Home page logo
/
isn logo
Info Security News Mailing List

Carries news items (generally from mainstream sources) that relate to security.

List Archives

JanFebMarAprMayJunJulAugSepOctNovDec
201475727987667482496979
20136159847488609283101987059
201293101101857425599285867858
20111079712281122647491861028885
2010989914011211211511011094749374
20091221071361371089310811810411311098
2008164135131150128128134115116122105124
2007154136141126124131128113132137119131
200611912012912813414024141115135130120
20059210915311568111102144113144125115
200494106911019314111611911110210993
2003159131144130134134129105127114115103
2002170144181171191121144127142134126130
20011391551748215685200156217129119
20004831187171145175141152154173
199954353348

Latest Posts

New Russian Boldness Revives a Cold War Tradition: Testing the Other Side InfoSec News (Oct 31)
http://www.nytimes.com/2014/10/31/world/europe/new-russian-boldness-revives-a-cold-war-tradition-testing-the-other-side-.html

By DAVID E. SANGER and NICOLE PERLROTH
The New York Times
OCT. 30, 2014

WASHINGTON -- When the White House discovered in recent weeks that its
unclassified computer systems had been breached, intelligence officials
examined the digital evidence and focused on a prime suspect: Russia,
which they believe is using its...

Social Engineers work in teams to harness the power of information InfoSec News (Oct 31)
http://www.csoonline.com/article/2840953/social-engineering/social-engineers-work-in-teams-to-harness-the-power-of-information.html

By Steve Ragan
Salted Hash
CSO Online
Oct 30, 2014

Proving once again that information viewed as harmless can often enable an
attacker, the contestants in this years Social Engineering Capture the
Flag (SECTF) contest at DEF CON 22 worked in teams of two in order to
collect vital information from some of the...

Retailers accuse credit unions of talking smack about card breaches InfoSec News (Oct 31)
http://arstechnica.com/security/2014/10/retailers-accuse-credit-unions-of-talking-smack-about-card-breaches/

By Sean Gallagher
Ars Technica
Oct 30, 2014

Reeling from the bad press associated with an ongoing parade of data
breaches caused by criminal infiltration of their payment systems,
representatives of six retail industry associations signed a joint open
letter that pushes back against a vocal critic of retailers'
cyber-security...

Banks' Concerns About Cyberthreats Grow InfoSec News (Oct 31)
http://www.bankinfosecurity.com/banks-concerns-about-cyberthreats-grow-a-7486

By Tracy Kitten
Bank Info Security
October 28, 2014

Banking leaders say they're substantially more concerned today than they
were just six months ago about cyber-attacks and geopolitical threats
aimed at the global financial system.

That's according to a report covering results of a survey conducted during
the third quarter and published last week by the...

Security Firms Tie Russian Government to Utilities Hacks InfoSec News (Oct 30)
http://www.bloomberg.com/politics/articles/2014-10-30/security-firms-tie-russian-government-to-utilities-hacks

By Michael A. Riley and Jordan Robertson
Bloomberg.com
October 23, 2014

North American utilities are scouring their systems for signs of Russian
malware that the U.S. government has warned could give hackers control of
water treatment facilities and parts of the electrical grid.

The U.S. Department of Homeland Security issued alerts...

Did Drupal Drop The Ball? Users Who Didn't Update Within 7 Hours 'Should Assume They've Been Hacked' InfoSec News (Oct 30)
http://www.forbes.com/sites/thomasbrewster/2014/10/30/did-drupal-drop-the-ball-users-who-didnt-update-within-7-hours-should-assume-theyve-been-hacked/

By Thomas Fox-Brewster
Forbes.com
10/30/2014

Hackers are remarkably quick off the mark. Drupal, the creator of the
eponymous content management system that millions use the world over, now
knows that all too well. In mid-October it patched a SQL injection flaw,
which could be exploited by...

Major Cyber Attack Will Cause Significant Loss of Life By 2025, Experts Predict InfoSec News (Oct 30)
http://www.defenseone.com/threats/2014/10/cyber-attack-will-cause-significant-loss-life-2025-experts-predict/97688/

By Patrick Tucker
Defense One
October 29, 2014

A major cyber attack will happen between now and 2025 and it will be large
enough to cause “significant loss of life or property losses/damage/theft
at the levels of tens of billions of dollars,” according to more than 60
percent of technology experts interviewed by the Pew...

