An IE zero-day vulnerability only made public knowledge by Microsoft two weeks ago has already been used by multiple APT threat actors, including Deputy Dog, Taidoor, th3bug, and Web2Crew.
Project Sonar Kicks Off Crowdsourced, Internet-Wide Security Scanning
Crowdsourcing is being used for everything from start-up funding to news reporting, and it makes sense that the idea would make it to the security community. Rapid7 has kicked off Project Sonar, a collaborative effort to improve security through the ac…
NSA Creates Detailed Graphical Analyses that Include Americans’ Metadata
The latest Edward Snowden leaks show that the NSA not merely collects metadata (everything about a communication excluding the content) from Americans and non-Americans alike, it generates automatic graphical analyses from that data.
Britain’s Defense Policy Adds Cyber Deterrence to Nuclear Deterrence
“You deter people by having an offensive capability. We will build in Britain a cyber strike capability so we can strike back in cyber space against enemies who attack us,” said UK Defence Secretary Philip Hammond.
London Teenager Arrested in Connection with Spamhaus DDoS
In March this year, anti-spam website Spamhaus suffered a distributed denial-of-service (DDoS) attack that peaked at 300 gigabits per second, the largest ever recorded and sufficient to disrupt the internet itself in some parts of Europe.
(ISC)² Congress 2013: Financial Market Manipulation Poised as Next Wave in Cybercrime
Scott Borg, the man who foresaw a Stuxnet-style cyber-attack years before it was discovered, has issued his latest prediction: manipulation of financial markets will be the long-term cybercrime wave of the future.
Intermedia Buys UK Cloud SSO firm SaaSID
Intermedia, a US provider of cloud-based business applications, has acquired SaaSID, a UK start-up that provides SSO across all cloud services from any device.
The Five Personas of Cloud Adoption
It is no longer enough to say that business comprises those who have adopted cloud technology and those who will adopt cloud technology. New research from NTT Com Security (erstwhile Integralis) describes five separate personas in attitude to cloud; al…
In 2020, Cyberthreats Get Physical and the Internet of Things Opens Gaping Security Holes
From cloud-powered denial-of-service attacks and Big Data vulnerabilities to bio-hacks that defeat authentication systems like fingerprint recognition, we are on the cusp of a brave new world of cyber-attack exploits, Europol warns.
Companies’ Cloud Risk Assessments Are Wildly Off
Even as headlines focus on the security of one’s internet-based cloud communications, at least one study shows that organizations lack the information to understand and mitigate the broader set of risks posed by the use of cloud services. In fact, thei…