Infosecurity News

  1. LulzSec Reborn posts data on over 170,000 MilitarySingles.com users

    The MilitarySingles.com website has apparently been hacked by LulzSec Reborn, exposing user information on 170,000 members.

  2. Microsoft takes control of 800 domains associated with Zeus botnets

    In a major action against the banking trojan Zeus, Microsoft with FS-ISAC and NACHA and research from Kyrus Tech and F-Secure have succeeded in disrupting a number of the most harmful Zeus botnets in “in an unprecedented, proactive cross-industry action.”

  3. US government extends period that intelligence on citizens can be retained

    The US government has issued new counterterrorism guidelines that allow for the retention of intelligence on US citizens for five years, rather than the current 180 days.

  4. Kaiser Permanente data breach affects thousands of employees

    Managed health care consortium Kaiser Permanente has notified thousands of current and former employees that their personal information was found on an external hard drive purchased in a second-hand store in California.

  5. Europe’s first information risk maturity index developed

    PwC and Iron Mountain have joined together to develop a risk maturity index for European SMEs; and finds them generally lacking.

  6. Firefox will use HTTPS by default

    Encrypted searching should become available by default for all Firefox users within a few months – a big win for privacy.

  7. Indian call centers sell UK financial data and DVLA gives access to Indian workers

    On the same day that the Sunday Times reported Indian workers offering UK finance details for sale at as little as 0.02p, the Observer reported that IBM contractors in India will have access to the data of 43 million UK drivers held by the DVLA.

  8. China says most foreign cyberattacks come from Japan, US, and South Korea

    In an apparent effort to turn the public relations tables, China is claiming that most of the foreign cyberattacks against Chinese computers are coming from Japan, the US, and South Korea.

  9. Michaels fraudsters headed to prison

    Two southern California men pled guilty this week to participating in a PIN-pad tampering scheme at 84 Michaels craft stores that resulted in the theft of 94,000 debit and credit card account numbers.

  10. StubHub turns to fraud specialist to combat abuse of its platform

    StubHub, an online ticket exchange, was having trouble with criminals using its open platform to verify credentials that had been stolen from other sources. The website turned to SilverTail for help, explained Robert Capps, senior manager of trust and safety at the company.

  11. US data breach costs decline for first time in seven years

    The average organizational and per capita cost of a data breach in the US declined in 2011 for the first time in the seven years that the 'US Cost of a Data Breach Study' has been compiled.

  12. NIST publishes guidance for electronic health record usability and security

    The National Institute of Standards and Technology (NIST) has released technical guidance for evaluating the usability of electronic health records (EHR), while maintaining the security and privacy of those records.

  13. Russian authorities arrest eight in bust of Carberp bank fraud ring

    The Russian Ministry of Internal Affairs and the Federal Security Service this week arrested eight men allegedly involved in a Carberp bank fraud ring.

  14. Indian company hacks GSM and usurps IMSI

    At a security conference organized by Null in India, Matrix Shell claimed and demonstrated the ability to hack into GSM phones and manipulate the user’s International Mobile Subscriber Identity.

  15. Researchers discover flaws in SSO that leave websites vulnerable

    Indiana University and Microsoft researchers have uncovered flaws in Web-based single sign-on (SSO) services run by Google, Paypal, Facebook, Twitter, and others that allow hackers to get access to users’ accounts.

  16. Russia government appoints Krutskikh as cybersecurity coordinator

    The Russian government has appointed Andrei Krutskikh as cybersecurity coordinator under the Foreign Ministry.

  17. New twist in social engineering rogue AV

    Rogue anti-virus products continue to be a major source of malware. The trick for the criminal is in getting the victim to click the link; and GFI has spotted a new development.

  18. Cost of data breaches outstripping inflation

    The average cost to UK business per record lost, according to the latest Symantec/Ponemon study, has increased from £47 in 2007 to £79 in 2011. Had it been inflation alone, it would have increased to just over £53.

  19. IT pros lack confidence in public cloud's perimeter defenses

    The top security concern of IT professionals regarding public cloud computing is the lack of perimeter defenses and/or network control, according to a survey by cloud security provider CloudPassage.

  20. (ISC)², IT-ACC form alliance to improve government IT acquisition processes

    (ISC)², a non-profit information security professional association, and the Information Technology Acquisition Advisory Council (IT-AAC), a non-profit organizations to improve IT acquisition standards, have formed an alliance to improve the US government’s acquisition of IT products through security training and education.

Why Not Watch?

  1. OT Security Ecosystem for Targeted Risk Reduction and Reporting

  2. Mastering AI Security With ISACA’s New AAISM Certification

  3. How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses

  4. Exposing AI’s Blind Spots: Security vs Safety in the Age of Gen AI

What’s Hot on Infosecurity Magazine?