New Magecart Attack Delivered Through Compromised Advertising Supply Chain
by Chaoying Liu and Joseph C. Chen On January 1, we detected a significant increase in activity from one of the web skimmer groups we’ve been tracking. During this time, we found their malicious skimming code (detected by Trend Micro as JS_OBFUS.C.) loaded on 277 e-commerce websites providing ticketing, touring, and flight booking services as […] more…Maintenance: Wireless will be unavailable at some locations (Dec. 19)
PEOPLE AND LOCATIONS IMPACTED: All students, faculty and staff at the buildings listed in the notes. IT SERVICES IMPACTED: Wireless (psu, psuwirelesssetup, attwifi) SecNet DATE AND TIME: Service(s) will be affected from 5 AM ET on 12/19/18 until 7 AM ET on 12/19/18. NOTES: Buildings impacted: NittanyLionInn RecHall Pattee/Paterno BiomechanicsLab Carpenter Chambers EisenhowerChapel Forum Ihlseng […] more…APT review of the year
What were the most interesting developments in terms of APT activity throughout the year and what can we learn from them? Not an easy question to answer; everybody has partial visibility and it’s never possible to really understand the motivations of some attacks or the developments behind them. Still, with the benefit of hindsight, let’s […] more…Firefox adds in-browser notification of breached sites
Mozilla has added a data breach notification to Firefox that warns the browser’s users when their email address and credentials may have been obtained by hackers. Dubbed Firefox Monitor, the free breach notification service debuted in September after some testing during the summer. Anyone — not only Firefox users — can steer to the service […] more…Transforming Students into Professionals to Close the Skills Gap: A Million Dollar Investment
Innovation. It’s at the core of any security breakthrough. Just ask an expert in the crowd gathered at MPOWER, McAfee’s Annual Security Summit. And if you ask me, as McAfee’s SVP and chief human resource officer, innovation is not just how our industry can defend against the growing number of cyberthreats, but also how we […] more…How the McAfee Rotation Program is Providing Opportunities
By: Darius, Sales & Marketing Rotation Engineer “The sky is the limit.” It’s a phrase I heard frequently growing up, in school, college and university. To me, the phrase means there are endless opportunities. So, my nine-year-old self desired to be a racecar driver, my freshman year ambition was to be a developer and then […] more…Stolen Data from Chinese Hotel Chain and Other Illicit Products Sold in Deep Web Forum
by Fyodor Yarochkin (Senior Threat Researcher) We uncovered personally identifiable information (PII) stolen from a China-based hotel chain being sold on a deep web forum we were monitoring. Further analysis revealed that the stolen data was not only the PII of Chinese customers, but also included the hotel chain’s customers from Western and East Asian […] more…How Machine Learning Can Help Identify Web Defacement Campaigns
By Federico Maggi, Marco Balduzzi, Ryan Flores, and Vincenzo Ciancaglini Website defacement — the act of visibly altering the pages of a website, notably in the aftermath of a political event to advance the political agenda of a threat actor— has been explored in our various research works. We broke down top defacement campaigns in a […] more…Family Matters: How to Help Kids Avoid Cyberbullies this Summer
The summer months can be tough on kids. There’s more time during the day and much of that extra time gets spent online scrolling, surfing, liking, and snap chatting with peers. Unfortunately, with more time, comes more opportunity for interactions between peers to become strained even to the point of bullying. Can parents stop their kids […] more…Facing the Fear of Public Speaking with Toastmasters
By: DaWane, Sales Director Standing in front of 800 parents and fellow students to deliver the welcome address, thoughts swirled around in my head. My hands were shaky, my palms oozed with sweat and I had a death grip on the podium. They say I did well, but inside, I was so uncomfortable, I thought […] more…Family Tech Check: 5 Ways to Help Kids Balance Tech Over Summer Break
It’s mind-blowing to think that when you become a parent, you have just 18 summers with your child before he or she steps out of the mini-van and into adulthood. So at the mid-summer point, it’s a great time to ask: How balanced is your child’s screen time? Don’t panic, it’s normal for screen time […] more…Trojan watch
We continue to research how proliferation of IoT devices affects the daily lives of users and their information security. In our previous study, we touched upon ways of intercepting authentication data using single-board microcomputers. This time, we turned out attention to wearable devices: smartwatches and fitness trackers. Or more precisely, the accelerometers and gyroscopes inside […] more…Streamin’ in the Sun – Your Essential Checklist for Safely Watching this Summer’s Biggest Events Online
With several major European sporting events, music festivals and a huge royal wedding on the way, this summer is set to be filled with many must-see moments. For those occasions where a television isn’t close by or the content is not freely available, many of us may resort to streaming services so that we can […] more…Global Community Service Day 2018: Together for good
By: Emily, Communications Program Manager When I finished college, I went to work for the same nonprofit youth sports organization where I tried volleyball, basketball and other sports growing up. The keyword is ‘try,’ because, let’s face it – I was bad at sports. All coaches for the organization were – and still are – […] more…WannaCry One Year Later: Looking Back at a Milestone
Has it been a year? It seems longer. When the WannaCry ransomware attack hit tens of thousands of individuals and business around the world on May 12, 2017, it wasn’t the first time we had seen ransomware, but its impact was unique and lasting. We’ve all known for decades about hackers, information thefts, computer viruses […] more…Scheduled wireless network maintenance
On Thursday, 5-10-18, during the standard EIT maintenance window there will be a wireless service disruption to the buildings listed below while network maintenance is performed. Reference ServiceNow CHG0046257. Waring Theatre HortWoods RecHall Rackley Pond Paterno/Pattee Oswald NittanyLionInn Nittany Landscape Music MusicII Moore Mateer Kern Keller Ihlseng Forum Ford ExecutiveEd Eisenhower Chapel Chambers Cedar Carpenter […] more…More information
- ScholarSphere service interruption, 6/18/2014
- Are Some Phone Charging Cables Dangerous to Plug in?
- Microsoft Windows Diagnostics Hub CVE-2016-3231 Local Privilege Escalation Vulnerability
- Dangerous Android phone 0-day bugs revealed – patch or work around them now!
- Update: TLT Services in Degraded State
- “Twitter 2007 multicolor” hoax – debunk it, don’t spread it!
- Equifax reveals full horror of that monstrous cyber-heist of its servers
- How to protect your Facebook account: a walkthrough
- Former Anonymous member convicted in attacks against PayPal, MasterCard, Visa and more
- 12 industry disaster scenarios