Warning: file_get_contents() [function.file-get-contents]: SSL: The specified procedure could not be found. in D:\Sites\sis\lersais\news\widgets\get_stories.inc.php on line 42

Warning: file_get_contents(http://slashdot.org/stories/security) [function.file-get-contents]: failed to open stream: HTTP request failed! in D:\Sites\sis\lersais\news\widgets\get_stories.inc.php on line 42
All Headlines
Krebs on Security
Infosec Island
 

Mirai Co-Author Gets 6 Months Confinement, $8.6M in Fines for Rutgers Attacks

Oct 26, 2018 | Krebs on Security

The convicted co-author of the highly disruptive Mirai botnet malware strain has been sentenced to 2,500 hours of community service, six months home confinement, and ordered to pay $8.6 million in restitution for repeatedly using Mirai to take down Internet services at Rutgers University, his former alma mater.

  (Read Story...)

Equifax Has Chosen Experian. Wait, What?

Nov 01, 2018 | Krebs on Security

A year after offering free credit monitoring to all Americans on account of its massive data breach that exposed the personal information of nearly 148 million people, Equifax now says it has chosen to extend the offer by turning to a credit monitoring service offered by a top competitor -- Experian. And to do that, it will soon be sharing with Experian contact information that affected consumers gave to Equifax in order to sign up for the service. 

  (Read Story...)

SMS Phishing + Cardless ATM = Profit

Nov 02, 2018 | Krebs on Security

Thieves are combining SMS-based phishing attacks with new "cardless" ATMs to rapidly convert phished bank account credentials into cash. Recent arrests in Ohio shed light on how this scam works.

  (Read Story...)

Who’s In Your Online Shopping Cart?

Nov 04, 2018 | Krebs on Security

Crooks who hack online merchants to steal payment card data are constantly coming up with crafty ways to hide their malicious code on Web sites. In Internet ages past, this often meant obfuscating it as giant blobs of gibberish text that is obvious even to the untrained eye. These days, a compromised e-commerce site is more likely to be seeded with a tiny snippet of code that invokes a hostile domain which appears harmless or that is virtually indistinguishable from the hacked site's own domain.

  (Read Story...)

Fight Fileless Malware on All Fronts

Nov 06, 2018 | Infosec Island

Fileless malware has become the darling of cyber criminals because, quite simply, it’s a no-brainer.

  (Read Story...)

Busting SIM Swappers and SIM Swap Myths

Nov 07, 2018 | Krebs on Security

KrebsOnSecurity recently had a chance to interview members of the REACT Task Force, a team of law enforcement officers and prosecutors based in Santa Clara, Calif. that has been tracking down individuals engaged in unauthorized "SIM swaps" -- a complex form of mobile phone fraud that is often used to steal large amounts of cryptocurrencies and other items of value from victims. Snippets from that fascinating conversation are recounted below, and punctuated by accounts from a recent victim who lost more than $100,000 after his mobile phone number was hijacked.

  (Read Story...)

U.S. Secret Service Warns ID Thieves are Abusing USPS’s Mail Scanning Service

Nov 08, 2018 | Krebs on Security

A year ago, KrebsOnSecurity warned that "Informed Delivery," a new offering from the U.S. Postal Service (USPS) that lets residents view scanned images of all incoming mail, was likely to be abused by identity thieves and other fraudsters unless the USPS beefed up security around the program and made it easier for people to opt out. This week, the U.S. Secret Service issued an internal alert warning that many of its field offices have reported crooks are indeed using Informed Delivery to commit various identity theft and credit card fraud schemes.

  (Read Story...)

Bug Bounty Hunter Ran ISP Doxing Service

Nov 09, 2018 | Krebs on Security

A Connecticut man who's earned "bug bounty" rewards and public recognition from top telecom companies for finding and reporting security holes in their Web sites secretly operated a service that leveraged these same flaws to sell their customers' personal data, KrebsOnSecurity has learned.

  (Read Story...)

Addressing the CISO’s Key Challenges in 2018 and Beyond with Endpoint Detection and Response

Nov 12, 2018 | Infosec Island

Today more than ever, incident response teams need to be given the tools to analyze and investigate suspicious activities, and adequately respond to evolving threats.

  (Read Story...)

