173 replies to this topic

[tsr66]

 Quote: 25 years of Microsoft Office roadkill

 

By: By Woody Leonhard, ,InfoWorld  May 19, 2014

 

Love it or hate it, Microsoft Office has torn up the competition, leaving all manner of software carrion in its wake.

 

full read here: http://www.infoworld...l-242705#slide1

 

[tsr66]

"Quote: Law enforcement targets users of BlackShades malware

 

By: Help Net Security

 

During two days of operations taking place in more than 10 countries worldwide, coordinated by Eurojust in The Hague and supported by the European Cybercrime Centre (EC3) at Europol, creators, sellers and users of BlackShades malware were targeted by judicial and law enforcement authorities.

 

full read here:http://www.net-secur...ld.php?id=16880

[tsr66]

"Quote" Secure public WiFi with avast! SecureLine for iOS

 

By:by Mirko Zorz  - Editor in Chief - Monday, 19 May 2014.

I

 

I've heard a joke that in today's world, people need Wi-Fi more than food, water or shelter. If you look around you in a restaurant or in line at the bank, people are probably fiddling with their smartphones.

 

full read here:http://www.net-secur...view.php?id=324

 

[tsr66]

 "Quote" Cisco CEO warns Obama on surveillance

 

By: By

  Tom Payne

Published  May 19, 2014

 

Cisco CEO John Chambers has spoken out against United States government surveillance in a letter to President Barack Obama, the Financial Times.

 

full read here:http://www.itp.net/5...on-surveillance

Edited by tsr66, 19 May 2014 - 01:34 PM.

[tsr66]

Quote: U.S. charges Chinese Army members with cyber espionage

 

By: By Serdar Yegulalp | InfoWorld - MAY 19, 2014

 

Five members of the Chinese Army have been indicted for allegedly hacking U.S. firms and stealing trade secrets.

 

full read here:http://www.infoworld...spionage-242754

[tsr66]

By Jaikumar Vijayan

May 19, 2014 02:48 PM ET

"quote" Hacker indictments against China's military unlikely to change anything

 

Computerworld - The U.S. government's decision Monday to formally indict five members of the Chinese military on criminal hacking charges marks a significant escalation of what until now has been largely a war of words between officials of both countries.

 

full read here:http://www.computerw...change_anything

Edited by tsr66, 19 May 2014 - 01:44 PM.

[tsr66]

"Quote" Essential steps for implementing Data Loss Prevention

 

By: Mirko Zorz -  Editor in Chief - Monday, 19 May 2014.

 

In this podcast, recorded at Infosecurity Europe 2014, Raul Condea from CoSoSys talks about essential steps to take when implementing Data Loss Prevention (DLP.

 

full read here:http://www.net-secur...cle.php?id=2017

[tsr66]

"quote" Record month for Linux Trojans

 

Author: Zeljka Zorz HNS Managing Editor - Posted on 19.05.2014

 

If you think that you are protected from malware if you use Linux, think again, warn researchers from AV manufacturer Dr. Web, who identified and examined a record-high number of Trojans for Linux this month - and the month isn't over yet.

 

full read here:http://www.net-secur...ews.php?id=2768

[tsr66]

"Quote" Researchers discover critical flaws in the Chip and PIN system

 

Author: Zeljka Zorz HNS Managing Editor - Posted on 19.05.2014

 

A group of researchers from Cambridge University have discovered two critical flaws in the "Chip and PIN" (EMV) smart card payment system that can be misused to "clone" cards so effectively that normal bank procedures won't spot the fake.

 

full read here: http://www.net-secur...ld.php?id=16881

[tsr66]

"Quote" Single RCE Vulnerability that affects Microsoft, Yahoo and Orange 

 

by Sabari Selvan on Friday, May 16, 2014

 

Ebrahim Hegazy, a Bug Bounty Hunter from Egypt, has identified a security vulnerability that allowed him to hack Microsoft, Yahoo and Orange. 

