Threat Level: green Handler on Duty: John Bambenek

SANS ISC: Information Security News - Internet Security | DShield Information Security News


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Popular News

8 hours ago South Korea says mystery hackers cracked advanced weapons servers

The Register View Synopsis+1
No idea who could have been behind this one...

The South Korea Ministry of National Defense says 10 of its internal PCs have been compromised by North Korea unknown hackers .…

5 hours ago Happy Thursday! 770 MEEELLLION email addresses and passwords found in yuge data breach

The Register View Synopsis+1
Now is a good time to get a password manager app

Infosec researcher Troy Hunt has revealed that more than 700 million email addresses have been floating around "a popular hacker forum" - along with a very large number of plain text passwords.…

6 hours ago Airline Booking System Exposed Passenger Details

InfoRiskToday View Synopsis+1
Vulnerability Highlights Poor Security Controls for Passenger Name RecordsAirline booking system provider Amadeus - used by 500 airlines - is investigating a software vulnerability that exposed passenger name records, which is the bundle of personal and travel data that gets collected when booking a flight.

5 hours ago Battle Lines Forming Ahead of a Looming U.S. Privacy Law Fight

SecurityWeek View Synopsis+1

Consumer advocates and the data-hungry technology industry are drawing early battle lines in advance of an expected fight this year over what kind of federal privacy law the U.S. should have.

1 hour ago Malware can now evade cloud security tools, as cybercriminals target public cloud users

TechRepublic View Synopsis+1
Refined malware payloads from Chinese threat actor Rocke Group are sidestepping security tools to install cryptocurrency miners on cloud systems.

Top News

1 day ago Using dual-mappings to evade automated unpackers

Uninformed View Synopsis+1
Automated unpackers such as Renovo, Saffron, and Pandora's Bochs attempt to dynamically unpack executables by detecting the execution of code from regions of virtual memory that have been written to. While this is an elegant method of detecting dynamic code execution, it is possible to evade these unpackers by dual-mapping physical pages to two distinct virtual address regions where one region is used as an editable mapping and the second region is used as an executable mapping. In this way, the editable mapping is written to during the unpacking process and the executable mapping is used to execute the unpacked code dynamically. This effectively evades automated unpackers which rely on detecting the execution of code from virtual addresses that have been written to.

1 day ago Farewell 2009, and The Washington Post

SecurityFix Blog View Synopsis+1

This will be the last post for the Security Fix blog. Dec. 31 marks my final day at The Washington Post Company.

Over the last 15 years, I've reported hundreds of stories for washingtonpost.com and the paper edition. I have authored more than 1,300 blog posts since we launched Security Fix back in March 2005. Dozens of investigative reports that first appeared online later were "reverse published" in the newspaper, including eight front-page stories and a Post Magazine cover.

Through it all, you - the reader - have been my most valuable source, most reliable critic, and most persistent muse. Loyal readers are the reason Security Fix has consistently been among the most-visited blogs on washingtonpost.com. Thank you.

I will continue to remain engaged in this increasingly vital news beat. Please stay in touch for updates in the New Year. I can be reached directly at this e-mail address.

1 day ago Yes, you can remotely hack ... building site cranes. Wait, what?

The Register View Synopsis+1
Authentication is simply AWOL for remote RF construction plant, says Trend Micro

Did you know that the construction industry uses radio-frequency remote controllers to operate cranes, drilling rigs and other heavy machinery? Doesn't matter: they're alarmingly vulnerable to being hacked, according to Trend Micro.…

1 day ago Cryptopia cryptocurrency exchange pulled offline due to security breach

ZDNet View Synopsis+1
Reports suggest that cryptocurrency may have been lost by the exchange.

1 day ago U.S. Charges 8 in Securities Hacking Scheme

SecurityWeek View Synopsis+1

US authorities on Tuesday charged eight people in a scheme to trade on and profit from stolen corporate information hacked from a government database, court papers showed.

1 day ago Police can't force you to unlock your phone by iris, face or finger

TechRepublic View Synopsis+1
Police can't force you to unlock your phone by iris, face or finger

1 day ago OCC Issues Volcker Rule Proposal for Public Comment

InfoRiskToday View Synopsis+1
The Office of the Comptroller of the Currency requested public comment on a proposed regulation implementing the so-called "Volcker Rule" requirements of section 619 of the Dodd-Frank Wall Street Reform and Consumer Protection Act.

Latest News

9 minutes ago Serious Flaws Found in ControlByWeb Industrial Weather Station

SecurityWeek View Synopsis+1

Researchers have discovered two potentially serious vulnerabilities in an industrial-grade weather station made by ControlByWeb, a company that specializes in products that allow organizations to remotely monitor and control electrical devices.

1 hour ago ERP Security Firm Onapsis Acquires Competitor Virtual Forge

SecurityWeek View Synopsis+1

Onapsis, a company specializing in cybersecurity and compliance solutions for enterprise resource planning (ERP) products, on Wednesday announced that it has entered a definitive agreement to acquire competitor Virtual Forge.

2 hours ago Some Android GPS apps are just showing ads on top of Google Maps

ZDNet View Synopsis+1
Apps have been downloaded over 50 million times. Google has failed to removed them, even if they blatantly break their own license.

2 hours ago This cryptocurrency mining malware now disables security software to help remain undetected

ZDNet View Synopsis+1
Cryptojacking campaign targets Linux servers that haven't had patches for known vulnerabilities applied.

2 hours ago Windows 10 19H1: Microsoft pushes its services with 'Make Windows even better' prompt

ZDNet View Synopsis+1
Microsoft wants you to "make Windows even better" by setting up Microsoft Account services on Windows 10 devices.

3 hours ago Flaw in Reservation System Impacts Many Airlines

SecurityWeek View Synopsis+1

A vulnerability discovered in a reservation system used by hundreds of airlines around the world could expose the details of millions of their customers, researchers warned this week.

4 hours ago Data Breach Collection Contains 773 Million Unique Emails

InfoRiskToday View Synopsis+1
2.7 Billion Email/Password Combo List for Credential Stuffing, Troy Hunt WarnsAustralian security expert Troy Hunt says an 87 GB compilation of username and password combinations - drawn from more than 2,000 databases - includes 773 million unique email addresses, for apparent use in credential-stuffing attacks. Takeaway: Use a unique password for every site, or else.