Mac malware found with valid developer ID at freedom conference: DHS Open Source Highlights may 20th
By Kelli Tarala | May 20, 2013
A security researcher participating in the Oslo Freedom Conference discovered a piece of malware for Apple OS X that takes regular screenshots from a victim’s computer and then sends them to two servers.
Full Story:
http://www.theregister.co.uk/2013/05/17/mac_malware_steals_screenshots/
FDIC sues CEO of failed bank over $48M in losses from risky loans
The Federal Deposit Insurance Corporation filed a lawsuit against the former executives and directors of the failed Peninsula Bank. The lawsuit seeks $48 million for their alleged negligence that led to the bank’s collapse.
Full Story:
http://www.bizjournals.com/southflorida/news/2013/05/16/fdic-sues-ceo-of-failed-bank-over-48m.html
Ransomware adds password stealing to its arsenal
Microsoft researchers found a new variant of the Reveton malware that downloads a password-stealing component after it infects a victim’s computer.
Full Story:
http://www.net-security.org/malware_news.php?id=2497
ownCloud fixes critical security vulnerabilities
The developers of the ownCloud cloud storage and collaboration software released an update that closes security vulnerabilities that allowed SQL injection, PHP code
execution, and the downloading of others’ calendars.
Full Story:
http://www.h-online.com/security/news/item/ownCloud-fixes-critical-security-vulnerabilities-1865334.html
Pakistan hit by targeted attack out of India
Researchers at Eset discovered a cyberespionage campaign targeting Pakistani users via phishing emails, and appears to return sensitive information to India.
Full Story:
http://www.darkreading.com/attacks-breaches/pakistan-hit-by-targeted-attack-out-of-i/240155117
Four former LulzSec members sentenced to prison in the UK
Four U.K. nationals associated with the LulzSec hacking group were convicted and sentenced in the U.K. for their role in attacks on Web sites in 2011.
Full Story:
http://www.networkworld.com/news/2013/051613-four-former-lulzsec-members-sentenced-269856.html
Disclaimer: The above information largely has been reproduced from the DHS Open Source Daily Report, a full version of which can be found at http://www.dhs.gov/files/programs/editorial_0542.shtm. Enclave Security, LLC and its agents used their best efforts in collecting and preparing the information published herein. However, Enclave Security, LLC, does not assume, and hereby disclaims, any and all liability for any loss or damage caused by errors or omissions, whether such errors or omissions resulted from negligence, accident, or other causes.
Topics: DHS Infrastructure Reports | No Comments »
Mozilla’s Firefox update fixes three critical holes: DHS Open Source Highlights May 16th
By Kelli Tarala | May 16, 2013
Mozilla released an update for its Firefox browser that fixes three vulnerabilities rated “critical” or “high severity.”
Full Story:
http://www.h-online.com/security/news/item/Mozilla-s-Firefox-update-fixes-three-critical-holes-1863449.html
Microsoft fixes 33 vulnerabilities
Microsoft’s latest Patch Tuesday release included critical fixes for several programs, including a fix for an Internet Explorer (IE) 8 zero-day flaw recently used in targeted attacks.
Full Story:
http://www.net-security.org/secworld.php?id=14908
Adobe patches ColdFusion, Flash, Reader vulnerabilities
Adobe released updates for its ColdFusion, Flash, and Reader programs, closing two vulnerabilities seen exploited in the wild as well as other vulnerabilities.
Full Story:
http://threatpost.com/adobe-patches-coldfusion-flash-reader-vulnerabilities/
Google Android malware levels rocket as spam threat grows
F-Secure released its Q1 2013 Threat Report, which found malware variants targeting mobile devices have risen by 49 per cent since 2012, among other findings.
Full Story:
http://www.v3.co.uk/v3-uk/news/2267736/google-android-malware-levels-rocket-as-spam-threats-grow
IC3 2012 Internet Crime Report released
The Internet Crime Complaint Center (IC3) released the 2012 Internet Crime Report, which reported an average of more than 24,000 complaints received per month and that unverified losses rose 8.3 per cent, among other findings.