 

full read here:http://www.ehackingn...at-affects.html

[tsr66]

Quote: Google begins world domination campaign by invading Stockton

 

By Robert X. Cringely | InfoWorld/ MAY 20, 2014

 

Googlers are the marauding aliens of classic (and not-so-classic) sci-fi, and we're letting them proceed with their 'enslave humanity' plot.

 

 

InfoWorld: http://www.infoworld...stockton-242780

[tsr66]

Quote: 6 things security pros keep getting wrong

 

By Roger A. Grimes | InfoWorld / MAY 20, 2014

 

Nobody's perfect -- especially computer security professionals. Fortunately, there's a pattern to the mistakes. Here are some of the most common ones to watch for.

 

InfoWorld/full read here: http://www.infoworld...ng-wrong-242786

[tsr66]

Quote: Face recognition pioneer now worried tech will be used for mass surveillance

 

By Darlene Storm

May 19, 2014 10:45 AM EDT

 

Face recognition pioneer now worried tech will be used for mass surveillance, face-matching bio metrics enabling “mass surveillance” and “basically robbing everyone of their anonymity.

 

Computerworld/Full Read Here: http://blogs.compute...ss-surveillance

[tsr66]

Quote: Passwords remain a problem for everyone

 

By: HNS Staff / Posted on 20 May 2014.

 

Passwords remain a problem even for tech-conscious consumers. In an F-Secure poll, 43% of respondents report using the same password for more than one important account – a big no-no for proper password .

 

Help Net Security/ Full Read Here: http://www.net-secur...ld.php?id=16886

[tsr66]

Quote: Half of security pros fail to secure data

 

BY: HNS Staff / Posted on 20 May 2014.

 

Research conducted at Infosecurity Europe 2014 has revealed that 50% of security professionals do not secure data on portable storage devices such as USBs and external hard drives.

 

Help Net Security/ Full Read Here: http://www.net-secur...ld.php?id=16887

[tsr66]

Quote: Ransomware sting op yields 100 arrests in 16 countries

 

By  Stephen McBride

Published  May 20, 2014

 

Almost 100 people in 16 countries have been held by authorities in a sting operation to counter Blackshades, a prolific malware suite that steals logon credentials and personal data from infected machines, the BBC reported.

 

ITP.net/ Full Read Here: http://www.itp.net/5...in-16-countries

[tsr66]

Quote: China summons US ambassador over cyber espionage indictments

 

By  Stephen McBride

Published  May 20, 2014

 

China's foreign ministry summoned the US ambassador to condemn US cyber-crime indictments against five Chinese military officers, Reuters reported.

 

ITP.net / Full Read Here: http://www.itp.net/5...age-indictments

[tsr66]

Quote: The 6 craziest ideas for the iPhone 6

 

By Pete Babb, InfoWorld, May 20, 2014

 

If you see anybody trying to pass off these 'prototypes' as real, don’t take them seriously.

 

InfoWorld/ Full Read Here: http://www.infoworld...iphone-6-242788

[tsr66]

Quote: China retaliates, nixes Windows 8 on government PCs

 

By Gregg Keizer

May 20, 2014 10:27 AM ET

 

 China has banned the use of Windows 8 on government computers, a move officials there claimed was a reaction to the end of Windows XP's support.

 

ComputerWorld/ Full Read Here:http://www.computerw..._government_PCs

[tsr66]

Quote: China counters US claims with own charges of cyber-espionage

 

By Michael Kan

May 19, 2014 10:46 PM ET

 

IDG News Service - China's state-controlled media released Tuesday a report that claims the U.S. hacked into Chinese systems using phishing attacks..

 

ComputerWorld / Full Read Here: http://www.computerw...cyber_espionage

 

 

[tsr66]

Quote: Angler exploit kit starts wielding Silverlight exploits

 

Author: Zeljka Zorz HNS Managing Editor - Posted on 20.05.2014

 

Silverlight exploits are the drive-by flavor of the month," claim Cisco researchers. "Exploit Kit owners are adding Silverlight to their update releases, and since April 23rd we have observed substantial traffic (often from malvertising) being driven to Angler instances partially using Silverlight exploits."

