Infosecurity News
New Web Vulnerabilities Expose eBay User Data Again
Internet giant eBay is hit with fresh revelations over preventable flaws in its website.
Lowe's Warns Of Cloud-related Data Compromise
An insecure backup incident affects 35,000 employees over a period of nine months.
Outlook for Android Leaves Private Messages Wide Open for Stealing
The flaw in mobile app development plagues many messaging apps.
(ISC)² Announces GISLA Award Finalists for Government Security
(ISC)² will honor excellence in advancing the nation’s public-sector cybersecurity posture on June 3.
New Security Fears Over Keyboard and Trackpad Data Retention
Privacy International warns that various PC components could retain data, raising concerns over recycled IT kit.
Slick $5K Malware-as-a-Service Takes Over Android to Steal Financial Data
The powerful iBanking Android malware spreads beyond Russian cyber-gangs.
Über-Secure ProtonMail Beta Maxes Out Servers in Just 60 Hours
Lavabit heir built by CERN boffins sees huge demand for its NSA-proof email capabilities.
FireEye Backs Washington with New APT1 Data Linking Attacks to China
Mandiant owner says connection days and times fit perfectly with the average PLA working day.
Facebook Implements Free Browser-based AV for Users
If a malware infection is suspected, Facebook will prompt the user to run a scanner from F-Secure or Trend Micro.
Researchers Blast eBay Over Data Breach
Several concerning security practices point to a compromise that may have been prevented – or at least significantly mitigated.
FBI Finds it Hard to Weed Out Best Cyber Operatives
Bureau director Comey admits he may have to relax zero tolerance approach to marijuana-smoking recruits in bid to attract best talent.
South China Sea Cyber Scuffles Could Impact Western Firms
Cyber Squared’s ThreatConnect team warns that increasing tensions in the area could put military, diplomatic and economic interests at risk.
Kovter Adult Website Ransomware Doubles
Damballa researchers warn malware redirects users to porn sites if none can be found in browsing history.
US Files Indictments of Five Chinese Officials for Cyber-spying
The United States has filed an unprecedented set of indictments against five Chinese military officials believed to be responsible for wide-ranging cyber-espionage on private-sector U.S. companies.
Thousands of Home Modems Vulnerable to Credential-Stealing
Researchers have discovered three information-disclosure vulnerabilities affecting thousands of home routers and Brocade load-balancers.
FBI and Euro Cops Pounce to Cuff Blackshades Malware Users
Coordinated campaign looks to lock down remote access tool.
Scammers Sell Fake Kaspersky Lab Apps on Windows Phone and Google App Stores
Cybercriminals package malware inside legitimate looking security software
Mass-Mail Spam Carries Unusual Malware Payload
A new, wide-net malware attack posing as an “important company update” is being spammed out, targeting Windows users. The campaign carries an unusual differentiator: it uses gadget files to do the dirty work.
NIST Kicks Off Post-Snowden Crypto Standards Review
The reverberations from Edward Snowden’s disclosures regarding the National Security Agency continue, with the National Institute of Standards and Technology (NIST) announcing it has begun a review of the institute’s cryptographic standards and guidelines program.
Adobe’s Last XP-ready Patches Cover Critical Updates for Flash, Acrobat and Reader
The software maker announces fixes for several remote code execution vulnerabilities.