Full Story:
http://www.ic3.gov/media/2013/130514.aspx
Mass email by Dent Neurologic breaches privacy of 10,200 patients
Dent Neurologic Institute (DNI) in Buffalo contacted 200 patients that accidentally received personal information of over 10,200 patients in an email attachment sent by an employee. DNI instructed patients to delete the email and assured the public that the information did not include Social Security numbers or birth dates.
Full Story:
http://www.buffalonews.com/apps
Hospital employee, accomplice plead guilty to using patient information for tax fraud
A former employee at Boca Raton Regional Hospital in Florida along with an accomplice plead guilty to filing more than 57 fraudulent tax returns requesting $306,720 in refunds by leveraging stolen patient information. The former employee gave patients’ personal information to the accomplice for the promise of future payments and the accomplice used the data to file fake online tax returns.
Presbyterian Anesthesia reports data breach affecting nearly 10,000
Presbyterian Anesthesia Associates in Charlotte notified 9,988 people of a data breach after their Web site was hacked and credit card information may have been retrieved. They assured the public that no medical information was compromised and are continuing to investigate.
Full Story:
http://www.charlotteobserver.com/2013/05/13/4039763/presbyterian-anesthesia-reports.html
Disclaimer: The above information largely has been reproduced from the DHS Open Source Daily Report, a full version of which can be found at http://www.dhs.gov/files/programs/editorial_0542.shtm. Enclave Security, LLC and its agents used their best efforts in collecting and preparing the information published herein. However, Enclave Security, LLC, does not assume, and hereby disclaims, any and all liability for any loss or damage caused by errors or omissions, whether such errors or omissions resulted from negligence, accident, or other causes.
Topics: DHS Infrastructure Reports | No Comments »
Malicious browser extensions are hijacking Facebook accounts: DHS Open Source Highlights May 15th
By Kelli Tarala | May 15, 2013
Microsoft warned that Facebook accounts are being hijacked via malicious extensions for the Firefox and Chrome Web browsers.
Full Story:
http://www.net-security.org/malware_news.php?id=2490
Alabama state government agency employee admits to identity theft
A former employee of the State of Alabama pleaded guilty to accessing a government database to obtain personal information, and then passed the information on to two accomplices for use in filing false tax returns.
Privacy breach on Bloomberg’s data terminals
Bloomberg confirmed that reporters at its Bloomberg News division had had access to certain user information from customers using the company’s financial data terminals service before a complaint prompted the access to be disabled.
Full Story:
http://www.nytimes.com/2013/05/11/business/media/privacy-breach-on-bloombergs-data-terminals.html
Tool reveals Apple user locations
A researcher developed a proof-of-concept Python application that can use data on WiFi networks shared with Apple by Apple devices to determine the location of users.
Full Story:
http://www.scmagazineuk.com/tool-reveals-apple-user-locations/article/293061/
Font apps on Google Play deliver spyware
Webroot identified two malicious Android apps on the Google Play app store that download spyware to users’ devices. Google removed the apps but they remain on their developer’s site.
Full Story:
http://www.net-security.org/malware_news.php?id=2488
Disclaimer: The above information largely has been reproduced from the DHS Open Source Daily Report, a full version of which can be found at http://www.dhs.gov/files/programs/editorial_0542.shtm. Enclave Security, LLC and its agents used their best efforts in collecting and preparing the information published herein. However, Enclave Security, LLC, does not assume, and hereby disclaims, any and all liability for any loss or damage caused by errors or omissions, whether such errors or omissions resulted from negligence, accident, or other causes.
Topics: DHS Infrastructure Reports | No Comments »
NIST reworks federal Cybersecurity standards: DHS Open Source Cyber Highlights May 13th
By Kelli Tarala | May 13, 2013
The National Institute of Standards and Technology (NIST) released an updated version of its Security and Privacy Controls for Federal Information Systems and Organizations, the first major update since 2005.
8 New Yorkers indicted as part of $45 million cyberheist of prepaid debit cards
Eight individuals were indicted in New York City for their alleged role in a cybercrime campaign that stole $45 million by hacking a MasterCard credit card processor, manipulating pre-paid debit cards issued by banks in the Middle East, and then withdrawing the money from ATMs.
