 Info Security News Mailing List
Carries news items (generally from mainstream sources) that relate to security.
List Archives
Latest Posts
How anticipating a health data breach can boost security
InfoSec News (May 21)
http://healthitsecurity.com/2013/05/20/how-anticipating-a-health-data-breach-can-boost-security/
By Patrick Ouellette
Health IT Security
May 20, 2013
A healthcare chief information officer (CIO) saying that he expects to
experience a health data breach is not only unusual, but may produce
shock and awe in some parts of the healthcare industry. However, having
this type of outlook, regardless of whether the CIO ends up having to
deal with a...
Hackers Who Breached Google in 2010 Accessed Company's Surveillance Database
InfoSec News (May 21)
http://www.wired.com/threatlevel/2013/05/google-surveillance-database/
By Kim Zetter
Threat Level
Wired.com
05.20.13
Hackers who breached Google’s network in 2010 obtained access to the company’s
system for tracking surveillance requests from law enforcement, according to a
news report.
The hackers gained access to a database that Google used to process court
orders from law enforcement agencies seeking information about customer...
Hunting for Syrian Hackers' Chain of Command
InfoSec News (May 21)
http://www.nytimes.com/2013/05/18/technology/financial-times-site-is-hacked.html
By NICOLE PERLROTH
The New York Times
May 17, 2013
It’s the question of the moment inside the murky realm of cybersecurity: Just
who -- or what -- is the Syrian Electronic Army?
The hacking group that calls itself the S.E.A. struck again on Friday, this
time breaking into the Twitter accounts and blog headlines of The Financial
Times. The attack was part of a...
Defending Caribbean Networks
InfoSec News (May 20)
http://www.guardian.co.tt/business/2013-05-19/defending-caribbean-networks
By Gerard Best
Guardian Newspaper
May 19, 2013
Recent attacks on Caribbean computer networks by Internet hackers should
be a major concern for Caribbean businesses and governments.
“Computer hacking is a global problem," technology expert Bevil Wooding
said at the fifth regional meeting of the Caribbean Network Operators
Group (CaribNOG) in Bridgetown,...
Countdown clock begins for Singapore data compliance
InfoSec News (May 20)
http://www.zdnet.com/sg/countdown-clock-begins-for-singapore-data-compliance-7000015492/
By Bryan Tan
Tech Legal
ZDNet.com
May 20, 2013
The date all data protection compliance project teams in Singapore have
been waiting for has been announced. July 2, 2014, is D-Day when
Personal Data Protection Act will come into effect and when
organizations will need to complete data inventory mapping, process
audits, staff training, and publication of...
Chinese Hackers Resume Attacks on U.S. Targets
InfoSec News (May 20)
http://www.nytimes.com/2013/05/20/world/asia/chinese-hackers-resume-attacks-on-us-targets.html
By DAVID E. SANGER and NICOLE PERLROTH
The New York Times
May 19, 2013
WASHINGTON -- Three months after hackers working for a cyberunit of China’s
People’s Liberation Army went silent amid evidence that they had stolen data
from scores of American companies and government agencies, they appear to have
resumed their attacks using different...
DDoS-for-hire service works with blessing of FBI, operator says
InfoSec News (May 20)
http://arstechnica.com/security/2013/05/ddos-for-hire-service-works-with-blessing-of-fbi-operator-says/
By Dan Goodin
Ars Technica
May 19 2013
A website that accepts payment in exchange for knocking other sites
offline is perfectly legal, the proprietor of the DDoS-for-hire service
says. Oh, it also contains a backdoor that's actively monitored by the
FBI.
Ragebooter.net is one of several sites that openly accepts requests to
flood...
Mapping Compliance Proof To Risk-Based Controls
InfoSec News (May 20)
http://www.darkreading.com/compliance/mapping-compliance-proof-to-risk-based-c/240155092
By Ericka Chickowski
Dark Reading
May 17, 2013
For years now, the risk management gurus of the world have lamented the
scourge of check-box compliance, urging organizations to make more
security decisions based on sound risk management. The philosophy is
that risk-based decisions generally yield more compliant environments:
if an organization manages...
