FY 2012 Office of Inspector General FISMA Audit of GSA’s Information Technology Security Program, Report Number A120125/O/F/F12005 September 28, 2012….
Original news article at https://www.bespacific.com/ on October 06, 2012 at 04:38AM
New data-theft attack technique can run across web
Researchers have detected a “new man-in-the-browser” (MITB) attack method that uses malware capable of stealing users bank or other sensitive information entered on websites.
As opposed to traditional MITB scams – where malware sitting on victims’ computers is used to monitor a list of targeted websites and then pounces when users visit those sites – this technique allows criminals to draw victims’ data from an unlimited pool of sites.
Original news article at https://news.hitb.org/
Group says it hacked systems at 100 major universities
A hacking group that calls itself Team GhostShell this week claimed credit for breaking into servers at 100 major universities from around the world, including Harvard, Stanford, the University of Pennsylvania and the University of Michigan.
Original article at Network World
Computer servers at five Japanese universities hacked
An international group of hackers targeting five universities in Japan has leaked what appears to be personal information belonging to the institutions’ students and professors.
The group, which calls itself GhostShell, targeted the University of Tokyo, Kyoto University, Nagoya University, Tohoku University and Osaka City University.
Original article at HITB
India needs more than 4 lakh hackers
According to CERT-In, the national incident response centre, a government nodal agency, at least 42 million Indians were hit by cyber crimes and the recorded loss of the same was a staggering $8 billion loss in disaster in the past 12 months.
Original article at Topix
Cloud Security Alliance outlines top mobile threats
The Cloud Security Alliance (CSA) Mobile Working Group released findings from a new survey that calls out the specific security concerns enterprise executives say are the real and looming threats.
Original article at Net-Security.org
Free online identity risk calculator
EMC and RSA announced the Online Identity Risk Calculator, a free interactive assessment tool for PC and mobile device users designed to help educate consumers about their personal exposure to online threats.
Original article at net-security.org
Wells Fargo recovers after site outage
Wells Fargo’s website experience intermittent outages on Tuesday, while the hacker group claiming responsibility threatened to hit U.S. Bancorp and PNC Financial Services Group over the next two days.
Wells Fargo apologized on Twitter for the disruption, saying it was working to restore access. By Wednesday morning, the site appeared to be functioning.
Original article at HITB
Galaxy S III USSD Wiping Exploit Already Fixed
Samsung’s Galaxy smartphones have been recently said to be vulnerable to a specific exploit that could result in the entire device being wiped clean from the browser through the use of a USSD code.
However, it appears that Samsung was actually capable of patching the USSD exploit, and that most of its Galaxy S III devices are safe from it.
Original article at HITB
Chinese hackers steal files from SCADA maker
A company whose software and services are used to remotely administer and monitor large sections of the energy industry began warning customers last week that it is investigating a sophisticated hacker attack spanning its operations in the United States, Canada and Spain. Experts say digital fingerprints left behind by attackers point to a Chinese hacking group tied to repeated cyber-espionage campaigns against key Western interests.
Original article at HITB