Infosecurity News

  1. Fortinet threat report shows CoreFlood botnet infecting 2.3 million users

    The latest monthly threat report from Fortinet claims that 2.3 million PCs were infected by the CoreFlood botnet, which was dismantled recently by an FBI sting operation. In addition, the report claims to show that Russian domain pharma sites now dominate the spam selling scene.

  2. LastPass hits the master password change button after alert

    LastPass, the popular online password management service, has started the lengthy process of forcing members to undergo master password changes following anomalies on its inter-server data logging systems.

  3. Companies can take steps to fix flaws without patches

    Companies can take steps to mitigate vulnerabilities without using patches or other expensive remedies, said Marc Maiffret, chief technology officer at eEye Digital Security.

  4. Sony admits to week delay in notifying public about data breach

    In a letter to Congress, Sony admitted to a delay of a week in providing information to the public, law enforcement, and state regulatory authorities about the hack of its servers, which exposed the personal information of 100 million customers.

  5. Check Point reveal top security challenges for 2011

    At the Check Point Experience in Barcelona on 4th May 2011, John Vecchi, head of product marketing for Check Point, shared his thoughts on the top information security trends and challenges for 2011.

  6. APT-driven zero-day attacks tapped by RSA hackers says researcher

    It looks as though cybercriminals are starting to get to grips with the advanced persistent threats (APT) attack strategies first outlined by Stonesoft late last year. And, says one security researcher, they are linking the strategy with zero-day attacks for maximum effect.

  7. First dynamic firewall in beta test for Android

    Following on from the release of the first full disk encryption app for Google Android back in March, Whisper Systems is now also developing a dynamic firewall app for the smartphone platform.

  8. Kaspersky Lab report claims cybercriminals expanding their repertoire

    The latest monthly research from Kaspersky Lab claims to show that hackers are expanding their horizons in terms of the attack vehicles being used to insert malware onto users' computers.

  9. Sony admits to second data breach affecting 24.6 million customers

    Still reeling from the PlayStation Network data breach, Sony has admitted to a second security breach that may have resulted in the theft of personal information of 24.6 million Sony Online Entertainment (SOE) customers.

  10. Secunia updates free software update security utility

    Secunia has updated its free patch/update utility – Personal Software Inspector (PSI) – to v2.0, increasing the range of applications that are auto-updated to include web browser add-ins and a variety of other utilities.

  11. Malicious spam back on the increase reports M86 researcher

    After a quiet period since the takedown of the Rostock botnet servers at the start of the year, it looks like malicious spam is back on the increase again. According to Rodel Mendrez, a security researcher with M86 Security, whilst the industry had a distinctly quiet period from October 2010 to March 2011, the figures have been on the rise again during April.

  12. Cybersecurity threat rhetoric not supported by evidence, researchers argue

    There is a lack of evidence to support the rhetoric of “cyber doom” employed by proponents of increased federal intervention in private sector cybersecurity, warns a new report by George Mason University (GMU) researchers.

  13. VoIP security risks are often overlooked, says Forrester analyst

    Many organizations do not understand the increasing security risks posed by voice-over-IP (VoIP), warns Forrester analyst John Kindervag.

  14. Do FBI agents know their binary code from their morse code?

    Many of the cyber agents at the Federal Bureau of Investigation’s (FBI) field offices do not have the training, skills, and support to investigate national security-related cyberattacks, the Justice Department’s Office of the Inspector General (IG) found.

  15. PlayStation Network credit card information was encrypted, says Sony

    Sony has reiterated its statement that there is no evidence that credit card data was taken by hackers who forced the company to suspend its PlayStation Network in the wake of a security breach.

  16. HTK claims 90% of organisations have problems with password resets

    Research just published by HTK, a mobile messaging and interactive voice response services firm, claims to show that 90% of organisations surveyed have had problems with password resets. In addition, the firm says, 60% of organisations have no out-of-hours support for password resets.

  17. Avast uncovers new encrypted PDF attack vector

    The head virus researcher with Avast claims to have discovered a new Adobe PDF attack vector used by hackers. The attack vector, he reports, centres on the misuse of a filter normally used to encrypt text data for black and white images.

  18. Millions apply for Olympic tickets despite site crash

    Around 20 million tickets for the London 2012 Olympics were applied for on Tuesday night despite a surge in demand causing the site to crash.

  19. Millions apply for Olympic tickets despite site crash

    Around 20 million tickets for the Olympics were applied for on Tuesday night despite a surge in demand causing the site to crash.

  20. US Congress to examine location-tracking issue after allegations about Apple and Android devices

    The US Congress will hold a hearing about mobile phones and privacy after claims that Apple (and Android) devices have been secretly tracking users' location data.

Why Not Watch?

  1. The Intelligence Edge: Clarity, Context and the Human Advantage in Modern CTI

  2. Audit & Compliance in the Era of AI and Emerging Technology

  3. How To Enhance Security Operations with AI-Powered Defenses

  4. How to Recover From a Cyber-Attack: A Step-by-Step Playbook

What’s Hot on Infosecurity Magazine?