CyberMonday, November 28, 2011 – Be Prepared
/
0 Comments
The term “Cyber Monday” refers to the Monday immediately following Black Friday, the ceremonial kick-off of the holiday online shopping season in the United States between Thanksgiving Day and Christmas. Whereas Black Friday is associated with traditional brick-and-mortar stores, "Cyber Monday" symbolizes a busy day for online retailers.
Security News: US report blasts China, Russia for cybercrime; Duqu Malware: Still No Patch; MIT server hijacked in drive-by download campaign
Cyberattacks by Chinese and Russian intelligence services, as well corporate hackers in those countries, have swallowed up large amounts of high-tech American research and development data, and that stolen information has helped build their economies, U.S. intelligence agencies have concluded. The recently discovered Duqu malware can exploit a zero-day Windows kernel vulnerability, which would help it to infect PCs and spread without being detected. A server belonging to the Massachusetts Institute of Technology was commandeered by hackers who used it to launch attacks against other websites as part of a larger drive-by download campaign, according to antivirus vendor BitDefender.
USAJobs.gov 3.0 Not Off to a Good Start – Availabilty Issues
On October 11, the Office of Personnel Management (OPM) unveiled its much-anticipated and newly designed USAJobs.gov 3.0 federal job search website which had been in development for over a year. The new launching of the website has been introduced with many negative complaints from frustrated users.
SANS AppSec Summit 2012 Call For Papers
We're happy to announce that the sixth annual SANS AppSec Summit will be
held in Las Vegas, Nevada on April 30 - May 1, 2012.
The theme for this conference is "Application Security at Scale".
Trojan-Downloader:OSX/Flashback.C
Trojan-Downloader:OSX/Flashback.C poses as a Flash Player installer and connects to a remote host to obtain further installation files and configurations.
iPhone hack lets you eavesdrop on PC typing
A research team has developed a hack where iPhones can be used to detect what is being typed on nearby keyboards
Researchers at the George Institute of Technology have turned an iPhone into a spy tool with a hack that allows the phone to determine what is being typed on keyboards nearby.
The typing detection works by “using a smartphone accelerometer – the internal device that detects when and how the phone is tilted – to sense keyboard vibrations as you type to decipher complete sentences with up to 80% accuracy,” according to the Institute.
Thomas Ryan Outed As Occupy Wall Street Snitch
Gawker introduces Thomas Ryan, a man who worked as a snitch for the NYPD and FBI to keep authorities abreast of Occupy Wall Street's activities and plans.
Ryan got emails sent to members of one of Occupy Wall Street's mailing lists and sent them to law enforcement members and others interested in what organizers were up to, according to Gawker.
Cyber Security DC Live Oct 14 2011
In case you missed it, check out last week's Facebook Live cybersecurity panel discussion featuring Facebook Chief Security Officer Joe Sullivan, National Cyber Security Alliance Executive Director Michael Kaiser and Facebook Security Guide co-author Linda McCarthy:
US-CERT – Apple Releases Multiple Security Updates
Apple has released security updates for Apple iOS, Safari 5.1.1, OS X
Lion v10.7.2, iWork 09, and Apple TV 4.4 to address multiple
vulnerabilities. Exploitation of these vulnerabilities may allow an
attacker to execute arbitrary code, cause a denial-of-service
condition, obtain sensitive information, and bypass security
restrictions.
National Cybersecurity Awareness Month – The White House Blog
Today, the White House issued a Presidential Proclamation designating October as National Cybersecurity Awareness Month. On Friday, I will be speaking together with Secretary of Homeland Security Janet Napolitano at the official kick-off event for the month at Eastern Michigan University in Ypsilanti. In the following weeks, the Department of Homeland Security will be hosting events across the nation to bring cybersecurity awareness to your state and your community. Every company, school, and family should use October as an opportunity to focus on cybersecurity – update training, attend or host an event, or talk to your children about responsible use of the Internet.
