SANS NewsBites

Subscribe to SANS NewsBites feed SANS NewsBites
All Stories From Vol: 16 - Issue: 99
Updated: 1 day 14 hours ago

Microsoft and Adobe Security Updates (December 9, 2014)

Tue, 2014-12-16 12:59

On Tuesday, December 9, Microsoft released seven security bulletins to address 24 flaws in a variety of products.......

Categories: security

Microsoft Pulls Problematic Exchange Server 2010 SP3 Update (December 10, 2014)

Tue, 2014-12-16 12:59

Microsoft has pulled one of the updates it released on December 9.......

Categories: security

Sony Pictures Employees Threatened; Execs Received Extortion eMails Prior to Attack (December 8, 2014)

Wed, 2014-12-10 05:41

Additional information about the Sony Pictures attack is emerging.......

Categories: security

Linux Turla Variant Detected (December 8 & 9, 2014)

Wed, 2014-12-10 05:41

A stealthy Trojan horse program that targets Linux systems may have been around for as long as four years.......

Categories: security

US Treasury Department Says Tor is a Major Source of Financial Account Takeovers (December 5, 2014)

Wed, 2014-12-10 05:41

In a non-public report, the US Treasury Department says that many bank account hijackings could have been prevented if financial institutions had known to block transactions that came through the Tor network.......

Categories: security

Poodle Impacts TLS Protocol (December 8 & 9, 2014)

Wed, 2014-12-10 05:41

The vulnerability known as Poodle has been found to impact the Transport Layer Security (TLS) protocol, so users who patched websites against the flaw in SSL earlier this year will need to check to see if they are still vulnerable to exploit through the flaw.......

Categories: security

White House Issues New Commitments to Support Computer Science Education (December 8, 2014)

Wed, 2014-12-10 05:41

A White House initiative to bring computer science education to US middle and high school students has participating school districts in Districts in New York, Los Angeles, Miami, Chicago and other large cities representing more than four million secondary school students.......

Categories: security

Former Apple Executive Gets prison Sentence for Selling Insider Data (December 8, 2014)

Wed, 2014-12-10 05:41

Former Apple global supply manager Paul Shin Devine has been sentenced to a year in prison for selling information about the company to its suppliers so they could negotiate better deals.......

Categories: security

ISP Content Filters Blocked Access to CCC Sites (December 8, 2014)

Wed, 2014-12-10 05:41

Content filters in use by Internet service providers (ISPs) Vodafone and Three have blocked users' access to the Chaos Communications Congress (CCC) as its annual conference approaches.......

Categories: security

Vulnerabilities in Google App Engine (December 8 & 9, 2014)

Wed, 2014-12-10 05:41

Google is investigating reports of more than two dozen serious vulnerabilities in the Java environment of the Google App Engine.......

Categories: security

UK Police Not Receiving Adequate Cyber Crime Training (December 7, 2014)

Wed, 2014-12-10 05:41

According to a survey of UK police intelligence analysts, British police are not receiving adequate training to equip them with what they need to know to fight cyber crime.......

Categories: security

German Court Blocks Turkish Man's Extradition to US (December 2 & 5, 2014)

Wed, 2014-12-10 05:41

A Germany court has blocked the extradition of Ercan Findikoglu to the US to face charges that he is the alleged mastermind responsible a series of online credit card thefts.......

Categories: security

Judge Says Banks Can Sue Target (December 4 & 8, 2014)

Wed, 2014-12-10 05:41

A US District Court judge in Minnesota has ruled that banks affected by the Target data breach may sue Target for negligence.......

Categories: security

Operation Cleaver (December 2 & 3, 2014)

Sun, 2014-12-07 21:42

A sustained cyber attack campaign dubbed Operation Cleaver has compromised computer networks at several high profile organizations, including governments and companies supporting elements of critical infrastructure, over the past two years.......

Categories: security

Sony Pictures Attackers Release Sensitive Data (December 3 & 4, 2014)

Sun, 2014-12-07 21:42

The attackers responsible for infiltrating the Sony Pictures computer network have leaked more than 40 gigabytes of stolen data, including compensation details for top executives, and a slew of passwords for computers, social media accounts and web services.......

Categories: security

Sony Attack Code Analysis (December 2 & 3, 2014)

Sun, 2014-12-07 21:42

The malware used in the attack against the Sony Pictures network can spread over network file shares and is capable of destroying data on Windows computers it infects.......

Categories: security

PayPal Fixes Cross-Site Request Forgery Vulnerability (December 4, 2014)

Sun, 2014-12-07 21:42

PayPal has fixed a cross-site request forgery vulnerability that put every account at risk of being taken over.......

Categories: security

Defense Industrial Base ISAC to Launch in February 2015 (December 4, 2014)

Sun, 2014-12-07 21:42

The Defense Industrial Base Information Sharing and Analysis Center (DIB-ISAC) is scheduled to open in February 2015.......

Categories: security

DOJ Establishing Cybersecurity Unit (December 4, 2014)

Sun, 2014-12-07 21:42

The US Justice Department (DOJ) is creating a new unit in its criminal division that will be focused on fighting cyber crime.......

Categories: security

Malware Pre-Installed on Certain Smartphones (December 4, 2014)

Sun, 2014-12-07 21:42

Malware has been found pre-installed on certain smartphones from lesser-known vendors in Asia and Africa.......

Categories: security

Pages