A class action lawsuit was filed last week in US federal court seeking a total of $4.9 billion for the data breach involving patients treated through the Department of Defense’s TRICARE healthcare system.
Who’s watching the watchdog? SEC admits to possible data breach
At the same time that the Securities and Exchange Commission (SEC) was preparing corporate guidelines for cybersecurity risk disclosure, the securities market watchdog was informing its employees that their personal brokerage account information may ha…
Sesame Street’s YouTube channel hit by porn upload hack
The YouTube channel of Sesame Street – the puppet comedy series that launched the career of Jim Henson and his muppets, as well as amusing millions of kids over the years – was hit by a porn hacking attack on Sunday.
WebView system used in Android app development may be flawed says US professor
A leading US academic will shortly publish a paper highlighting potential security problems with the WebView platform, the coding system used to create many of the most popular Google Android apps.
RSA Europe: John Colley talks about the past, present and future of (ISC)²
Infosecurity got a chance to sit down with John Colley, managing director EMEA for (ISC)², at last week’s RSA Europe, and we learned that one of his current aims is to encourage new members – who do not currently satisfy the membership criteria – to si…
New York credit card fraud bust just ‘tip of the iceberg’
The indictments of 111 people in New York for operating a massive credit card fraud ring is just the “tip of the iceberg” when it comes to credit card fraud, judged Paul Rodgers, chairman of UK payment card industry group Vendorcom.
DLL loading pops back into the malware picture
Commtouch is reporting that a new DLL hijacking technique has been spotted being used by cybercriminals in the wild, even though the use of DLL loading has been falling by the wayside in recent times.
The Undead are in the dark about Social Security data breaches
The Social Security Administration (SSA) has failed to notify close to 32,000 people that their social security numbers were mistakenly disclosed on the SSA’s death master file, a public database that provides information on deceased US citizens as a d…
RSA Europe: “Basic stupidity [surrounding IT security] is unstoppable”
According to Ira Winkler, president and acting CEO of the Internet Security Advisory Group, social engineering – as a means of hacking people – is actually a far wider term than many people are aware of.
Security researcher analyses shady shipping centers
Hard on the heels of last week’s arrest of more than 100 people suspected of being part of a $13 million card crime ring, a leading security researcher has analysed the shady shipping centres that take a pivotal role in these types of frauds.