Critical Linux vulnerability imperils users, even after "silent" fix
InfoSec News (May 16)
http://arstechnica.com/security/2013/05/critical-linux-vulnerability-imperils-users-even-after-silent-fix/
By Dan Goodin
Ars Technica
May 15 2013
For more than two years, the Linux operating system has contained a
high-severity vulnerability that gives untrusted users with restricted
accounts nearly unfettered "root" access over machines, including
servers running in shared Web hosting facilities and other sensitive
environments....
Detangling the $45 Million Cyberheist
InfoSec News (May 16)
http://www.bankinfosecurity.com/detangling-45-million-cyberheist-a-5759
By Tracy Kitten
Bank Info Security
May 15, 2013
In the aftermath of the recent news about an international $45 million
cyberheist and ATM cash-out scheme, experts say pinpointing the source
of such a massive breach can prove to be extremely difficult. That's
because so many different entities are now involved in the global
payments chain.
"There are so many...
New Algorithm Lets SCADA Devices Detect, Deflect Attacks
InfoSec News (May 16)
http://www.darkreading.com/attacks-breaches/new-algorithm-lets-scada-devices-detect/240154875
By Kelly Jackson Higgins
Dark Reading
May 14, 2013
Researchers have built a prototype that lets SCADA devices police one
another in order to catch and cut off a fellow power plant or factory
floor device that has been compromised.
The so-called secure distributed control methodology outfits SCADA
systems, such as robots or PLCs, with embedded...
IT powerhouse nurtures elite white hackers
InfoSec News (May 16)
http://english.donga.com/srv/service.php3?bicode=020000&biid=2013051579958
The Dong-A Ilbo
MAY 15, 2013
"The country will directly foster the most elite white hackers (hackers
with well-intentioned purpose)."
So said Yoo Jun-sang, head of Korea Information Technology Research
Institute, at an interview with the Dong-A Ilbo Tuesday. At the
institute`s education center in southern Seoul, he said, "Korea is an IT...
Spreading the word about cybersecurity
InfoSec News (May 16)
http://fcw.com/articles/2013/05/15/cybersecurity-evangelism.aspx
By Amber Corrin
FCW.com
May 15, 2013
Say you're a beef inspector. Or a firefighter. Or a doctor treating
critically ill patients. Do you think much about cybersecurity? Is it
integrated into your daily work routine? The answer probably is no --
but federal officials are hoping to change that.
Cybersecurity already ranks as a top priority at agencies such as the
Defense...
Amy's Baking Company Says 'We Were Hacked!' Following Yesterday's Scorched Earth Campaign
InfoSec News (May 15)
http://www.tucsonweekly.com/TheRange/archives/2013/05/14/amys-baking-company-chooses-we-were-hacked-as-their-damage-control-response
By David Mendez
Tucson Weekly
May 14, 2013
So, the folks at Amy's Baking Company have chosen to go the honorable
route following the social media meltdown [1] that took place yesterday
on the company's Twitter, Facebook and Yelp accounts: they've blamed it
all on hackers [2].
Sorry, did I say...
U.S. Cyber Command Head General Alexander To Keynote Black Hat USA 2013
InfoSec News (May 15)
http://www.darkreading.com/government-vertical/us-cyber-command-head-general-alexander/240154788
May 14, 2013
[NOTE: Black Hat and Dark Reading are both part of UBM Tech. As the key July
27th-August 1st information security event in Las Vegas approaches, we'll be
sharing information about the show directly from its creators here on Dark
Reading.]
Major information security event Black Hat has announced that General Keith
Alexander --...
More Lists
Dozens of other network security lists are archived at
SecLists.Org.
| 
Current Month
RSS Feed
About List
All Lists