Infosecurity News
GCHQ trio honoured for their work on symmetric cryptography
The cryptography work of three GCHQ workers in the 1970s – a decade before the precursors to today's internet got under way – has been recognised in an awards ceremony carried out this morning.
Third batch of arrests shows ZeuS code is more widespread than previously thought
Hard on the heels of last week's UK and US arrests of cybercriminals using the ZeuS malware to siphon money from internet users' bank accounts, comes news that a third batch of hackers, this time in the Ukraine, have been arrested.
Shortage of C#, SQL and .Net skills as IT vacancies rise
Demand for IT staff continues to rise, resulting in shortages in some software skills, according to the latest research.
Stuxnet could hurt world economic development, says Microsoft CEO
The advent of sophisticated new malware such as Stuxnet could hamper the development of cloud computing and consequently economic development, Microsoft CEO Steve Ballmer said on Tuesday.
Met admits police e-crime unit is under-resourced
The police cybercrime unit can tackle only 11% of the 6000 known organised criminal gangs that regularly use computers for illegal purposes, the head of the Metropolitan Police admitted at the weekend.
Sophisticated stuxnet malware is approaching 18 months old
Symantec has published an in-depth report on the Stuxnet malware in which it notes that, whilst the worm was first discovered in July, it is known to have existed at least one year prior and likely even before.
Internet users feel more at risk from banking fraud
A survey of more than 9000 adults in the UK, US, Europe and Canada, has revealed that internet users in the UK feel more at risk from banking fraud than ever before.
Zeus is king of bank fraud trojan viruses
Just like the Greek god that is its namesake, Zeus is the king of bank fraud trojan viruses, having been used by thousands of criminals to scam perhaps hundreds of millions of dollars from banking customers around the world for years. The recent busts of Zeus fraudsters in the US and the UK are just the tip of a vast underground of fraud and deception, according to information security analysts consulted by Infosecurity.
EU to update rules to deal with botnets and other new cyber attack methods
The European Commission has proposed a new directive on attacks against information systems to replace current, outdated frameworks.
Cyber weapon Stuxnet hits China
Stuxnet, the computer worm considered to be the world's first cyber weapon, has hit millions of computers in China.
Adobe to release updates for critical Reader, Acrobat security problems
Adobe plans to release updates on October 5 for Adobe Reader 9.3.4 for Windows, Mac and UNIX, Adobe Acrobat 9.3.4 for Windows and Mac, and Adobe Reader 8.2.4 and Acrobat 8.2.4 for Windows and Mac to resolve critical security issues.
Making money from mobile malware made possible using tromboning
In the days of dial-up modems, malware authors developed trojans and other black code that dialled premium rate numbers in the background and so generating revenues for their criminal gangs. Today, thanks to the arrival of landline broadband, the process of background premium rate calls – driven by malware – has migrated to mobile phones.
Barclays to enforce encryption in all software applications
Barclays Bank plans to rewrite its software applications so they can communicate with one another using encryption to lessen the likelihood of fraudsters finding a way into its systems
New German national ID card hacked by Chaos Computer Club
The German government's new national ID card – which will start being issued this November – has been publicly hacked on TV by members of the infamous Chaos Computer Club.
New PCI DSS deadline tomorrow warns LogRhythm
Tomorrow is the day that the new PCI DSS 1.2 rules kick in, requiring all level one merchants – defined as firms processing more than 6 million transactions per year – to adhere to the v1.2 security guidelines, or face possible action by their card processor.
LinkedIn users targeted by ZeuS-based fake connection requests
Hard on the heels of the spate of Twitter attacks comes news that LinkedIn members are being targeted by carefully crafted fake connection requests that route users to the ZeuS data-downloading malware.
Virtualisation delivers data protection, says security expert
Virtualisation is the key to better information security in cloud computing, says Eric Baize, a board member at cross-industry security initiative, SAFECode.
Insurance agent fines, data breaches lead to prototype information security plan
A number of insurance agents have recently been fined by states for not having a written information security plan in place, and some large insurance firms have reported data breaches involving clients’ personal information. To help address this problem, the Independent Agents and Brokers of America has developed a prototype information security plan to assist agents and brokers.
Spamit.com spam affiliate service to close – spam levels to drop
The Spamit.com spam affiliate programme, which is responsible for the promotion of spam via a number of outlets worldwide using financial incentives, is to close at the end of this month.
Stuxnet – a new age in cyber warfare says Eugene Kaspersky
The Stuxnet worm, which has reportedly been successfully targeted at Iranian nuclear plants, is being widely reported as originating from a government agency or well-funded source with political intent. The CEO of Kaspersky Lab, however, says that, whilst there is insufficient evidence to point the finger of blame at anyone yet, the worm represents a new age in cyber warfare.
