http://nakedsecurity.sophos.com/2011/11/28/intuit-free-trial-email-launches-malware-attack/
http://www.nzherald.co.nz/business/news/article.cfm?c_id=3&objectid=10769803
Facebook agrees to tighten privacy
Facebook agreed to tighten its privacy policies in order to settle charges that it abused users' personal data, the US Federal Trade Commission had said.
http://nakedsecurity.sophos.com/2011/11/29/hp-laserjet-printers-at-risk-of-fiery-hacker-attack/
HP LaserJet printers at risk of fiery hacker attack
In that demonstration, a thermal switch shut the printer down - basically, causing it to self-destruct - before a fire started.
In another demonstration, Cui showed how printing a tax return on a compromised printer could lead to the information being sent to a second computer under the control of a hacker. The second PC then scanned the document for sensitive data and published it to a Twitter feed.
http://redtape.msnbc.msn.com/_news/2011/11/29/9076395-exclusive-millions-of-printers-open-to-devastating-hack-attack-researchers-say
https://www.computerworld.com/s/article/9222293/Duqu_hackers_scrub_evidence_from_command_servers_shut_down_spying_op
"The attackers wiped every single server they had used as far back as 2009," Kaspersky said, referring to the Oct. 20 cleaning job.
The hackers not only deleted all their files from those systems, but double-checked afterward that the cleaning had been effective, Kaspersky noted. "Each [C&C server] we've investigated has been scrubbed,"
http://www.theregister.co.uk/2011/11/25/google_secure_search/
Scareware slingers stumped by Google secure search
Last month Google made secure search the default option for logged in users – mostly to improve privacy protection. But there is a beneficial side-effect - it is harder for fraudsters to manipulate the search engine rankings of scam sites.
Users signed into Google are now offered the ability to send search queries over secure (https) connections last. Search queries sent while using insecure networks, such as Wi-Fi hotspots, are no longer visible (and easily captured) by other users on the same network.
All so ixquick HTTPS, DuckDuckGo SSL, Blekko SSL.
http://nakedsecurity.sophos.com/2011/11/25/paypal-says-you-have-changed-your-email-address/
Reason to be careful if 'PayPal' says you have changed your email address
PayPal is one of the most phished brands on the internet, as unlike traditional banks it has a truly global presence increasing the chances of a scammer successfully hooking a victim when they spam out their attacks en masse.
PayPalTo its credit, PayPal offers advice about phishing on its website, and has even created a "Can you spot phishing?" challenge to help educate its users about the dangers.
The PayPal website asks that if you receive a spoof email to forward it to their security team.
Make sure that you take care when receive unsolicited emails, seemingly from PayPal. It could be that in your haste to fix a security problem you are handing your credentials over to a criminal.
https://www.paypal.com/fightphishing
http://nakedsecurity.sophos.com/2011/11/25/13-million-maplestory-players-at-risk-after-hack-casting-a-cloud-over-nexons-ipo/
If you're about to float your video game company on the stock exchange, probably the last thing you want is for a hacker to break into the personal details of some 13 million of your players.
But that's exactly what has happened to South Korean firm Nexon, which runs the massively-popular MMORPG "MapleStory".
http://www.zdnet.com/blog/london/uk-government-8216planning-to-launch-stuxnet-like-attacks-against-hostile-states/1128
UK government ‘planning to launch Stuxnet-like attacks’ against hostile states
Though Russia and China were not named in the cyber-security strategy, Baroness Neville-Jones, the UK’s former security minister, previously named the two countries as two of the “worst culprits” in cyber-attacks on the UK’s networks.
2.5: Some of the most sophisticated threats to the UK in cyberspace come from other states which seek to conduct espionage with the aim of spying on or compromising our government, military, industrial and economic assets, as well as monitoring opponents of their own regimes.
https://threatpost.com/en_us/blogs/unlucky-supermarket-chain-tells-customers-self-service-checkout-lanes-20-stores-were-outfitted
Unlucky: Supermarket Chain Tells Customers That Self-Service Checkout Lanes In 20 Stores Were Outfitted With Card Skimmers
authorities in New York arrested three men on charges that they planted card skimming devices on ATMs in Manhattan. The three men, aged 31, 28 and 24, were charged in an 81-count indictment with crimes including identity theft, grand larceny and burglary in what authorities described as a five day "skimming spree" across Manhattan in January, 2011. In February, a criminal gang planted card skimmers in close to 200 gas pumps in Utah.
