Researchers at the Hackers To Hackers Conference in Brazil will detail a method of hijacking the TOR anonymity network, potentially putting its users at risk, while The Tor Project accuses one of the researchers of irresponsible disclosure.
It was an “Elvis Meets Nixon” kind of moment: former HBGary Federal CEO Aaron Barr sporting blue hair and posing in front of a van sporting the Wikileaks logo down at New York’s Zuccotti Park, home of the Occupy Wall Street protest. What was he doing there? It’s complicated.
The hackers who compromised systems belonging to the NASDAQ stock market last year were able to install monitoring software that allowed them to spy on the doings of corporate directors, Reuters is reporting.
Department of Homeland Security (DHS) Secretary Janet Napolitano appointed Mark Weatherford today as the National Protection and Programs Directorate’s (NPPD) new Deputy Under Secretary for Cybersecurity, according to a press release on the DHS’ site.
To hear many of the leading computer security experts, Tuesday, October 18 was “D-Day,” with the “D” standing for “Duqu,” a new piece of malware that virus experts were tripping over each other to call “Stuxnet 2.0.” “Stuxnet Clone ‘Duqu’ Possibly Preparing Power Plant Attacks” read a headline on the Website of Foxnews, summing up the air of hysteria surrounding the new malware. But less than a day later, questions are being raised about the purpose and threat posed by the new malware.
Virus researchers at Symantec Corp. have discovered a variant of the Stuxnet worm, dubbed Duqu, that is designed to steal information about industrial control systems. Symantec said the malware, which has turned up on more than one customers’ network, could be used to gather data for a future attack.
The Obama Administration reportedly debated kicking off its latest war-effort in Libya with a cyber-offensive targeting the Qaddafi regime’s air-defense infrastructure, according to a report from the New York Times.
Thomas Ryan, the independent security consultant who released a trove of e-mail communications from the Occupy Wall Street protesters, said he has been the target of numerous hacks and has received death threats after revealing information on the protestors plans to authorities.
A group of people affected by the TRICARE data breach in September has filed a class-action lawsuit against the Department of Defense, alleging that the department and its health care organization didn’t properly safeguard personal information that was stored on backup tapes stolen last month.
The Securities and Exchange Commission has issued new guidance to help public companies determine when they may need to disclose an attack–or even a potential attack–in order to make potential investors aware of possible risks to the company’s business. The guidance, which does not constitute a rule or requirement for companies to disclose, is meant to help “registrants in assessing what, if any, disclosures should be provided about cybersecurity matters.”
Infosec Insider content is written by a trusted community of Threatpost cybersecurity subject matter experts. Each contribution has a goal of bringing a unique voice to important cybersecurity topics. Content strives to be of the highest quality, objective and non-commercial.
Sponsored Content is paid for by an advertiser. Sponsored content is written and edited by members of our sponsor community. This content creates an opportunity for a sponsor to provide insight and commentary from their point-of-view directly to the Threatpost audience. The Threatpost editorial team does not participate in the writing or editing of Sponsored Content.
