Infosecurity News

Iranian Cyber Army turns Voice of America into pro-Iranian propaganda service

The self-styled Iranian Cyber Army was able to hack into the US government-funded Voice of America website and transform the home page into a pro-Iranian banner that instructed the US government to “stop interfering with Islamic countries.”

UK passport office violated Data Protection Act with data breach

The UK Identity and Passport Service (IPS) violated the Data Protection Act when it lost the passport renewal applications of 21 UK citizens, according to the Information Commissioner’s Office (ICO).

Internet banking security? It's "trivially vulnerable" against Zeus says researcher

The number of banking incidents where cybercriminals have siphoned off funds has been rising and, in one recent instance, criminals drained a company account of $63,000. And after investigating the case, as well as several others, a leading security researcher has found the "meagre security measures" of banks to be wanting.

New OddJob trojan sucks money out of online bank accounts

A new trojan called OddJob reportedly siphons money out of online bank accounts in the background of normal browsing sessions and, even if the user logs off, the malware intercepts the logout command and remains connected until all funds are gone.

Report claims UK/European firms are poorly prepared for data loss event

Research just published claims to show that UK businesses need to take data loss a lot more seriously, following the revelation that one third of respondents to a survey say that data loss would seriously impact their business within one day.

SSDs do not always scrub-delete files, claim researchers

Researchers at the University of California at San Diego's Department of Computer Science and Engineering have discovered that solid state drives (SSDs) – aka flash drives – behave very differently than magnetic disk units when instructed to 'scrub-delete' a data file, a process known as sanitising.

Apple planning secure cloud service for iPhone and iPad?

Reports are coming in that Apple is quietly beta testing a secure cloud service that will form an integral feature of Mac OS X 10.7 – Lion – for Apple Mac users, and as an extension of the MobileMe service for iPhone, iPad and iPod touch users.

ENISA warns about privacy threat from next-generation cookies

The European Network and Information Security Agency (ENISA) is warning that new types of cookies with “privacy-invasive” features for marketing, tracking, and profiling pose increased privacy risks for computer users.

Senators re-introduce cybersecurity bill, with key difference

Senators Joe Lieberman (I-CT), Susan Collins (R-ME), and Tom Carper (D-DE) have introduced cybersecurity legislation similar to a bill they introduced last year, but with a key difference: the new bill prohibits any government official from shutting down the Internet.

Middle East governments stepping up internet control, study shows

The internet has proved to be a powerful tool for rallying social and political change, but Middle East governments have also recognized their capability to disrupt communications, says Arbor Networks.

Audit criticizes FERC for lapses in electric grid cybersecurity standards

The Federal Energy Regulatory Commission (FERC) approved flawed cybersecurity standards for the US national power grid and failed to adequately monitor their implementation, according to an audit by the Department of Energy’s Office of the Inspector General (OIG).

Forrester report says firms focusing on data security in 2011

A report just released claims to show that 88% of firms are focusing their IT security investments on boosting their data security defences. In addition, the report concludes that 2011 will see a lot more organisations sourcing their IT security software online.