 

Help Net Security/ Full Read Here: http://www.net-secur...ews.php?id=2770

[tsr66]

Quote: Fascinating MiniDuke backdoor hits again

 

Author: HNS Staff / Posted on 20.05.2014

 

MiniDuke - the extremely small and highly customized Asembler-based backdoor used in the past to target mostly government entities and institutions around the world - has been spotted again, this time by ESET researchers.

 

Help Net Security / Full Read Here: http://www.net-secur...ews.php?id=2769

 

 

[tsr66]

Quote: Republicans to FCC: Stop mulling Net neutrality reclassification

 

By Grant Gross | IDG News Service / May 21, 2014/

.

Some House members question the need for the FCC to move forward with any Net neutrality rules.

 

 

InfoWorld / Full Read Here: http://www.infoworld...fication-242852

[tsr66]

Quote: No 'Surface Mini' is great news for Windows users

 

 

By Woody Leonhard | InfoWorld / MAY 20, 2014

 

 

Microsoft's failure to release a new Surface Mini today may -- with any luck -- signal the final nail in Windows RT coffin.

 

 

InfoWorld / Full Read Here:http://www.infoworld...ws-users-242834

[tsr66]

Quote: Dear user: It was your mistake, deal with it

 

By Anonymous | InfoWorld / MAY 21, 2014

 

 

A strange accounting number is traced to a user, who insists it's not her fault and that someone's trying to sabotage her.

 

 

InfoWorld / Full Read Here: http://www.infoworld...-deal-it-242842

[tsr66]

Quote: Public utility compromised after brute-force attack, DHS says

 

By Jeremy Kirk | IDG News Service / MAY 21, 2014

 

The utility, which was not identified, used a simple password system and had been compromised before.

 

 

InfoWorld / Full Read Here:http://www.infoworld...dhs-says-242881

 

ITP.net / Full read Here: http://www.itp.net/5...ard-40-scenario

Edited by tsr66, 21 May 2014 - 06:32 AM.

[tsr66]

Quote: AT&T hacker wants government to pay him $13M

 

By Jaikumar Vijayan

May 20, 2014 06:04 PM ET

 

Computerworld - Andrew 'weev' Auernheimer, whose struggles with federal prosecutors have fueled calls for reforming the Computer Fraud and Abuse Act (CFAA), wants the government to pay him $13 million for taking away his freedom for the past three years.

 

 

ComputerWorld/ Full Read Here: http://www.computerw..._to_pay_him_13M

[tsr66]

Quote: Some industrial systems still vulnerable to Heartbleed

 

Author: Zeljka Zorz HNS Managing Editor / Posted on 21 May 2014.

 

 

The danger from Heartbleed has passed for most Internet users, but operators of Industrial Control Systems (ICS) are not that lucky.

 

 

Help Net Security / Full Read Here: http://www.net-secur...ld.php?id=16896

[tsr66]

Quote: Insider threat and privileged user abuse

 

Author: HNS Staff / Posted Posted on 21 May 2014.

 

 

Despite heightened awareness of insider threats, most organizations continue to grapple with how to mitigate risks to their networks and sensitive information.

 

Help Net Security/ Full Read Here:http://www.net-secur...ld.php?id=16895

[tsr66]

Quote: Facebook offers free browser-based malware scanner

 

Author: HNS Staff/ Posted Posted on 21 May 2014.

 

 

People share via social media more than any other channel. But with social media exploits of personal and corporate accounts frequently making headlines, it’s time for new ways to protect consumers’ digital identities.

 

 

Help Net Security / Full Read Here: http://www.net-secur...ld.php?id=16894

[tsr66]

Quote: Legacy cybersecurity products failed to protect 97% of organizations

 

Author: HNS Staff /  Posted on 21 May 2014.

 

 

A new report examines attack data captured by FireEye security appliances from 1,217 organizations around the world from October 2013 to March 2014.

 

Help Net Security/ Full Read Here: http://www.net-secur...ld.php?id=16893

[tsr66]

"Quote" Cybercrime attack targets, victims, motivations and methods

 

Author: HNS Staff / Posted  on 21 May 2014.

