Infosecurity News
Hackers disrupted US government satellites, says report
Hackers, perhaps from China, interfered with two US government satellites during 2007 and 2008 by penetrating a ground station in Norway, according to a report being issued by a congressional commission next month.
TDL4 botnet may be available for rent
ESET's senior research fellow David Harley says that, while his team of researchers have been tracking the TDL4 botnet for some time, they have noticed a new phase in its evolution.
Solera research director spots a hybrid spear phishing attack
Andrew Brandt, The newly-installed director of threat research with Solera Networks, has been analyzing what appears to be a hybrid spear phishing attack against a colleague and revealed the effort that goes into making these targeted attack emails look genuine.
Jericho Forum talks about identity security strategies
At the RSA Europe event earlier this month, Infosecurity got a chance to catch up with Paul Simmonds, a board member of the Jericho Forum.
Application vulnerability ranked as key threat by 72% of IT security professionals
Research just released by (ISC)² claims to show that application vulnerability was ranked as the number one threat by more than 72% of IT security professionals.
Duqu should act as an alarm for IT security professionals
Responding to Symantec – and McAfee's – reports last week about the 'Son of Stuxnet' worm appearing and harvesting information from industrial control systems, Venafi says the Duqu malware is definitely a major security threat.
Barnaby Jack hacks diabetes insulin pump live at Hacker Halted
At the Hacker Halted conference in Miami, Florida, McAfee research architect, Barnaby Jack, demonstrated how to hack into an insulin pump live in his presentation titled ‘Life threatening vulnerabilities’.
JBoss worm exploiting old bug to infect unpatched servers
Old bugs, it seems, do not die – nor do they fade away – as Dennis Fisher, editor of Kaspersky Lab's ThreatPost newswire says that there is a new worm in the wild that is compromising servers running older versions of the JBoss Application Server and then adding them to a botnet. The worm, he added, also attempts to install a remote access tool in order to give the attacker control over the newly infected server.
Anonymous has tools to take down critical infrastructure, says Sourcefire
Anonymous does not need sophisticated tools like Stuxnet or Duqu to carry out its threat to attack industrial control systems that regulate critical infrastructure, warned Dominic Storey with Sourcefire.
Nasdaq breach allowed hackers to spy on company directors
Hackers who infiltrated Nasdaq’s computer systems last year were able to eavesdrop on communications of company directors, according to people familiar with the investigation.
AVG's popularity means it is being targeted by fake maintenance site scams
AVG's free anti-virus is one of the most popular free IT security applications in the market, but according to one security researcher, its success has meant a surge in the number of fake download sites charging a subscription for the service.
RSA hackers may have hit several hundred firms, says security researcher
The widely publicized data breach revealed by RSA back in March may not have been the only one to hit a major company, a leading security researcher has said.
Georgia Tech turns an iPhone into a SpyPhone
Researchers at Georgia Tech have built on the smartphone accelerometer analysis carried out by iSuppli back in 2009 and successfully used an iPhone 4 to measure vibrations from a nearby computer keyboard, allowing them to map which keys are being pressed on the desktop computer.
IP Expo: Symantec talks up security threats to communications
At the IP Expo event in London this week, senior managers with Symantec were out in force, explaining to show visitors why communications and security technologies are now closely integrated. Alongside sponsoring a security theater at the show, the IT security vendor was also talking about the results of its 2011 threat management survey.
IP Expo: Check Point explains its cloud strategy
At the London IP Expo event yesterday, Infosecurity got a chance to catch up with Caroline Ikomi, technical director with Check Point, where she brought us up to speed on how the firm is adapting to a cloud-based IT landscape.
Nemours loses data on 1.6 million patients and employees
Nemours, a children’s healthcare system serving the Eastern US, has admitted that three unencrypted backup tapes containing personal information on 1.6 million patients and employees have been lost.
Team SwaStika hacks hundreds of thousands of Facebook accounts – kind of
Reports are coming in that a hacktivist group called Team SwaStika has hacked a group of Facebook accounts. However, according to Rik Ferguson, Trend Micro's senior security researcher, the group may be attempting to take credit for compromising account details that they really had nothing to do with.
US government on Libya: We disrupt air defenses the old-fashioned way – we burn them
Prior to the NATO airstrikes in March, the US government considered launching cyberattacks to disrupt the Libyan government’s air-defense systems, but decided to disrupt them the old-fashioned way, by blowing them up.
London Gatwick Airport introduces iris biometrics “at a distance”
The world of biometric iris recognition without having to place your eye into a reader has been introduced at London Gatwick Airport, with border officials using Human Recognition Systems' Mflow track to read travelers' irises at a distance.
Hackers forums provide sense of community, information security intelligence
Hacker forums provide a sense of community for the hackers, as well as a source of intelligence for information security professionals, according to a new report by data security firm Imperva.
