Dear etechnews today,
Your weekly security newsletter from theregister.co.uk
for the week ending 21st April 2014
Advertisement
CISSP Live OnLine Training
Get the Official (ISC)2 instructor-led training from the convenience of your computer. Course available from July 15 to September 4 and includes Exam voucher, classroom manual and (ISC)2 study guide.
Click here http://reg.cx/2ajj
*** Security News ***
Reddit users discover iOS malware threat
'Unflod Baby Panda' looks to snatch Apple IDs
http://www.theregister.co.uk/2014/04/18/reddit_users_discover_ios_malware_threat/
Netcraft adds Heartbleed sniffing to site-scanning browser tool
Checks if sites were vulnerable and what they've done about it
http://www.theregister.co.uk/2014/04/18/netcraft_heartbleed_browser_extension/
Arts and crafts store Michaels says 3 million credit cards exposed in
breach
Meanwhile, Target investigators prepare for long process in nabbing
hackers
http://www.theregister.co.uk/2014/04/18/arts_and_crafts_store_michaels_says_3_million_credit_cards_exposed_in_breach/
Putin tells Snowden: Russia conducts no US-style mass surveillance
Gov't is too broke for that, Russian prez says
http://www.theregister.co.uk/2014/04/17/putin_russia_has_no_mass_surveillance/
OpenSSL Heartbleed bug sniff tools are 'BUGGY' – what becomes of the
broken hearted?
Hayter's gonna hate
http://www.theregister.co.uk/2014/04/17/heartbleed_detection_glitches/
Heartbleed mega-bug clean up shrinks Tor network by an eighth
And that's before they look at all the nodes and what version of
OpenSSL they're running
http://www.theregister.co.uk/2014/04/17/heartbleed_shrinks_tor_by_an_eighth/
Mounties always get their man: Heartbleed 'hacker', 19, CUFFED
Canadian teen accused of raiding tax computers using OpenSSL bug
http://www.theregister.co.uk/2014/04/16/mounties_get_their_man_canadian_heartbleed_hacker_nabbed/
Burnt out on patches this month? Oracle's got 104 MORE fixes for you
Mass patch for issues across its software catalog
http://www.theregister.co.uk/2014/04/16/burnt_out_on_deploying_patches_this_month_oracles_got_104_more_fixes_for_you/
French hard-drive maker LaCie cops to YEAR LONG card data leak
And it didn't find out until the FBI broke the news
http://www.theregister.co.uk/2014/04/16/lacie_breach/
OpenSSL bug hunt: Find NEXT Heartbleed, earn $$$ – if enough people
donate cash
Quarter of a million dollars could be up for grabs
http://www.theregister.co.uk/2014/04/16/open_ssl_crowdfunding/
Hackers attempt to BLACKMAIL plastic surgeons
Nip, tuck and pwn
http://www.theregister.co.uk/2014/04/16/hackers_attempted_extortion_plastic_surgeons/
Lost your credit card PIN? No worries! Get a new one - over SMS
Mobe firm gets PCI DSS green light for text-crypto service
http://www.theregister.co.uk/2014/04/16/ssms_safer_than_ssl/
Snowden-inspired crypto-email service Lavaboom launches
German service pays tribute to Lavabit
http://www.theregister.co.uk/2014/04/16/lavaboom_lavabit_secure_email_anti_nsa/
Samsung Galaxy S5 fingerprint scanner hacked in just 4 DAYS
Sammy's newbie cooked slower than iPhone, also costs more to build
http://www.theregister.co.uk/2014/04/16/samsung_s5_fingerprint_hacked/
Eugene Kaspersky: Ukraine conflict hurts enterprise security
With governments occupied, criminals could capitalize
http://www.theregister.co.uk/2014/04/16/kaspersky_ukraine_conflict_hurts_enterprise_security/
Oracle working on at least 13 Heartbleed fixes
Big Red's cloud is safe and Oracle Linux 6 has been patched, but Java
has some issues
http://www.theregister.co.uk/2014/04/16/oracle_working_on_at_least_13_heartbleed_fixes/
Kaspersky's Security for Virtualization pushed to XenServer and HyperV
Platform looks to slim down security protections in virtual instances
http://www.theregister.co.uk/2014/04/15/kaspersky_pushes_security_for_virtualization_to_xenserver_and_hyperv/
Tom Ridge: Private sector lagging in cybersecurity
Former US Homeland Security boss scorns enterprise security efforts
http://www.theregister.co.uk/2014/04/15/tom_ridge_private_sector_lagging_in_cybersecurity/
Akamai scoffs humble pie: Heartbleed defence crumbles, new SSL keys for
customers
We got this covered ... er, maybe not
http://www.theregister.co.uk/2014/04/15/hearbleed_triage_snafus/
Parent gabfest Mumsnet hit by SSL bug: My heart bleeds, grins hacker
Natter-board tells middle-class Britain to purée its passwords
http://www.theregister.co.uk/2014/04/15/mumsnet_heartbleed_hit/
TrueCrypt audit: Probe's nearly all the way in ... no backdoor hit yet
Crypto tool clears code review hurdle
http://www.theregister.co.uk/2014/04/15/truecrypt_audit/
German space centre endures cyber attack
Chinese code retrieved but NSA hack not ruled out
http://www.theregister.co.uk/2014/04/15/dlr_attacked_china_apt_trojans/
Pakistan mulls cyber security bill to keep NSA at bay
Calls for founding of National Cyber Security Council
http://www.theregister.co.uk/2014/04/15/pakistan_pta_senate_anti_nsa_bill/
VMware reveals 27-patch Heartbleed fix plan
Go buy your vSysadmins a big choccy egg: their Easter is in peril
http://www.theregister.co.uk/2014/04/15/vmware_reveals_27patch_heartbleed_fix_plan/
Feds indict nine for making millions from Zeus malware
But cops only have two of them in custody
http://www.theregister.co.uk/2014/04/14/feds_indict_nine_in_nebraska_for_making_millions_from_zeus_malware/
Canadian taxman says hundreds pierced by Heartbleed SSL skewer
900 social insurance numbers nicked, says revenue watchman
http://www.theregister.co.uk/2014/04/14/heartbleed_draws_blood_at_canadian_revenue/
Bad PUPPY: Undead Windows XP deposits fresh scamware on lawn
Installing random interwebs shiz will bork your zombie box
http://www.theregister.co.uk/2014/04/14/microsoft_windows_xp_eol_adware/
Oz bank in comedy Heartbleed blog FAIL
Bank: 'We are now safely patched.' Customers: 'You were using OpenSSL?'
http://www.theregister.co.uk/2014/04/14/australian_bank_in_huge_heartbleed_blog_fail/
*** Whitepaper ***
Mainstay ROI - Does application security pay?
In this whitepaper learn how you and your enterprise might benefit from better software security.
http://whitepapers.theregister.co.uk/d/ca9/9e7f3/718/eb9d211e?td=week_sec_e
------------------------------------------------------------------------
This email was sent to garn14.tech@blogger.com
To change your email or your email subscriptions
http://account.theregister.co.uk/login/
To unsubscribe from all The Register newsletters
http://account.theregister.co.uk/unsubscribe/649203/acc978a1
The Register and its contents are Copyright © 2014 Situation Publishing.
All rights reserved.
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.