Zeljka Zorz
Amazon Cloud Service servers riddled with vulnerabilities
Update with comment from Amazon available below. An investigation spurred by one of the customers of their security product has lead researchers of security company Bkav to an …
Iowa State University servers breached, made to mine Bitcoins
Iowa State University has revealed yesterday that five of its departmental servers on campus have been hacked, and that Social Security numbers of nearly 30,000 of its past …
Researcher proposes alert tool for managing online privacy risks
As more and more of our daily life happens online, the issue of online privacy should be of prime importance to each of us. Unfortunately, it’s not. Most users are not …
NIST drops NSA-backed algorithm from encryption recommendations
“Following a public comment period and review, the National Institute of Standards and Technology (NIST) has removed a cryptographic algorithm from its draft guidance on …
Heartbleed attacker hijacked VPN active user sessions
As the number of the most popular websites that still haven’t patched their servers against the Heartbleed exploit continues to diminish (go here for an up-to-date list …
OpenBSD team forks OpenSSL to create safer SSL/TLS library
For all the talk about how something should be done to fix OpenSSL so that a Heartbleed situation is never again repeated, there has been little to no concrete action so far. …
Supposedly patched router backdoor was simply hidden
When security systems’ engineer and researcher Eloi Vanderbeken discovered the existence of a backdoor in his own Linksys router last Christmas, he spurred other hackers …
Beware of clever phishing scam that bypasses Steam Guard
Malwarebytes’ Chris Boyd is warning owners of Steam accounts about a relatively new phishing approach that goes after both their account login credentials and a file …
3M payment cards compromised in Michaels Stores/Aaron Brothers breach
In the wake of the highly publicized Target and Neiman Marcus breaches, Texas-based arts and crafts store chain Michaels has stated in January that it has been targeted by …
The dismal state of SATCOM security
Satellite Communications (SATCOM) play a vital role in the global telecommunications system, but the security of the devices used leaves much to be desired, says Ruben …
Tor relays vulnerable to Heartbleed dropped from anonymity network
Thanks to the OpenSSL Heartbleed bug, the Tor anonymity network is set to temporarily lose around “12 per cent of the exit capacity and 12 per cent of the guard …
Zeus/rootkit combo delivered via Starbucks-themed emails
Malware peddlers have been spotted impersonating popular coffeehouse chain Starbucks in order to trick users into downloading a rootkit-equipped variant of the Zeus banking …
Featured news
Resources
Don't miss
- Avoiding vendor lock-in when using managed cloud security services
- The CISO’s dilemma of protecting the enterprise while driving innovation
- PoC exploit for Ivanti Endpoint Manager vulnerabilities released (CVE-2024-13159)
- Account takeover detection: There’s no single tell
- Man vs. machine: Striking the perfect balance in threat intelligence