System Security & Vulnerability Threat Warning

New malware program targets banking data

  • Thursday, 03 Jul 2014
  • Author: Lucian Constantin

IDG News Service - There is yet another reason to be wary of spam email about bank transfers or invoices -- it could be carrying a new, cleverly designed malware program that steals financial information...

Read more

Microsoft's crusade against malware advances to Kuwait, Algeria

  • Thursday, 03 Jul 2014
  • Author: Zach Miners

IDG News Service - Microsoft has taken legal action to combat the spread of malware that the company says can be traced to bad actors in Kuwait and Algeria...

Read more

Energy providers hacked through malicious software updates

  • Thursday, 03 Jul 2014
  • Author: Jeremy Kirk

IDG News Service - Eastern European-based attackers gained access to the networks of energy providers by tampering with software updates for industrial control systems, gaining a foothold that could be used for sabotage, Symantec said Monday...

Read more

Microsoft to resume email-based security notifications

  • Thursday, 03 Jul 2014
  • Author: Lucian Constantin

IDG News Service - Microsoft has backtracked on a plan to stop sending email-based notifications about security bulletins starting this month...

Read more

Critics blast Microsoft's takedown of No-IP domains

  • Thursday, 03 Jul 2014
  • Author: Jaikumar Vijayan

Computerworld - Microsoft's tactics in using a court order to seize nearly two-dozen No-IP.com domains it said were used to distribute Windows malware tools were called ham-handed by several critics...

Read more

Hackers hit more businesses through remote access accounts

  • Thursday, 03 Jul 2014
  • Author: Jaikumar Vijayan

Computerworld - Hackers recently broke into payment systems at several northwestern U.S. restaurants and food service companies via a remote access account belonging to one of their vendors, another example of the need for companies to monitor third-party access to their networks...

Read more

Critical flaw in WordPress newsletter plug-in endangers many blogs

  • Thursday, 03 Jul 2014
  • Author: Lucian Constantin

IDG News Service - A critical vulnerability found in a WordPress plug-in that has been downloaded over 1.7 million times allows potential attackers to take complete control of blogs that use it...

Read more

Latest Flash Update Mends Code Execution and XSS Flaws

  • Thursday, 03 Jul 2014
  • Author: Corey Nachreiner, WatchGuard Blog

Summary: This vulnerability affects: Adobe Flash Player 13.0.0.214 and earlier, running on all platforms (and Air)...

Read more

OpenSSL Security Advisory: SSL/TLS MITM vulnerability (CVE-2014-0224)

  • Thursday, 03 Jul 2014
  • Author: OpenSSL dot org

An attacker using a carefully crafted handshake can force the use of weak keying material in OpenSSL SSL/TLS clients and servers. This can be exploited by a Man-in-the-middle (MITM) attack where the attacker can decrypt and modify traffic from the attacked client and server...

Read more

The Best Of Both Worlds – Soraya

  • Tuesday, 17 Jun 2014
  • Author: Matthew Bing, Arbor Networks

"Arbor Networks’ ASERT has recently discovered a new malware family that combines several techniques to steal payment card information. Dubbed Soraya, meaning “rich,” this malware uses memory scraping techniques similar to those found in Dexter to target point-of-sale terminals...

Read more

Monitoring National Internet Traffic

National internet traffic monitoring report featuring weekly traffic reports, monthly traffic reports and annual traffic reports.

System Security & Vulnerability Threat Warning

A collection of articles about the early warnings of security threats and system vulnerabilities.

Security News

Newsgroups of Cyber Security or IT.