Masterminds behind a large-scale cyber-heist at Fidelity Investments in California have been arrested.
Google Patches 12 Flaws, Pays $11K Bug Bounty in Chrome Update
Google has patched 12 security vulnerabilities in the latest version of its browser, Chrome 31, paying out almost $11,000 in bug bounties in the process.
WikiLeaks Publishes IP Chapter of Secret Trade Agreement
WikiLeaks published Wednesday the full draft text of the intellectual property rights chapter for the secretly negotiated Trans-Pacific Partnership (TPP). TPP is a trade agreement primarily involving Pacific Rim countries (although currently excluding …
Irish Data Center Breach Hits 1.5 Million European Consumers
A breach of a data center in Ireland has compromised the information of 1.5 million people.
MacRumors Breached; 860k Passwords Potentially Compromised
MacRumors was targeted and hacked in a manner similar to the Ubuntu Forums hack in July, announced its founder and editor Tuesday. “It’s best to assume that your MacRumors Forum username, email address and (hashed) password is now known,” he warned.
How Snowden Breached the NSA from the Inside
There have been many suggestions on how Edward Snowden managed to steal so many top secret documents from the NSA; but the NSA has kept quiet. Now new research claims to know how it was done, and challenges the NSA to deny it.
Trustwave Acquires Application Security Inc
Trustwave, a Chicago-based firm with a wide range of security offerings and a particular specialism in data protection, has bought privately held New York-based Application Security Inc, a specialist in database security. The acquisition is complete, a…
Waking Shark II – Stress Testing the City of London
Today is Waking Shark II day – the day the City of London’s cyber resilience is tested in a day long exercise. Details are scarce (it wouldn’t be a test if they were known) but the war game is expected to concentrate on the ability of banks to maintain…
APTs and the Moriarty of Cybercrime
Researchers have analyzed 11 apparently distinct APT campaigns, and have come to the conclusion that they are not as distinct as previously thought – in short, there’s a malware quartermaster, a Moriarty of cybercrime, serving multiple threat actors.
PCI DSS Version 3.0 Goes Beyond Compliance
The PCI Security Standards Council (PCI SSC) has published version 3.0 of the PCI Data Security Standard (PCI DSS) and Payment Application Data Security Standard (PA-DSS) for debit and credit card security, geared to move organizations from mere compli…