Spotlight
Operation Pawn Storm: Varied targets and attack vectors, next-level spear-phishing tactics
Posted on 23 October 2014. | Targets of the spear phishing emails included staff at the Ministry of Defense in France, in the Vatican Embassy in Iraq, military officials from a number of countries, and more.
Windows 0-day exploited in ongoing attacks, temporary workarounds offered
Posted on 22 October 2014. | A new Windows zero-day vulnerability is being actively exploited in the wild and is primarily a risk to users on servers and workstations that open documents with embedded OLE objects.
Staples customers likely the latest victims of credit card breach
Posted on 21 October 2014. | Multiple banks say they have identified a pattern of credit and debit card fraud suggesting that several Staples Inc. office supply locations in the Northeastern United States are currently dealing with a data breach.
The Software Assurance Marketplace: A response to a challenging problem
Posted on 20 October 2014. | The Department of Homeland Security (DHS) Science and Technology Directorate (S&T) has recognized how critical the state of software security is to the DHS mission.
Lessons learned developing Lynis, an open source security auditing tool
Posted on 15 October 2014. | Lynis unearths vulnerabilities, configuration errors, and provides tips for system hardening. It is written in shell script, installation is not required and can be performed with a privileged or non-privileged account.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.
