According to the researcher who helped take down Mariposa, the operators who purchased the bot software from the man known as "Iserdo" and then built Mariposa, for some reason didn't opt for the feature, which he offered for 200 euros, even though it would have increased their potential profits. Read the full article. [Dark Reading]

Shorten URL: . Click to copy to clipboard or post to Twitter

Starting tomorrow, a little-known group of security researchers will kick off a month of bug disclosures that target unpatched vulnerabilities in software from Adobe, Microsoft, Mozilla, Apple and others. Read the full article. [Computerworld]

Shorten URL: . Click to copy to clipboard or post to Twitter

Compromised Twitter accounts have been used to post links to an exploit portal that poses as a download site for an update to TweetDeck, the popular micro-blogging client software package. Read the full article. [The Register]

Shorten URL: . Click to copy to clipboard or post to Twitter

Alureon rootkit is back, and has acquired the ability to hijack computers running 64-bit versions of Microsoft Windows, proclaimed security researcher Marco Giuliani. Read the full article. [Help Net Security]

Shorten URL: . Click to copy to clipboard or post to Twitter

Organized cyber thieves stole more than $600,000 from the Catholic Diocese of Des Moines, Iowa earlier this month with the help of dozens of unwitting co-conspirators hired through work-at-home job scams, at least one of whom was told the money was being distributed to victims of the Catholic Church sex abuse scandals. Read the full article. [KrebsonSecurity]

Shorten URL: . Click to copy to clipboard or post to Twitter

The former head of the Department of Homeland Security's Cyber Security Division warns that the U.S. military's preoccupation with secrecy could hamper efforts to get the upper hand in cyber security.  

Shorten URL: . Click to copy to clipboard or post to Twitter

The heyday of faxing may have passed twenty years ago, but scam artists haven't given up on the old technology, especially when it comes to wheedling personally identifiable information out of unsuspecting office workers. Now a leading anti-phishing group is tackling the problem of fax based phishing scams.

Shorten URL: . Click to copy to clipboard or post to Twitter

By Stefan Tanase

The growing popularity of  location-based services in the social networking world is a serious security and privacy risk that must be taken seriously.

Shorten URL: . Click to copy to clipboard or post to Twitter

Adobe has shipped a Shockwave Player update to fix 20 security holes, some serious enough to lead to system takeover attacks.

The vulnerabilities, rated “critical,” affect Shockwave Player 11.5.7.609 and earlier versions for Windows and Macintosh.

Shorten URL: . Click to copy to clipboard or post to Twitter

The UK operation of Zurich Insurance has been fined £2.27m by the Financial Services Authority (FSA) for losing personal details of 46,000 customers. It is the highest fine levied on a single firm for data security failings. Read the full article. [BBC News]

Shorten URL: . Click to copy to clipboard or post to Twitter