How the SEA Compromised America’s Finest News Source
The satirical Onion news website wrote a legitimate post-mortem describing how it was compromised by the Syrian Electronic Army.
Brian Donohue
About
“We are what we pretend to be, so we must be careful about what we pretend to be.” ― Kurt Vonnegut
Syria Drops Offline, Comes Back the Next Day
Sometime around 2:45 PM Eastern Standard Time yesterday, Syria’s border gateway protocols (BGP) were severed and the country disappeared from the Internet. Just as quickly as it had fallen, Syria came back online this morning.
Researchers Hack Google Office’s Building Management System
Researchers at Cylance released details of a custom exploit designed to defeat a vulnerability in a Tridium Niagara Framework device installed at Google’s Sydney, Australia campus.
For at least the third year in a row, the number of serious vulnerabilities per website has fallen. That sounds like good news until you look at the numbers and realize that the average website carried an astonishing 56 holes in 2012, according to statistics compiled by WhiteHat Security and based upon data gathered from tens of thousands of websites.
On Friday, Jay Freeman announced on Twitter that he exploited a known vulnerability and subsequently achieved root access to his developer-model of Google Glass – Google’s highly anticipated, wearable, head-mounted computer.
A little-known policy through which the Departments of Justice, Defense, and Homeland Security offered prosecutorial immunity to companies that helped the U.S. military monitor Internet traffic on the private networks of defense contractors has reportedly been expanded by Executive Order to include a score of other “critical infrastructure” industries, according to information obtained as part […]
Twitter is facing increased pressure to beef up authentication for users after the hijacking of another high-profile account yesterday caused some temporary tremors on the stock market. The social network has reportedly been testing two-factor authentication internally; Twitter lags behind Google, Facebook, Microsoft and Apple in implementing a two-factor authentication system. Wired claimed in a […]
In an attempt to better evade detection, cybercriminals are increasingly configuring their command and control infrastructure in such a way that initial malware callbacks communicate with a server located in the same country as the newly infected machines.
If you’ve ever sat in on a cybersecurity hearing on Capitol Hill or attended a security conference , then you’re no doubt familiar with the oft-preached need for information sharing and private-public partnerships. So frequently repeated are these refrains that they’re almost as meaningless as the acronym “APT.”
FireEye experts have been tracking the Operation Beebus campaign for a few months now, and their latest research suggests that whomever is responsible for the attacks is ultimately interested in stealing drone technology-related secrets. Operation Beebus is an APT-style attack campaign targeting government agencies in the United States and India as well as numerous aerospace, […]