That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards

Nov 13, 2018 | Krebs on Security

If you own a domain name that gets decent traffic and you fail to pay its annual renewal fee, chances are this mistake will be costly for you and for others. Lately, neglected domains have been getting scooped up by crooks who use them to set up fake e-commerce sites that steal credit card details from unwary shoppers.

  (Read Story...)

Calif. Man Pleads Guilty in Fatal Swatting Case, Faces 20+ Years in Prison

Nov 14, 2018 | Krebs on Security

A California man who pleaded guilty Tuesday to causing dozens of swatting attacks -- including a deadly incident in Kansas last year -- now faces 20 or more years in prison.

  (Read Story...)

Patch Tuesday, November 2018 Edition

Nov 14, 2018 | Krebs on Security

Microsoft on Tuesday released 16 software updates to fix more than 60 security holes in various flavors of Windows and other Microsoft products. Adobe's also got security patches available for Flash, Acrobat and Adobe Reader users. 

  (Read Story...)

A Human-Centered Approach to Building a Smart, Satisfied Information Security Team

Nov 15, 2018 | Infosec Island

Building tomorrow’s security workforce is essential to address shortfalls in skills and capabilities and to deliver robust and long-term security for organizations in the digital age.

  (Read Story...)

Facebook Patches Bug that Exposed Private Information

Nov 15, 2018 | Infosec Island

Facebook recently addressed a vulnerability that could have allowed anyone to access private information about users and their contacts.

  (Read Story...)

'DarkGate' Campaign Targets Europeans with Multiple Payloads

Nov 16, 2018 | Infosec Island

A newly discovered malware campaign is targeting users in Europe with various payloads, has a reactive command and control (C&C) system and can remotely control infected machines, enSilo security researchers warn.

  (Read Story...)

Calif. Man Pleads Guilty in Fatal Swatting Case, Faces 20+ Years in Prison

Nov 14, 2018 | Krebs on Security

A California man who pleaded guilty Tuesday to causing dozens of swatting attacks -- including a deadly incident in Kansas last year -- now faces 20 or more years in prison.

  (Read Story...)

Patch Tuesday, November 2018 Edition

Nov 14, 2018 | Krebs on Security

Microsoft on Tuesday released 16 software updates to fix more than 60 security holes in various flavors of Windows and other Microsoft products. Adobe's also got security patches available for Flash, Acrobat and Adobe Reader users. 

  (Read Story...)

That Domain You Forgot to Renew? Yeah, it’s Now Stealing Credit Cards

Nov 13, 2018 | Krebs on Security

If you own a domain name that gets decent traffic and you fail to pay its annual renewal fee, chances are this mistake will be costly for you and for others. Lately, neglected domains have been getting scooped up by crooks who use them to set up fake e-commerce sites that steal credit card details from unwary shoppers.

  (Read Story...)

Bug Bounty Hunter Ran ISP Doxing Service

Nov 09, 2018 | Krebs on Security

A Connecticut man who's earned "bug bounty" rewards and public recognition from top telecom companies for finding and reporting security holes in their Web sites secretly operated a service that leveraged these same flaws to sell their customers' personal data, KrebsOnSecurity has learned.

  (Read Story...)

U.S. Secret Service Warns ID Thieves are Abusing USPS’s Mail Scanning Service

Nov 08, 2018 | Krebs on Security

A year ago, KrebsOnSecurity warned that "Informed Delivery," a new offering from the U.S. Postal Service (USPS) that lets residents view scanned images of all incoming mail, was likely to be abused by identity thieves and other fraudsters unless the USPS beefed up security around the program and made it easier for people to opt out. This week, the U.S. Secret Service issued an internal alert warning that many of its field offices have reported crooks are indeed using Informed Delivery to commit various identity theft and credit card fraud schemes.

  (Read Story...)

Busting SIM Swappers and SIM Swap Myths

Nov 07, 2018 | Krebs on Security

KrebsOnSecurity recently had a chance to interview members of the REACT Task Force, a team of law enforcement officers and prosecutors based in Santa Clara, Calif. that has been tracking down individuals engaged in unauthorized "SIM swaps" -- a complex form of mobile phone fraud that is often used to steal large amounts of cryptocurrencies and other items of value from victims. Snippets from that fascinating conversation are recounted below, and punctuated by accounts from a recent victim who lost more than $100,000 after his mobile phone number was hijacked.

