Subscribe for free

Top 10 cloud myths

Posted on 28 October 2014. | Even with a mostly agreed on formal definition, multiple perspectives and agendas still conspire to mystify the subject ever more.

Tor exit node found patching downloaded binaries with malware

Posted on 27 October 2014. | The node was adding malicious code that made users' computers open a port to send HTTP requests to and receive commands from a remote server.

Ebola-themed emails deliver malware, exploit Sandworm vulnerability

Posted on 24 October 2014. | One of the most prolific campaigns is the one that impersonates the World Health Organization.

Attackers bypass Sandworm patch with new 0-day

Posted on 23 October 2014. | Attackers have discovered a way to bypass the patch and continue with their targeted attacks.

Koler worm spreads via SMS, holds phones for ransom

Posted on 22 October 2014. | A new variant of the Android malware Koler now spreads by text message and holds infected users’ phones hostage until a ransom is paid.

Spotlight

Most IT sec pros still rely on perimeter security to stop APTs

Posted on 27 October 2014. | 78 percent of IT security professionals are confident that firewalls and antimalware tools are robust enough to combat today’s advanced persistent threats.

How-to guide to protecting yourself from electronic spying

Posted on 24 October 2014. | The Electronic Frontier Foundation (EFF) launched its updated how-to guide to protecting yourself from electronic spying for Internet users all over the world.

Operation Pawn Storm: Varied targets and attack vectors, next-level spear-phishing tactics

Posted on 23 October 2014. | Targets of the spear phishing emails included staff at the Ministry of Defense in France, in the Vatican Embassy in Iraq, military officials from a number of countries, and more.

Windows 0-day exploited in ongoing attacks, temporary workarounds offered

Posted on 22 October 2014. | A new Windows zero-day vulnerability is being actively exploited in the wild and is primarily a risk to users on servers and workstations that open documents with embedded OLE objects.

Lessons learned developing Lynis, an open source security auditing tool

Posted on 15 October 2014. | Lynis unearths vulnerabilities, configuration errors, and provides tips for system hardening. It is written in shell script, installation is not required and can be performed with a privileged or non-privileged account.

What's New

Crooks use stolen magnetic payment card info to make fraudulent chip-enabled transactions | 28 October 2014. |

Most US banks have yet to issue chip-based payment cards but some of them have already been fleeced via fraudulent chip-enabled transactions.
- Whitepaper: 10 network security tools you should use
ScanBox keylogging framework lurking on disparate watering holes | 28 October 2014. |

Alien Vault researchers first discovered the framework in the form of a Javascript file on a compromised website of a big industrial company.
- Russian-based cyber spies going after military, intelligence targets
Belgacom shares more details about alleged GCHQ breach | 28 October 2014. |

Last week the company's head of security shared more technical details about the attack and about the company's concentrated efforts to clean up their compromised systems.
- IBM's Big Data analytics solution to uncover criminal cyber activity in seconds
Automation is the key to successful policy implementation | 28 October 2014. |

With the explosion of data collection and the influx of information, previously effective approaches to monitoring and regulation of electronic data are becoming impractical.
- Cyber security coalition reports on Chinese state-sponsored espionage

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

DON'T
MISS
Tue, Oct 28th

28 October 2014.

More details about alleged Belgacom GCHQ breach

28 October 2014.

Top 10 cloud myths

28 October 2014.

Automation is the key to policy implementation

28 October 2014.

10 network security tools you should use

27 October 2014.

Code Red: Fighting government surveillance

Malware News

ScanBox keylogging framework lurking on watering holes
28 October 2014.

Tor exit node found patching downloaded binaries with malware | 27 October 2014. |

57% increase in Backoff malware from August to September | 27 October 2014. |

Widespread malvertising campaign targets high-profile sites, delivers ransomware | 24 October 2014. |

Ebola-themed emails deliver malware, exploit Sandworm vulnerability | 24 October 2014. |

Reviews

Building an Information Security Awareness Program
16 October 2014.

Data Protection for Photographers
29 September 2014.

Secure mobile messaging with Threema
17 September 2014.

Privacy News

Code Red: A global initiative for fighting government surveillance
27 October 2014.

Mobile carriers fined $10M for making private user info accessible via Google search | 27 October 2014. |

What all major brands share in common with the Snappening | 21 October 2014. |

OS X Yosemite's Spotlight Suggestions: Privacy killer or not? | 21 October 2014. |

Staples customers likely the latest victims of credit card breach | 21 October 2014. |

Featured Video

Events

McAfee FOCUS 14
27 October - 29 October 2014.

INTERPOL World 2015
14 April - 16 April 2015.

Editor's choice

Crooks use stolen magnetic payment card info to make fraudulent chip-enabled transactions

28 October 2014. | Most US banks have yet to issue chip-based payment cards but some of them have already been fleeced via fraudulent chip-enabled transactions.

Automation is the key to successful policy implementation

28 October 2014. | With the explosion of data collection and the influx of information, previously effective approaches to monitoring and regulation of electronic data are becoming impractical.

Code Red: A global initiative for fighting government surveillance

27 October 2014. | Among other things, the initiative will support new projects aimed at creating effective, and "more tactically aggressive" countermeasures against surveillance.

Explaining infosec magic to kids

27 October 2014. | Magic! It’s the basis for countless children’s stories filled with adventure and excitement. It’s also how many kids think cyberspace works.

Most IT sec pros still rely on perimeter security to stop APTs

27 October 2014. | 78 percent of IT security professionals are confident that firewalls and antimalware tools are robust enough to combat today’s advanced persistent threats.

Attackers bypass Sandworm patch with new 0-day

23 October 2014. | The Sandworm vulnerability has been patched, but unfortunately attackers have discovered a way to bypass the patch and continue with their targeted attacks.

Subscribe for free

COPYRIGHT 1998-2014 BY HELP NET SECURITY. // READ OUR PRIVACY POLICY // ABOUT US // ADVERTISE //

myspace visitor