Threat News

• Fighting the top IT security risks
  Microsoft's recent Patch Tuesday included an FTP vulnerability in Microsoft Internet Information Services (ISS) that was the target of a limited number of zero-day attacks.
  2009-10-22 – SC Magazine
• Tech Insight: XSS Exposed
  Pervasive Web application vulnerability is often misunderstood -- with dangerous consequences.
  2009-09-04 – DarkReading
• Hacker Ring Tied To Major Breaches Just Tip Of The Iceberg
  TJX-Heartland attacker and cohorts also reportedly hacked ATM machines in 7-Elevens, but their wide net is likely just one of many.
  2009-08-24 – DarkReading
• Hackers break into police computer as sting backfires
  Australian Federal Police boast on the ABC's Four Corners program about officers breaking up an underground hacker forum that backfired after hackers broke into a federal police computer system.
  2009-08-18 – theage.com.au
• Twitter hit by denial-of-service attack
  Internet attacks shut down the social networking site Twitter for about two hours on Thursday morning and caused glitches in other sites like Facebook and LiveJournal, a blogging site.
  2009-08-06 – CNN.com/technology
• Network Solutions Warns Merchants After Hack
  Criminals may have stoletn more than half a million credit card numbers from merchant servers hosted by Networks Solutions, the Internet hosting company warned Friday.
  2009-07-25 – Network World
• Forrester: The good and bad of security technologies
  Businesses are using a variety of technologies to help reduce the impact of threats, prevent breaches and meet compliance -- but some of these products are more beneficial than others, according to a new Forrester report released Wednesday that examines the state of network threat mitigation.
  2009-07-24 – SC Magazine
• Anti-U.S. Hackers Infiltrate Army Servers
  A known computer hacking clan with anti-American leanings has successfully broken into at least two sensitive Web servers maintained by the U.S. Army, InformationWeek has learned exclusively.
  2009-05-28 – techweb
• More Than 80% Of Phishing Attacks Use Hijacked, Legitimate Websites
  New research from the Anti-Phishing Working Group shows how phishers are better covering their tracks -- and what to do when phishers compromise your Website .
  2009-05-27 – DarkReading
• Audit finds 700 high-risk vulnerabilities in air traffic systems
  Flaws could make air traffic control susceptible to cyberattacks, DOT report says.
  2009-05-07 – Computerworld
• Web 2.0 Environs Are Now Hackers' Favorite Target
  Next-gen collaborative sites now account for 21 percent of all Web hacks, report says.
  2009-05-06 – DarkReading
• Researchers Take Over Dangerous Botnet
  Computer scientists at the University of California-Santa Barbara expose details of infamous botnet known for stealing financial data after temporarily wresting control of it.
  2009-05-04 – DarkReading
• Four Indicted in Giant College Spam Operation
  A federal grand jury in Missouri has indicted two brothers and two other people on charges related to an alleged e-mail spamming case that targeted more than 2,000 U.S. colleges and sold more than US$4.1 million worth of products to students.
  2009-04-29 – Yahoo! Tech
• Billions at risk as online trader CommSec exposed to hackers
  Security at the nation's biggest online trader has been exposed as wide open to attack by computer hackers.
  2009-04-28 – couriermail.com.au
• Cybergangs use cheap labor to break codes on social sites
  It's become the new front in cybercrime: scams and identity-theft programs that attack e-mail accounts and users of social-networking sites such as Facebook and MySpace.
  2009-04-23 – USA Today
• Cybergangs use cheap labor to break codes on social sites
  It's become the new front in cybercrime: scams and identity-theft programs that attack e-mail accounts and users of social-networking sites such as Facebook and MySpace.
  2009-04-23 – USA Today
• International hackers attacking NYPD's computers
  It's a cyberspace nightmare. Hackers from around the world are reportedly trying to break into the New York City Police Department's computers.
  2009-04-22 – Digital Journal
• More Than 500,000 Websites Hit By New Form of SQL Injection In '08
  New Web breach incident report finds the bad guys deploying more automated attacks, targeting customers rather than data on sites.
  2009-02-25 – DarkReading
• How to safeguard your online security
  Social networks are fun to use, helpful for job hunting, and great for keeping in touch with friends, business contacts, and relatives. The downside: The bad guys know you're using these networks like crazy, and they're gunning for you.
  2009-01-27 – Network World
• Monster.com reports theft of user data
  Monster.com is advising its users to change their passwords after data including e-mail addresses, names and phone numbers were stolen from its database.
  2009-01-26 – InfoWorld.com
• 6 desk security mistakes employees make every day
  From passwords on sticky notes to sensitive contracts left in a pile by the printer, many office workers make the same basic security errors. Even our CSO staff is not immune to these common no-nos - but they are easy to fix.
  2009-01-23 – CSO
• 70 of top 100 Web sites spread malware
  Seventy percent of the top 100 Web sites either hosted malicious content or contained a link designed to redirect site visitors to a malicious Web site during the second half of 2008, claims Websense's report State of Internet Security, Q3-Q4, 2008.
  2009-01-21 – InformationWeek
• Heartland Payment Systems hit by data security breach
  Heartland Payment Systems, a leading payment processing company, reported on Tuesday that its systems had been compromised by malware in 2008. The data breach could turn out to rival the massive breach reported by TJX in 2007, which affected as many as 94 million credit card accounts. Heartland handles 100 million transactions per month for more than 250,000 businesses.
  2009-01-20 – InformationWeek