  (Read Story...)

Who’s In Your Online Shopping Cart?

Nov 04, 2018 | Krebs on Security

Crooks who hack online merchants to steal payment card data are constantly coming up with crafty ways to hide their malicious code on Web sites. In Internet ages past, this often meant obfuscating it as giant blobs of gibberish text that is obvious even to the untrained eye. These days, a compromised e-commerce site is more likely to be seeded with a tiny snippet of code that invokes a hostile domain which appears harmless or that is virtually indistinguishable from the hacked site's own domain.

  (Read Story...)

SMS Phishing + Cardless ATM = Profit

Nov 02, 2018 | Krebs on Security

Thieves are combining SMS-based phishing attacks with new "cardless" ATMs to rapidly convert phished bank account credentials into cash. Recent arrests in Ohio shed light on how this scam works.

  (Read Story...)

Equifax Has Chosen Experian. Wait, What?

Nov 01, 2018 | Krebs on Security

A year after offering free credit monitoring to all Americans on account of its massive data breach that exposed the personal information of nearly 148 million people, Equifax now says it has chosen to extend the offer by turning to a credit monitoring service offered by a top competitor -- Experian. And to do that, it will soon be sharing with Experian contact information that affected consumers gave to Equifax in order to sign up for the service. 

  (Read Story...)

Mirai Co-Author Gets 6 Months Confinement, $8.6M in Fines for Rutgers Attacks

Oct 26, 2018 | Krebs on Security

The convicted co-author of the highly disruptive Mirai botnet malware strain has been sentenced to 2,500 hours of community service, six months home confinement, and ordered to pay $8.6 million in restitution for repeatedly using Mirai to take down Internet services at Rutgers University, his former alma mater.

  (Read Story...)

'DarkGate' Campaign Targets Europeans with Multiple Payloads

Nov 16, 2018 | Infosec Island

A newly discovered malware campaign is targeting users in Europe with various payloads, has a reactive command and control (C&C) system and can remotely control infected machines, enSilo security researchers warn.

  (Read Story...)

Facebook Patches Bug that Exposed Private Information

Nov 15, 2018 | Infosec Island

Facebook recently addressed a vulnerability that could have allowed anyone to access private information about users and their contacts.

  (Read Story...)

A Human-Centered Approach to Building a Smart, Satisfied Information Security Team

Nov 15, 2018 | Infosec Island

Building tomorrow’s security workforce is essential to address shortfalls in skills and capabilities and to deliver robust and long-term security for organizations in the digital age.

  (Read Story...)

Addressing the CISO’s Key Challenges in 2018 and Beyond with Endpoint Detection and Response

Nov 12, 2018 | Infosec Island

Today more than ever, incident response teams need to be given the tools to analyze and investigate suspicious activities, and adequately respond to evolving threats.

  (Read Story...)

Fight Fileless Malware on All Fronts

Nov 06, 2018 | Infosec Island

Fileless malware has become the darling of cyber criminals because, quite simply, it’s a no-brainer.

  (Read Story...)

How to Protect SMBs Against Phishing Attacks via Social Engineering

Nov 06, 2018 | Infosec Island

Attackers are constantly changing tactics, so ensuring that you are armed against the latest threats is critical.

  (Read Story...)

DDoS Disruption: Election Attacks

Nov 05, 2018 | Infosec Island

With all eyes on the 2018 US midterm elections November 6, election officials are on high alert for DDoS attacks.

  (Read Story...)

Buy, Rent, or Uber Your Security Operations Center

Nov 05, 2018 | Infosec Island

What better way to provide continuous monitoring and analysis than through a security operations center (SOC)? But a SOC is complex and expensive.

  (Read Story...)

What You Need to Know about the Recent Apache Struts Vulnerability

Nov 05, 2018 | Infosec Island

Researchers recently revealed a vulnerability in Apache Struts, a popular type of enterprise software. Active exploit attempts weren’t far behind.

  (Read Story...)

Crypto-Mining Malware Attacks on iPhones Up 400%: Report

Oct 16, 2018 | Infosec Island

Crypto-mining malware attacks against iPhones went up 400% in the last two weeks of September, security firm Check Point notes in a new report.

  (Read Story...)

←  1 / 151010  →