VeriSign breach revelation raises questions of SSL cert, DNS compromise

Joseph Menn of Reuters reported Thursday on an attack on VeriSign in 2010. He had picked up on a brief notice in VeriSign’s 10-Q SEC quarterly report. On page 33 of this 43 page document we find: “In 2010, the Company faced several successful attacks against its corporate network in which access was gained to information on a small...

Read more

The hacktivist threat: Brazilian bank sites continue to fall victim to DDoS attacks

Distributed denial-of-service (DDoS) attacks against Brazilian financial institutions continued today, as the HSBC Brazil was knocked offline, the latest victim of the hacktivist group Anonoymous OpWeeksPayment# campaign, demonstrating again the serious concern posed by the hacktivist factor. The group took credit for taking down the Banco do...

Read more

Banking fraud malware trick helps criminals evade detection

Perpetrators of online banking fraud are using new techniques to misdirect bank verification and make discovery of fraudulent activity more difficult. Criminals are attempting to divert calls from banks to attacker numbers, using stolen information, to allow them to cover and possibly even continue to pillage accounts. The techniques have been...

Read more

PwC survey: Preparation, not prediction, is key to weathering security storm

At the beginning of every year, experts  feel compelled to make predictions about the kinds of security threats we’ll see in IT in the year ahead. While predictions can be interesting, they typically are little more than an extension of recent security threat trends. As long as the trends continue, the prognosticators look pretty...

Read more

Smart phones getting out of control? SANS hosts first Mobile Device Security Summit

Mobile security and application development is new territory for a lot of companies. If your organization is struggling with how to develop and implement a set of policies for managing and securing mobile devices, especially the thorny BYOD (bring your own device) issues around employee-owned smart phones and tablets, you aren’t alone. A...

Read more

More Posts