Top 10 Stories

Flaws in noted privacy software could end up exposing the identities of people using them.   According to Reuters, recent finding concern the encrypted networking program “Invisible Internet Project” (I2P) which is used to send messages and run websites anonymously. I2P ships along with the specialized operating system "Tails," which was claimed to have flaws by research firm Exodus Intelligence earlier this week.   Although the core purpose of I2P is to obscure the IP...

A Colombian student is facing a custodial sentence for sharing an academic article.   According to the EFF, graduate student Diego Gomez is facing four to eight years in prison for sharing an academic article on the Internet. He wasn't making a personal profit from sharing the article—he simply intended for other scientists like him to be able to access and cite this scientific research.   A couple of years ago, he came across a...

eBay’s official ticket resale arm StubHub was the victim of an international cyber fraud ring.   According to Reuters, authorities plan to disclose details today as it plans to announce arrests in the case which has seen StubHub working with law enforcement around the world for the last year on the case.   The company did not say how much money was involved or how many people were being charged. Fraudulent charges were posted after...

Exodus Intelligence has announced it will supply a report with the vulnerability information to Tails’ developers.   After it was reported that a number of critical vulnerabilities were in Tails, a Debian Linux–based OS partially sponsored by Tor, that would be revealed by Exodus Intelligence at this year’s Black Hat conference in Las Vegas, PC World reported that Exodus will not share that information outside of the company before then, according to vice president Aaron...

The European Union is to launch a trial run of an international cyber crime task force which will coordinate investigations across the continent.   With the US, Canada and Australia also set to be included, the trial will begin with a six-month trial on September 1st and be led by Andy Archibald, the deputy head of the U.K. National Crime Agency's National Cyber Crime Unit, and will operate from EC3 headquarters in The Hague.  ...

Nigerian Scammers have moved beyond 419 style scams to use Trojans to steal information.   According to research by Palo Alto Networks, cyber criminals in Nigeria are using tools more commonly associated with comparatively sophisticated criminal and espionage groups in order to steal business-critical data from enterprises, such as Remote Administration Tools (RATs) and other malware available through underground forums, according to The Register.   The cybercrooks also use a second (crypting) tool named DataScrambler...

An IT manager has claimed he was fired after he warned officials of a potential data breach.   According to AZ Family, Miguel Corzo, who worked for the College for three decades, said he “went above and beyond to save from this embarrassment” after a 2013 data breach put 2.4 million students and staff members at risk for identity theft.   The board met behind closed doors, in executive session, to discuss firing Corzo on Tuesday. He...

Apple smartphones contain undocumented functions that allow unauthorised people in privileged positions to wirelessly connect and harvest pictures, text messages, and other sensitive data without entering a password or PIN.   According to Arstechnica, Jonathan Zdziarski, an iOS jailbreaker and forensic expert, told attendees that some of the services serve little or no purpose other than to make huge amounts of data available to anyone who has access to a computer, alarm clock, or other...

UK application security programmes are lagging behind US efforts in terms of spending and testing.   According to research by Veracode, UK companies are spending approximately 21 per cent less than US companies of equal size, while 66 per cent of internally developed applications remain untested for critical vulnerabilities such as SQL injection.   Leading enterprises in all industries are delivering new mobile experiences, leveraging the Cloud and Big Data analytics, and digitising their processes....

New banking malware named “Kronos” is being advertised as a commercial alternative to older Trojans.   According to CSO, the Trojan is designed to steal login credentials and other financial information from online banking websites, and it is being advertised to cybercriminal groups on the underground market. An advert claimed it can steal credentials from browsing sessions in Internet Explorer, Mozilla Firefox and Google Chrome by using form-grabbing and HTML content injection techniques.   In...