Threat Level: green Handler on Duty: Xavier Mertens

SANS ISC: Information Security News - SANS Internet Storm Center Information Security News


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Popular News

9 hours ago Uber is watching your smartphone's battery charge

The Register View Synopsis+1
Browser vendors' Battery API deprecation can't come soon enough

Browser authors are abandoning the invasive Battery API W3C specification, but not everybody's got the memo: Uber, for example, still watches battery status.

5 hours ago Windows 10 Creators Update Brings New Security Capabilities

SecurityWeek View Synopsis+1

Microsoft Introduces New Enterprise Security Capabilities With Windows 10 Creators Update

Microsoft announced on Tuesday that the Windows 10 Creators Update, which it plans on releasing free of charge next spring, will include several new security capabilities designed to help IT teams protect their networks and devices.

3 hours ago Prison For Hacker Who Stole Scripts And Nudes From Celebs

Forbes View Synopsis+1
Alonzo Knowles took a keen interest in what celebrities and pro athletes were up to, but it went beyond following them on Twitter or Instagram. Knowles preferred to hack their email accounts and drop malware onto their computers.

1 day ago Thieves can guess your secret Visa card details in just seconds

ArsTechnica View Synopsis+1
Distributed guessing attacks are surprisingly effective.

1 day ago 1.4bn records from HaveIBeenPwned offered for your analytical pleasure

The Register View Synopsis+1
Troy Hunt's Christmas trove is a splendid gift for security and data nerds

Security researcher Troy Hunt had better hope his anonymisation works: he's decided to offer up most of his "HaveIBeenPwned" data set for other security researchers to analyse.

Top News

9 hours ago "‹WA Auditor General recommends inter-agency cooperation to counter malware

ZDNet View Synopsis+1
The state's Office of the Auditor General has made six recommendations to prevent the threat of malware after investigating six West Australian government agencies.

2 hours ago Trump is Time magazine's Person of the Year

Yahoo Security View Synopsis+1

WASHINGTON (AP) - Time magazine on Wednesday named President-elect Donald Trump its Person of the Year.

2 hours ago The smart city security nightmare: How cities can stay awake

TechRepublic View Synopsis+1
One of the elephants in the room at the 2016 Smart Cities Summit in Boston was cybersecurity. It threatens to derail the most optimistic plans for making cities more efficient and more responsive.

18 hours ago SANS 2016 Security Analytics Survey

SANS Reading Room View Synopsis+1
Analyst Papers, Analytics, Intelligence

Latest News

5 minutes ago Fighting Fraud with Behavioral Biometrics and Cognitive Fraud Detection

InfoRiskToday View Synopsis+1
As fraudsters continually refine their techniques to steal banking customers' credentials, IBM fights back with new tools that use behavioral biometrics and cognitive fraud detection. IBM's Brooke Satti Charles offers a preview.

32 minutes ago Nintendo Will Pay You Up To $20,000 To Hack The 3DS

Forbes View Synopsis+1
Nintendo has joined the long list of companies that are turning to independent researchers for help plugging security holes. They're looking for helping securing their 3DS portable console, and they'll pay up to $20,000 to anyone who finds a bug.

50 minutes ago Trump Is Time Magazine's Person of the Year

Yahoo Security View Synopsis+1

WASHINGTON (AP) - Time magazine on Wednesday named Donald Trump its Person of the Year, bestowing what the president-elect called an "honor" even as he derided the idea that he'll lead "the Divided States of America."

1 hour ago Researchers Devise New Dirty COW Attack Against Android

SecurityWeek View Synopsis+1

A newly discovered attack that abuses the Dirty COW vulnerability in the Linux kernel can be leveraged to write malicious code directly into processes, Trend Micro security researchers say.

1 hour ago Hackers Can Exploit Roundcube Flaw by Sending an Email

SecurityWeek View Synopsis+1

Researchers discovered that the open source webmail software Roundcube is affected by a critical vulnerability that can be used to execute arbitrary commands on the system simply by sending an email.

2 hours ago Turning Point as Social Media Tackles Online 'Terror'

SecurityWeek View Synopsis+1

Facing mounting pressure to use their technological clout to curb the spread of jihadist propaganda, major US social networks have finally joined forces in an effort to curb "terrorist content."

3 hours ago Does 2016 Mark the End of Cyber Pearl Harbor Hysteria?

Forbes View Synopsis+1
Since 1991, proponents of greater cybersecurity have warned of an impending "cyber Pearl Harbor"--or sometimes its sibling, the cyber 9/11--to motivate a response to the cyber threats facing the United States. For years, I have been a critic of such cyber-doom rhetoric, arguing that it is a potentially dangerous distraction [...]

5 hours ago Backdoors in Sony IP Cameras Make Them Mirai-Vulnerable

InfoRiskToday View Synopsis+1
Botnet-Building IoT Malware Could Easily Infect Dozens of Model TypesRemote attackers could easily exploit backdoor accounts and software problems in more than 80 models of Sony IP cameras to install IoT malware such as Mirai, warns Austrian security firm SEC Consult.

8 hours ago Crims using anti-virus exclusion lists to send malware to where it can do most damage

The Register View Synopsis+1
When vendors tell you what to whitelist, crims are reading too

Advanced malware writers are using anti-virus exclusion lists to better target victims, researchers say.

12 hours ago Android, Qualcomm move on insecure GPS almanac downloads

The Register View Synopsis+1
HTTPS? They've heard of it

Nearly a decade after it introduced assisted-GPS in its mobile chipsets, Qualcomm has squished a bug that allowed miscreants to mess around with people's location services, or crash their phones.