SANS NewsBites

Syndicate content SANS NewsBites
All Stories From Vol: 16 - Issue: 87
Updated: 12 hours 8 min ago

USAF IT Strategy to Require Baked-In Cyber Security (September 15 & 17, 2014)

Fri, 2014-09-19 17:00

Air Force Brig.......

Categories: security

Apple's "Warrant Canary" Disappears from Transparency Reports (September 18, 2015)

Fri, 2014-09-19 17:00

Apple's "warrant canary" - a statement in its transparency report that the company has never received an order from the US government under the Patriot Act - is conspicuously absent from the company's two most recent reports.......

Categories: security

Home Depot Breach Affected 56 Million Cards (September 18, 2014)

Fri, 2014-09-19 17:00

Home Depot acknowledged that the breach of its point-of-sale systems affected an estimated 56 million payment cards.......

Categories: security

Citadel Banking Trojan Now Being Used for Espionage (September 17, 2014)

Fri, 2014-09-19 17:00

Researchers have found a variant of malware known as Citadel that has been repurposed to steal sensitive information from petrochemical companies in the Middle East.......

Categories: security

StingRay Maker Might Have Misled FCC About Device's Purpose (September 17, 2014)

Fri, 2014-09-19 17:00

Included in the pages of emails that were part of the Harris Corporation's 2010 application for Federal Communications Commission (FCC) authorization for their cellular surveillance device known as StingRay is one message in which the company tells the FCC that StingRay "is only to provide .......

Categories: security

Managed Service Provider Apologizes for Breach That Compromised Goodwill Card Data (September 16 & 17, 2014)

Fri, 2014-09-19 17:00

Managed service provider C&K Systems has apologized for a breach in which intruders compromised customer payment card data at three organizations, including Goodwill.......

Categories: security

Adobe Releases Fixes for Reader and Acrobat (September 16, 2014)

Fri, 2014-09-19 17:00

Adobe has released fixes for vulnerabilities in Reader and Acrobat.......

Categories: security

Microsoft Pulls Problematic Lync Update (September 16, 2014)

Fri, 2014-09-19 17:00

Microsoft has pulled a security update for Lync after users reported having trouble installing it.......

Categories: security

US Power Grid Would Not Succumb to Cyber Attack Alone (September 10, 2014)

Tue, 2014-09-16 17:00

Experts say that a cyber attack alone could not take down the US power grid.......

Categories: security

Patched IE Flaw Was Used in Attack on US Military Website (September 11, 2014)

Tue, 2014-09-16 17:00

One of the Internet Explorer (IE) vulnerabilities patched in Microsoft's September set of security updates was used in an attack on the US veterans of Foreign Wars website to steal sensitive military information.......

Categories: security

Comcast is Not Disconnecting Tor Users (September 15, 2014)

Tue, 2014-09-16 17:00

Comcast says there is no truth to the rumor that it is threatening to disconnect users who connect to Tor.......

Categories: security

Appeals Court Says NCIS Scan of Civilian Computers Went Too Far (September 15, 2014)

Tue, 2014-09-16 17:00

A US federal appeals court in California ruled that the Naval Criminal Investigative Service (NCIS) overstepped its authority when an NCIS agent used a tool to search for hashed child pornography images on the computers of all Washington state computer users running Gnutella file-sharing software.......

Categories: security

Air Force Seeking Improved Network Mapping and Analysis Technology (September 15, 2014)

Tue, 2014-09-16 17:00

According to a presolicitation notice, the Air Force is seeking situational awareness technologies to help it see what is happening on its networks.......

Categories: security

Hospital CIO Shares How They Fought Attacks From Anonymous (September 15, 2014)

Tue, 2014-09-16 17:00

Boston Children's Hospital senior vice president for information services and CIO Dr.......

Categories: security

Open Source Project Aims to Provide Encryption for Communications (September 15, 2014)

Tue, 2014-09-16 17:00

An open source project aimed at providing easy-to-use encryption for email launched on Monday, September 15.......

Categories: security

Connect.gov Password Consolidation to be Tested Next Month (September 15, 2014)

Tue, 2014-09-16 17:00

Starting as soon as October 2014, Connect.......

Categories: security

NIST Releases Draft Guidelines for 3-D Printer Security (September 11, 2014)

Tue, 2014-09-16 17:00

The US National Institute of Standards and Technology (NIST) has released draft guidelines for 3-D printer security.......

Categories: security

Tech Companies Urge Lawmakers to Move Forward with Bill to Amend ECPA (September 10, 2014)

Tue, 2014-09-16 17:00

Technology companies are calling on US legislators to pass Email Privacy Act, a bill that would update the 1986 Electronic Communications Privacy Act (ECPA), which allows law enforcement authorities to search, without a warrant, communications that have been stored in what we now call the Cloud for more than 180 days.......

Categories: security

DHS Program Will Bring Technologies from Lab to Practice (September 10, 2014)

Tue, 2014-09-16 17:00

The US Department of Homeland Security's (DHS's) Transition to Practice (TTP) program aims to bring cyber security technology developed at federal laboratories "into the real world.......

Categories: security

NIST Creates Digital Evidence Subcommittee (September 8, 2014)

Tue, 2014-09-16 17:00

The National Institute of Standards and Technology (NIST) has established a new digital evidence/forensic science subcommittee in its Organization of Scientific Area Committees (OSAC).......

Categories: security