Daily Archives: 21.5.2013

The true root causes of software security failures

Developers being overly trusting is one of them. read more more…

LiveSafe – Redefining consumer security

A number of factors are causing today’s security landscape to evolve. A global survey we conducted this month revealed that 60 per cent of consumers worldwide own three or more internet-enabled devices. The diversity of these tablets and smartphones, and the vast range of operating systems they run on, mean the opportunity for more sophisticated […] more…

Bit9, FireEye, Palo Alto Networks team to hit zero-day malware

Bit9 has teamed with FireEye and Palo Alto Networks, which each have sandboxing technologies, in order to share information related to zero-day attack code. read more more…

Big Hangover

The Mac spyware discovered at the Oslo Freedom Forum last week is apparently connected to larger espionage efforts — and those efforts look to be connected to India. Yesterday, the folks from Norman released their Hangover Report. HANGOVER REPORT (tot.114pg): Indian APT group hacked Telenor, others; related to the MacOS trojans found at OFF blogs.norman.com/2013/security-… […] more…

Researchers find critical vulnerabilities in popular game engines

Security researchers found serious vulnerabilities in the engines of several popular first-person shooter video games that could allow attackers to compromise their online servers and the computers of players accessing them. read more more…

House Keys Under the Doormat? Nope, in Your Phone

One of my friends recently locked himself out of his apartment. I found this out when I called him because although he didn’t have his keys, he did have his smartphone. This was one of those times he wished he lived in one of those hotels with the Assa Abloy NFC-enabled locks. It turns out […] more…

What Connections Between Attacks Say About Them

In the process of investigating and analyzing targeted attacks, we have seen that attacks which may not be related at first glance may in fact be linked; conversely attacks that may seem unrelated may turn out to be connected. Knowing which is which can provide useful information in determining how to respond to an attack. […] more…

Phishing Scam Targets Walmart.com Online Customers

Late last week, Walmart alerted the public to an email-based scam that used the company’s name (misspelled as “Wallmart”) to illegally gather information about users. The email sported the title “Thanks for your Walmart.com order,” and after confused users clicked on links within the emails, their Walmart accounts were charged. While local police departments and […] more…

SSCC 109 – Laptop theft, money mules, LulzSec, Microsoft and more [PODCAST]

Episode #109 of our popular Chet Chat podcast series is out. Chet and Duck are back with their almost entirely reverent opinions on the latest computer security issues. more…

Your Data under Siege: Defeating the Enemy of Complexity

Even if you have adequate antivirus protection, are there still holes in your IT security armor? Is lack of bandwidth to manage the growing list of threats, endpoints, and security systems making your organization vulnerable? read more more…

Resolved: Brief Workflow Outage Due to Role Form Submission Problem – 5/21/2013

RESOLVED! more…

DDoS-for-hire service is legal and even lets FBI peek in, says a guy with an attorney

It’s “a public service on a public connection to other public servers”, the operator of RageBooter told Brian Krebs, and if sites don’t like getting their socks knocked off in DDoS attacks, they should fix recursive DNS and default DNS server settings. Oh, and yes, he says, he not only cooperates with the FBI, he […] more…

Weak Passwords Can Cost You Everything

If your computer or mobile was hacked or your passwords were cracked and your data was lost or if all the websites you have an account with were hacked and all that information was the hands of a criminal, how devastated will you be? In McAfee’s study on the value of digital assets, consumers estimated […] more…

Hacker claims successful attack on CNN

A HACKER has claimed to have mounted a successful attack against the CNN website. Reckz0r claimed to have extracted information from the US based ‘news’ company and posted four fake articles on its website. Tags: Security CNN more…

Microsoft announces winners and finalists for the 2013 Partner of Year Awards

Yesterday Microsoft announced the winners of, and finalists of their 2013 Partner of Year awards. These highlight the best and most innovative use of Microsoft technologies across their numerous hardware and software partners. There were 44 winners in this year’s categories and a total of 3000 entries across 100 different countries. The categories included Cloud […] more…

Google Checkout to shut down in November

Google will retire its Checkout payment processing tool on Nov. 20, and warned retailers they will need to move to a different payment processing platform. Checkout, which launched in 2006, was merged with Wallet, which is a mobile payments tool, last November. The product was aimed at taking on eBay’s PayPal service, which dominates Web-based […] more…

« Older posts