Infosecurity News

  1. QuickBooks scam leads victims down a BlackHole

    Spammers are targeting QuickBooks users in a tax-related scam that links to a BlackHole exploit kit.

  2. Australia's central bank to bolster its DDoS attack protection

    Australia’s central bank is seeking help from information security providers to beef up its protection against distributed denial of service (DDoS) attacks.

  3. Adobe Flash sandbox comes to Firefox on Windows

    Adobe has announced the release of a beta version of a Protected Mode (sandboxed) Flash Player for Firefox running on Windows Vista and Windows 7.

  4. Rooting out rootkits: Security software won't help, says Symantec

    Rootkits are on the rise and traditional security software will not protect you, warns a Symantec white paper.

  5. Google unveils service to bounce malware from the Android Market

    In response to Android’s growing reputation of being a “malware cesspool”, Google has unveiled the Bouncer automated application scanning service to root out malware on the Android Market.

  6. Insecure email the culprit of hacked FBI-Scotland Yard call?

    The Anonymous hacktivist group was apparently able to listen in on a conference call between the FBI and Scotland Yard by hacking into a participant’s email account and obtaining the conference call number and access code, according to security analysts.

  7. Adobe addresses PDF security problem

    Hackers target the most widely used file formats; and there is none more widely used than PDF. A new paper from Adobe discusses the problems and solutions to PDF security.

  8. Number of patient record data breaches nearly doubled last year

    The total number of patient records compromised in the US increased by 97% in 2011 compared with 2010, according to a report released this week by the Redspin consulting firm.

  9. Security researchers break satellite phone encryption

    Academics Benedikt Driessen and Ralf Hund from Ruhr University Bochum have reverse-engineered and cracked the GMR-1 and GMR-2 voice ciphers used by many satellite networks.

  10. Apple roars with massive Lion, Snow Leopard security updates

    Apple has released massive security updates for its Lion and Snow Leopard Mac operating systems, fixing 52 vulnerabilities.

  11. FBI chief warns Congress that hackers will become greatest national security threat

    The top G-man is warning Congress that hackers will pose a greater danger to US national security than terrorists in the not-too-distant future.

  12. Science and Technology Committee publishes Malware and Cyber Crime report

    The House of Commons Science and Technology Committee has today published its Malware and Cybercrime report – a recommendation to the UK government on how to tackle online threats.

  13. Audit reveals Maryland inmates had access to social security numbers

    Prison inmates in Maryland had access to social security numbers of patients who received treatment under the state’s Medicaid program, according to a recent state audit.

  14. Major UK companies still not blocking porn namesakes

    The XXX domain suffix was launched last September to provide a voluntary ‘responsible’ home for adult sites; but daily.co.uk has noted that 90% of the UK’s fastest growing companies have not yet protected their brands.

  15. Update: Windows Media Player vulnerability

    New research from M86 Labs adds further insight on the MIDI exploit first highlighted by Trend Micro last week.

  16. Dr. Strangelove in cyberspace: Experts warn of cyber arms race

    More than half of policy makers and global cybersecurity experts believe that an arms race is taking place in cyberspace, according to a new report by McAfee and the Security and Defence Agenda think tank.

  17. FBI may have used spyware in making case against MegaUpload

    The FBI likely employed its CIPAV spyware to eavesdrop on Kim Dotcom and other managers of MegaUpload, according to a report by CNET.

  18. Trymedia breach exposes credit card numbers of 12,000 digital game customers

    Trymedia’s ActiveStore web-based storefront application, which processes digital game purchases made by customers on its partners’ websites, was recently breached, exposing credit card numbers and other personal information of more than 12,000 customers

  19. A call for a new standard in infosec training and awareness

    A talk at the Information Exploitation Conference at the Home Office’s Security and Policing Exhibition 2012 today addresses the disconnect between user and professional, and calls for a new standard that focuses on training and awareness.

  20. IE6 users: no longer caught between a rock and a hard place

    As Microsoft seeks to wean users away from the aging and insecure Internet Explorer 6, companies with IE6 legacy applications are stuck – they can’t upgrade to a newer OS because IE6 is no longer supported; and they still need IE6.

Why Not Watch?

  1. How Mid-Market Businesses Can Leverage Microsoft Security for Proactive Defenses

  2. Modernizing GRC: From Checkbox to Strategic Advantage

  3. Risk-Based IT Compliance: The Case for Business-Driven Cyber Risk Quantification

  4. Audit & Compliance in the Era of AI and Emerging Technology

What’s Hot on Infosecurity Magazine?