A UK security researcher has disclosed a bug in Facebook’s code that allowed him to take over any Facebook account in less than a minute – and earned himself a $20,000 bug bounty in the process.
Bruce Schneier joins EFF; stays with BT
Schneier, author of Applied Cryptography, Secrets and Lies and other books, founder of Counterpane (now BT Managed Security Solutions), and designer of the Blowfish and Twofish encryption algorithms, has joined the board of EFF.
Vormetric receives $15 million cash infusion from investors
A group of investors led by venture capital firm Split Rock Partners has provided $15 million in new funding to Vormetric, the San Jose-based firm that specializes in security and encryption services for virtual, cloud-based and physical environments.
Malware attackers leave behind digital clues
Just as the science of fingerprints, DNA, and fiber analysis have become invaluable in criminal forensics, connecting the dots of an advanced cyber-attack can help identify even the most sophisticated threat actors – if researchers know what to look fo…
BAE Systems Detica Reports on BYOD Problems
Nobody doubts that BYOD is a security issue – the connection of employees’ personal devices to the corporate network worries IT staff. There are security solutions; but study after study surprisingly shows that many companies simply ignore the problem …
Cutwail spamming out Andromeda – using Qantas as the lure
A current spam campaign from the Cutwail botnet is sending out the Andromeda bot loader (aka Gamarue) which subsequently downloads the Zeus banking trojan. Numerous spam themes are employed, including flight/ticket details, courier, tax, hotel, payroll…
CREST launches CRESTx at Lancaster university
CREST is the council for registered ethical security testers, a standards based organisation that provides assurance and trust in penetration testers and ethical hackers. On 3 July 2013 it is running its first CRESTx conference at Lancaster university,…
Phishing targets UK businesses 3,000 times per day
Phishing attacks are evolving, and becoming more widespread over time: Kaspersky Lab has found that 3,000 UK internet users were subjected to phishing attacks each day for the past year, a notable increase from 1,000 the year before.
Google adds phishing and malware levels to Transparency Report
Google, which flags 10,000 unsafe websites each day, has expanded its Transparency Report to add a section that will shed more light on the sources of malware and phishing attacks.
(ISC)² kicks off Women in Security mentoring program
Women in Security (WiS), a special interest group led by (ISC)²’s London Chapter, is launching a mentoring scheme to help women interested in information security to explore the profession and the opportunities its offers.