judge wants Megaupload, other groups to work out server maintenance
    Lawyers for Megaupload, the U.S. Department of Justice (DOJ), Web hosting provider Carpathia Hosting and other groups fighting over who should maintain 1,100 servers formerly used by Megaupload should sit down and work out an arrangement, a U.S. judge said Friday.
  7. FBI track alleged Anon from unsanitised busty babe pic
    Body of evidence: An alleged member of Anonymous has been tracked down after he posted a picture of his scantily clad girlfriend in an image bragging about his hacking exploits.
  8. Apple finally deploys Mac Flashback Trojan terminator
    Zombie OS X bot army drops to 270,000 strong: Apple has released a tool that removes the infamous Flashback Trojan from infected Macs.
  9. British businessman killed after threatening to expose Bo Xilais wifes money scheme: sources
  10. New Mac malware uses Flashback Java exploit
  11. Companies hiring hackers to harden defenses
  12. Cartons of financial and tax documents found in an abandoned storage unit
  13. Five OS X security threats that fizzled
  14. Tax preparer accused of stealing identity info of hundreds of people, including some clients and some special needs patients, for tax refund fraud
  15. Mac Flashback Attack Shows Apple’s Security Weaknesses
  16. Malware Masquerading as Angry Birds Game
  17. Former manager stole the identities of more than 50 head-injured patients to use in tax refund fraud scheme
  18. Syria killing continues as UN Security Council agrees to monitor ceasefire
  19. Flashback malware removal tool arrives for Java-less Mac users
  20. Data relating to approximately 600 maternity patients and names and dates of birth of 30 children and full audiology reports for 3 other children on memory sticks lost in two separate incidents
  21. Lost attendance and pupil support documents contained personal and some medical information on students
  22. Names, addresses, phone numbers, and Social Security numbers of nearly 4,000 alumni were in a file inadvertently attached to an e-mail to one alumnus
  23. Week in Apple: Flashback eviction edition
  24. CISPA Proposal Is Not Son of SOPA, Despite Internet Hype
  25. Kaspersky fixes Flashback-fighting tool; Norton joins the fray
  26. Upcoming Firefox click-to-play feature will stop automated plug-in exploits
  27. Hospitals seeing more patient data breaches
  28. FP Letters to the Editor: Pension problems not solved by CPP
  29. McAfee Warns Of Android Video Malware; 70K Users Affected
  30. Google’s official app market found hosting malicious Android apps–again
  31. Oracle to issue quarterly patches next week
  32. Flashback Malware Removal Cleverly Reduces Risks for Macs
  33. Judge Wont Purge Megaupload User Data, At Least Not Yet
  34. DHS Network Monitoring: 4th Amendment Problems?
  35. Third Apple Java update rids infections and turns off Java
  36. Apple Flashback Malware Removal Includes Innovative Approach to Reducing Risk for Macs
  37. Apple Releases Update to Take Care of Flashback Malware
  38. ICANN data breach exposes gTLD applicant data, leads to deadline extension
  39. Apple delivers Flashback malware hunter-killer
  40. Would You Rather Share Your Password or Drive Without a Seatbelt?
  41. New Google stock structure preserves founders control at investors expense
  42. Apple pushes out Flashback removal tool
  43. Flashback Mac botnet shrinks, says Symantec
  44. Microsoft Hampered Zeus Botnet Investigations, Researchers Say
  45. Apple issues Flashback malware removal tool
  46. Balsillie sought strategy shift before he quit RIM
Page 5 of 30« First...34567...102030...Last »