SANS NewsBites

Syndicate content SANS NewsBites
All Stories From Vol: 16 - Issue: 84
Updated: 6 hours 27 min ago

Next Android Release Will Encrypt Data By Default (September 18 & 21, 2014)

Tue, 2014-09-23 17:00

Google says that the next version of its Android mobile operating system, due to be released before the end of 2014, will encrypt data by default.......

Categories: security

Senate Investigation Reveals China Broke Into Key Pentagon Networks (September 17 & 18, 2014)

Fri, 2014-09-19 17:00

Chinese government operatives infiltrated computer systems at US airlines and military contractors more than 20 times over the course of a year, according to a recently-declassified US Senate investigation report.......

Categories: security

iOS 8 Prevents Apple From Accessing Device Data (September 18, 2014)

Fri, 2014-09-19 17:00

Apple says that the most recent version of its mobile operating system removes the company's ability to provide law enforcement with data from devices running iOS 8.......

Categories: security

Attackers Launched Cross-Site Scripting Attack on eBay Auction Page (September 17 & 18, 2014)

Fri, 2014-09-19 17:00

Some eBay users were victims of an attack that caused some users who clicked on links on the site to be taken to duplicated, malicious pages where account access credentials were stolen.......

Categories: security

Evolution Online Black Market Trades in Drugs, Account Credentials, and Health Data (September 18, 2014)

Fri, 2014-09-19 17:00

Since the takedown of the Silk Road online black marketplace, others have stepped in to take over its shady trades.......

Categories: security

USAF IT Strategy to Require Baked-In Cyber Security (September 15 & 17, 2014)

Fri, 2014-09-19 17:00

Air Force Brig.......

Categories: security

Apple's "Warrant Canary" Disappears from Transparency Reports (September 18, 2015)

Fri, 2014-09-19 17:00

Apple's "warrant canary" - a statement in its transparency report that the company has never received an order from the US government under the Patriot Act - is conspicuously absent from the company's two most recent reports.......

Categories: security

Home Depot Breach Affected 56 Million Cards (September 18, 2014)

Fri, 2014-09-19 17:00

Home Depot acknowledged that the breach of its point-of-sale systems affected an estimated 56 million payment cards.......

Categories: security

Citadel Banking Trojan Now Being Used for Espionage (September 17, 2014)

Fri, 2014-09-19 17:00

Researchers have found a variant of malware known as Citadel that has been repurposed to steal sensitive information from petrochemical companies in the Middle East.......

Categories: security

StingRay Maker Might Have Misled FCC About Device's Purpose (September 17, 2014)

Fri, 2014-09-19 17:00

Included in the pages of emails that were part of the Harris Corporation's 2010 application for Federal Communications Commission (FCC) authorization for their cellular surveillance device known as StingRay is one message in which the company tells the FCC that StingRay "is only to provide .......

Categories: security

Managed Service Provider Apologizes for Breach That Compromised Goodwill Card Data (September 16 & 17, 2014)

Fri, 2014-09-19 17:00

Managed service provider C&K Systems has apologized for a breach in which intruders compromised customer payment card data at three organizations, including Goodwill.......

Categories: security

Adobe Releases Fixes for Reader and Acrobat (September 16, 2014)

Fri, 2014-09-19 17:00

Adobe has released fixes for vulnerabilities in Reader and Acrobat.......

Categories: security

Microsoft Pulls Problematic Lync Update (September 16, 2014)

Fri, 2014-09-19 17:00

Microsoft has pulled a security update for Lync after users reported having trouble installing it.......

Categories: security

US Power Grid Would Not Succumb to Cyber Attack Alone (September 10, 2014)

Tue, 2014-09-16 17:00

Experts say that a cyber attack alone could not take down the US power grid.......

Categories: security

Patched IE Flaw Was Used in Attack on US Military Website (September 11, 2014)

Tue, 2014-09-16 17:00

One of the Internet Explorer (IE) vulnerabilities patched in Microsoft's September set of security updates was used in an attack on the US veterans of Foreign Wars website to steal sensitive military information.......

Categories: security

Comcast is Not Disconnecting Tor Users (September 15, 2014)

Tue, 2014-09-16 17:00

Comcast says there is no truth to the rumor that it is threatening to disconnect users who connect to Tor.......

Categories: security

Appeals Court Says NCIS Scan of Civilian Computers Went Too Far (September 15, 2014)

Tue, 2014-09-16 17:00

A US federal appeals court in California ruled that the Naval Criminal Investigative Service (NCIS) overstepped its authority when an NCIS agent used a tool to search for hashed child pornography images on the computers of all Washington state computer users running Gnutella file-sharing software.......

Categories: security

Air Force Seeking Improved Network Mapping and Analysis Technology (September 15, 2014)

Tue, 2014-09-16 17:00

According to a presolicitation notice, the Air Force is seeking situational awareness technologies to help it see what is happening on its networks.......

Categories: security

Hospital CIO Shares How They Fought Attacks From Anonymous (September 15, 2014)

Tue, 2014-09-16 17:00

Boston Children's Hospital senior vice president for information services and CIO Dr.......

Categories: security