security

Gemalto Admits Breach, Says SIM-card Encryption Keys Not Stolen (February 25, 2015)

SANS NewsBites - Sun, 2015-03-01 07:57

SIM-card maker Gemalto says that it appears that US and UK intelligence agencies did breach its systems, but denies that the cards' encryption keys were stolen.......

Categories: security

RAMNIT Botnet Taken Down (February 25, 2015)

SANS NewsBites - Sun, 2015-03-01 07:57

Law enforcement agents across Europe have worked together to take down the RAMNIT botnet, which is believed to have infected 3.......

Categories: security

UK's Information Commissioner's Office Fines Travel Insurance Company Over Breach (February 25, 2015)

SANS NewsBites - Sun, 2015-03-01 07:57

The UK Information Commissioner's Office (ICO) has fined travel insurance company Staysure GBP 175,000 (US $270,000) for lax website security that resulted in 100,000 payment cards being compromised.......

Categories: security

Senator Questions Stingray Use (February 25, 2015)

SANS NewsBites - Sun, 2015-03-01 07:57

US Senator Bill Nelson (D-Florida) is asking why the Federal Communications Commission (FCC) approved the use of cell phone surveillance technology commonly referred to as StingRay.......

Categories: security

Feds Offer US $3 Million Reward for Gameover ZeuS Botnet Admin (February 24 & 25, 2015)

SANS NewsBites - Sun, 2015-03-01 07:57

The FBI and the US State Department are offering a US $3 million reward for information leading to the arrest and/or conviction of Evgeniy Mikhailovich Bogachev, who allegedly stole more than US $100 million through the Gameover ZeuS botnet.......

Categories: security

Breach Detection Time is Decreasing (February 24, 2015)

SANS NewsBites - Sun, 2015-03-01 07:57

According to FireEye, the time it takes for breaches to be detected is dropping.......

Categories: security

Ubuntu: 2516-2: Linux kernel vulnerability regression

LinuxSecurity.com - Fri, 2015-02-27 23:35
LinuxSecurity.com: USN-2516-1 introduced a regression in the Linux kernel.
Categories: linux, news, security

Friday Squid Blogging: Humboldt Squid Communicate by Flashing Each Other

Schneier on Security - Fri, 2015-02-27 17:00
Scientists are attaching cameras to Humboldt squid to watch them communicate with each other. As usual, you can also use this squid post to talk about the security stories in the news that I haven't covered....
Categories: security

Data and Goliath Book Tour

Schneier on Security - Fri, 2015-02-27 15:32
Over the next two weeks, I am speaking about my new book -- Data and Goliath, if you've missed it -- in New York, Boston, Washington, DC, Seattle, San Francisco, and Minneapolis. Stop by to get your book signed, or just to say hello....
Categories: security

Hackers exploit router flaws in unusual pharming attack

LinuxSecurity.com - Fri, 2015-02-27 04:30
LinuxSecurity.com: An email-based attack spotted in Brazil recently employed an unusual but potent technique to spy on a victim's Web traffic.
Categories: linux, news, security

Gemalto Confirms It Was Hacked But Insists the NSA Didn't Get Its Crypto Keys

LinuxSecurity.com - Fri, 2015-02-27 04:28
LinuxSecurity.com: Gemalto, the Dutch maker of billions of mobile phone SIM cards, confirmed this morning that it was the target of attacks in 2010 and 2011-attacks likely perpetrated by the NSA and British spy agency GCHQ. But even as the the company confirmed the hacks, it downplayed their significance, insisting that the attackers failed to get inside the network where cryptographic keys are stored that protect mobile communications.
Categories: linux, news, security

DDoS Exploit Targets Open Source Rejetto HFS

LinuxSecurity.com - Fri, 2015-02-27 04:26
LinuxSecurity.com: Apparently no vulnerability is too small, no application too obscure, to escape a hacker's notice. A honeypot run by Trustwave's SpiderLabs research team recently snared an automated attack targeting users of the open source Rejetto HTTP File Server (Rejetto HFS).
Categories: linux, news, security

Gemalto Investigating Reports of SIM Card Encryption Key Thefts (February 20, 2015)

SANS NewsBites - Fri, 2015-02-27 01:16

SIM card maker Gemalto is looking into reports that government intelligence agents stole card encryption keys.......

Categories: security

State Department Replaced 30,000 Login Fobs After Network Intrusion (February 20 & 23, 2015)

SANS NewsBites - Fri, 2015-02-27 01:16

The US State Department revoked and replaced 30,000 network login fobs after an unclassified network at the agency was infiltrated.......

Categories: security

Alleged Cyber Criminal Will Not Give Up Encryption Keys (February 20, 2015)

SANS NewsBites - Fri, 2015-02-27 01:16

A British man accused of breaching systems at NASA, the FBI, and the US Federal Reserve is refusing to surrender cryptographic keys that would allow authorities in the UK to access devices seized after his October 2013 arrest.......

Categories: security

Hewlett-Packard's 2015 Cyber Risk Report Says Companies Not Patching Properly (February 23, 2015)

SANS NewsBites - Fri, 2015-02-27 01:16

Hewlett-Packard's 2015 Cyber Risk Report, released on February 23, found that nearly 45 percent of breaches could be attributed to vulnerabilities for which patches have been available for two or more years.......

Categories: security

Samba Vulnerability Could Allow Remote Code Execution with Root Privileges (February 24, 2015)

SANS NewsBites - Fri, 2015-02-27 01:16

A critical flaw in Samba could be exploited to allow remote code execution with root privileges.......

Categories: security

Chrome Will Warn Users When They Try to Visit Sketchy Sites (February 23 & 24, 2015)

SANS NewsBites - Fri, 2015-02-27 01:16

Google's Chrome browser will warn users when they try to visit sites that may harm their computers through surreptitiously changing the browser's home page or placing certain ads on pages.......

Categories: security

Norton and Symantec Updates Crash Internet Explorer (February 21 & 23, 2015)

SANS NewsBites - Fri, 2015-02-27 01:16

Several Norton and Symantec security products have been found to crash 32-bit versions on Internet Explorer (IE).......

Categories: security

Medical Identity Theft on the Rise (February 23, 2015)

SANS NewsBites - Fri, 2015-02-27 01:16

According to a study from the Ponemon Institute, medical identity theft increased by 22 percent in 2014.......

Categories: security

Pages