Threat Level: green Handler on Duty: Johannes Ullrich

SANS ISC: Information Security News - SANS Internet Storm Center Information Security News


Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Popular News

10 hours ago Researcher Bypasses Windows UAC by Spoofing Trusted Directory

SecurityWeek View Synopsis+1

A security researcher from Tenable, Inc. recently discovered that it is possible to bypass Windows' User Account Control (UAC) by spoofing the execution path of a file in a trusted directory. 

Top News

4 hours ago Google launches VisBug, a Chrome extension for point-and-click web design

ZDNet View Synopsis+1
Google's new VisBug extension lets you make small tweaks to website's text and images.

11 minutes ago 51 States Pledge Support for Global Cybersecurity Rules

SecurityWeek View Synopsis+1

Fifty-one states, including all EU members, have pledged their support for a new international agreement to set standards on cyberweapons and the use of the internet, the French government said Monday.

12 hours ago Update: HealthCare.gov Breach Exposed Extensive Data

InfoRiskToday View Synopsis+1
Notification Letter Describes Types of Data on 75,000 That Was ExposedMore than two weeks after announcing that the Obamacare website, HealthCare.gov, had been hacked, the Department of Health and Human Services has revealed that the breach exposed a wealth of information, including partial Social Security numbers and immigration status.

10 hours ago How CIOs can manage blockchain security: 4 tips

TechRepublic View Synopsis+1
By 2020, an exploited vulnerability will disrupt a major blockchain platform, causing significant damage, Gartner predicts. Here's how to protect your blockchain efforts.

7 hours ago Scare Force: Pakistan military hit by Operation Shaheen malware

The Register View Synopsis+1
State-sponsored attack looks to infiltrate nuclear Air Force

The Pakistan Air Force is the apparent target of a complex new state-sponsored attack campaign.

Latest News

11 minutes ago Local councils and taxi commission continued to seek telco metadata: Comms Alliance

ZDNet View Synopsis+1
The Communications Alliance has detailed a list of agencies that tried to access telco metadata following the introduction of Australia's metadata retention regime.

6 hours ago US, Russia, China don't sign Macron's cyber pact

ZDNet View Synopsis+1
New cyber peace pact signed by 51 other countries, 224 companies, and 92 non-profits and advocacy groups.

6 hours ago "‹4 best practices to combat new IoT security threats at the firmware level

TechRepublic View Synopsis+1
Firmware may be the next frontier for IoT hacks. See below how the healthcare industry addresses these threats.

9 hours ago Internet Explorer scripting engine becomes North Korean APT's favorite target in 2018

ZDNet View Synopsis+1
North Korean hacking group focuses attacks on aging and soon-to-be-deprecated technology.

10 hours ago How--and why--you should enable Housekeeping in Elementary OS Juno

TechRepublic View Synopsis+1
Elementary OS Juno includes a number of improvements and additions, including a slight security bump over previous releases.

10 hours ago New Cloudflare DNS App Brings Increased Privacy for Mobile Devices

SecurityWeek View Synopsis+1

Web security and performance company Cloudflare is making it easier for smartphone users to secure their Internet connections, courtesy of a new DNS resolver app for mobile devices.

11 hours ago CISO Job Mandate: Be a 'Jack or Jill' of All Trades

InfoRiskToday View Synopsis+1
Chief Information Security Officers Must Marshal Experts, Says Paul SwarbrickThe days of effective CISOs being pure-play technologists are long gone. Instead, CISO Paul Swarbrick says the role demands someone who is expert "in people, and management and risk," and who is skilled at bringing to bear the right experts for every strategic challenge they identify.

11 hours ago Intel Asks for Comments on Draft Federal Privacy Law

SecurityWeek View Synopsis+1

Intel Proposes "Innovative and Ethical Data Use Act of 2018" to Improve Protection of Personal Privacy Through Nationwide Standards