Threat Level: green Handler on Duty: Mark Baggett

SANS ISC: Information Security News - Internet Security | DShield Information Security News


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Popular News

1 day ago Google reveals its servers all contain custom security silicon

The Register View Synopsis+1
Even the servers it colocates (!) says new docu revealing Alphabet sub's security secrets

Google has published a Infrastructure Security Design Overview that explains how it secures the cloud it uses for its own operations and for public cloud services.

1 day ago ATM Malware Retooled to Strike More Machines

InfoRiskToday View Synopsis+1
Upgraded Ploutus-D Malware Designed to Drain ATMs From Any ManufacturerMalware designed to get ATMs to spit out their cash - advanced when it first debuted - has been upgraded, according to a report from FireEye. Now, the Ploutus-D malware talks to legitimate ATM middleware, enabling it to target machines from 40 vendors. What does this mean for financial institutions?

1 day ago Brilliant phishing attack probes sent mail, sends fake attachments

The Register View Synopsis+1
Strategy_Doc.PDF from the next cubicle is actually a portal to p0wnage

An newly-detected Gmail phishing attack sees criminals hack and then rifle through inboxes to target account owners' contacts with thoroughly convincing fake emails.

1 day ago Just give up: 123456 is <i>still</i> the world's most popular password

The Register View Synopsis+1
Data diggers' dumpster dive demonstrates dumb and dumberer defences

The security industry's ongoing efforts to educate users about strong passwords appears to be for naught, with a new study finding the most popular passwords last year were 123456 and 123456789.

1 day ago Windows 10 Anniversary Update crushed exploits without need of patches

The Register View Synopsis+1
Microsoft security boffins throw fresh CVEs at unpatched OS, emerge smiling

Microsoft says its Windows 10 Anniversary Update squashes more exploit delivery chains than ever.

Top News

11 hours ago Dovecot mailserver graded 'nearly impenetrable'

The Register View Synopsis+1
Security audit of popular-with-service-providers package produces surprised smiles

POP and IMAP mailserver suite Dovecot has passed an extensive audit by hackers, who were able to find only three minor vulnerabilities.

9 hours ago Victorian Game Authority inadvertently emailed customer data to hunters

ZDNet View Synopsis+1
A Victorian government hunting authority has accidentally sent customer data to people renewing their hunting licences.

3 hours ago FTC Pushes Manufacturer to Secure IoT Wares

InfoRiskToday View Synopsis+1
In this edition of the ISMG Report: An FTC complaint filed against a camera manufacturer could signal the start of trend to regulate IoT security. Also, Donald Trump adviser Rudolph Giuliani's cybersecurity credentials questioned, and a terror shooting prompts new privacy guidance.

3 hours ago McDonald's Website Flaws Allow Phishing Attacks

SecurityWeek View Synopsis+1

A researcher has disclosed a couple of unpatched vulnerabilities affecting the official McDonald's website after the company ignored his attempts to responsibly report the issues.

45 minutes ago If Windows 7's security is so outdated, why doesn't Microsoft make it as good as Windows 10?

TechRepublic View Synopsis+1
Why can't Microsoft update the 'long-outdated security architectures' it says Windows 7 is based upon?

1 day ago Russia ready to rebuild security ties with U.S. under Trump: Putin ally

Yahoo Security View Synopsis+1
Russia is ready to resume cooperation with the United States on security issues such as the fight against terrorism and cyber crime, a close ally of President Vladimir Putin said, days before the inauguration of Donald Trump as president. Trump, who has praised Putin as "very smart", has signaled he wants to improve strained ties with Russia, despite U.S. intelligence agencies alleging the Kremlin chief ordered a cyber campaign to discredit rival Hillary Clinton during the 2016 presidential race. Russia denies it tried to sway the U.S. election by hacking or other means and Trump has played down the allegations.

1 day ago Samsung Heir Faces Arrest In Presidential Corruption Scandal

Forbes View Synopsis+1
Adding to Samsung's mountain of corporate headaches, South Korean prosecutors want to arrest its billionaire vice chairman Jay Y. Lee, who is also heir to the company throne.

20 hours ago How Data Analytics Saved Me Money On My Digital Forensics Services

SANS Reading Room View Synopsis+1
Data is the building block of our modern society. The IBM Corporation estimates that we create 2.5 quintillion bytes of data every single day (Bringing big data to the enterprise.n.d). This data comes from several sources, such as personal computers, smartphones, and other types of devices (fitness bands, IoT devices). The sheer size of today

19 hours ago Customers Win as Cucumber Tony Continues to Evolve

IT Toolbox Blogs View Synopsis+1

I've been intrigued by Cucumber Tony for a couple of years now. The promise of low-cost (or free) feature-rich cloud-managed Wi-Fi in an age where enterprise APs can cost over a grand apiece has to at least be explored. My own Cucumber Tony instance has been online and faithfully serving clients at Wirednot HQ for almost the entire time I've been following the goings on of this interesting

15 hours ago Who's winning the cyber war? The squirrels, of course

ArsTechnica View Synopsis+1
CyberSquirrel1 project shows fuzzy-tailed intruders cause more damage than "cyber" can.

Latest News

15 minutes ago If Windows 7's security is so outdated, why doesn't Microsoft make it as good as Windows 10's?

TechRepublic View Synopsis+1
Why can't Microsoft update the 'long-outdated security architectures' it says Windows 7 is based upon?

31 minutes ago Ransomware cretins smacked 1 in 3 NHS trusts last year

The Register View Synopsis+1
One was hit 19 times over 12 months

A third (30 per cent) of NHS trusts have been infected by ransomware, with one - the Imperial College Healthcare in London - suffering 19 attacks in just 12 months.

1 hour ago App Stores Must Register With State: China

SecurityWeek View Synopsis+1

Shanghai - App stores in China must register with the state from Monday, a government statement said, as China tightens its control over the internet.

App stores are "not strict" when they examine and approve apps, the China Cyberspace Administration, the country's internet watchdog, said in a statement.

1 hour ago Microsoft: Windows 7 in 2017 is so outdated that patches can't keep it secure

ZDNet View Synopsis+1
Microsoft warns business customers to begin migrating from Windows 7, exactly three years before it reaches end of life.

1 hour ago Security Audit Finds No Major Flaws in Dovecot

SecurityWeek View Synopsis+1

Germany-based security services provider Cure53 has conducted a security audit of Dovecot and determined that the software lives up to its reputation of being highly secure.

5 hours ago Devs reverse-engineer 16,000 Android apps, find secrets and keys to AWS accounts

The Register View Synopsis+1
It's 2017 and developers are still doing really dumb things

A security firm has reverse engineered 16,000 Android apps on Google's Play store and found that over 304 contain sensitive secret keys.

6 hours ago Dodgy Dutch developer built backdoors into thousands of sites

The Register View Synopsis+1
Then hoovered out users' personal data, stole identities galore and spent up big

Dutch police are this week warning 20,000 users that their email accounts were hacked after a malicious web developer left backdoors in the sites he built.