Are You A Level 2 Merchant? « PCI Guru
It is that time of the year again. I have had calls from a number of Level 2 merchants in a panic about the upcoming MasterCard deadline. I also have a number of perspective clients that are saying, “Deadline? What deadline?”
U.S. infrastructure vulnerable to attack
If it is left to the politicians, the door to the nation's utilities might be left open. Almost telling terrorists, like in those motel commercials, "We'll leave the light on for you." The ironic part is that a terrorist attack on the nation's infrastructure would mean those lights would go out, along with other catastrophic possibilities. A cybersecurity bill has been largely declawed by Congress, leaving a watered-downed version barely alive. A recent survey showed that security experts have little faith that government regulation will be the answer.
Identity Theft Taken to the Next Level « Barnard Vogler & Co.
Identity Theft Taken to the Next Level. 16/08/12 5:13 pm | Comments (0) | Posted By: David Schaper. I recently came across an article on yahoo news, which left me flabbergasted. It explained that one home in Florida was the recipient of more … See on bvcocpas.com
Crisis malware infects VMware virtual machines, researchers say
The Windows version of Crisis, a piece of malware discovered in July, is capable of infecting VMware virtual machine images, Windows Mobile devices and removable USB drives, according to researchers from antivirus vendor Symantec. Crisis is a computer Trojan program that targets Mac OS and Windows users. The malware was discovered by antivirus vendor Intego on July 24 and can record Skype conversations, capture traffic from instant messaging programs like Adium and Microsoft Messenger for Mac and track websites visited in Firefox or Safari. Crisis is distributed via social engineering attacks that trick users into running a malicious Java applet. The applet identifies the user's OS -- Windows or Mac OS X -- and executes the corresponding installer. Security researchers from antivirus vendor Kaspersky Lab, whose products detect the Crisis malware as Morcut, have confirmed the existence of this functionality in the Trojan program.
Barclaycard Business
Setting the standard for security To date, criminals have stolen millions of customer card records, leaving the industry facing the increasing threat of data theft. That's why card payment companies joined forces to create the Payment Card Industry Data Security Standard (PCI DSS) with the aim of safeguarding sensitive card data. By implementing the standards, businesses are protected against: Why your business needs to comply
Korea's Hyosung accuses manufacturer of tech theft
Korean industrial group Hyosung has accused the country's largest power-transmission components manufacturer, LSIS, of stealing its technology. According to a report Tuesday by The Korea Times, Hyosung is demanding compensation from LSIS, claiming the latter stole technology related to power transmission and control, costing it "several billions of dollars". The Seoul Metropolitan Police also are questioning four former Hyosung executives who moved to LSIS on suspicions they leaked trade secrets related to high-voltage, direct-current (HVDC) transmission technology to their new employer. Hyosung executives told the Korean news site a former Hyosung executive, identified as Lee, had downloaded documents on HVDC technology from the company's servers to his extended hard disk drive without permission and was suspected of providing the files to LSIS.
Another Social Engineering Attack – Mark Collier’s VoIP/UC Security Blog
It must be in the water. Here is a link to another social engineering attack. In this case, attackers gathered some basic personal information and used to get to access to Apple icloud/iTunes accounts. See on voipsecurityblog.typepad.com
Security experts scoff at Mars rover hack threat
The word has been out for more than a week now that the hacktivist group Anonymous is looking to break into the communication system between NASA and the Mars rover, Curiosity. The New York security firm Flashpoint Partners reported that it found a message on an Internet Relay Chat (IRC) by a user called "MarsCuriosity," asking for help to hack into the signals NASA uses to communicate with the rover. But within the security community, the rumor has been greeted mostly with yawns, shrugs or a few scornful chuckles. No panic buttons are being pressed. It is being viewed either as a "weak" attempt at trolling, or an effort by law enforcement to lure hackers to fall for a sting. Mikko Hypponen, chief research officer at F-Secure, posted a tweet late last week saying, "The Daily Mail has an article about Anonymous planning to hack the Mars rover.
