“The programmer who wrote ZeuS — malicious software used to steal an estimated $100 million so far this year from U.S. towns, companies and individuals — says he is retiring. But security experts believe there is a good chance he will soon emerge with even more powerful ways to steal, a pattern of behavior seen [...]
“Adobe’s security response team is scrambling to respond to new zero-day attacks against a computer hijack vulnerability in two of its most widely deployed products: Flash Player and Adobe PDF Reader. The flaw, which is currently being exploited in the wild with booby-trapped PDF documents, affects Windows, Mac, Linux and Solaris users. The zero-day attacks [...]
“A hacker broke into the state Department of Health and Hospitals’ database for paramedics and other first responders last month. A letter from DHH dated Oct. 8, obtained Wednesday by WBRZ-TV in Baton Rouge, says the incident happened Sept. 17. It also says although access to the database is password protected, a hacker still managed [...]
“The Bredolab botnet has been busted. So said the High Tech Crime Team, part of the National Crime Squad in the Netherlands, on Monday. According to Dutch authorities, ‘the botnet network used servers hired in the Netherlands from a reseller of LeaseWeb,’ one of Europe’s largest hosting providers, which is working with investigators. All told, [...]
“Huawei is one of many Chinese companies that are pushing into more sophisticated and lucrative businesses. But security concerns make telecommunications a particularly delicate industry in this country, and even the hint of a Huawei deal with Sprint has generated worries in Washington. Some in Congress and the national security establishment fear that Huawei’s close [...]
“The Avalanche crime group, the world’s most prolific phishing gang, has moved from using conventional phishing to solely propagating Zeus, the most famous and stealthy password-stealing malware, say security researchers in a new report. The Anti Phishing Working Group’s ‘Global Phishing Survey: Trends and Domain Name Use in 1H2010′ says Zeus doesn’t need the victim’s [...]
“The Obama administration has adopted new procedures for using the Defense Department’s vast array of cyberwarfare capabilities in case of an attack on vital computer networks inside the United States, delicately navigating historic rules that restrict military action on American soil. “ (Source: U.S. Says Military Can Respond to Domestic Cyberthreats – NYTimes.com)
“The Defense Department aims to tighten ties with its cyber security contractors to help thwart mounting threats to sensitive networks, the Pentagon’s top official for cyber policy said Wednesday. The department’s use of top-level system integrators and entrepreneurs will continue to grow along with the need for so-called ‘active’ defenses that scan incoming code to [...]
“Federal agencies are woefully behind in achieving their goal of protecting computer networks despite President Obama’s pledge to make cybersecurity a top administration priority, according to a report by the Government Accountability Office. The report reveals that officials are making slow progress on all but two of the 24 specific goals the government outlined to [...]
“Last week’s LinkedIn phishing attack didn’t deliver Zeus, the best-known and widely distributed Trojan, say malware researchers, but instead delivered its less well-known cousin, Bugat. This move is important to watch say researchers who point to the emergence of Bugat as an attempt by cyber criminals to diversify their attack tools, using a platform that [...]
