HTTB Afternoon Ed. Direct Distributions (V1)
Get flash to fully experience Pearltrees
The Justice Department has decided not to ask the Supreme Court to review a controversial federal appeals court decision that said employees may not be prosecuted under a federal anti-hacking statute for simply violating their employer’s computer use policy.
DOJ Won't Ask Supreme Court to Review Hacking Case | Threat Level
"Search Diggity" Project Brings Informative and Creative Hacking Tools
Project leverages popular search engines to identify vulnerable systems and sensitive data in corporate networks.
Cyberattack on Lebanese Banks —Are Iran, Syria Finances the Target?
Many Lebanese were surprised to Learn yesterday that a sophisticated, state-sponsored piece of malware has been relentlessly spying on Lebanese bank accounts for many months. The virus, dubbed "Gauss" by Kaspersky Lab, the security firm that discovered it, is a very advanced piece of software that has been monitoring Lebanese bank accounts since September of last year.
Five Must-Have Skills for IT Departments
Kerry Doyle, MA, ZDNet/CNet.com Associate Editor Today, users are more technologically savvy than ever.
The Reveton ransomware, used in conjunction with the Citidel malware , is considered drive-by because it can infect the computer simply by the victim visiting a compromised website – no opening of files or attachments required, according to an FBI advisory .
FBI warns about Reveton ransomware scam
Anatomy of an Attack
Today, the sophisticated attacks on the internet target a combination of vulnerabilities.
As more patient records go digital, a recent hacker attack on a small medical practice shows the big risks involved with electronic files. The Surgeons of Lake County, a medical facility in the northern Illinois suburb of Libertyville, revealed last month that hackers had burrowed deeply into its computer network, infiltrating a server where e-mails and electronic medical records were stored, Bloomberg.com reported on its Tech Blog. Unlike many other data breaches, the hackers made no attempt to keep their presence a secret.
Hackers Encrypt Health Records and Hold Data for Ransom
Cat Out of Bag on Infosec Regulation?
President's Counterterrorism Adviser Defines Who's at Risk Who knows how best to safeguard the nation's critical IT infrastructure: the federal government, the mostly private owners of those vital systems or both? The Obama administration and its supporters on Capitol Hill would say both, and the Cybersecurity Act of 2012 would have established a framework to have the government and private sector collaborate to create security standards to safeguard the infrastructure.
|DarkReading
Vulnerability: ssl-vpn end-point interrogator/installer activex control Published: 2010-11-03 Severity: High Description: Stack-based buffer overflow in SonicWALL SSL-VPN End-Point Interrogator/Installer ActiveX control (Aventail.EPInstaller) before 10.5.2 and 10.0.5 hotfix 3 allows remote attackers to execute arbitrary code via long (1) CabURL and (2) Location arguments to the Install3rdPartyComponent method.
Scaling the Twin Peaks of Identity and Access Management
Identity and access management (IAM) systems present three gnarly challenges to the enterprise.
Yesterday it was a dark day for many companies in Europe, but especially in the Netherlands. A piece of malware known as Worm.Win32.Dorifel infected over 3000 machines globally, and 90% of infected users were both from public and business sector organizations based in the Netherlands. We have seen government departments and hospitals being victims.