Infosecurity News
Hacker ‘Ghost Exodus’ sentenced to nine years in federal prison
Jesse William McGraw, also known as ‘Ghost Exodus’, has been sentenced to 110 months in a federal lock-up this week after pleading guilty to hacking the computer system of a Dallas-area medical complex.
Stolen Apple MacBook Air traced after Twitter/Facebook detective work
Technology is starting to beat the theft of computing devices. Earlier this week we reported on the successful retrieval of a stolen iPad by an Israeli owner using the MobileMe location service, and now a tech-savvy teenager in the US has traced his Apple laptop after the thief posted pictures and videos - taken by the laptop's camera - on the internet.
China's NetQin accused of installing mobile malware
NetQin, a new Chinese mobile security firm, has been accused by several sources of installing viruses on users' mobiles when they execute the company's anti-malware software.
Scammers pounce on news of Dame Elizabeth Taylor's death
It appears that, within hours of the death of film star Dame Elizabeth Taylor being announced yesterday, cybercriminals were tapping in interest in her life - and death - by launching social engineering frauds on Twitter.
Have cybercriminals hacked Visa/Mastercard 3-D Secure?
You're probably familiar with the 3-D Secure system of card security for online transactions - aka Verified by Visa (for Visa) and SecureCode (for MasterCard) - but now a security researcher is reporting that cybercriminals may have found a way around the online transaction security.
Schools learn hard lesson in information security protection
A full 63% of US schools have suffered at least two information security breaches in the last year, according to a survey by Panda Security.
McAfee expands in database security market with Sentrigo buy
McAfee, which was itself recently acquired by Intel, has agreed to purchase Sentrigo, a Santa Clara, Calif.-based database security products firm, for an undisclosed consideration.
Tenable intros real-time botnet scanning to its network security range
Tenable has updated its network security offerings to include what it claims to be world's first real-time botnet scanning facility.
ISACA speaker warns over increasing personal email usage for work purposes
Peter Wood, a member of ISACA conference committee, has warned about the increasing use of personal email services for business purposes. The result of this type of usage, he says, is that it creates security issues such as a lack of data leak prevention (DLP) controls and resultant increased data leakage due to a lack of encryption at the endpoint.
HIPAA fines prompt action by health care firms on data storage
With the recent fines imposed by the Department of Health and Human Services (HHS) for violations of the Health Insurance Portability and Accountability Act (HIPAA) privacy rules, firms are starting to feel the pain and take steps to archive and secure patient data.
Australia needs cybersecurity czar, Senate panel told
Australia needs a cybersecurity czar to coordinate its various governmental and industry efforts to improve cybersecurity, a private sector representative told a Senate panel.
iPad stolen and reclaimed in 90 minutes - and a 10 mile chase
An Israeli iPad user - working in concert with his wife and daughter back at home - has successfully retrieved his tablet computer after a 90 minute, 10 mile chase, attended by the police.
DoD works with industry on automated network intrusion defense system
The Department of Defense (DoD) is working with the private sector to develop an automated network intrusion detection and prevention system for the defense industry, a Pentagon official told Congress last week.
MyTob tops list of most significant virus over last 40 years
The MyTob virus, which appeared in 2005 and was the first worm to combine features of a botnet and a mass-mailer, is the most significant virus to emerge over the last 40 years, according to Guillaume Lovet, senior manager of Fortinet’s Threat Response Team.
RSA's SecurID customers worried that breach affected seed record database
Customers of RSA’s SecurID two-factor authentication product, which was the target of a recent security breach, are concerned that the seed record database might have been compromised, said Andrew Kemshall, co-founder of SecurEnvoy and former RSA Europe executive.
Skunx botnet discovered with C&C server in the US
Arbor Networks claims to have discovered one of the first botnets with its command-and-control (C&C) servers located in the US. Dr Jose Nazario, the firm's senior security researcher, says that the Skunx botnet is unusual in not being active in the wild.
Spam tapping Japanese disasters goes through the roof
Newswires are reporting that the volume of spam – leading to infected and scamware websites – has gone through the roof this week, but M86 Security says that it has seen a spam campaign that imitates a Twitter notification.
Hacked Colorado highway sign warns of roving zombies
A road sign used by the Colorado Department of Transportation (CDOT) was apparently accessed by an unknown, unauthorized individual who changed the sign to warn of “ZOMBIES AHEAD”.
ICO says 40% of wireless home internet users have no knowledge of WiFi security
Research just published by the Information Commissioner's Office (ICO) claims to show that 40% of people who have WiFi at home do not understand how to change the security settings on their networks.
BlackBerry users urged to disable Javascript after web browsing vulnerability revealed
Research in Motion (RIM) is advising Blackberry smartphone users to disable Javascript to protect against a security vulnerability in its web browser.
