SANS ISC: Information Security News - SANS Internet Storm Center

• SANS Site Network
  • Current Site
  • Internet Storm Center
  • Other SANS Sites Help
  • Graduate Degree Programs
  • Security Training
  • Security Certification
  • Security Awareness Training
  • Penetration Testing
  • Industrial Control Systems
  • Cyber Defense Foundations
  • Computer Forensics
  • Software Security
  • Government OnSite Training

Information Security News

10 hours ago All Your iMessage Contacts Are Belong to Apple

Apple can't tap into iMessage conversations, thanks to end-to-end encryption, but the iPhone maker does know who you message or attempt to message with.

11 hours ago Clinton Vs. Trump: 33 Cartoons About The Candidates

9 hours ago Security: It might not be the outside world that's the largest threat to businesses

A new report reveals that one in three businesses experienced an insider attack in the past year. More devices with more access are putting sensitive info in the hands of everyone: Spies included.

8 hours ago Hacked IoT Devices Unleash Record DDoS Mayhem

Firepower Fueled by Vulnerable Internet of Things DevicesVulnerable internet-connected devices have been unwittingly drafted into electronic battle for DDoS attacks that have escalated to a new intensity in recent weeks.

2 hours ago PORTKnockOut: Data Exfiltration via Port Knocking over UDP

Data Exfiltration is arguably the most important target for a security researcher to identify. The seemingly endless breaches of major corporations are done via channels of various stealth, and an endless array of methods exist to communicate the data to remote endpoints while bypassing Intrusion Detection Systems, Intrusion Prevention Systems, firewalls, and proxies. This research examines a novel way to perform this data exfiltration, utilizing port knocking over User Datagram Protocol. It focuses specifically on the ease at which this can be done, the relatively low signal to noise ratio of the resultant traffic, and the plausible deniability of receiving the exfiltration data. Particular attention is spent on an implemented Proof of Concept, while the complete source code may be found in the Appendix.

31 minutes ago Why Won't Trump Blame the DNC Hack on Russia?

After FBI Director Jim Comey warned a congressional panel on Wednesday that hackers are "poking around" voter-registration systems in various states, law-enforcement officials told CNN that the U.S. suspects Russian involvement. ABC News reported that nearly half of U.S. states have come under cyberattack from hackers affiliated with Russia, which helps explain Comey's comment during Wednesday's hearing that the FBI is looking into "just what mischief is Russia up to in connection with our election."

43 minutes ago 'Syrian Electronic Army' goon extradited from Germany now coughs to hacking, extortion

His crime boss The Shadow remains at large

An associate of the self-styled Syrian Electronic Army has been sentenced to five years in an American prison for his part in running a cyber extortion scheme against businesses around the world.

1 hour ago U.S. to open new vetting agency for 'secret' security clearances

By Mark Hosenball WASHINGTON (Reuters) - The U.S. government will open the doors next week to a new agency, with stronger data protections, meant to shorten by many weeks the time it takes to vet government workers seeking "secret" and "top secret" security clearances. The National Background Investigations Bureau will be headed by Charles Phalen, who has worked as a security executive at the CIA, the FBI and defense contractor Northrop Grumman, officials said on Thursday on a conference call with reporters. The bureau will replace an Office of Personnel Management (OPM) clearance system that was hit by hackers who stole potentially sensitive personal data on as many as 22 million people, including government employees and job applicants.

1 hour ago Security Intelligence and the Critical Security Controls v6

Security data is everywhere

2 hours ago Microsoft sees rise in number of secret data requests

The number of classified data demands remained about the same but covered a larger number of user accounts.

3 hours ago Dridex Banking Trojan Adopts Improved Encryption

The infamous Dridex banking Trojan has adopted new tactics and more advanced encryption and obfuscation to better avoid detection and to hinder security analysis, researchers warn.

3 hours ago Microsoft sees rise in secret government data demands

The number of classified data demands remained about the same but covered a larger number of user accounts.

4 hours ago Jive resets Producteev passwords after August data breach

It took a month for the company to inform customers by letter.

4 hours ago "Vendetta Brothers" Are After Your Payment Card Data

If you live in the United States or one of several Nordic countries, your payment card data might be of interest to a duo of cybercriminals that FireEye refers to as the "Vendetta Brothers."

4 hours ago Firms Spend Big Money on Flaws They Could Fix in Development

Companies are spending millions on bug bounty programs whose goal is to identify vulnerabilities, but it might be more efficient to take a proactive approach and focus on identifying flaws in the development phase.

4 hours ago Apple's Messages Metadata Could Be ValuableTo Law Enforcement

A leaked document shows that authorities can use data from the iPhone chat app to figure out someone's location.

5 hours ago Banks tighten SWIFT system security after hacks

By Tom Bergin GENEVA (Reuters) - Banks are tightening the security of their SWIFT messaging networks - used by the industry to shift trillions of dollars each day - following revelations that hackers are increasingly able to get into this system to steal money. Bankers at SWIFT's annual SIBOS conference in Geneva said they were adopting new security tools, reviewing procedures and pressing their counterparties to do the same. Some banks are also looking at alternative technologies for transferring money, such as blockchain-type systems.

5 hours ago Poll: Should Edward Snowden be pardoned?

Is the NSA hacker a whistleblower or traitor? Hero or villain? Take our poll and tell us whether you think Edward Snowden deserves a break.

6 hours ago Microsoft widens Edge browser bug hunt for bounty hunters

Keeping you in hoodies

Microsoft has expanded its programme for rewarding those who find and report bugs in its Edge browser, enabling bounty hunters to claim their prize for a broader range of vulnerabilities.

6 hours ago VESK coughs up £18k in ransomware attack

Biz took the precaution to pay up as a belt and braces approach

Exclusive Hosted desktop and cloud provider VESK is staggering back to its feet after paying 29 Bitcoins (£18,600) in a ransomware attack earlier this week.

7 hours ago Yahoo Hacked by Cybercrime Gang, Security Firm Reports

1 Billion Accounts Stolen by 'Professional Blackhats,' InfoArmor SaysBlunting Yahoo's attempt to blame nation-state attackers for its record-breaking breach, security firm InfoArmor says it's traced the 2014 hack to a cybercrime gang that's quietly resold the stolen data several times over.

8 hours ago Web Applications Are The Achilles' Heel Of Cybersecurity

Luckily, protecting yourself -- and your organization -- isn't rocket science.

9 hours ago Spy Tech 'Hacks WhatsApp Encrypted Chat From A Backpack'

Israeli surveillance company says it can decode WhatsApp encryption and intercept all messages using a Wi-Fi box hidden in a backpack.