U.S. Gov to Simulate Cyber Attack Next Week

Security industry analysts and lawmakers will get an unprecedented chance next week to evaluate how the government might respond to a cyber-attack on critical infrastructure targets. Read the full article. Computerworld...

Mudge to Work For Uncle Sam at DARPA

Peiter Zatko — a respected hacker known as “Mudge” — has been tapped to be a program manager at DARPA, where he will be in charge of funding research designed to help give the U.S. government tools needed to protect against cyberattacks. Read the full article. cnet...

Zeus Trojan Attacking NSA, .gov Sites

Criminals are spamming the Zeus banking Trojan in a convincing e-mail that spoofs the National Security Agency. Initial reports indicate that a large number of government systems may have been compromised by the attack. Read the full article. KrebsonSecurity...

Sterlite SAM300AX ADSL Router Cross Site Scripting

Sterlite SAM300AX ADSL router is provided through MTNL, New Delhi, India, amongst other national / international locations www.sterlitetechnologies.com / http://sterlitetechnologies.com/sterlite.aspx. +About MTNL+ http://mtnldelhi.in/glance/index.htm MTNL was set up on 1st April, 1986 by the...

Anatomy of a Targeted, Persistent Attack

A new report published today sheds light on the steps ultra-sophisticated attackers take to gain a foothold inside governments and company networks and remain entrenched in order to steal intellectual property and other data. The bad news is these attacks — including the recent ones on Google,...

German Government Warns Against Using IE Browser

In response to the security hole in several versions of Internet Explorer IE, the German Federal Office for Information Security is recommending that Internet Explorer users should switch to an alternative browser until a patch for IE has been made available. Read the full story The H Security...

Malware Open Season on Taxpayers

As any reader of this site knows, cybercriminals can steal your money not just by putting malware on your machine, but by phishing attacks too. Phishing attacks don’t just target online banking and e-payment systems, but almost any site which asks the user to input sensitive data. Sites run by...

PBX Phone System v2.x - Multiple Vulnerabilities

Exploit for unknown platform in category web applications ================================================ PBX Phone System v2.x - Multiple Vulnerabilities ================================================ PenTest Information: ==================== Global-Evolution Security Team remove discover...

Can Howard Schmidt Make a Difference?

At first glance, the selection of Howard A. Schmidt as the White House Cybersecurity Coordinator looks like little more than a safe and easy choice designed to quiet the critics who for seven months have been howling for action from the Obama administration. But a closer look shows that Schmidt’s...

Q&A: Eugene Spafford on Cybercrime, Security Research

Threatpost editor Dennis Fisher talks with Eugene Spafford of Purdue’s CERIAS center about cybercrime, funding for long-term security research projects and whether the federal cybersecurity coordinator position matters. Fisher: Do you see any indications that there will be more funding coming fro...

79 Million Government, Military Records Breached

Although the combined number of reported data breaches in the government and the military has dropped in 2009 compared to last year, many more records were compromised in those breaches, according to recent figures compiled by the Identity Theft Resource Center. Read the full article. Government...

GAO Names Areas of Threat to U.S.

It’s not a very good day when a security report concludes: Disruptive cyber activities expected to become the norm in future political and military conflicts. But such was the case as the Government Accountability Office took yet another critical look at the US federal security systems and found...

FBI Reports Malware on Rise in Electronic Funds Fraud

The FBI reports it has seen a rise of malware over the past few months targeting small and medium businesses and municipal government entities and school districts. Once a malicious attachment or link is opened, keylogging tactics obtain bank account info where criminals then initiate wire...

Flawed USB Sticks Can Be Used to Download Whatever Desired

UK security researchers MWR InfoSecurity have found a flaw in the driver software of USB sticks that could allow the technology to “interrogate” and download the complete content of any system. The company believes the use of such devices is only months away, and has shared its research with the...

Obama Nominates DHS Intelligence Chief

President Barack Obama has nominated Caryn Wagner to be the Homeland Security Department s intelligence chief, a position that oversees information technology systems designed to share information with federal, state and local officials. If confirmed by the Senate, Wagner would direct DHS Office ...

Real World Security – Bob Maley Interview

In the first installment of a new regular series, Dennis Fisher talks with Bob Maley, the CSO of the Commonwealth of Pennsylvania, about the challenges of running an information security program in a government agency, the effects of the economy on his efforts and the ways in which user education...

Four of the General government, CMS management system vulnerability-vulnerability warning-the black bar safety net

This article has been published in the hack Defense 2 0 0 9. 5 period of,reproduced be sure to keep this information QQ friends of small building to listen to rain to say their school site is using the four through the government grid is set, let me check its safety. Just the hands on work done,...

Experts Call for Change in Thinking on Federal Cybersecurity

The powers that be in Washington are not known for getting things done quickly, and the current power vacuum in information security in the capital is a painful case in point. The well-documented failure to find a coordinator to oversee security for the country is only one piece of the puzzle, an...

Swiss Coder Publicises Government Spy Trojan

A software engineer who created Trojans for the Swiss authorities to intercept Voice-over-IP VoIP phone calls has published the source code to his programs in order to draw attention to the surveillance threat posed by such software. Read the full story idg.no...

Cutting Through The Twitter DDoS Hype

There are a lot of theories flying around about why Twitter and other social media services got knocked offline yesterday. I’ve heard rumors about it being linked to political tension between Georgia and Russia. Others blame Iran for the outages. I’m not a political commentator, therefore I canno...