Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC Information Security News

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Popular News

2 days ago Feds slap PayPal with $25 million fine over credit service

IT Toolbox Blogs View Synopsis+1
It?s sad to see this happen. It may have a negative effect on a good service. Feds slap PayPal with $25 million fine over credit service

2 days ago DDoS attack downs University of London learning platform

The Register View Synopsis+1
A harsh lesson, now stand in corridor for four hours

The University of London Computer Centre fell victim to a cyber-attack on Thursday.

2 days ago Cybercriminals Use SVG Files to Distribute Ransomware

SecurityWeek View Synopsis+1

Researchers at email and web security company AppRiver spotted a campaign in which malicious actors attempted to distribute a piece of ransomware with the aid of SVG files.

The attack starts with an email that appears to have a resume attached to it. The file is a ZIP archive containing an SVG file.

2 days ago Think factory reset wipes your data from Android phones? Think again

ZDNet View Synopsis+1
Researchers have found that 500 milllion handsets may still leave users' personal details accessible even after a full factory reset.

Top News

11 hours ago Toymaster has released the weekly Security Mailer.

IT Toolbox Blogs View Synopsis+1
Toymaster has released the 24May15 Security Mailer.

2 hours ago Researcher who exploits bug in Starbucks gift cards gets rebuke, not love

ArsTechnica View Synopsis+1
Plenty of poor manners to go around in fraudulent $1.70 purchase.

1 day ago eBay bug turns phishing email links into malware-stuffed booby prizes

The Register View Synopsis+1
Crims could smuggle nasties in files 'downloaded' from web souk

eBay is racing to fix a second serious security flaw that may allow criminals to spread malware through files seemingly hosted by the online tat bazaar.

1 day ago Clinton received sensitive info on private email account

Yahoo Security View Synopsis+1

WASHINGTON (AP) - Former Secretary of State Hillary Rodham Clinton received information on her private email account about the deadly attack on U.S. diplomatic facilities in Benghazi that was later classified "secret" at the request of the FBI, according to documents released Friday, underscoring lingering questions about how responsibly she handled sensitive information on a home server.

1 day ago The Senate Fails to End NSA Bulk Spying, Votes Against USA Freedom Act

WIRED View Synopsis+1

A last bid to reform NSA spying before lawmakers break for a week-long recess failed early Saturday morning after hours of debate overnight when Senate lawmakers voted against the USA Freedom Act that would have curbed some of the spy agency's data collection. When the vote failed, Senator Mitch McConnell tried to lead an effort […]

The post The Senate Fails to End NSA Bulk Spying, Votes Against USA Freedom Act appeared first on WIRED.

1 day ago Senate Delays NSA Bulk Collection Decision

InfoRiskToday View Synopsis+1
Will Reconvene May 31 to Decide Whether to Scrap ProgramThe U.S. Senate has delayed until May 31 a decision on whether to follow the House and approve a proposal to scrap the National Security Agency's bulk collection of Americans' telephone metadata.

1 day ago More Thoughts on How to Write a Constitutional Revenge Porn Law

Forbes View Synopsis+1
At a recent congressional briefing spearheaded by Congresswoman Katharine Clark and domestic violence advocacy groups, Michelle Garcia (director of the Stalking Resource Center), game developer Zoe Quinn, John Wilkinson of AEquitas, and I talked about the prevalence of online threats, the harms victims experience, law enforcement's difficulties enforcing existing threats [...]

21 hours ago NEWS ALERT: Senate blocks USA PATRIOT Act reauthorization

SC Magazine View Synopsis+1
A Friday night 57-42 vote in the Senate before the Memorial Day weekend fell short of the 60 votes needed to reauthorize Section 215 of the USA PATRIOT Act.

1 day ago USPS Tracking Queries to Its Package Tracking Website

Schneier blog View Synopsis+1

A man was arrested for drug dealing based on the IP address he used while querying the USPS package tracking website.

1 day ago Google: Account Recovery Security Questions Not Very Secure

Dark Reading View Synopsis+1
An analysis of millions of answers to security questions show many are predictable and easily guessable, says Google.

1 day ago Emerson Patches SQL Injection Vulnerability in ICS Product

SecurityWeek View Synopsis+1

Emerson's Process Management group has released a software update to address a SQL injection vulnerability in the Emerson AMS Device Manager product.

1 day ago FBI admits it didn't crack any major cases with Patriot Act powers

ZDNet View Synopsis+1
That was despite increasing its dragnet order count by more than two-fold.

1 day ago CareFirst BlueCross BlueShield Breach (May 21, 2015)

SANS Newsbites View Synopsis+1

CareFirst BlueCross BlueShield has acknowledged that an attack on one of its databases compromised the personally identifiable information of 1.......

Latest News

4 minutes ago Why you should question everything

IT Toolbox Blogs View Synopsis+1
Always listen to experts. They?ll tell you what can?t be done, and why. Then do it.

2 hours ago Disruptive technologies

IT Toolbox Blogs View Synopsis+1
The pocket calculator was an example of a disruptive technology. It completely altered the way we handle mathematical calculations,

8 hours ago Mainframe on your wrist?

IT Toolbox Blogs View Synopsis+1
Back in July last year, IBM and Apple announced their deal that would combine the power of the mainframe with the flexibility and convenience of an iPad and iPhone. Since then, Apple has started shipping its Apple watch. The question is, do you want your mainframe data appearing on your watch?