https://threatpost.com/en_us/blogs/new-java-vulnerability-coming-bundled-exploit-kits-112811
https://threatpost.com/en_us/blogs/facebook-worm-spreading-installing-zeus-bot-112911
A new worm has popped up on Facebook, using apparently stolen user credentials to log in to victims' accounts and then send out malicious links to their friends. The worm also downloads and installs a variety of malware on users' machines, including a variant of the Zeus bot.
https://threatpost.com/en_us/blogs/zeus-now-using-autorun-infection-numbers-rise-110111
Microsoft’s Malicious Software Removal Tool (MSRT) removed the common banking Trojan horse program from 185,000 computers in September
Autorun infection numbers initially tumbled in February after Microsoft pushed a Windows’ update that changed the function’s behavior. But that reduction appears to have been short lived.
https://threatpost.com/en_us/blogs/feds-take-down-131-counterfeiting-sites-112811?utm_source=Home+Page&utm_medium=Top+Graphic+Bar&utm_campaign=Position+4
http://www.theregister.co.uk/2011/11/28/feds_seize_130_sites_in_cyber_monday_crackdown/
Black Friday that signals the start of the US holiday shopping season.
Seizedservers.com is an ICE-owned name server that directs all traffic to a place-holder stating that "This domain name has been seized by ICE – Homeland Security Investigations" and warning of the various criminal penalties associated with copyright infringement.
Seized domains in this round primarily relate to the sale of branded goods. They include discount-louisvuitton-handbag.com, dvdsetonline.com and googlenfljerseys.com.
The seizures come a year after the first big ICE crackdown, in which it took control of over 80 domains. The seizedservers.com name server currently hosts 372 domains, according to data compiled by DomainTools.
https://threatpost.com/en_us/blogs/hacker-says-texas-town-used-three-digit-password-secure-internet-facing-scada-system-112011
The hacker, using the handle "pr0f" took credit for a remote compromise of supervisory control and data acquisition (SCADA) systems used by South Houston, a community in Harris County, Texas. Communicating from an e-mail address tied to a Romanian domain, the hacker told Threatpost that he discovered the vulnerable system using a scanner that looks for the online fingerprints of SCADA systems. He said South Houston had an instance of the Siemens Simatic human machine interface (HMI) software that was accessible from the Internet and that was protected with an easy-to-hack, three character password.
"This was barely a hack. A child who knows how the HMI that comes with Simatic works could have
https://threatpost.com/en_us/blogs/hacking-group-teamp0ison-leaks-email-passwords-un-staff-government-officials-112911
Hacking Group TeamP0ison Leaks Email, Passwords for UN Staff, Government Officials
UNThe e-mail addresses and account passwords for more than one thousand United Nations staff and other users of a UN development Web site were leaked online by the hacking group TeamP0ison, which has been linked to past attacks on governments in the U.S. and India.
The information, comprising was posted to the online file sharing site Pastebin.com on MOnday, along with a message castigating the UN as a "Senate for Global Corruption," a "fraud" and a "beast that must be stopped."
https://threatpost.com/en_us/blogs/stolen-government-certificate-used-sign-malware-111411
F-Secure researchers claim that malware spreading via malicious PDF files is signed with a valid certificate stolen from the Government of Malaysia
http://www.guardian.co.uk/media/2011/nov/28/peter-hain-computer-private-investigators?INTCMP=SRCH
Peter Hain warned computer may have been hacked by private detectives
Police tell former Northern Ireland secretary he may have been targeted by investigators employed by News International
https://threatpost.com/en_us/blogs/malware-writers-use-block-cipher-latin-america-111011
https://threatpost.com/en_us/blogs/google-implements-forward-secrecy-112311
http://googleonlinesecurity.blogspot.com/
https://threatpost.com/en_us/blogs/researchers-demonstrate-tor-network-hijack-method-102411
Researchers at the Hackers To Hackers Conference in Brazil will detail a method of hijacking the TOR anonymity network, potentially putting its users at risk, while The Tor Project accuses one of the researchers of irresponsible disclosure.
At Hackers to Hackers, Filiol and fellow researchers Oluwaseun Remi-Omosowon and Leonard Mutembei will demonstrate a method for hijacking part of a Tor network using self propagating malicious program to infect Tor nodes, then forcing network traffic through the nodes they control using denial of service attacks on uninfected nodes.
This isn't the Tor Project's first brush with security concerns. A number of the network's servers were compromised in early 2010 prompting the Tor Poject to require its users to upgrade to a more secure client.
https://threatpost.com/en_us/blogs/researchers-publish-new-attack-xml-encryption-102411
Researchers in Germany have developed an attack that enables them to decrypt supposedly private messages sent via XML. Their attack affects messages encrypted with any of the algorithms supported by the XML encryption standard, including DES and AES.