MCYSEKA-Maritime Cyber Security Knowledge Archive

Discussing the latest drive-by threat to Mac users that exploits an unpatched Java vulnerability known as CVE-2012-0507, Graham Cluley of Sophos blogs, “My advice is that if you have no real need for Java, remove it.”

Adobe has released a free tool that helps IT administrators classify suspicious files as malicious or benign using machine-learning algorithms.

A report issued this week by the American Civil Liberties Union (ACLU) claims that local law enforcement is engaged in pervasive warrantless tracking of cell phones.

US defense firm ManTech has acquired technology security firm HBGary, which was at the center of a controversy last year when it claimed to have infiltrated Anonymous and was then attacked by the hacktivist group.

Global Payments, a third-party payment card processor, has admitted that around 1.5 million credit card numbers may have been stolen in a massive data breach last month, up significantly from the original report of 50,000.

Computer storage devices containing personal information on 800,000 California residents were lost following a disaster recovery exercise held by IBM and Iron Mountain on behalf of the California Department of Child Support Services (DCSS).

In its latest Hacker Intelligence Initiative report, Imperva analyzes remote and local file inclusion (RFI/LFI) attacks as favored by LulzSec.

The EC Data Retention Directive is already in force in the UK as a Statutory Instrument – The Data Retention (EC Directive) Regulations 2009. A proposed new bill will now force ISPs and telecommunications providers to make this data available to law en…

Global Payments, an Atlanta-based credit and debit card processor for banks and merchants, has suffered a security breach that has exposed information on at least 50,000 cardholders, the Wall Street Journal reported.

ESET has reported on the latest version of the Blackhole exploit kit, noting that it has been updated to include a recent Java vulnerability.