A hacker's pay-walled site on which he offers administrative access to a number of military, education and government websites for sale, has been hacked by a rival hacking group that goes by the name …
View full post on Help Net Security – News
George Orwell, in his classic vision of the future “Nineteen Eighty-Four,” foresaw a totalitarian state filled with devices termed telescreens that were the state’s means of monitoring citizens. Today, with our dependence on modern technologies such as PCs and mobile devices, and the widespread availability of crimeware, we’ve exceeded anything Orwell could ever have imagined. Crimeware is a class of malware that is specifically designed to automate large-scale financial crime. We now carry our own version of Orwell’s telescreens with U.S.
View full post on Security – Infoworld
It’s no secret that organizations are concerned about their ability to secure and to maintain an adequate regulatory compliance posture in their cloud deployments.
View full post on Security – Infoworld
Microsoft has released Microsoft Security Advisory 2639658 to address a vulnerability in the Win32k TrueType font parsing engine. By convincing a user to open a malicious email attachment, an attacker may be able to exploit this vulnerability and execute arbitrary code.
Microsoft has indicated that it is aware of targeted attacks exploiting this vulnerability. The Duqu malware may exploit this vulnerability.
US-CERT encourages users and administrators to take the following actions to help mitigate the risks of this vulnerability and the Duqu malware:
US-CERT will provide additional information as it becomes available.
View full post on US-CERT Current Activity
Protecting your infrastructure from Duqu in the interim, just in case – with a new “hot fix” released by Microsoft, among other precautions
View full post on Dark Reading – All Stories