News

• Mayor of New Jersey town arrested on hacking and conspiracy charges

  By Lucian Constantin | 25 May, 2012 15:45

  The mayor of West New York, New Jersey, was arrested together with his son on Thursday, for allegedly hacking into a website that criticized him and his administration.

• Security researcher urges IT managers to keep up with SAP patches

  By Loek Essers | 24 May, 2012 16:37

  More than 95 percent of over 600 SAP systems tested by security firm Onapsis were vulnerable to espionage, sabotage and fraud, mainly because patches had not been applied, according to a researcher.

• Anonymous claims it hacked a DOJ site

  By John Ribeiro | 23 May, 2012 16:43

  The U.S. Department of Justice said Tuesday it was looking into the unauthorized access of a website server in its statistics wing, after hacker group Anonymous claimed to have collected and released 1.7GB of data from it.

• New Nmap probes IPv6 networks

  By Joab Jackson | 23 May, 2012 02:47

  Preparing for the eventual widespread conversion to IPv6, the Nmap Project has updated its namesake security scanning tool so it can scan IPv6 networks using a variety of novel techniques.

• Banking malware monitors victims by hijacking webcams and microphones, researchers say

  By Lucian Constantin | 23 May, 2012 02:07

  A new variant of SpyEye malware allows cybercriminals to monitor potential bank fraud victims by hijacking their webcams and microphones, according to security researchers from antivirus vendor Kaspersky Lab.

• UNC Charlotte: 350,000 SSNs exposed in decade-long data breach

  By Jeremy Kirk | 11 May, 2012 12:48

  Two issues exposed financial data and Social Security numbers for 350,000 people, although it is thought the information has not been abused, the University of North Carolina at Charlotte said.

• Twitter says many leaked passwords inaccurate, duplicates

  By Jeremy Kirk | 09 May, 2012 10:14

  Many of the Twitter logins and passwords leaked on the web this week are either inaccurate or belong to accounts already suspended for spamming, the company said late Tuesday.

• Commercial enterprises are putting our critical infrastructure at risk

  By Sean Martin, a CISSP and the founder of imsmartin consulting | 05 May, 2012 07:33

  Cybercriminals have already figured out how to hack into enterprise infrastructure, and the critical infrastructure that controls our nation's supply of water, gas, oil and electricity just might be next.

• Hackers blackmail Belgian bank with threats to publish customer data

  By Loek Essers | 03 May, 2012 20:17

  Hackers claimed to have breached the systems of the Belgian credit provider Elantis and threatened to publish confidential customer information if the bank does not pay €150,000 (US$197,000) before Friday, May 4, they said in a statement posted to Pastebin. Elantis confirmed the data breach on Thursday, but the bank said it will not give in to extortion threats.

• Dutch court temporarily frees 17-year-old KPN hacking suspect

  By Loek Essers | 03 May, 2012 01:39

  A Dutch 17-year-old suspected of compromising customer account data on hundreds of servers belonging to telecommunications operator KPN is set to be freed temporarily on Thursday, allowed to wait at home for his criminal proceedings to begin, the Dutch Public Prosecution Service said on Wednesday.

• Call for mandatory data breach notification grows: Survey

  By Hamish Barwick | 02 May, 2012 07:30

  More Australian internet users want the government to order businesses to notify users of online data breaches, as a new survey conducted by the University of Canberra and eBay Australia found that 85 per cent of 700 Australian participants want data breach notifications to become mandatory.

• The CFO's role in the Cloud question

  By Tom Powledge, vice president of product delivery, SMB and .Cloud, Symantec | 01 May, 2012 02:29

  Cloud computing will affect everything in your organisation - right down to the bottom line.

• OAIC updates data breach guidelines

  By Hamish Barwick | 30 April, 2012 16:32

  The Office of the Australian Information Commission (OAIC) has updated its voluntary data breach guidelines as a means of encouraging organisations to notify the public in the advent of a data breach.

• Russian-speaking cybercriminals earned $4.5 billion in 2011, researchers estimate

  By Loek Essers | 24 April, 2012 14:07

  Russian-speaking hackers earned an estimated US$4.5 billion globally using various online criminal tactics and are thus responsible for 36 percent of the estimated total of $12.5 billion earned globally by cybercriminals in 2011, Russian security analyst firm Group-IB said in a report published on Tuesday.

• Most IT and security professionals see Anonymous as serious threat to their companies

  By Lucian Constantin | 24 April, 2012 00:12

  The majority of IT and security professionals believe that Anonymous and hacktivists are among the groups that are most likely to attack their organizations during the next six months, according to the results of a survey sponsored by security vendor Bit9.