About
"Distrust and caution are the parents of security" - Benjamin Franklin
A new iteration of the Ice IX malware has been spotted attacking Facebook users, according to researchers at Trusteer, who claim that now the malware is trying to swindle unsuspecting users out of sensitive information like credit card numbers and addresses.
Microsoft is looking into a potential security issue affecting its Xbox 360 video game console this week after a group of college students claimed they were able to extract the credit card information of a console’s previous owner from the machine.
Over 10 million people were hit by exploits served up by 25,000 of the most popular websites in the world in February, according to a new study released by Barracuda Labs.Using an internal tool, Barracuda analyzed Alexa’s list of the most popular websites to determine whether each URL was serving malicious content and doling out exploits to a browser or its extensions. Studies showed that on average, through the month, at least two of the top 25,000 sites served malicious content each day.
The topic of this program is often how to prevent security issues and attacks, but the reality is that company’s need to understand attacks and how to respond to attacks after they happen. In this episode, Alex Horan of Core Security and Ted Julian of Co3 join Threatpost Editor Paul Roberts to discuss what happens after the breach.
Following previous announcements from Visa and Mastercard, electronic credit card processor Global Payments Inc. acknowledged late Friday that its system was breached earlier this year.Global Payments announced via press release that a portion of its processing system had been compromised in early March and that company credit card data “may have been accessed.”
When one Pennsylvanian man couldn’t foot his bills, he opted to steal the identity of someone that could – one of the world’s richest men, Microsoft co-founder and billionaire Paul Allen.
Adobe pushed out a security update for its Flash Player Wednesday, patching two critical holes and introducing a new silent update option. The update, Adobe Flash Player 11.2, addresses two memory corruption vulnerabilities in Windows, Mac, Linux and early Android builds that could lead to remote code execution according to a bulletin (APSB12-07).
The website of Skeptical Science, a blog that is critical of climate change skeptics, was hacked over the weekend, and users’ e-mails, passwords and IP addresses were taken, according to a post on the site Sunday.
Facing mounting privacy concerns, Apple has begun to reject mobile applications that require access to an iOS device’s unique device identifier number (UDID), according to a report from the Web site Techcrunch.
Spam volume is down, there are fewer unpatched software holes and oftware application developers did a better job of writing secure code over the last year. But IBM’s X-Force Trend and Risk Report still found plenty to worry about in 2011, according to a copy of the report released this week.
Infosec Insider content is written by a trusted community of Threatpost cybersecurity subject matter experts. Each contribution has a goal of bringing a unique voice to important cybersecurity topics. Content strives to be of the highest quality, objective and non-commercial.
Sponsored Content is paid for by an advertiser. Sponsored content is written and edited by members of our sponsor community. This content creates an opportunity for a sponsor to provide insight and commentary from their point-of-view directly to the Threatpost audience. The Threatpost editorial team does not participate in the writing or editing of Sponsored Content.
