Internet Storm Center collects info on scam for research.
As mobile banking grows, malicious Android applications are increasingly intercepting one-time passcodes.
World Federation of Exchanges creates working group to address cyberthreats against capital markets.
Security professionals seem confident that email security gateways and SaaS providers can safeguard them from spear-phishing attacks.
Help Net Security
Holidays are busy, especially for hackers. Phishing is most effective when it exploits human emotions—fear, greed, anxiousness, curiosity, compassion, getting a good deal.
IT departments’ decisions could inadvertently put orgs at risk of IS breach if they don’t have sufficient protocols for disposal of old electronic devices.
Red October, Kelihos, Syrian Electronic Army DNS Hijack, Syria Internet shutdown and Cryptolocker topped list of malicious events.
CISOs, security execs at well-known companies provided recommendations to help enhance organizations’ security programs.
ENISA Threat Landscape 2013, collection of information on top cyber-threats that have been assessed in reporting period.
State of Security
Chinese hackers gained access to European ministries, with attackers sending malware-laden emails designed to infect target’s computers and eavesdrop on communications.
Technology companies coalition calling for reform of surveillance practices, undermining trust in respective services, and nternet as a medium for communication and commerce.
New round of Facebook-related spam using fake messages about recent crimes involving recipients’ friends as a lure to direct them to Tumblr pages serving exploits.
Researchers spotted new version of malware that uses Web injects to steal banking credentials to drain online accounts, steal digital certificates and log keystrokes.
We Live Security
Telepathy, comes from computing, illustrates which passwords are easy for a computer to guess the next letter as you type in a password.
If you work for a government or large institution I’m pretty sure you are being targeted by an APT right now.
November has been eventful, update on situation and malware developments.
Trends in security and privacy ESET researchers are predicting for 2014.
Security and Crisis Management
Suicide bomber attacked a convoy of German troops near international airport in Kabul, but there were no immediate reports of casualties.
Gunmen killed five Kenyan policemen and wounded
Argentina’s Cabinet chief is declaring end to police strikes and scattered looting, but violence continues in streets abandoned by officers demanding higher pay.