Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: Information Security News - Internet Security | DShield Information Security News


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Popular News

15 hours ago FEMA Exposed 2.3 Million Disaster Victims' Private Data

InfoRiskToday View Synopsis+1
Fraud and Identity Theft Risk Follows Bank Account and Postal Address ExposureVictims of hurricanes, wildfires and other disasters now face a second hit: The U.S. Federal Emergency Management Agency inadvertently shared 2.3 million disaster survivors' personal data of with an agency contractor, leaving victims at increased risk from fraud and identity theft.

2 days ago FEMA 'unnecessarily' shared data of 2.3 million disaster victims with contractor

ZDNet View Synopsis+1
FEMA says accidental data leak has been dealt with and user data removed from contractor's systems.

Top News

1 day ago Commonwealth floats increased penalties for privacy breaches

ZDNet View Synopsis+1
Consultation pencilled in for second half of 2019 -- on the other side of the upcoming federal election.

12 hours ago Why site reliability engineers face more security incidents and higher stress levels

TechRepublic View Synopsis+1
Half of SREs have worked on outages lasting longer than a day, according to a Catchpoint report.

1 day ago Slack slings crypto-keys at big biz, union gets worked over, VPN owners probed, trolls trouble vets, and more

The Register View Synopsis+1
Plus, two crooks craft a veritable fraudocopia

Roundup This week we got freaked out about heart implant hacks, welcomed a new Microsoft security tool, and endured yet another Facebook fsck up.…

1 day ago Watchdog: FEMA Wrongly Released Personal Data of Victims

SecurityWeek View Synopsis+1

The Federal Emergency Management Agency wrongly released to a contractor the personal information of 2.3 million survivors of devastating 2017 hurricanes and wildfires, potentially exposing the victims to identity fraud and theft, a government watchdog reported Friday.

Latest News

12 minutes ago LockerGoga bug crashes ransomware before encrypting files

ZDNet View Synopsis+1
Bug could be used to create (temporary) LockerGoga vaccines.

1 hour ago Huge news from Apple: No, not mags, games or TV - more than 50 security bugs to patch

The Register View Synopsis+1
Apple rolls out repairs for 51 iOS flaws, including nasty ones, plus fixes for macOS

In addition to teasing the world with a glimpse of subscriptions services for newspapers and magazines, gaming, and video entertainment, Apple on Monday released iOS 12.2, which patches 51 security vulnerabilities.…

1 hour ago Huge news from Apple: No, not mags, games or TV - more than 50 patched security bugs

The Register View Synopsis+1
Apple rolls out repairs for 51 iOS flaws, including nasty ones

In addition to teasing the world with a glimpse of subscriptions services for newspapers and magazines, gaming, and video entertainment, Apple on Monday released iOS 12.2, which patches 51 security vulnerabilities.…

3 hours ago One reason why you shouldn't allow your web browser to save your passwords

TechRepublic View Synopsis+1
Jack Wallen explains why you should never allow your web browser to save passwords--and what you should do instead.

3 hours ago Android ecosystem of pre-installed apps is a privacy and security mess

ZDNet View Synopsis+1
Extensive academic study finds data-harvesting and malware-laced pre-installed apps.

3 hours ago Why Simpler is Better for CISOs

InfoRiskToday View Synopsis+1
Trend Micro's Steve Neville on Managing Today's Complex Technical LandscapeSimpler is better. While that might be a frequent truism in life, it's especially applicable to the technology landscape facing organizations, as CISOs attempt to manage cloud services, 5G and other emerging technologies, says Steve Neville, director of corporate marketing at Trend Micro.

4 hours ago Enterprise Security in the Era of Digital Transformation

InfoRiskToday View Synopsis+1
Stan Lowe of Zscaler on How CISOs Can Help Drive Revenue Growth SecurelyDigital transformation is having a significant impact on enterprise security. Zscaler's Stan Lowe describes the evolving role of the CISO in the age of cloud and connectivity.

4 hours ago Inside Netscout's Threat Report

InfoRiskToday View Synopsis+1
Hardik Modi of Netscout Analyzes the Latest Cybercrime TrendsNetscout is out with its latest threat report, and the research offers some startling new insights into DDoS, advanced threats and the commercialization of cybercrime. Hardik Modi offers analysis.

5 hours ago Which are the most insecure languages?

ZDNet View Synopsis+1
WhiteSource review of programming language security errors reveal, which languages have the most security holes. The "winner?" C. But that's only the start of the story.

5 hours ago Spyware sneaks into 'million-ish' Asus PCs via poisoned software updates, says Kaspersky

The Register View Synopsis+1
Hackers were interested in 600 or so targets, it is claimed

A million or so Asus personal computers may have downloaded spyware from the computer maker's update servers and installed it, Kaspersky Lab claims.…

6 hours ago Microsoft Finds Privilege Escalation, Code Execution Flaws in Huawei Tool

SecurityWeek View Synopsis+1

Microsoft researchers have identified potentially serious privilege escalation and arbitrary code execution vulnerabilities in a tool from Huawei. The vendor has released updates that should patch the flaws.

7 hours ago Researchers Uncover Vulnerabilities in LTE Wireless Protocol

SecurityWeek View Synopsis+1

Researchers from the Korea Advanced Institute of Science and Technology Constitution (KAIST) say they have discovered 36 previously undisclosed vulnerabilities in the Long Term Evolution (LTE) protocol used by most mobile carriers.

8 hours ago Supply-Chain Attack Used to Install Backdoors on ASUS Computers

SecurityWeek View Synopsis+1

Hijacked Software Update Utility Could Have Impacted Over 1 Million ASUS Users

Over 1 million ASUS users may have been impacted after attackers managed to inject a backdoor in the ASUS Live Update utility, Kaspersky Lab reports. 

9 hours ago How to install OpenSSH on Windows 10 to encrypt network communications

TechRepublic View Synopsis+1
Learn how to use SSH natively within Windows 10 to secure communications between network devices.

10 hours ago Top 5 business concerns about public cloud applications

TechRepublic View Synopsis+1
Some 99% of companies receive direct business value from cloud visibility, according to a Keysight Technologies report.