 

Summary: Trustwave experts gathered the data from 691 breach investigations (a 54 percent increase from 2012) across 24 countries in addition to proprietary threat intelligence gleaned from the company’s five global security operations centers, telemetry from security technologies and ongoing threat research.

 

Help Net Security / Full Read Here:http://www.net-secur...ld.php?id=16897

[tsr66]

"Quote" Facebook hoax "Prayers for Like"

 

by shalini bhushan on Wednesday, May 21, 2014

 

 

Summary: A baby's photograph was taken out illegally from a personal facebook profile and is circulated without the parents permission. 

 

E Hacking News / Full Read Here:http://www.ehackingn...s-for-life.html

[tsr66]

"Quote" Privacy takes a beating in the FBI's kangaroo court

 

By Robert X. Cringely | InfoWorld / Posted MAY 22, 2014

 

 

Summary: The Feds ran roughshod over Lavabit, forcing it to shut down and proving that in the privacy wars, the government is fighting to win -- and fighting dirty.

 

 

InfoWorld / Full Read Here:http://www.infoworld...oo-court-242939

 

[tsr66]

"Quote" New Internet Explorer zero-day details released after Microsoft fails to patch

 

By Jeremy Kirk | IDG News Service  Posted May 22 2014

 

 

Summary: The seven-month-old flaw has remained unpatched in Internet Explorer 8, which has a 20 percent market share.

 

 

InfoWorld / Full Read Here: http://www.infoworld...ls-patch-242966

[tsr66]

"Quote" Do not track'? Oh what the heck, go ahead

 

 

By Zach Miners | IDG News Service / Posted May 22 2014

 

 

Summary: Chalk up another victory for corporate surveillance: Five years after advocates came up with an easy way to let you browse the Web with just a little privacy, the Do Not Track system is in tatters and that pair of boots you looked at online last month is still stalking you from website to website.

 

 

InfoWorld / Full Read Here: http://www.infoworld...go-ahead-242965

[tsr66]

"Quote" OnionShare lets you send files securely and anonymously

 

Author: Zeljka Zorz HNS Managing Editor /  Posted on 22 May 2014.

 

 

Summary: A new programming project that allows users to send files anonymously over Tor has been made available on GitHub by its author Micah Lee, former staff technologist at the EFF and the current one at The Intercept, the investigative online publication run by Glenn Greenwald, Laura Poitras, and Jeremy Scahill.

 

 

Help Net Security / Full Read Here: http://www.net-secur...ld.php?id=16906

[tsr66]

"Quote" Stop all browser-borne malware from entering your network

 

Author: by Mirko Zorz - Editor in Chief - Thursday, 22 May 2014

 

 

Summary: In this podcast, recorded at Infosecurity Europe 2014, Branden Spikes, CEO, CTO & Founder of Spikes Security, talks about how malware has already done its job by the time traditional malware detection security systems have a chance to start their work

 

 

Help Net Security / full read here: http://www.net-secur...cle.php?id=2019

[tsr66]

"Quote" What are the biggest risks with the Internet of Things?

 

Author: :HNS Staff  Posted on 22 May 2014.

 

Summary: The majority of small businesses in the U.S. (82 percent) believe the Internet of Things (IoT) will bring fresh opportunities for their business, according to a new study released today by AVG.

 

 

Help Net Security: http://www.net-secur...ld.php?id=16903

[tsr66]

:Quote" CERN, MIT scientists launch Swiss-based secure webmail

 

Author: Zeljka Zorz HNS Managing Editor / Posted on 22 May 2014.

 

Summary: Last week marked the beta release of yet another encrypted, secure email service, and interest for it was so overwhelming that its developers had to temporarily close the signups.

 

 

Help Net Security / Full Read Here:http://www.net-secur...ld.php?id=16909

[tsr66]

"Quote" China to block IT products that don't pass 'cybersecurity vetting'

 

By Michael Kan | IDG News Service / Posted May 22 2014

 

Summary: Tensions are rising between China and the U.S. over cyber security issues and could limit business for U.S. tech firms such as Microsoft, IBM, and Cisco.

