Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Information Security News - SANS Internet Storm Center Information Security News

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Popular News

13 hours ago There's a new way to take down drones, and it doesn't involve shotguns

ArsTechnica View Synopsis+1
Not a jammer, device lets hackers fly drones and lock out original pilot.

4 hours ago Schneider Electric plugs gaping hole in industrial control kit

The Register View Synopsis+1
Provider Schneider would've had hackers inside 'er

A vulnerability in Schneider Electric's industrial controller management software created a possible mechanism for hackers to plant malicious code on industrial networks.

8 hours ago Good luck securing 'things' when users assume 'stuff just works'

The Register View Synopsis+1
Making devices secure by design requires more effort than vendors currently allow

At the end of April my home was broken into by a professional who silently and systematically looted my residence of all my portable wealth while I slept.

7 hours ago PayPal patches bone-headed two factor authentication bypass

The Register View Synopsis+1
No phone? No worries

Paypal has patched a boneheaded two factor authentication breach that allowed attackers to switch off the critical account control in minutes by changing a zero to a one.

7 hours ago How Google's Project Zero made Apple refactor its kernel

The Register View Synopsis+1
MacOS, iOS task threading was open to hijack

When Apple shipped its security bug-fixes earlier this week, one patch mostly passed under the radar.

Top News

1 hour ago Meth Smokers Drove To NSA HQ With Guns, Drugs And A Grenade, Government Claims

Forbes View Synopsis+1
Meth users rock up to Fort Meade with drugs, a shotgun, a revolver and a grenade, according to a court filing.

8 hours ago Network maker Nokia outperforms Ericsson in third quarter

Yahoo Security View Synopsis+1

Nokia on Thursday reported falling quarterly sales and profits for its network gear business, but outperformed rival Ericsson in a weak market thanks to cost cuts after its recent acquisition of Alcatel-Lucent. Finland's Nokia said total third-quarter operating profit decreased 18 percent from a year ago to 556 million euros ($606 million), but was buoyed by a one-off patent licensing payment. Group sales dropped 7 percent from a year ago to 5.95 billion euros, including network equipment sales falling 12 percent to 5.32 billion, which compared with a market consensus of 5.39 billion.

6 hours ago Cisco Patches 9 Flaws in Email Security Appliance

SecurityWeek View Synopsis+1

Cisco announced on Wednesday that it has released software updates for its Email Security Appliances (ESA) to address a total of nine vulnerabilities, including denial-of-service (DoS) and filter bypass issues.

3 hours ago 10 programs to help you break into a cybersecurity career

TechRepublic View Synopsis+1
Eighty-two percent of IT professionals report a shortage of cybersecurity skills at their company. Here are 10 programs spanning all education levels to help you get your start in the field.

3 hours ago How to take down irritating drones without shooting them out of the sky

ZDNet View Synopsis+1
A researcher has demonstrated a way for attackers to hijack drones in the air without damaging them.

59 minutes ago Botnet Army of 'Up to 100,000 IoT Devices' Disrupted Dyn

InfoRiskToday View Synopsis+1
Mirai Malware Drove Record-Breaking DDoS AttackThe malware-infected IoT army that disrupted domain name server provider Dyn was composed of, at most, 100,000 devices, the company estimates in an after-action report. But claims that the attacks peaked at 1.2 Tbps remain unconfirmed.

1 day ago Fixing the IOT Problem

SANS Newsbites View Synopsis+1

Consumers are being blamed for not changing passwords and thereby causing last week's massive DDoS attacks.......

1 day ago Keys to Effective Anomaly Detection

SANS Reading Room View Synopsis+1
Simply put, an anomaly is something that seems abnormal or doesn

Latest News

1 hour ago Rotary Aircraft: The Problem With Making Bigger Better

Forbes View Synopsis+1
This article was originally published at Editor's Note:TheGlobalAffairscolumn is curated by Stratfor's board of contributors, a diverse group of thinkers whose expertiseinspires rigorous and innovative thought.Theiropinions are their ownand serve to complement and evenchallenge our beliefs. We welcome that challenge, and we hope our readers do too. By Luc de Keyser "Bigger [...]

14 minutes ago Japan Targeted in "Blackgear" Espionage Campaign

SecurityWeek View Synopsis+1

The threat actor behind a cyber espionage campaign that has been known to target users in Taiwan has recently set sights on Japan, according to researchers at Trend Micro.

1 hour ago U.S. Card Fraud Losses Could Exceed $12B By 2020

Forbes View Synopsis+1
Fraud losses incurred by banks andmerchants on all credit, debit, and pre-paid general purpose and private label payment cards issued globally hit $21.84 billion (bn) in 2015, with the United States (US) accounting for almost two-fifths (38.7%) of the total at $8.45bn. But by 2020 it could surpass $12bn, were [...]

1 hour ago Office 2013 Gets Macro-Blocking Feature

SecurityWeek View Synopsis+1

Microsoft this week announced boosted customer security with a new feature in Office 2013: the ability to block risky macros.

1 hour ago "‹Microsoft Office malware: Now more users get anti-hacker, macro-blocking features

ZDNet View Synopsis+1
Office 2013 can now also put a stop to users opening documents containing nasty VBA macros.

3 hours ago Users in Middle East Targeted in "Moonlight" Espionage Campaign

SecurityWeek View Synopsis+1

A threat group believed to be located in Palestine has been targeting users in Palestine and other Middle Eastern countries in a series of unsophisticated attacks whose main goal appears to be espionage.

3 hours ago Former NSA exec: We misjudged potential of insider threats like Snowden

ZDNet View Synopsis+1
Chris Inglis, former deputy director of the NSA, warns that connected systems mean malicious insiders can now do damage more quickly and more easily than ever.

5 hours ago Nokia in Q3 loss, sales drop amid networks downturn

Yahoo Security View Synopsis+1
Mobile networks operator Nokia continued to be hit by a downturn in the industry, reporting a loss in the third quarter and a 12-percent drop in sales that saw the company's share price plunge 7 percent. ...

8 hours ago Hacker's Icarus machine steals drones midflight

The Register View Synopsis+1
Popular RC protocol pwned

PacSec Security researcher Jonathan Andersson has developed a tidy hardware module capable of fully hijacking a variety of popular drones and remote control gear running over the most popular protocol.

10 hours ago Internet of S**t things claims another scalp: DNS DDoS smashes StarHub

The Register View Synopsis+1
'Don't buy rubbish Webcams', carrier tells customers

StarHub in Singapore is the latest large network to get hammered with attacks on its DNS infrastructure - apparently by compromised kit owned by its customers.