|
|
|
|
|
Anonymous hacks BART, creating even more innocent victims
by Chester Wisniewski
Anonymous continued their crusade against governments and organizations this weekend, attacking the myBART.org website belonging to San Francisco's BART (Bay Area Rapid Transit) system.
They performed a SQL injection (SQLi) attack against the site and were able to extract more than 2,000 records containing names, usernames, passwords (plain text), emails, phone numbers, addresses and zip codes.
They also defaced the website with Guy Fawkes masks, which BART has yet to remove more than four hours later.
 Read More...
|
|
|
Spam Campaign Piggybacks on RSA Breach
by AppRiver
According to researchers from AppRiver the security company, they have spotted one fresh spam campaign which's trying to take advantage of the RSA Security's data hack into more than 40m SecureID Tokens that occurred during March 2011.
The fraudulent electronic mails pretend to be notices from RSA telling clients (e-mail recipients) that a dangerous security flaw has been found within one particular kind of the company's tokens. Thus they should click on a given web-link for verifying the safety of their own tokens, the e-mails continue.
Furthermore they state that in case any client's token is described unsafe then he is urged to take down and deploy a security update provided within another web-link.
Read More...
|
|
|
Out-of-date browser plug-ins are attractive targets for cybercriminals
by Zscaler
Out-of-date browser plug-ins are prime targets for cyberattacks against enterprise browsers, according to Zscaler’s State of the Web report for the second quarter of 2011.
For example, Adobe Reader is installed in 83% of enterprise browsers, and 56% of those installations are out of date, according to the report, which is based on a review of enterprise web traffic flowing through Zscaler’s cloud-based web and email security product.
“That is a huge attack surface….This is really what the attackers are going after”, commented Michael Sutton, vice president of research at Zscaler ThreatLabZ.
The Blackhole exploit kit has picked up on this and includes a variety of payloads designed to target recent Adobe Reader vulnerabilities, the report noted.
Read More...
|
|
Oslo Bombing Facebook Scams Infecting 1 User Every Second
Websense Security Labs has found an alarming number of Facebook scams taking advantage of the recent tragedy in Oslo, Norway. Right now it seems to be infecting one user every second. The scam is a form of ‘clickjacking’ that replicates itself on users’ walls after they click on fake posts within their news feed.
Read more.
|
|
|
CSO on the Road: Pentagon: Cyberspace is the New U.S. War Domain
I’ve been on the road quite a bit and have collected a lot of good information that I want to share with you all. Most of what’s been attracting my attention is the recent crop of targeted attacks. For every one you hear about in the news, another 50 occur behind the scenes. I’ve spent a lot of time working with CIOs and CISOs to help them develop a strategy to protect against these threats.
Read more.
|
|
|
|
| Unlocked Industry Commentary |
Protect Location Information For Your iPhone/iPad Backups
Avoid the Risk with Safety First!
by Security Monkey
Recently, the Internets were all up in a panic over some research that was done by these guys on their discovery that Apple has, in fact, been recording location information for a long time (since 4.x days) on 3G-enabled devices - and to make matters worse, that information is contained within the backup made of your device by iTunes.
Read More...
|
|
|
New to Security? Get on Twitter
by Martin McKeay
It’s not uncommon for me to get questions from aspiring security professionals asking, “What should I be doing to break into security? How can I learn more about security?” More and more, my answer to that is becoming simpler: Get on Twitter, the “digital water cooler” for a huge number of security professionals. You'll find me @mckeay (unsurprisingly enough.)
Read More...
|
|
|
|
|  |
|
|
 |
 |
We Guard Your Assets!
SpartanTec, Inc. provides IT security solutions across all industries, including Educational, State Government and Commercial organizations.
Choose SpartanTec, Inc. as your IT security provider. We'll help you manage the complexity of security. We'll help you to Reduce your IT costs and guide you to achieve compliance.
We welcome your inquires, contact us via:
Have a question?
Visit SpartanTec.com and chat with us.
|
|
|
| |
New Sophos Small Business Solutions - SBE 4.0Antivirus, Spyware, Competitive Removal, Encryption, Client Firewall and Management Console
|
Buy 3 years for the price of 2
more»
|
|
|
7 Tips for Securing Mobile Workers
This provides practical guidance for dealing with one of the fastest growing threats to protecting your organization’s network, data and reputation. The increasing sophistication and convenience of mobile devices such as laptops, Androids, and iPads, pose new risks as these devices rapidly integrate into the workplace. Learn how you can reduce risk to keep your business data safe.
more»
|
| |
|
|
