Sunday , 24 September 2017
Home » NEWS » EDITOR’S NEWS (page 217)

EDITOR’S NEWS

Partial sinkholing of ZeroAccess botnet frees around half a million compromised endpoints

The ZeroAccess botnet, which has control of around two million endpoints, has begun to be sinkholed with around a quarter of its connections removed. The actions by Symantec researchers, after it found a weakness that offered a complicated method to sinkhole the botnet, have allowed it to detach over half a million PCs in only five minutes. In its work, Symantec ... Read More »

UK banks to face stress tests to assess and improve resilience to cyber attacks

The Financial Policy Committee (FPC) is to devise a way of toughening up bank’s cyber defences in the next six months. According to point 13 of the FPC meeting held on 18th September, a report from the Treasury, government agencies and Financial Conduct recommended a programme of work to assess, test and improve the financial system’s resilience to cyber attacks. The ... Read More »

UK banks to face stress tests to assess and improve resilience to cyber attacks

The Financial Policy Committee (FPC) is to devise a way of toughening up bank’s cyber defences in the next six months. According to point 13 of the FPC meeting held on 18th September, a report from the Treasury, government agencies and Financial Conduct recommended a programme of work to assess, test and improve the financial system’s resilience to cyber attacks. The ... Read More »

FBI seize underground website Silk Road and arrest founder

A man has been arrested in San Francisco on charges of hacking and operating an underground website that allowed users to purchase weapons and drugs. According to a complaint posted by security blogger Brian Krebs from the 27th September, a warrant was issued for the arrest of Ross William Ulbricht, also known as “Dread Pirate Roberts”, and others for the violation of the ... Read More »

Home » Yahoo to introduce bug bounty payments after … Yahoo to introduce bug bounty payments after “interesting 36 hours”

The security director of Yahoo has said that a lack of a formal bug bounty process led to the payment of $12.50 for a cross-site scripting (XSS) vulnerability. In a blog, Yahoo security director Ramses Martinez said that after “an interesting 36 hours” the company has moved to address the issue with payments from $150 – $15,000 set to be introduced ... Read More »

As US Government enters third day of the shutdown, SSL certificates begin to expire

The SSL certificate of Barack Obama’s website has expired during the Government shutdown in the United States. While commentators claimed that the shutdown will not affect national security despite 31,000 of the Department of Homeland Security’s 231,000 staff not being at work, it does seem that priorities on website security may have lapsed. According to Netcraft, as well as Obama’s 12 month SSL ... Read More »

Adobe suffers attack with 40GB of source code stolen and 2.9 million users affected

Adobe has suffered its second targeted attack in a year, investigating the illegal access of source code for Adobe Acrobat, ColdFusion, ColdFusion Builder and other Adobe products by an unauthorised third party. After a discovery by security blogger Brian Krebs of 40GB of source code, which appeared to be uncompiled and complied code for ColdFusion and Adobe Acrobat, Adobe confirmed that it has ... Read More »

Microsoft to patch Internet Explorer zero-day next week

Microsoft will patch the zero-day in Internet Explorer next week among a batch of eight bulletins. On its next Patch Tuesday, the zero-day will be covered along with three other critical issues in Windows and the .Net framework. Also, four important patches will be released for Office, Silverlight and Server Software. Wolfgang Kandek, CTO of Qualys, said: “Microsoft has had ... Read More »

Another way of bypassing the Apple iPhone 5s TouchID authentication has been revealed

Further questions have been raised about the viability of the iPhone 5S’s fingerprint scanner, after research found that it was possible to photograph a fingerprint on a iPhone 4S, print it onto film and use it to access the new device. According to research by Germany’s Security Research Labs (SRL), it is possible to photo an iPhone 4s, and use the spoofed fingerprint ... Read More »

Proposed fines in Cyber Security Directive could hit businesses hard in the pocket

Organisations could face fines running into millions if the EU’s proposed cyber risk directive is passed. Proposed in early 2012 with amendments made this year, it would permit each European Union member state to fine up to two per cent of a company’s global revenue for data loss incidents.Dwayne Melancon, chief technology officer at Tripwire, said: “The new EU Directive ... Read More »