ISR News: Google’s Top 10 Malware Sites

Excerpts From IT Pro

Google identifies the ten domains responsible for compromising the most number of sites on the internet. In response to a recent surge in websites being infected with malware, Google has revealed the top ten most popular malware sites in the last couple of months.

ISR News: Credit Card Fraud Explodes

Excerpts From PC World

In 2008, 39 percent of victims saw such charges, more than twice the 15 percent from 2007, according to the study. Opening a new credit account in the victim’s name is still the most common use of a victim’s identity, involving about two-thirds of all ID theft cases. The data is based on the experiences of ID theft victims who contact the ITRC.

ISR News: 109K Pension Files Stolen

Excerpts From Finextra

A laptop containing the unencrypted personal details of 109,000 Pensions Trust members has been stolen from the offices of HR software and services provider NorthgateArinso. NorthgateArinso, which provides the Pension Trust’s computerised admin system, was using the laptop as a database for development, training and performance testing at its offices in Marlow in Buckinghamshire.

ISR News: Twitter Gets Phished Hard

Excerpts From CIO

Both Twitter and Facebook have been hit with phishing attacks in recent days. “The social networking attacks are becoming increasingly common,” said Jamie De Guerre, chief technology officer with antispam vendor Cloudmark. “Spammers are really moving to attack social networks because of the popularity of the social networks and also because they’re not as well defended as most e-mail platforms.”

ISR News: MasterCard’s New P2P Platform

Excerpts From Finextra

Senders initiate transfers to any domestic mobile phone number via SMS message, mobile Web browser or a downloadable MoneySend application. Upon initiation of the transfer, the sender approves the request by entering the MoneySend mobile PIN which only the accountholder knows. Pre-registered recipients then receive a text message confirmation of the transfer. Non registered users get an SMS informing them the payment is pending.

ISR News: Twitter Security Exploit Active

Excerpts From PC World

The “Twitter porn names” game, currently Twitter’s top-trending topic (things that are twittered the most), may be a fun distraction that gives you and your friends something to tweet about. But it also has a security hole — one that is no technical snafu. It could be simple human error, but it’s also possible that this security hole is an example of truly sneaky social engineering.

ISR News: LexisNexis Warns 32k of Breach

Excerpts From KansasCity.com

“I am writing to inform you that sensitive, personally identifiable information about you may have been viewed by a few individuals who should not have access to such information,” said the letter mailed Friday to people whose information is in LexisNexis databases.

ISR News: 225k Identities on Stolen Laptop

Excerpts From NewsOK.com

A laptop computer containing the personal information of about 225,000 Oklahomans was stolen from a city home last week. Oklahoma Housing Finance Agency officials said Wednesday that the names, Social Security numbers, tax identification numbers, birth dates and addresses of clients of the Section 8 Housing Voucher Program were on an employee’s laptop that was stolen in an April 22 burglary.

ISR News: Scalia’s Privacy Double Standards

Excerpts From ABAJournal.com

“When there are so few privacy protections for secondary use of personal information, that information can be used in many troubling ways,” he writes in an e-mail to the ABA Journal. “A class assignment that illustrates this point is not one of them. Indeed, the very fact that Justice Scalia found it objectionable and felt compelled to comment underscores the value and legitimacy of the exercise.”

ISR News: Cybercrime Targets Consumers

Excerpts From Broadband Finder

One expert has advised consumers and web users to be extra vigilant as tough economic times could lead to some people committing acts of cyber crime. A spokesman for Unisys, an international company which specialises in a host of information technology solutions, said even people who you may think are not capable of such deeds could be tempted as the recession continues.

Next Page »

