SANS NewsBites

Syndicate content SANS NewsBites
All Stories From Vol: 16 - Issue: 60
Updated: 1 day 3 hours ago

Software Updates for Cars (June 4, 2014)

Sun, 2014-06-08 15:00

In the not-too-distant future, cars will be receiving software updates, much as computers and other electronic devices already do.......

Categories: security

DARPA's Cyber Grand Challenge (June 3, 4, & 5, 2014)

Sun, 2014-06-08 15:00

The US's Defense Advanced Research Projects Agency (DARPA) is launching the Cyber Grand Challenge Tournament.......

Categories: security

Judge Says Stingray Transcript Should be Unsealed in its Entirety (June 4, 2014)

Sun, 2014-06-08 15:00

A judge in Tallahassee, Florida has found in favor of the ACLU and ordered that transcript on testimony about stingray use by law enforcement be unsealed.......

Categories: security

US Marshals Seize Stingray Files Before ACLU Sees Them (June 3 & 5, 2014)

Sun, 2014-06-08 15:00

In a startling move, US Marshals have seized records of Florida law enforcement officers' use of technology known as stingray to keep the information from the American Civil Liberties Union (ACLU), which had obtained authorization to access the documents.......

Categories: security

Study Finds Major Utilities Have Fewer Security Incidents Than Other Sectors (May 29, 2014)

Fri, 2014-06-06 13:00

A new study indicates that major utilities are among the more secure components of critical infrastructure.......

Categories: security

Authorities Disrupt Gameover and CryptoLocker Command and Control Systems (June 2, 2014)

Fri, 2014-06-06 13:00

Authorities in the UK and the US have warned that people have about two weeks to take steps to protect their systems from a variant of Zeus known as Gameover and ransomware called Cryptolocker.......

Categories: security

Government Agencies Need to Improve Incident Response (May 30 & June 2, 2014)

Fri, 2014-06-06 13:00

According to a report from the US Government Accountability Office (GAO), "twenty-four major federal agencies did not consistently demonstrate that they are effectively responding to cyber incidents.......

Categories: security

Monsanto Breach Affects 1,300 Customers and Employees (May 29 & June 2, 2014)

Fri, 2014-06-06 13:00

Agricultural giant Monsanto has acknowledged a data breach that compromised the security of names, addresses, tax information and payment card details of 1,300 customers and employees.......

Categories: security

Alleged Gameover and CryptoLocker Ringleader Indicted (June 2, 2014)

Fri, 2014-06-06 13:00

US authorities say that Evgeniy Bogachev is the ringleader of a global malware scheme that stole more than US $100 million from business and personal bank accounts with a ZeuS variant known as Gameover.......

Categories: security

WordPress Extension Flaws (June 2, 2014)

Fri, 2014-06-06 13:00

Security flaws in a popular WordPress extension leave unpatched websites vulnerable to attacks.......

Categories: security

Pirate Bay Founder Arrested (May 31 & June 2, 2014)

Fri, 2014-06-06 13:00

Peter Sunde, one of the founders of The Pirate Bay, has been arrested in Sweden.......

Categories: security

More Companies Seeking CISOs (May 30, 2014)

Fri, 2014-06-06 13:00

Following the recent eBay and target breaches, major US companies are seeking chief information security officers (CISOs); some are offering substantial salaries for the position.......

Categories: security

Google Tightening Add-on Restrictions in Chrome (May 30, 2014)

Fri, 2014-06-06 13:00

Google is cracking down on security for its Chrome browser, disabling the majority of add-ons that did not come from its app store, and banning plug-ins based on the outdated NPAPI standard.......

Categories: security

TrueCrypt Shutdown Still a Mystery; Audit Will Go On (May 29 & 30, 2014)

Fri, 2014-06-06 13:00

When the TrueCrypt open source encryption project shut down last week, possible reasons for its demise made the rounds.......

Categories: security

British Shoe Store Website Breached (May 29 & 30, 2014)

Fri, 2014-06-06 13:00

UK shoe retailer Office says that intruders breached one of its website's servers and compromised customer names, addresses, emails, and passwords.......

Categories: security

FTC Wants Transparency and Accountability From Data Brokers (May 28, 2014)

Mon, 2014-06-02 17:00

In a report, the US Federal Trade Commission (FTC) is seeking legislative and best practices changes to encourage transparency and accountability from data brokers.......

Categories: security

Microsoft Warns Against Workaround to Get Patches for Windows XP (May 27 & 28, 2014)

Mon, 2014-06-02 17:00

Microsoft is warning users to be wary of a workaround that claims to provide Windows XP with security updates for five more years.......

Categories: security

iPhones and iPads Held Hostage (May 27 & 28, 2014)

Mon, 2014-06-02 17:00

Some owners of iPhones and iPads have found their devices held hostage by malware that locks them until the demand, usually about US $100, is paid.......

Categories: security

Core Infrastructure Initiative Funds Audit and Two Full-Time Developers for OpenSSL (May 29, 2014)

Mon, 2014-06-02 17:00

The Core Infrastructure Initiative (CII), which was created by the Linux Foundation with support from high-profile tech companies, will fund a security audit for OpenSSL code and salaries for two full-time core developers.......

Categories: security

TrueCrypt Shuts Down Development (May 29, 2014)

Mon, 2014-06-02 17:00

The TrueCrypt open source encryption project has ceased operations after issuing a warning that the software is no longer secure.......

Categories: security