Facebook, Google, and the Rise of Open Source Security Software InfoSec News (Oct 30)
http://www.wired.com/2014/10/facebook-builder-osquery/

By Cade Metz
Enterprise
Wired.com
10.29.14

Facebook chief security officer Joe Sullivan says that people like Mike
Arpaia are hard to find.

Arpaia is a security engineer, but he’s not the kind who spends his days
trying to break into computer software, hoping he can beat miscreants to
the punch. As Sullivan describes him, he’s a “builder”—someone who creates
new tools capable...

Hackers breach some White House computers InfoSec News (Oct 29)
http://www.washingtonpost.com/world/national-security/hackers-breach-some-white-house-computers/2014/10/28/2ddf2fa0-5ef7-11e4-91f7-5d89b5e8c251_story.html

By Ellen Nakashima
The Washington Post
October 28, 2014

Hackers thought to be working for the Russian government breached the
unclassified White House computer networks in recent weeks, sources said,
resulting in temporary disruptions to some services while cybersecurity
teams worked to...

Army fitness standards for fat ‘cyber warr iors’ may change as U.S. waistlines grow InfoSec News (Oct 29)
http://www.washingtontimes.com/news/2014/oct/28/army-fitness-standards-for-fat-cyber-warriors-may-/

By Douglas Ernst
The Washington Times
October 28, 2014

There U.S. Army’s recruitment pool keeps getting bigger — around the
waistline — a reality that is forcing its top brass to consider relaxing
fitness standards for future “cyber warriors.”

Maj. Gen. Allen Batschelet, commanding general for the U.S. Army
Recruiting Command at...

Research links massive cyber spying ring to Russia InfoSec News (Oct 29)
http://arstechnica.com/security/2014/10/research-links-massive-cyber-spying-ring-to-russia/

By Robert Lemos
Ars Technica
Oct 28, 2014

A professional espionage group has targeted a variety of Eastern European
governments and security organizations with attacks aimed at stealing
political and state secrets, security firm FireEye stated in a report
released on Tuesday.

The group, dubbed APT28 by the company, has targeted high level officials...

BlackEnergy crimeware coursing through US control systems InfoSec News (Oct 29)
http://www.theregister.co.uk/2014/10/29/blackenergy_crimeware_pwning_us_control_systems_cert_warns/

By Darren Pauli
The Register
29 Oct 2014

Industrial control systems in the United States have been compromised by
the BlackEnergy malware toolkit for at least three years in a campaign the
US Computer Emergency Response Team has dubbed "ongoing" and
sophisticated.

Attackers had compromised unnamed industrial control system operators...

N.Korea Hacks 20,000 S.Korean Smartphones InfoSec News (Oct 29)
http://english.chosun.com/site/data/html_dir/2014/10/29/2014102901755.html?

By chosun.com
Oct. 29, 2014

Some 20,000 smartphones in South Korea are infected with malicious apps as
a result of a recent North Korean hacking campaign.

National Intelligence Service data revealed on Tuesday say the apps were
posted by North Korean hackers on South Korean websites from May 19 to
Sept. 16 this year.

The NIS claims it has taken steps to delete the...

Last CFP: ICCICS2014 : Cyber-Crime Investigation and Cyber Security InfoSec News (Oct 29)
The International Conference on Cyber-Crime Investigation and
Cyber Security (ICCICS2014)

November 17-19, 2014
Asia Pacific University of Technology and Innovation (APU), Kuala Lumpur,
Malaysia

http://sdiwc.net/conferences/2014/iccics2014/

iccics2014 () sdiwc net

All registered papers will be included in the publisher's Digital Library.
==============================================================
The conference aims to enable...

Incoming PCI council head ready to take on the hackers InfoSec News (Oct 29)
http://www.csoonline.com/article/2838369/data-protection/incoming-pci-council-head-ready-to-take-on-the-hackers.html

By Taylor Armerding
CSO
Oct 27, 2014

Stephen W. Orfei is the incoming general manager of the PCI Security
Standards Council. He succeeds the council’s first general manager, Bob
Russo, who will retire at the end of 2014.

Orfei has decades of experience in payment technology, including 13 years
in telecom with MCI...

More Lists

Dozens of other network security lists are archived at SecLists.Org.


[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]