• Categories

  • Anthony M. Freed (25)
  • Bill Brenner (2)
  • Bob Violino (1)
  • Bozidar Spirovski (23)
  • Breach (539)
  • Britt Womelsdorf (5)
  • By Dr. InfoSec (2)
  • Cara Garretson (7)
  • CCCNews (1)
  • Chorey Taylor & Feil (8)
  • Christophe Veltsos (2)
  • Christopher Burgess (7)
  • CIOZone (26)
  • Class Action Lawsuit (111)
  • Cloud computing (102)
  • Coby Royer (5)
  • CTO Forum (9)
  • D&O Liability (590)
  • Daniel Wallace (5)
  • Danny Lieberman (11)
  • DataLine (10)
  • David Alexander (2)
  • Derek Crawford (1)
  • Doug Pollack (7)
  • due diligence (299)
  • Fame Foundry (1)
  • FEATURE ARTICLE (427)
  • Financial (576)
  • Fred Leland (7)
  • Gene Kim (3)
  • Government (362)
  • Greg George (5)
  • H1N1 (15)
  • hackers (528)
  • healthcare (123)
  • Heather Bourgoin (1)
  • HomeATM (8)
  • identity-theft (524)
  • IDExperts (17)
  • Ike Z. Devji (1)
  • Infosec Island Network (27)
  • Insider Threat (479)
  • Internet Crime Complaint Center (1)
  • Internet Security Alliance (60)
  • ISR News (321)
  • Jacqueline Herships (2)
  • Jenni Hesterman (3)
  • John M. Salomon (2)
  • John Watkins (7)
  • John-Patrick Skaar (2)
  • Kaliber Data Security and Compliance Consultants (3)
  • Kat Sanders (2)
  • Ken Leeser (3)
  • Kevin L. Jackson (10)
  • Kevin M. Nixon (21)
  • Larry Ketchersid (1)
  • Laton McCartney (7)
  • Lauren Taylor (1)
  • Linda McGlasson (1)
  • malware (490)
  • Mark Smail (1)
  • Mark Wright (1)
  • Mel Duvall (3)
  • Michael Eggebrecht (3)
  • Michael Lohr (1)
  • Michael O'Conner (4)
  • MicroSolved (1)
  • Mike Duncan (3)
  • Mike Meikle (4)
  • Mike Spinney (1)
  • Military (200)
  • national security (442)
  • PCI (298)
  • PCI Security Standards Council (32)
  • Physical Security (11)
  • privacy (541)
  • Rachel James (10)
  • reach (1)
  • Rebecca Herold (16)
  • Richard Stiennon (44)
  • Robert Siciliano (34)
  • Sarbanes-Oxley (491)
  • ScamStop (2)
  • Sean Wilkins (2)
  • Semyon Dukach (1)
  • Simon Heron (14)
  • Software Associates (11)
  • Steven Fox (19)
  • SUPERAntiSpyware (3)
  • Sybase (6)
  • Symplified (5)
  • The Jester (7)
  • The Privacy Professor (16)
  • Thomas R. Fox (8)
  • Tom Groenfeldt (2)
  • Tom McLain (2)
  • Trefis (13)
  • Tripwire (18)
  • Uncategorized (620)
  • virtualization (90)
  • Webcast (48)

• ISR Headline Index

  • Tracking Google’s Script Kiddie Hackers
  • Newbie Introduction to Digital Forensics Part 2
  • Simple Log Review Checklist Released
  • Press F1 for Help? Microsoft Zero Day Threat!
  • A Newbie’s Introduction to Digital Forensics
  • Security Best Practice: Trust But Verify…
  • Google, Adobe, and Big Oil Under Attack!
  • Building your OWN Malware Lab (Part 2)
  • How Twitter Spam Steals From Google, Yahoo!
  • Tech Stocks Week in Review Featuring iPad
  • DoD Endorses Certification for Hackers
  • Risk Based Enterprise Compliance Programs
  • Data Loss Prevention Has Jumped the Shark
  • File-Sharing Software Threat to Health Privacy
  • Leveraging Open Source for Business Intel

• Recent Comments

  • Tom on (Lack Of) Encryption and The HITECH Act
  • ADMIN on Patriot Hacker Hits Jihad With DDoS Attacks
  • Robert Siciliano on Data Loss Prevention Has Jumped the Shark
  • Karen J. Cox on Data Loss Prevention Has Jumped the Shark
  • Scot McLeod on Outsourcing Breach Response Lowers Costs
  • John Marke on Gartner Tells CIOs to Embrace Social Media
  • Social Engineering and Enterprise Security | CIO – Blogs and … | Enterprise Engineering Addict on Gartner Tells CIOs to Embrace Social Media
  • From Russia, With Smartphones on Top 8 Social Media Security Threats
  • Judith Hoffman on Scam Alert: Rogue Gmail Account Phishing
  • Alec Phillips on Afraid of the Cloud? Ask the Right Questions
• 
  

  Information Security Resources

  Top network security blogs