SANS NewsBites

Subscribe to SANS NewsBites feed SANS NewsBites
All Stories From Vol: 17 - Issue: 32
Updated: 1 hour 8 sec ago

Android Flaw Allows Attackers to Modify or Replace Apps (March 24 & 25, 2015)

Sat, 2015-03-28 23:17

A security flaw in the Android operating system could be exploited to remotely take over vulnerable devices.......

Categories: security

Patched Flash Vulnerability Now Part of Exploit Kit (March 20, 2015)

Thu, 2015-03-26 22:36

A vulnerability in Adobe's Flash Player that was patched on March 12 has already been added to an exploit kit.......

Categories: security

Short Duration DDoS Attacks on the Rise (March 23, 2015)

Thu, 2015-03-26 22:36

According to Corero's DDoS Trends and Analysis quarterly report, distributed denial-of-service (DDoS) attacks with short durations and lower bandwidth are becoming more prevalent.......

Categories: security

Google Warns of Unauthorized TLS Certificates (March 23, 2015)

Thu, 2015-03-26 22:36

Google has issued a warning that unauthorized digital certificates were issued for some of its domains.......

Categories: security

PoSeidon Malware Stealing Payment Card Data (March 23, 2015)

Thu, 2015-03-26 22:36

Malware dubbed PoSeidon targets point-of-sale systems.......

Categories: security

Swedish Teen Fined Over Breach (March 23, 2015)

Thu, 2015-03-26 22:36

The Swedish municipality of Umea is seeking SEK 500,000 (US $58,700) from a teenager who broke into Umea's municipal system and caused damage.......

Categories: security

Hilton Honors Loyalty Club Accounts at Risk (March 23, 2015)

Thu, 2015-03-26 22:36

A flaw in the way the Hilton Honors loyalty club is managed online puts all user accounts at risk of being taken over with a cross-site request forgery attack.......

Categories: security

Man Facing 16 Felony Accounts Over High School Grade-Changing Scheme (March 20 & 22, 2015)

Thu, 2015-03-26 22:36

Timothy Lance Lai, who allegedly broke into the network of a California high school and changed students grades, is now facing felony charges of computer access and fraud for his alleged role in a keylogging ring at the high school that saw 11 students expelled.......

Categories: security

New South Wales Moves to Fix Electronic Voting Vulnerability (March 22 & 23, 2015)

Thu, 2015-03-26 22:36

The New South Wales (Australia) Electoral Commission is taking steps to fix a vulnerability in the electronic voting system they use that could put voters at risk of having their ballots manipulated.......

Categories: security

Malvertising on the Rise (March 22, 2015)

Thu, 2015-03-26 22:36

Malvertising is more insidious than some other forms of attacks because it situates itself within web pages, piggybacking on advertising that targets users.......

Categories: security

Rocket Kitten Cyber Attack Group Has New Campaign (March 20, 2015)

Thu, 2015-03-26 22:36

A group known as Rocket Kitten and believed to be responsible for attacks on systems belonging to organizations in Europe and Israel has launched a new campaign.......

Categories: security

Chinese Anti-Censorship Group Hit with DDoS Attack (March 20, 2015)

Thu, 2015-03-26 22:36

A group of anonymous activists that monitor online censorship in China has come under attack.......

Categories: security

Girls Hack Ireland (March 20 & 23, 2015)

Thu, 2015-03-26 22:36

On March 21, nearly 100 teenage girls participated in the Girls Hack Ireland event where they learned how to manipulate web pages and build websites.......

Categories: security

Document Reveals China has Special Cyber War Units (March 18, 2015)

Sun, 2015-03-22 12:50

Officials in China have long denied US allegations of cyber espionage.......

Categories: security

OpenSSL Project Fixes 12 Security Issues (March 19, 2015)

Sun, 2015-03-22 12:50

The OpenSSL Project has released fixes to address a dozen flaws in the open source cryptographic protocol implementation.......

Categories: security

Committee Approves Request to Expand Judge's Warrant Authority for Digital Searches (March 17, 2015)

Sun, 2015-03-22 12:50

The US Judicial Conference Advisory Committee on Criminal Rules voted 11-1 to modify a provision known as Rule 41 to give judges more flexibility in how they approve search warrants for electronic data.......

Categories: security

ISP-Provided ADSL Routers Have Directory Traversal Flaw (March 19, 2015)

Sun, 2015-03-22 12:50

A directory traversal vulnerability in more than 700,000 ADSL routers Internet service providers (ISPs) have provided to their customers could put those customers at risk of DND hijacking.......

Categories: security

NYPD Officer Arrested for Allegedly Accessing Databases Without Authorization (March 17 & 19, 2015)

Sun, 2015-03-22 12:50

A New York City Police Department officer has been arrested for allegedly breaking into restricted law enforcement databases to obtain personal information about people who had been involved in traffic accidents.......

Categories: security

D-Link Releases Patches for Flaws in Cameras and Wireless Range Extenders (March 18, 2015)

Sun, 2015-03-22 12:50

D-Link is releasing firmware patches to fix vulnerabilities in certain network cameras and wireless range extenders.......

Categories: security

Court Says Erie County (NY) Sheriff's Office Must Turn Over Stingray Documents (March 18, 2015)

Sun, 2015-03-22 12:50

A court in New York has ordered a county sheriff's office there to turn over documents about its use of stingray surveillance technology to the New York Civil Liberties Union (NYCLU).......

Categories: security

Pages