SANS NewsBites

Subscribe to SANS NewsBites feed SANS NewsBites
All Stories From Vol: 17 - Issue: 41
Updated: 1 day 1 hour ago

Simda Botnet Takedown (April 13, 2015)

Wed, 2015-04-15 16:36

Interpol, working together with Japan's Cyber Defense Institute and several technology companies, has taken down a botnet known as Simda.......

Categories: security

Intel Report Focuses on Importance of Rapid Incident Detection and Response (April 13, 2015)

Wed, 2015-04-15 16:36

According to a report from Intel, organizations that respond to cyber attacks within an hour of their detection stand a better chance of retaining control of the situation.......

Categories: security

Alleged Svpeng Creator Arrested in Russia (April 13, 2015)

Wed, 2015-04-15 16:36

Russian authorities have arrested a man believed to be the creator of malware known as Svpeng, which is believed to have infected up to 350,000 Android-based devices in 2014.......

Categories: security

APT30 Espionage Campaign Has Been Operating Since 2005 (April 12 & 13, 2015)

Wed, 2015-04-15 16:36

According to the FireEye Intelligence Report, an espionage campaign known as APT30, has been targeting governments and businesses for 10 years.......

Categories: security

"Great Cannon" Attack Tool Used in DDoS Attacks Against GreatFire and GitHub (April 10 & 12, 2015)

Wed, 2015-04-15 16:36

The distributed denial-of-service (DDoS) attacks that targeted GreatFire and GitHub in March were likely launched by a Chinese attack tool called "Great Cannon.......

Categories: security

US Bans Export of Intel Xeon Processors to China (April 10, 2015)

Wed, 2015-04-15 16:36

The US Department of Commerce has refused to grant Intel a license to export Xeon processors to China.......

Categories: security

Apple OS Updates Address Darwin Nuke Vulnerability (April 10, 2015)

Wed, 2015-04-15 16:36

Among the issues patched in Apple's most recent versions of iOS and OS X is a vulnerability that can be exploited for denial-of-service attacks.......

Categories: security

Critical Infrastructure Systems are Often Targets of Destructive Cyber Attacks (April 7, 2015)

Sat, 2015-04-11 06:07

According to a survey conducted by the Organization of American States, destructive attacks happen more often than expected at organizations that operate elements of national critical infrastructure in both North and South America.......

Categories: security

White House Data Breach (April 8, 2015)

Sat, 2015-04-11 06:07

Attackers breached an unclassified White House computer system last fall.......

Categories: security

AT&T to Pay US $25 Million Settlement Over Call Center Data Breaches (April 8 & 9, 2015)

Sat, 2015-04-11 06:07

The US Federal Communications Commission (FCC) has reached a settlement with AT&T for data breaches that compromised customer information at call centers in Mexico, Colombia, and the Philippines.......

Categories: security

Apple Updates Available for OS X, iOS (April 9, 2015)

Sat, 2015-04-11 06:07

Apple has released updates for its operating systems.......

Categories: security

Drug Pump Vulnerability Could be Exploited to Alter Dosage Limits (April 9, 2015)

Sat, 2015-04-11 06:07

Some drug-infusion pumps do not use authentication for internal drug libraries, which establish upper and lower limits for dosages.......

Categories: security

Google Pulls Deceptive Extension from Online Store (April 8 & 9, 2015)

Sat, 2015-04-11 06:07

Google has pulled a Chrome add-on from the online app store because the extension, called Webpage Screenshot, was found to be stealing users' data and sending them back to an IP address in the US.......

Categories: security

Beebone Botnet Takedown (April 9, 2015)

Sat, 2015-04-11 06:07

In a coordinated effort, Europol's European Cybercrime Centre, the Joint Cybercrime Action Taskforce, authorities in the Netherlands, the FBI, and private security companies took down the Beebone botnet.......

Categories: security

FBI Urges Users to Patch WordPress Plug-ins (April 8, 2015)

Sat, 2015-04-11 06:07

The FBI has issued a warning to WordPress users that if they do not update their plug-ins for the content management system, they could find their sites compromised by extremist groups.......

Categories: security

Financial Regulator Says Wall Street Needs to Oversee Third-Party Security (April 8, 2015)

Sat, 2015-04-11 06:07

New York State superintendent of financial services Benjamin M.......

Categories: security

Mozilla Disables Opportunistic Encryption in Firefox Due to Security Issue (April 7 & 8, 2015)

Sat, 2015-04-11 06:07

Mozilla has disabled the opportunistic encryption feature introduced in the most recent version of Firefox (37) because it contained a vulnerability that could have been exploited to allow malicious sites to circumvent HTTPS protection.......

Categories: security

US Drug Enforcement Agency Collected Call Metadata for More Than 20 Years (April 7 & 8, 2015)

Sat, 2015-04-11 06:07

The US Drug Enforcement Agency (DEA) amassed a database of phone call metadata from all calls made from the US to countries that the DEA had identified as being linked to drug trafficking between 1992 and 2013.......

Categories: security

Documents Show NY Police Did Not Obtain Warrants for Stingray Use (April 7, 2015)

Sat, 2015-04-11 06:07

The New York Civil Liberties Union has published documents it obtained from the Erie County, NY, Sheriff's Office that disclose the department's use of stingray mobile device surveillance technology.......

Categories: security

US Technology Companies Wary of Data Sharing (April 2, 2015)

Thu, 2015-04-09 01:02

Technology companies in the US are wary of sharing threat information with the federal government, according to a Department of Homeland Security (DHS) official.......

Categories: security

Pages