Infosecurity News

  1. Adobe ships zero-day vulnerability patch for Flash Player

    Hot on the heels of its Shockwave and Robohelp patches, Adobe has issued a patch for seven critical flaws in its Flash Player, including a zero-day universal cross-site scripting vulnerability.

  2. Anonymous mischief continues: US stock exchanges face DDoS attacks

    The hacktivist group Anonymous launched distributed denial of service (DDoS) attacks on a number of major stock exchanges this week, continuing its reign of information security mischief.

  3. Cyberwar between India and Bangladesh escalates

    Bangladeshi hackers have been hacking Indian sites, and Indian hackers have been hacking Bangladeshi sites. Now it is escalating as each side calls for ‘cyberwar’ against the other.

  4. WikiLeaks denounces its exclusion from UNESCO conference

    WikiLeaks has denounced UNESCO for refusing to allow it to speak at a conference being held at UNESCO HQ in Paris today and tomorrow. The conference is called 'The Media World after WikiLeaks and News of the World.'

  5. Local government discloses employee social security numbers

    A response to a freedom of information law request by the City of Rye, N.Y., has exposed the social security numbers of city employees.

  6. Social media makes infection inevitable

    The emergence of social media as a malware attack vector means that traditional anti-virus technologies are no longer sufficient: whitelisting must now be used to supplement traditional blacklisting.

  7. Is BYOD a new cultural revolution?

    A new report from the BBC asks whether BYOD spells the end of the traditional office PC. Are we in the midst of a complete cultural revolution?

  8. Shylock financial malware on the rise

    Shylock is financial malware first detected by Trusteer last September and so named because of random excerpts from Shakespeare’s Merchant of Venice included in its binary. Trusteer now reports a significant increase in end-user infections.

  9. Clueless in Canada: Nortel repeatedly breached over a decade

    Canadian telecom firm Nortel Networks, which filed for bankruptcy in 2009, was repeatedly breached by Chinese hackers for almost a decade, according to the Wall Street Journal.

  10. Microsoft Store India hacked

    “The Microsoft Store India is currently unavailable. Microsoft is working to restore access as quickly as possible. We apologize for any inconvenience this may have caused”, is the note from Microsoft's online retail outlet.

  11. From Redmond with Love: Microsoft ships 21 patches on Valentine’s Day

    On Valentine’s Day, Microsoft is sending IT administrators a big bouquet of 21 security patches.

  12. Anonymous spooks CIA with website attack

    Fresh off its successful hack of an FBI-Scotland Yard conference call, Anonymous has claimed responsibility for taking down the US Central Intelligence Agency’s public website.

  13. The rise – and defense – of malnets

    Blue Coat Systems 2012 Security Report maps the rise and describes the persistence of the modern malnet, and offers a solution.

  14. Trendnet home security camera feeds accessible to anyone

    Insecure internet-connected home security cameras are a warning that the Internet of Things will require more than just computer security – this is a warning of things to come.

  15. Was stolen Symantec source code behind the RSA SecurID attacks?

    An Australian broadcaster asks why Symantec is guarded over the Norton AV and pcAnywhere source code that was lost to the hacker Yamatough and the Lords of Dharmaraja, while a US researcher fears he may know the reason.

  16. Senators to introduce compromise cybersecurity legislation, with FISMA revisions

    A bipartisan group of senators who authored cybersecurity legislation last year plan to introduce a compromise cybersecurity bill that will be examined at a hearing next Thursday.

  17. Bank of America cops to credit card data breach

    Bank of America has informed affected credit card customers that their information may have been compromised by a breach at an unidentified merchant.

  18. Texas jury strikes down claim of interactive web patents

    A federal jury in Texas has declared invalid patents for interactive web technology claimed by Michael Doyle and his patent holding company Eolas.

  19. Google Wallet vulnerable to brute forcing the PIN

    Security researcher Joshua Rubin has published details of his research showing a vulnerability in the Google Wallet near field communication payments system for Android.

  20. Source code for Symantec's pcAnywhere published after failed extortion attempt

    A hacker associated with an Anonymous affiliate has released source code for Symantec’s pcAnywhere security software onto the Pirate Bay file-sharing website after an apparent attempt to extort $50,000 from the security vendor.

Why not watch?

  1. Securing Your Move to Hybrid Cloud Infrastructure

  2. Supply Chain Risk and Mitigation in Operational Technology

  3. The Future of Fraud: Defending Against Advanced Account Attacks

  4. Going Beyond Traditional Attack Surface Management with Cyber Threat Intelligence

What’s hot on Infosecurity Magazine?