SANS NewsBites

Subscribe to SANS NewsBites feed SANS NewsBites
All Stories From Vol: 17 - Issue: 31
Updated: 1 day 11 hours ago

US Government Lagging in Cyber Workforce (April 14, 2015)

Wed, 2015-04-22 00:20

According to a report from the Partnership for Public Service, the US government faces several obstacles to establishing a strong cyber workforce capable of defending the country's systems from attacks.......

Categories: security

Bill Would Exempt Researchers from Prosecution Under DMCA (April 16 & 17, 2015)

Wed, 2015-04-22 00:20

US legislators in both houses have introduced a bill that would protect security researchers from prosecution under the Digital Millennium Copyright Act (DMCA), which prohibits circumvention of digital protection on copyrighted works.......

Categories: security

Robbery Case Dropped to Protect Stingray Use Information (April 20 & 21, 2015)

Wed, 2015-04-22 00:20

Prosecutors in Missouri have dropped a criminal case against three suspects who allegedly robbed seven people, at least one of whom was injured, rather than disclose information about law enforcement's use of cell-site simulator technology often referred to as stingray.......

Categories: security

Cook County, Illinois Subpoenas Suggests Misunderstanding of Tor (April 20, 2015)

Wed, 2015-04-22 00:20

Cook County, Illinois has subpoenaed a Romanian security company, demanding the "real IP address" that used a Tor exit node to access Cook County systems.......

Categories: security

Russian Doll Campaign Targeting Foreign Governments (April 19 & 20, 2015)

Wed, 2015-04-22 00:20

A group of cyber attackers with apparent links to Russia has been exploiting known vulnerabilities in Windows and Flash to seek out information about other governments, militaries, and security organizations.......

Categories: security

"Researcher" Who Tweeted Joke About Security Plane Security Barred From United Flight (April 19 & 20, 2015)

Wed, 2015-04-22 00:20

A "researcher" who tweeted a joke about airline communications system security during a United Airlines flight was detained by the FBI for several hours after that flight landed.......

Categories: security

IBM's Threat Intelligence Sharing Platform (April 16 & 20, 2015)

Wed, 2015-04-22 00:20

IBM has launched a threat intelligence sharing platform called IBM X-Force Exchange.......

Categories: security

Pawn Storm APT (April 17, 2015)

Wed, 2015-04-22 00:20

A group responsible for an advanced persistent threat (APT) scheme known as Pawn Storm has targeted members of the US military, embassies, defense contractors, and more recently, NATO members and White House employees.......

Categories: security

US Naval Academy Wins NSA Cyber Defense Competition (April 17, 2015)

Wed, 2015-04-22 00:20

A team from the US Naval Academy took top honors in the NSA's 15th Annual Cyber Defense Exercise (CDX).......

Categories: security

HSBC Customer Data Compromised (April 17, 2015)

Wed, 2015-04-22 00:20

HSBC Finance Corporation has acknowledged that a breach late last year compromised mortgage account data belonging to an unspecified number of customers.......

Categories: security

US Army Wants Another Year of Support for Windows XP (April 13, 2015)

Wed, 2015-04-22 00:20

The US Army has issued a request for information "seeking sources of continued support for Windows XP.......

Categories: security

GAO Report Urges FAA to Address Wi-Fi Security Concerns (April 14, 15 & 16, 2015)

Fri, 2015-04-17 17:51

According to a report from the US Government Accountability Office (GAO), on certain aircraft, passenger Wi-Fi networks use the same networks as the plane's avionics systems, putting the aircraft at risk of attacks from passengers and even from people on the ground.......

Categories: security

Dell Report Notes Increase in Attacks Against Industrial Control Systems (April 15, 2015)

Fri, 2015-04-17 17:51

According to the 2015 Dell Security Annual Threat Report, attacks against Industrial Control Systems rose nearly fourfold last year.......

Categories: security

Flaws Addressed on Patch Tuesday Being Actively Exploited (April 14 & 15, 2015)

Fri, 2015-04-17 17:51

On Tuesday, April 14, Microsoft, Adobe, and Oracle all issued security updates.......

Categories: security

Verizon Data Breach Investigations Report Says Mobile Malware Not Important - Yet (April 14, 2015)

Fri, 2015-04-17 17:51

According to Verizon's 2015 Data Breach Investigations Report (DBIR), the threat landscape has not changed much since last year's report.......

Categories: security

China Suspends Stringent Tech Rules (April 16, 2015)

Fri, 2015-04-17 17:51

China has temporarily suspended implementation of rules that would make it nearly impossible for foreign technology companies to offer products to the country's financial sector.......

Categories: security

Think Tank Says Iran Gathering Information About US Grid (April 16, 2015)

Fri, 2015-04-17 17:51

According to a report from a Washington think tank, Iranian cyber attackers are looking for information online to identify systems that control elements of the US's critical infrastructure.......

Categories: security

ICO Investigated Law Firms Over Reported Breaches (April 16, 2015)

Fri, 2015-04-17 17:51

According to data obtained through a Freedom of Information request, the UK's Information Commissioner's Office (ICO) investigated 173 law firms in that country regarding reports of Data Protection Act (DPA) breaches.......

Categories: security

Windows HTTP Protocol Stack Flaw is Being Actively Exploited (April 16, 2015)

Fri, 2015-04-17 17:51

The Internet Storm Center has raised its threat level to Yellow in response to a vulnerability in the Windows HTTP protocol stack that is being actively exploited to crash systems.......

Categories: security

Target Reaches Settlement With MasterCard Over Breach (April 15 & 16, 2015)

Fri, 2015-04-17 17:51

Target has agreed to pay MasterCard US $19 million.......

Categories: security

Pages