SANS NewsBites

Subscribe to SANS NewsBites feed SANS NewsBites
All Stories From Vol: 17 - Issue: 40
Updated: 1 day 20 hours ago

CareFirst BlueCross BlueShield Breach (May 21, 2015)

Sat, 2015-05-23 17:14

CareFirst BlueCross BlueShield has acknowledged that an attack on one of its databases compromised the personally identifiable information of 1.......

Categories: security

Dating Site Hackers Expose Details Of Millions Of Users (May 23, 2015)

Sat, 2015-05-23 17:14

Adult FriendFinder's 3.......

Categories: security

Export License for Zero-Days (May 21, 2015)

Sat, 2015-05-23 17:14

The US Department of Commerce has proposed changes to the Wassenaar Agreement, seeking to impose more stringent rules for the export of zero-day exploits to entities outside the country.......

Categories: security

Medical Device Security Guidance for Developers (May 21, 2015)

Sat, 2015-05-23 17:14

A paper titled "Building Code for Medical Device Software Security," offers guidance for developers.......

Categories: security

mSpy Acknowledges Database Breach (May 21, 2015)

Sat, 2015-05-23 17:14

mSpy, a company that sells software that people can use to spy on others, has admitted that attackers broke into its systems and stole data.......

Categories: security

Password Security Questions Easy to Guess (May 21, 2015)

Sat, 2015-05-23 17:14

Google's analysis of hundreds of millions of password security questions found that it would be easy for people intent on gaining access to someone's account to do so.......

Categories: security

NetUSB Vulnerability Affects Routers and Internet of Things Devices (May 20 & 21, 2015)

Sat, 2015-05-23 17:14

An unchecked input flaw in the NetUSB device sharing service could be exploited to execute code remotely or cause denial-of-service conditions.......

Categories: security

FCC Policy Means Broadband Providers Must Adhere to Stricter Privacy Rules (May 21, 2015)

Sat, 2015-05-23 17:14

The US Federal Communications Commission (FCC) is notifying Internet providers to let them know that they are now subject to stringent privacy regulations.......

Categories: security

Android Factory Reset Does Not Always Clear Data (May 21, 2015)

Sat, 2015-05-23 17:14

Researchers at Cambridge University have found that as many as 500 million Android phones contain a security issue that could expose data even after the factory reset option is run.......

Categories: security

Logjam Flaw (May 19 & 20, 2015)

Sat, 2015-05-23 17:14

Tens of thousands of HTTPS domains contain a vulnerability in the transport layer security protocol that the sites use to establish encrypted communications with users.......

Categories: security

Chrome 43 Promoted to Stable Channel (May 20 & 21, 2015)

Sat, 2015-05-23 17:14

On Tuesday, May 19, Google moved Chrome 43 to the stable channel.......

Categories: security

Airbus Warns of Software Flaws in Engine Electronic Control Units (May 19 & 20, 2015)

Sat, 2015-05-23 17:14

The crash of a military plane in Spain earlier this month may have been the result of buggy software.......

Categories: security

St. Louis Federal Reserve DNS Servers Breached (May 18 & 20, 2015)

Sat, 2015-05-23 17:14

Attackers hijacked the domain name servers of the St.......

Categories: security

FBI: Data Breaches Up 400%; Workforce Needs To Be 'Doubled or Tripled' (May 14, 2015)

Thu, 2015-05-21 09:57

James Trainor, acting assistant director of the FBI's Cyber Division, said the agency used to learn about a new, large-scale data breach every two or three weeks.......

Categories: security

FBI Says Man Claims He Took Control of Plane in Flight (May 16 and 17, 2015)

Thu, 2015-05-21 09:57

According to an April 17, 2015, search warrant application filed by an FBI agent, Chris Roberts, who was kicked off a United Airlines flight in April after he tweeted about being able to make the oxygen masks drop, reportedly did at one time take control of a plane while it was in flight.......

Categories: security

Hedge Funds Targeted by Cyber Extortionists (May 8, 2015)

Thu, 2015-05-21 09:57

Cyber extortionists have targeted several hedge funds.......

Categories: security

Cyber Security a Growing Concern for Financial Services Companies (May 15, 2015)

Thu, 2015-05-21 09:57

Close to 50 percent of US financial institutions rank cyber security as their number one concern, according to a survey from the Depository Trust & Clearing Corporation (DTCC), topping geo-political risks and new regulations.......

Categories: security

Address Spoofing Flaw Affects Safari for OS X and iOS (May 18, 2015)

Thu, 2015-05-21 09:57

Proof-of-concept code has been released for a vulnerability in Safari for OS X and iOS.......

Categories: security

Oracle Releases Patch for VENOM Vulnerability (May 18, 2015)

Thu, 2015-05-21 09:57

Oracle has released a fix for a critical overflow vulnerability known as VENOM.......

Categories: security

Penn State College of Engineering Takes Systems Offline After Attacks (May 15 and 18, 2015)

Thu, 2015-05-21 09:57

In November 2014, the FBI notified Penn State University that attackers had breached systems at its College of Engineering.......

Categories: security

Pages