Threat Level: green Handler on Duty: John Bambenek

SANS ISC: Information Security News - Internet Security | DShield Information Security News


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Popular News

1 day ago South Korea says mystery hackers cracked advanced weapons servers

The Register View Synopsis+1
No idea who could have been behind this one...

The South Korea Ministry of National Defense says 10 of its internal PCs have been compromised by North Korea unknown hackers .…

23 hours ago Happy Thursday! 770 MEEELLLION email addresses and passwords found in yuge data breach

The Register View Synopsis+1
Now is a good time to get a password manager app

Infosec researcher Troy Hunt has revealed that more than 700 million email addresses have been floating around "a popular hacker forum" - along with a very large number of plain text passwords.…

19 hours ago Malware can now evade cloud security tools, as cybercriminals target public cloud users

TechRepublic View Synopsis+1
Refined malware payloads from Chinese threat actor Rocke Group are sidestepping security tools to install cryptocurrency miners on cloud systems.

23 hours ago Battle Lines Forming Ahead of a Looming U.S. Privacy Law Fight

SecurityWeek View Synopsis+1

Consumer advocates and the data-hungry technology industry are drawing early battle lines in advance of an expected fight this year over what kind of federal privacy law the U.S. should have.

1 day ago Airline Booking System Exposed Passenger Details

InfoRiskToday View Synopsis+1
Vulnerability Highlights Poor Security Controls for Passenger Name RecordsAirline booking system provider Amadeus - used by 500 airlines - is investigating a software vulnerability that exposed passenger name records, which is the bundle of personal and travel data that gets collected when booking a flight.

Top News

16 hours ago Windows 10 October 2018 Update is at last being pushed automatically

ArsTechnica View Synopsis+1
The update is still rolling out at a snail's pace.

1 day ago NanoCore Trojan is protected in memory from being killed off

ZDNet View Synopsis+1
If you are infected with this malware, you might find it is more difficult to eradicate than standard Trojans.

1 day ago Insider Trading: SEC Describes $4.1 Million Hacking Scheme

InfoRiskToday View Synopsis+1
Ukrainian Hacker Charged With Stealing Nonpublic 'Test Files' for 8 TradersThe U.S. Securities and Exchange Commission has charged seven individuals and two organizations with being part of an international scheme that hacked the SEC's EDGAR document system, stole nonpublic corporate information and used it to illegally earn $4.1 million via insider trading.

1 day ago Microsoft sends a raft of Windows 10 patches out into the Windows Update ocean

The Register View Synopsis+1
Whoa - is that an Access 97 iceberg dead ahead?

Microsoft has released a second raft of fixes for Windows 10 following the monthly Patch Tuesday excitement last week. It has also issued some fixes for its latest Windows Insider build.…

1 day ago Oracle Patches 33 Critical Vulnerabilities With January Updates

SecurityWeek View Synopsis+1

Oracle Delivers 284 Fixes With January 2019 Critical Patch Update (CPU)

Oracle this week released its first set of security patches for 2019, delivering a total of 284 new security fixes across the company's product portfolio. 

1 day ago Top 10 app vulnerabilities: Unpatched plugins and extensions dominate

TechRepublic View Synopsis+1
Despite the existence of patches, the proliferation of unpatched installations are enticing targets for malicious actors, according to a WhiteHat report.

Latest News

24 minutes ago Microsoft launches Azure DevOps bug bounty program, $20,000 rewards on offer

ZDNet View Synopsis+1
The Redmond giant is keenly interested in remote code execution and privilege escalation flaws.

1 hour ago Facebook Deletes More Bogus Accounts Linked to Russia

InfoRiskToday View Synopsis+1
Sputnik News Agency in Russia Created 'Fake Accounts,' Facebook AllegesFacebook has removed hundreds of accounts, alleging that the account creators misrepresented their identity. The social network alleges that some of the accounts were surreptitiously created by employees of the state-owned Sputnik news agency in Moscow, which Sputnik disputes.

1 hour ago Ransomware: A Pervasive, Evolving Threat

InfoRiskToday View Synopsis+1
Leading the latest edition of the ISMG Security Report is an in-depth look at why ransomware remains a pervasive threat and how it's evolving. Also featured: updates on venture capital investments in cybersecurity and a study of vulnerabilities in industrial remotes.

1 hour ago I used to be a dull John Doe. Thanks to Huawei, I'm now James Bond!

The Register View Synopsis+1
We'll know for sure when Huawei reveals a shoe-shaped smartphone

Something for the Weekend, Sir? The name's McLeod. Alessandro McLeod. I am a spy for the secret services.…

2 hours ago Facebook Closes Hundreds of 'Inauthentic' Russia-Linked Pages

SecurityWeek View Synopsis+1

Facebook announced Thursday that it has removed more than 500 pages, groups and accounts originating in Russia for engaging in what the social network called "coordinated inauthentic behavior."

4 hours ago Bug in Twitter Android App Exposed Protected Tweets

SecurityWeek View Synopsis+1

Twitter revealed on Thursday that users of its Android application may have had their supposedly protected tweets made public due to a bug.

5 hours ago Microsoft blue biz bug bounty bonanza beckons

The Register View Synopsis+1
Azure DevOps Services invites hackers to test its limits

There's more money to be made from bug hunting in Microsoft code after Redmond announced its 10th active bug hunting reward scheme, the Azure DevOps Bounty Program.…

5 hours ago Portuguese Hacker Linked to 'Football Leaks' Held in Hungary

SecurityWeek View Synopsis+1

A Portuguese hacker said by his lawyers to have played a pivotal role in the Football Leaks whistleblower website was fighting extradition from Hungary to Portugal on Thursday on charges of extortion.

Rui Pinto, 30, was arrested on Wednesday.

8 hours ago Old bugs, new bugs, red bugs … yes, it's Oracle mega-update day again

The Register View Synopsis+1
Out of 284 flaws, 33 are rated critical. Big Red admins have big patches ahead

Oracle admins, here's your first critical patch advisory for 2019, and it's a doozy: a total of 284 vulnerabilities patched across Big Red's product range, and 33 of them are rated "critical".…