Full Story:
http://www.darkreading.com/attacks-breaches/8-new-yorkers-indicted-as-part-of-45-mil/240154595
Washington State system hacked, data of thousands at risk
Washington State officials notified the public of a February breach of the State’s court system Web site and disclosed that up to 160,000 Social Security numbers and a million driver’s license number may have been accessed. The vulnerability, found in a back door part of a commercial software product, was patched and authorities notified 94 individuals whose Social Security numbers were hacked.
Full Story:
http://www.reuters.com/article/2013/05/09/us-usa-hack-washingtonstate-idUSBRE9480YY20130509
Higher education and research community warned about DDOS attack
The Research and Education Networking Information Sharing and Analysis Center warned higher education communities to ensure their open domain naming system (DNS) configurations prevent hackers from abusing them for distributed denial-of-service (DDoS) attacks, warning that these types of attacks have grown within the past year.
Winnti backdoor created with Aheadlib to mimic legitimate system library
Researchers at Trend Micro found a new Winnti malware family backdoor dubbed “Bkdr_Tengo.A” which was built with Aheadlib in an attempt to make the malware appear to be a legitimate system library.
Hijacking Facebook accounts via expired Hotmail accounts
Researchers at Rutgers University found that Facebook accounts can be hijacked by requesting automatically retired Hotmail email accounts to be assigned to a new user, and then using Facebook’s password reset function.
Full Story:
http://www.net-security.org/secworld.php?id=14892
Disclaimer: The above information largely has been reproduced from the DHS Open Source Daily Report, a full version of which can be found at http://www.dhs.gov/files/programs/editorial_0542.shtm. Enclave Security, LLC and its agents used their best efforts in collecting and preparing the information published herein. However, Enclave Security, LLC, does not assume, and hereby disclaims, any and all liability for any loss or damage caused by errors or omissions, whether such errors or omissions resulted from negligence, accident, or other causes.
Topics: DHS Infrastructure Reports | No Comments »
OpUSA: Fake leaks, small website defacements: DHS Open Source Highlights May 9th
By Kelli Tarala | May 9, 2013
The “OpUSA” campaign of attacks against U.S. Web sites organized by various groups claiming the Anonymous label appears to have caused only minor damage or disruption, according to researchers.
Former Florida state corrections officer pleads guilty to identity theft
An officer of the South Florida Reception Center pleaded guilty to charges after he attempted to sell the personal information of about 805 inmates in order to file fraudulent tax returns to an FBI source in exchange for $9,600.
Stealthy Web server malware spreads further
The Linux/Cdorked malware found infecting Apache Web servers continues to spread via an unknown means, with new versions found that are engineered for widely-used Lighttpd and NGINX servers.
Full Story:
http://www.computerworld.com/s/article/9239003/
Old IE attack finds its way into Cool Exploit Kit
Microsoft reported that the Cool Exploit Kit has been updated to include an Internet Explorer (IE) vulnerability that was patched in June 2012, as well as Adobe Reader and Flash vulnerabilities.
Full Story:
http://threatpost.com/old-ie-attack-finds-its-way-into-cool-exploit-kit/
NGINX patches major security flaw
The developers of NGINX released updated stable and development versions, closing a major security vulnerability that can allow arbitrary code execution.
Full Story:
http://www.h-online.com/security/news/item/NGINX-patches-major-security-flaw-1858438.html
Hackers gain access to all .edu domains
The Hack the Planet (HTP) hacker group disclosed vulnerabilities in the MoinMoin wiki system and Adobe Cold Fusion that the group used in past attacks against Linode and the Massachusetts Institute of Technology.
Full Story:
http://www.h-online.com/security/news/item/Hackers-gain-access-to-all-edu-domains-1858471.html
Disclaimer: The above information largely has been reproduced from the DHS Open Source Daily Report, a full version of which can be found at http://www.dhs.gov/files/programs/editorial_0542.shtm. Enclave Security, LLC and its agents used their best efforts in collecting and preparing the information published herein. However, Enclave Security, LLC, does not assume, and hereby disclaims, any and all liability for any loss or damage caused by errors or omissions, whether such errors or omissions resulted from negligence, accident, or other causes.
Topics: DHS Infrastructure Reports | No Comments »
« Previous Entries