2551 matches found
House Hearing to Address Capital Market Threats
The House Committee on Financial Services is hosting a hearing tomorrow in which they will explore the various cyber threats targeting capital markets and government sponsored enterprises. Entitled “Cyber Threats to Capital Markets and Corporate Accounts,” the hearing in front of the Committee on...
Tiny New Tinba Banker Trojan Found Stealing Financial Data
Security researchers have discovered a tiny new banking Trojan that comprises just 20 KB of code and uses a number of well-word man-in-the-browser tricks in an attempt to defeat two-factor authentication. Known as Tinba, the new malware doesn’t bother with any encryption or packing and yet is...
New VPN Hunter Service Scans Domains For Remote-Access Systems
If there’s one thing attackers love, it’s readily accessible remote-connection services running on a target company’s network. Once an attacker knows that an organization is running a specific kind of VPN or has RDP enabled on a bunch of machines, he can then start looking for known vulnerabiliti...
Data encryption : PrivateSky Secure Information Exchange platform
Data encryption : PrivateSky Secure Information Exchange platform CertiVox today unveiled a breakthrough in information security: PrivateSky Secure Information Exchange SIXTM platform. The new service provides fast, easy-to-use protection for email, files and other information sent via the cloud,...
RSA SecurID Software Token Installed
RSA SecurID Software Token, a two-factor authentication application, is installed on the remote Windows host. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid57348; scriptversion"1.10"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/10";...
What About Fob?
Few things sent shockwaves to all corners of the security community like news in March that RSA’s popular SecurID two-factor authentication tokens had been rendered all but useless by a small but cleverly targeted phishing campaign that included a payload of a malicious Flash object embedded in a...
Authenex A-KeyASAS Web Management Control 3.1.0.2 - Blind SQL Injection
Authenex A-KeyASAS Web Management Control 3.1.0.2 - Blind SQL Injection ============================================================ FOREGROUND SECURITY, SECURITY ADVISORY 2011-002 - Original release date: September 21, 2011 - Discovered by: Jose Carlos de Arriba - Senior Security Analyst at...
Authenex A-Key/ASAS Web Management Control 3.1.0.2 (latest)
Exploit for multiple platform in category web applications ============================================================ FOREGROUND SECURITY, SECURITY ADVISORY 2011-002 - Original release date: September 21, 2011 - Discovered by: Jose Carlos de Arriba - Senior Security Analyst at Foreground Securi...
'Good to Know' campaign : Google Collaborates with Citizens Advice Bureau for Online Safety
'Good to Know' campaign : Google Collaborates with Citizens Advice Bureau for Online Safety Google's first ever advertising campaign for online safety launches today, in association with the Citizens Advice Bureau. It covers topics such as choosing a password, scam emails and using two factor...
'Good to Know' campaign : Google Collaborates with Citizens Advice Bureau for Online Safety
'Good to Know' campaign : Google Collaborates with Citizens Advice Bureau for Online Safety Google's first ever advertising campaign for online safety launches today, in association with the Citizens Advice Bureau. It covers topics such as choosing a password, scam emails and using two factor...
Adobe Says It Is Breaking Ties To Diginotar
Software giant Adobe said on Thursday that it was removing Diginotar’s Qualified CA certificate from the Adobe Approved Trust List AATL, according to a company blog post. The move would effect Adobe Reader and Adobe Acrobats Versions 9 and X. It is just the latest move by major software vendors t...
Mozilla Asks Firefox CAs to Audit Security Systems in Wake of DigiNotar Hack
Already having revoked trust in the root certificates issued by DigiNotar, Mozilla is taking steps to avoid having to repeat that process with any other certificate authority trusted by Firefox, asking all of the CAs involved in the root program to conduct audits of their PKIs and verify that...
Obama-Favored Think Tank Used as Bait in Spear Phishing Attacks
Spear phishing attacks against U.S. government officials, politicians and public policy wonks are using a D.C. think tank favored by the Obama Administration as bait, according to a report from researcher Mila Parkour. A new report out from virus researcher Mila Parkour on the blog Contagio says...
On 4th August SAP systems will be hacked on internet in BlackHat USA 2011
On 4th August SAP systems will be hacked on internet in BlackHat USA 2011 On the 4th of august at the world largest technical security conference - BlackHat USA 2011, which will take place in Las Vegas, SAP security expert and CTO of ERPScan Alexander Polyakov will show how any malicious attacker...
Google Enables Gmail Two-Factor Security in 150 Countries
Nearly six months after first introducing two-step verification for its Gmail service, Google has expanded the security feature to users outside the English-speaking world, opening it up to people in more than 150 countries. The company said on Thursday that it has enabled the two-step verificati...
EMC Foots $66 Million Bill For RSA Attack
EMC Corporation announced via an earnings call Tuesday that it spent $66 million during the second quarter on its security firm division RSA to recover from a cyberattack that compromised their SecurID product in March, according to a post on the Washington Post’s Post Tech blog. The money went...
Zeus Banking Trojan Comes to Android Phones
The Zeus banking Trojan has jumped the bridge to the large and growing ecosystem of mobile devices powered by Google’s Android operating system, according to security researchers at Fortinet. Researchers say they have obtained a Zeus variant, dubbed “Zitmo,” that can run on Android phones and tha...
Epsilon Ups Ante on Security Following Breach
Nearly three months after marketing services firm Epsilon had its system breached, the company has begun to rebuild the security of its e-mail marketing platform. The firm has unveiled an array of enhancements they claim will mitigate “electronic crimes in motion” according to a press release...
Chinese Hacker Cracks Hundreds of Gmail Accounts of U.S. & Asia
Chinese Hacker Cracks Hundreds of Gmail Accounts of U.S. & Asia Hackers around the world are gaining more attention than usual in the last few months. Now Google has added another announcement to the pile that hundreds of Gmail accounts have been hacked recently. Now, Google affirms that the...
China-Based Attacks Targeted Gmail of U.S. Officials, Activists
Search giant Google has again sounded the alarm about sophisticated attacks emanating from mainland China and targeting officials within the U.S. and Asian governments, as well as human rights activists and journalists. Samples of some of the messages posted on an independent researcher’s blog...