When Brian Krebs learned of a private MasterCard warning being circulated to banks, he challenged the DMV – and only then did it issue a public statement that it was indeed investigating a potential security issue.
ISACA Launches Digital Badges for Credential Verification
ISACA is taking steps against fraudulent security credentialing with the introduction of digital badges for individuals who have completed one of the group’s training processes.
Syrian Electronic Army Hacks Microsoft, and the Country Disappears from the Web
Syrian politics are having big ramifications on the web this week. First up, the Syrian Electronic Army has released what it alleges are hacked invoices from Microsoft that document months of transactions between Microsoft’s Global Criminal Compliance …
One of the Web’s Top Porn Outlets Serves Up Malware
The Google blacklist and malware warnings are handy and give an air of authority – but sometimes the algorithm gets it wrong. Researchers have discovered that one of the web’s top porn providers, beeg.com, which has an Alexa ranking of 332, is currentl…
Retail Tracking and Privacy Crypto Cracked in Minutes, for Less than a Dollar
Retail analytics have been around for a dog’s age, allowing stores – whether virtual or real – to track customer behavior and offer up related offerings accordingly. It’s a central part of the up-sell and cross-sell process that keeps the sector hummin…
Old Vulnerability at the Heart of Escalating PHP Botnet Attacks
Back in October 2013, a public exploit for the PHP server-side framework was disclosed, using a command injection vulnerability found in May 2012 and categorized as CVE-2012-1823. Now, it appears that cybercriminals are still using it, despite the vuln…
IBM Combats $3.5 Trillion in Fraud Losses with Broad-ranging Initiative
Digital channels such as mobile devices, social networks and cloud platforms offer the perfect connected footprint for bad actors probing for weaknesses and vulnerabilities to carry out everything from tax evasion, money laundering and cyber-attacks to…
EA Games Targeted by Phishers Looking for Apple IDs
EA Games, maker of popular gaming series including Sims, Plants vs. Zombies, Star Wars Battlefront and others, has been attacked by hackers bent on compromising more than a virtual rebel base. A server for its website has come under fire and is now hos…
Full Disclosure Mailing List Shuts Down
John Cartwright, the operator of Full Disclosure, announced yesterday that he has shut down the mailing list. His own post, ‘Administrivia: The End’, is the final entry. It was always a controversial service, frequently publishing vulnerability details…
Sally Beauty Supply Endures the Latest Retail Data Breach
Security isn’t a cosmetic concern, as we’re seeing from the latest retail data breach report. Following the disclosure of an unauthorized attempted intrusion into its network on March 5, Sally Beauty Supply has reported that it has indeed suffered a da…