SANS NewsBites

Subscribe to SANS NewsBites feed SANS NewsBites
All Stories From Vol: 16 - Issue: 93
Updated: 4 hours 57 min ago

NSA Director Says Critical Infrastructure Data Stolen (November 20, 2014)

Fri, 2014-11-21 22:09

NSA Director Michael S.......

Categories: security

Citadel Trojan Now Targeting Password Managers (November 19 & 20, 2014)

Fri, 2014-11-21 22:09

The Citadel Trojan, which in the past has been used to steal bank account access credentials and was used in targeted attacks against Middle Eastern petro-chemical companies, has recently been used in attacks against password managers.......

Categories: security

Senate NSA Bill Blocked in Procedural Vote (November 18, 2014)

Fri, 2014-11-21 22:09

By a narrow margin, the US Senate has blocked a bill aimed at curtailing NSA data gathering practices from reaching the floor.......

Categories: security

Webcam Streaming Site Found Underscores Need to Reexamine Security (November 20, 2014)

Fri, 2014-11-21 22:09

The UK Information Commissioner's Office is urging people who use webcams to reset passwords and login information.......

Categories: security

NATO Cyber Defense Exercise (November 20, 2014)

Fri, 2014-11-21 22:09

On November 18, NATO launched Cyber Coalition 2014, a multinational cyber defense training exercise to test the Alliance's "ability to defend its networks from the various challenges that exist when operating in the contested cyber domain.......

Categories: security

NotCompatible Android Malware Botnet (November 20, 2014)

Fri, 2014-11-21 22:09

A new variant of Android malware known as NotCompatible has been detected sneaking onto companies' networks and stealing data.......

Categories: security

WhatsApp Adopts End-to-End Encryption (November 18, 19, & 20, 2014)

Fri, 2014-11-21 22:09

WhatsApp has upped its encryption game to offer better protection for messages sent from Android devices running the app.......

Categories: security

US Legislators Critical of USPS Breach Response (November 19, 2014)

Fri, 2014-11-21 22:09

The intruders who breached security of US Postal Service (USPS) computer systems may have copied employees' compensation information.......

Categories: security

UK Banks Invite Intrusion Testing (November 19, 2014)

Fri, 2014-11-21 22:09

Banks in the UK are inviting attackers to probe their systems as part of a security test.......

Categories: security

Amnesty International Releases Free Anti-Spyware Tool (November 19, 2014)

Fri, 2014-11-21 22:09

Amnesty International has released a tool that can detect spyware that governments use against activists and dissidents.......

Categories: security

Chrome 39 Removes SSL 3.0 Fallback (November 19, 2014)

Fri, 2014-11-21 22:09

Google has updated its Chrome browser to version 39; the newest stable version of Chrome includes fixes for 42 security issues.......

Categories: security

Microsoft Issues Emergency Patch for Flaw in Kerberos Authentication Protocol (November 18 & 19, 2014)

Fri, 2014-11-21 22:09

Microsoft has released an out-of-cycle update (MS14-068) to address a critical flaw in the Kerberos authentication protocol that is being actively exploited.......

Categories: security

US State Department Unclassified eMail System Breached (November 16 & 17, 2014)

Wed, 2014-11-19 07:07

The US State Department has taken its unclassified email system offline following a security breach.......

Categories: security

Government Does Not Hoard Zero Days, Says White House Cybersecurity Coordinator (November 17, 2014)

Wed, 2014-11-19 07:07

The US government does not hoard zero-day vulnerabilities for use against adversaries, according to White House Cybersecurity Coordinator Michael Daniel.......

Categories: security

AT&T Ends "Test" of Phone Tracking IDs (November 14, 2014)

Wed, 2014-11-19 07:07

AT&T says it has stopped using hidden tracking numbers in customers' communications.......

Categories: security

Apple Issues Update for Yosemite Reportedly Not Fixing Wi-Fi Problems But Still Should Be Installed (November 17, 2014)

Wed, 2014-11-19 07:07

Apple has issued an update for Yosemite, OS X 10.......

Categories: security

Microsoft Security Intelligence Report Looks at Risk of Expired Security Software (November 14 & 17, 2014)

Wed, 2014-11-19 07:07

According to the most recent Microsoft Security Intelligence Report, running computers with expired security software is nearly as risky as running a computer without any security software at all.......

Categories: security

Apple Says Masque is Not Much of a Risk (November 13 & 14, 2014)

Wed, 2014-11-19 07:07

Apple appears not to be concerned about the Masque malware despite a warning from US-CERT not to download apps from anywhere except the official App Store.......

Categories: security

Chinese Authorities Make WireLurker Arrests (November 14 & 17, 2014)

Wed, 2014-11-19 07:07

Police in Beijing have arrested three people alleged to be responsible for the WireLurker malware, which targets users of Apple products.......

Categories: security

Judges Require Stricter Rules for Stingray Use (November 15 & 17, 2014)

Wed, 2014-11-19 07:07

Law enforcement agencies in Pierce County in Washington state must now specify when they will use stingray technology in their investigations and must also swear in the affidavit that they will not retain data belonging to people who are not the target of the order.......

Categories: security

Pages