Infosecurity News

  1. FireEye Backs Washington with New APT1 Data Linking Attacks to China

    Mandiant owner says connection days and times fit perfectly with the average PLA working day.

  2. Facebook Implements Free Browser-based AV for Users

    If a malware infection is suspected, Facebook will prompt the user to run a scanner from F-Secure or Trend Micro.

  3. Researchers Blast eBay Over Data Breach

    Several concerning security practices point to a compromise that may have been prevented – or at least significantly mitigated.

  4. FBI Finds it Hard to Weed Out Best Cyber Operatives

    Bureau director Comey admits he may have to relax zero tolerance approach to marijuana-smoking recruits in bid to attract best talent.

  5. South China Sea Cyber Scuffles Could Impact Western Firms

    Cyber Squared’s ThreatConnect team warns that increasing tensions in the area could put military, diplomatic and economic interests at risk.

  6. Kovter Adult Website Ransomware Doubles

    Damballa researchers warn malware redirects users to porn sites if none can be found in browsing history.

  7. US Files Indictments of Five Chinese Officials for Cyber-spying

    The United States has filed an unprecedented set of indictments against five Chinese military officials believed to be responsible for wide-ranging cyber-espionage on private-sector U.S. companies.

  8. Thousands of Home Modems Vulnerable to Credential-Stealing

    Researchers have discovered three information-disclosure vulnerabilities affecting thousands of home routers and Brocade load-balancers.

  9. FBI and Euro Cops Pounce to Cuff Blackshades Malware Users

    Coordinated campaign looks to lock down remote access tool.

  10. Scammers Sell Fake Kaspersky Lab Apps on Windows Phone and Google App Stores

    Cybercriminals package malware inside legitimate looking security software

  11. Mass-Mail Spam Carries Unusual Malware Payload

    A new, wide-net malware attack posing as an “important company update” is being spammed out, targeting Windows users. The campaign carries an unusual differentiator: it uses gadget files to do the dirty work.

  12. NIST Kicks Off Post-Snowden Crypto Standards Review

    The reverberations from Edward Snowden’s disclosures regarding the National Security Agency continue, with the National Institute of Standards and Technology (NIST) announcing it has begun a review of the institute’s cryptographic standards and guidelines program.

  13. Adobe’s Last XP-ready Patches Cover Critical Updates for Flash, Acrobat and Reader

    The software maker announces fixes for several remote code execution vulnerabilities.

  14. Spend on Testing Not Marketing says Fortinet

    Information security vendors should spend “less on marketing and more on testing”, John Maddison, VP marketing at Fortinet told Infosecurity at Infosecurity Europe 2014

  15. One Direction 'Free' Tickets Scam Heats Up Facebook

    Free Stones tickets? How about free One Direction tickets if you’re a little younger? A new Facebook bait-and-switch scam is spreading across friendship circles promising one or both; but users should file this one under 'too good to be true.'

  16. Email Attackers Switch to ‘Blitzkrieg’ Tactics to Maximize Impact

    Agari TrustIndex reports cyber gangs are increasingly 'weaponizing' their malicious emails with sophisticated threats

  17. Iran's Operation Saffron Rose Points to Increasing Cyber-espionage Sophistication

    FireEye has identified a hacking group inside Iran that is behind Operation Saffron Rose, one of the first espionage campaigns from Iran that went after US aerospace companies and Iranian opposition inside and outside of the country.

  18. NSA Accused of Installing Backdoors on US Tech Exports

    Latest Snowden revelations hit new spy agency head Mike Rogers’ attempts to promote greater transparency

  19. Fresh Phishing Scam Aims at Google Account Passwords

    Hackers have been stealing Google account passwords in a new and better crafted phishing attack that is hard to catch with traditional heuristic detection, warns Bitdefender. A particularity in how Google Chrome displays data using Uniform Resource Identifiers (URIs) makes Chrome users most vulnerable, however the phishing attack also targets Mozilla Firefox users.

  20. HMRC Acted Unlawfully in Hiding Details of Spyware Investigation

    Judge rules in favor of Privacy International after criticizing HMRC department for failing to reveal details of an investigation into British business Gamma International. The Andover-based firm was accused of breaking export restrictions.

Why not watch?

  1. Navigating Exposures in Energy ICS Environments

  2. Alert Fatigue: What Are You and Your Security Teams Missing?

  3. Dispelling the Myths of Defense-Grade Cybersecurity

  4. How to Manage Your Risks and Protect Your Financial Data

What’s hot on Infosecurity Magazine?