Eskenzi PR ad banner Eskenzi PR ad banner

Editor's News

The United States of America could leave itself open to attack with more than 30,000 Department of Homeland Security employees set to stay at home due to the budget stalemate. With the two sides of Congress failing to agree on a budget, the nation has gone into a partial shutdown which will leave 700,000 federal workers staying at home national parks, museums, federal buildings and services closed down. Among the affected divisions are the departments...

Read moreDetails

Plans to better prepare the UK’s cyber defences have been met with conflicting opinions. The Ministry of Defence (MoD) announced plans to recruit “reservists” to work alongside regular forces in the creation of the new Joint Cyber Reserve Unit, who will also have the ability to make offensive strikes. Speaking to IT Security Guru, Dave Anderson, senior director at Voltage Security, said that he saw the positive side of this as it would attract new blood into...

Read moreDetails

The ZeroAccess botnet, which has control of around two million endpoints, has begun to be sinkholed with around a quarter of its connections removed. The actions by Symantec researchers, after it found a weakness that offered a complicated method to sinkhole the botnet, have allowed it to detach over half a million PCs in only five minutes. In its work, Symantec spotted the flaw in an update in its peer-to-peer command and control (C&C) architecture, a...

Read moreDetails

The Financial Policy Committee (FPC) is to devise a way of toughening up bank’s cyber defences in the next six months. According to point 13 of the FPC meeting held on 18th September, a report from the Treasury, government agencies and Financial Conduct recommended a programme of work to assess, test and improve the financial system’s resilience to cyber attacks. The minutes claimed that the “the threat had many dimensions and was growing”, and combined with...

Read moreDetails

The Financial Policy Committee (FPC) is to devise a way of toughening up bank’s cyber defences in the next six months. According to point 13 of the FPC meeting held on 18th September, a report from the Treasury, government agencies and Financial Conduct recommended a programme of work to assess, test and improve the financial system’s resilience to cyber attacks. The minutes claimed that the “the threat had many dimensions and was growing”, and combined with...

Read moreDetails

A man has been arrested in San Francisco on charges of hacking and operating an underground website that allowed users to purchase weapons and drugs. According to a complaint posted by security blogger Brian Krebs from the 27th September, a warrant was issued for the arrest of Ross William Ulbricht, also known as “Dread Pirate Roberts”, and others for the violation of the narcotics laws of the United States as well as knowingly “combine, conspire, confederate, and agree...

Read moreDetails

The security director of Yahoo has said that a lack of a formal bug bounty process led to the payment of $12.50 for a cross-site scripting (XSS) vulnerability. In a blog, Yahoo security director Ramses Martinez said that after “an interesting 36 hours” the company has moved to address the issue with payments from $150 - $15,000 set to be introduced from the end of this month, with the payment amount determined by a clear system...

Read moreDetails

The SSL certificate of Barack Obama’s website has expired during the Government shutdown in the United States. While commentators claimed that the shutdown will not affect national security despite 31,000 of the Department of Homeland Security’s 231,000 staff not being at work, it does seem that priorities on website security may have lapsed. According to Netcraft, as well as Obama’s 12 month SSL certificate expiring, there are at least 30 US Government sites still using SSL certificates that...

Read moreDetails

Adobe has suffered its second targeted attack in a year, investigating the illegal access of source code for Adobe Acrobat, ColdFusion, ColdFusion Builder and other Adobe products by an unauthorised third party. After a discovery by security blogger Brian Krebs of 40GB of source code, which appeared to be uncompiled and complied code for ColdFusion and Adobe Acrobat, Adobe confirmed that it has been working on an investigation into a potentially broad-ranging breach into its networks since 17th September....

Read moreDetails

Microsoft will patch the zero-day in Internet Explorer next week among a batch of eight bulletins. On its next Patch Tuesday, the zero-day will be covered along with three other critical issues in Windows and the .Net framework. Also, four important patches will be released for Office, Silverlight and Server Software. Wolfgang Kandek, CTO of Qualys, said: “Microsoft has had a turbulent two weeks since their security advisory KB2887507, which detailed CVE-2013-3893, a zero-day vulnerability in Internet...

Read moreDetails
Page 301 of 303 1 300 301 302 303