Friday 23 December 2011

Blocking Twitter, Facebook during riots not such a hot idea - MPs • The Register

Blocking Twitter, Facebook during riots not such a hot idea - MPs • The Register

City of Edinburgh Council reports cyber attack against debt advice records - SC Magazine UK

City of Edinburgh Council reports cyber attack against debt advice records - SC Magazine UK

Tuesday 6 December 2011

Symantec Intelligence Report: November 2011

http://www.symantec.com/content/en/us/enterprise/other_resources/b-intelligence_report_11-2011.en-us.pdf

Report highlights
  • Spam – 70.5 percent (a decrease of 3.7 percentage points since October 2011): page 13
  • Phishing – One in 302.0 emails identified as phishing (an increase of 0.04 percentage points since October 2011): page 16
  • Malware – One in 255.8 emails contained malware (a decrease of 0.03 percentage points since October 2011): page 17
  • Malicious Web sites – 4,915 Web sites blocked per day (an increase of 47.8 percent since October 2011): page 19
  • A Review of Targeted Attacks in 2011: page 2
  • Revolution of Russian Phone Number Spam: page 10
  • Best Practices for Enterprises and Users: page 22

C|Net Download.Com is now bundling Nmap with malware!


http://seclists.org/nmap-hackers/2011/5

Monday 14 November 2011

CrySyS Duqu Detector Toolkit

http://www.crysys.hu/duqudetector.html

Anonymous will rein in Facebook 'Fawkes Virus' - The Inquirer

Anonymous will rein in Facebook 'Fawkes Virus' - The Inquirer

Microsoft Security Advisory (2641690): Fraudulent Digital Certificates Could Allow Spoofing

Microsoft Security Advisory (2641690): Fraudulent Digital Certificates Could Allow Spoofing

Former GCHQ director claims security ignorance is holding back business - SC Magazine UK

Former GCHQ director claims security ignorance is holding back business - SC Magazine UK

Cyclist found guilty in drug lab hacking case - The Inquirer

Cyclist found guilty in drug lab hacking case - The Inquirer

Feds shutter DNS malware scam that infected 4 million PCs • The Register

Feds shutter DNS malware scam that infected 4 million PCs • The Register

Thursday 27 October 2011

Police officer acted like 'sexual predator' - Crime, UK - The Independent

Police officer acted like 'sexual predator' - Crime, UK - The Independent

Struggling Wikileaks stops publishing classified files

BBC News - Struggling Wikileaks stops publishing classified files

Researchers Found Way to ID Skype Users Who Also Use BitTorrent | Threat Level | Wired.com

Researchers Found Way to ID Skype Users Who Also Use BitTorrent Threat Level Wired.com
Research paper: http://cis.poly.edu/~ross/papers/skypeIMC2011.pdf

Reported SOAP Request Parsing Vulnerabilities

Reported SOAP Request Parsing Vulnerabilities <RESOLVED>

Anonymous Attacks Child Porn Websites and Publish User Names | ZDNet

Anonymous Attacks Child Porn Websites and Publish User Names ZDNet

Time to wake up | Security, data and privacy | BCS - The Chartered Institute for IT

Time to wake up Security, data and privacy Subject areas Opinion, News, Analysis BCS - The Chartered Institute for IT

Curry, chips and cheap PCs | Security, data and privacy | BCS - The Chartered Institute for IT

Curry, chips and cheap PCs Security, data and privacy Subject areas Opinion, News, Analysis BCS - The Chartered Institute for IT

Top 35 Mitigation Strategies: DSD Defence Signals Directorate

Top 35 Mitigation Strategies: DSD Defence Signals Directorate

Tuesday 30 August 2011

Thursday 6 January 2011

Global spam e-mail levels suddenly fall

BBC News - Global spam e-mail levels suddenly fall
This may be temporary or an indication that other forms of distribution are being used? Time will tell...

Renault says espionage threatens its 'strategic assets'

BBC News - Renault says espionage threatens its 'strategic assets'

Europol to Reveal Cybercrime Risk Level - PCWorld Business Center

Europol to Reveal Cybercrime Risk Level - PCWorld Business Center
Here is the report abridged:
http://www.europol.europa.eu/publications/Serious_Crime_Overviews/Internet_Facilitated_Organised_Crime_iOCTA.pdf
And the full version:
http://www.europol.europa.eu/publications/European_Organised_Crime_Threat_Assessment_(OCTA)/OCTA2009.pdf

US agency hunts down international cybercrime ring - Security - News

US agency hunts down international cybercrime ring - Security - News

Hold a cellular network to ransom

This is an interesting article about a presentation at the chaos computer club about crashing simple feature phones with malformed payloads in SMS messages. What is interesting is the use of an open source GSM base station. Now how do you know that the base station you are connecting to is actually provided by Orange/vodaphone/whoever. I'm sure the GSM protocol is secure enough to handle rogue base stations :)

Threat level link