 

 

InfoWorld / Full Read Here: http://www.infoworld...-vetting-242971

[tsr66]

Bug bounty program outs 7-month-old IE zero-day

 

 

 

By Gregg Keizer

May 22, 2014 03:11 PM ET

 

Summary: No sign that hackers are exploiting the unpatched vulnerability in IE8; XP users will never see the fix.

 

 

ComputerWorld /l Full Read here: http://www.computerw...old_IE_zero_day

Edited by tsr66, 22 May 2014 - 04:25 PM.

[tsr66]

 

PayPal fixes merchant account hijacking bug

 

 

Author: Zeljka Zorz HNS Managing Editor / Posted on 22 May 2014.

 

 

Summary Well-known and prolific bug hunter Mark Litchfield has unearthed a pretty big flaw in PayPal Manager, which would allow attackers to hijack a merchants' account by changing their password, and consequently have access to their and their customers' personal information as well as being able to place orders from it.

 

 

Help Net Security / Full Read Here: http://www.net-secur...ld.php?id=16904

[tsr66]

"Quote" House approves weakened bill to limit NSA bulk collection

 

By Grant Gross | IDG News Service / Posted on MAY 22 2014

 

 

SUMMARY: The U.S. House of Representatives has approved a bill that would limit the National Security Agency's bulk collection of domestic phone records, even as several civil liberties and tech groups withdrew their support after last-minute changes.

 

 

 

InfoWorld / Full Read Here: http://www.infoworld...llection-243019

\

Edited by tsr66, 22 May 2014 - 05:24 PM.

[tsr66]

"Quote" Another privacy threat: DNS logging and how to avoid it

 

By Woody Leonhard | InfoWorld / Posted MAY 21, 2014

 

Summary: With AT&T now turning your DNS logs into a money-making proposition, it's time to look at alternatives.

 

 

InfoWorld / Full Read Here: http://www.infoworld...avoid-it-242879

[tsr66]

"Quote" Hybrid cloud computing success factors

 

By HNS Staff Posted May 22 2014

 

Summary: In the past three years, private cloud computing has moved from an aspiration to a tentative reality for nearly half of the world's large organizations. Hybrid cloud computing, however, is where private cloud was three years ago — aspirations are high but deployments low.

 

 

Help Net Security: / Full Read Here:http://www.net-secur...ld.php?id=16901

[tsr66]

"Quote" Microsoft plans to patch IE zero day -- eventually

 

By Jeremy Kirk

May 22, 2014 08:20 PM ET

 

Summary: IDG News Service - Microsoft said Thursday it plans eventually to patch a vulnerability in Internet Explorer 8 that it's known about for seven months, but it didn't say when.

 

ComputerWorld / Full Read Here: http://www.computerw..._day_eventually

[tsr66]

"Quote" Researcher finds vulnerability in eBay and claims he uploaded a shell 

 

by Sabari Selvan on Friday, May 23, 201

 

Summary: Jordan Jones(@CEHSecurity), a Security researcher, claims to have discovered a critical security vulnerability in the eBay website for employees that allowed him to upload a backdoor shell.

 

E Hacking News / Full Read Here: http://www.ehackingn...ty-in-ebay.html

 

 

[tsr66]

"Quote" Trust in the U.S. cloud on the decline

 

Author: HNS Staff / Posted on 23 May 2014

 

 

Summary: Perspecsys revealed a continental cloud divide between the U.S. and Europe, based on data findings from a study it conducted at Infosecurity Europe 2014.

 

 

Help Net Security/ full read here: http://www.net-secur...ld.php?id=16913

[tsr66]

"Quote" Facebook introduces privacy check up tool

 

 

Author: Zeljka Zorz HNS Managing Editor / Posted on 23 May 2014.

 

 

Summary: Facebook continues on its course to give users more privacy by making "Friends" the default sharing option for first time posters, and by introducing a privacy checkup tool that will urge users to review things like who they’re posting to, which apps they use, and the privacy of key pieces of information on their profile.

 

 

Help Net Security / Full Read Here: http://www.net-secur...ld.php?id=16915