Threat Level: green Handler on Duty: Russell Eubanks

SANS ISC: Information Security News - SANS Internet Storm Center Information Security News

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Popular News

1 day ago Researcher Earns $10,000 for Another XSS Flaw in Yahoo Mail

SecurityWeek View Synopsis+1

A researcher says he has discovered yet another critical cross-site scripting (XSS) vulnerability in Yahoo Mail. The recently patched flaw could have been exploited to steal the targeted user's emails and attach malicious code to their outgoing messages.

1 day ago Password Manager Weaknesses Revealed

InfoRiskToday View Synopsis+1
The latest edition of the ISMG Security Report describes vulnerabilities found in popular password generator apps. Plus, the evolution of blockchain as a utility and a new decryptor for GandCrab ransomware.

1 day ago Credit card details worth nearly $3.5 million put up for sale on hacking forum

ZDNet View Synopsis+1
Card details of 2.15 million Americans advertised in a separate forum ad.

1 day ago Big Dump of Pakistani Bank Card Data Appears on Carder Site

InfoRiskToday View Synopsis+1
Street Value of 60,000 Cards on Joker's Stash is $3 Million, Group-IB SaysThe notorious carder site Joker's Stash is featuring a fresh batch of Pakistani banks' payment card data with an estimated street value of $3.5 million. Nearly all of the 70,000 bank cards are advertised as being from Meezan Bank, the country's largest Islamic bank.

1 day ago Fake Google reCAPTCHA used to hide Android banking malware

ZDNet View Synopsis+1
The phishing campaign impersonates Google in attacks against banking institutions and their users.

Top News

4 hours ago Google: Software is never going to be able to fix Spectre-type bugs

ArsTechnica View Synopsis+1
Researchers also devise a Spectre-like attack with no known mitigation.

1 day ago Infosec in spaaace! NCC and Surrey Uni to pore over satellite security

The Register View Synopsis+1
There's a PhD position in it too, if you want to get involved

NCC Group and the University of Surrey have set up a "Space Cyber Security Research Partnership" to investigate the security issues faced by satellites.…

1 day ago Malware that hunts for account credentials on adult websites tripled in 2018

ZDNet View Synopsis+1
The number of adverts selling logins for hacked accounts on adult websites doubled in 2018.

1 day ago Mexican Privacy Watchdog Criticizes Government Over Spyware

SecurityWeek View Synopsis+1

Mexico's privacy watchdog said Wednesday that the federal Attorney General's Office stonewalled it for more than a year as it tried to investigate the government's use of powerful Israeli spyware against journalists, lawyers and activists.

1 day ago ?5 tips: Choosing the best cloud vendor

TechRepublic View Synopsis+1
When it comes to cloud security, know the difference between a great--or just okay--cloud vendor.

Latest News

2 hours ago New Service From Cisco's Duo Labs Analyzes Chrome Extensions

SecurityWeek View Synopsis+1

Duo Labs, part of Cisco-owned Duo Security, has launched a new service designed to analyze Chrome extensions and deliver security reports on them. 

3 hours ago Report: Apps Give Facebook Sensitive Health and Other Data

SecurityWeek View Synopsis+1

Several phone apps are sending sensitive user data, including health information, to Facebook without users' consent, according to a report by The Wall Street Journal.

An analytics tool called "App Events" allows app developers to record user activity and report it back to Facebook, even if the user isn't on Facebook, according to the report .

5 hours ago ICANN: There is an ongoing and significant risk to DNS infrastructure

ZDNet View Synopsis+1
Recent rash of DNS hijacking attacks has spurred ICANN to urge the industry for a more rapid DNSSEC adoption.