Landmark Leadership Conferences for IT Executives
Cyber Security News of the Week, April 27, 2014
by Fred F. Farkel, Monday, April 28th, 2014


Guest column by Citadel Information Group

Cyber Crime

States: Spike in Tax Fraud Against Doctors: An unusual number of physicians in several U.S. states are just finding out that they’ve been victimized by tax return fraud this year, KrebsOnSecurity has learned. An apparent spike in tax fraud cases against medical professionals is fueling speculation that the crimes may have been prompted by a data breach at some type of national organization that certifies or provides credentials for physicians. KrebsOnSecurity, April 22, 2014

Identity Theft

Child Identity Theft: It’s Real and It’s Scary: Identity theft has doubled in the past year for children 5 and younger. It’s difficult for many people to fathom how children could become victims when they are too young to even apply for a credit card, but criminals find ways to get around this fact. Information on an application is often taken at face value, and some reviewers fail to ask for sufficient proof of identity or age. WallStreetCheat, April 26, 2014

Cyber Warning

VULNERABILITY IN VIBER ALLOWS INTERCEPT OF IMAGES, VIDEOS: A vulnerability exists in Viber, a messaging and VoIP application similar to WhatsApp, that could allow an attacker to view sensitive information shared between users like images, videos and location information. ThreatPost, April 25, 2014

Bitcoin-mining malware reportedly found on Google Play: Fake wallpaper apps turned phones into bots for the power- and computationally intensive process of producing crypto-currency, a mobile security firm warns. Cnet, April 24, 2014

Phishers Divert Home Loan Earnest Money: It looks like it’s time to update my Value of a Hacked Email Account graphic: Real estate and title agencies are being warned about a new fraud scheme in which email bandits target consumers who are in the process of purchasing a home. KrebsOnSecurity, April 23, 2014

AOL EMAIL HACKED BY SPOOFERS TO SEND SPAM: In Internet years, AOL and its webmail counterpart AOL Mail are beyond ancient at this point. A relic of electronic mail history, the majority of users have long since jumped ship for Gmail or Yahoo. ThreatPost, April 22, 2014

Warning: Malware Campaign targeting Jailbroken Apple iOS Devices: A new piece of malicious malware infection targeting jailbroken Apple iOS devices in an attempt to steal users credentials, has been discovered by Reddit users. The Hacker News, April 18, 2014

Cyber Threat

EXPLOITING FACEBOOK NOTES TO LAUNCH DDOS: The way Facebook Notes handles HTML image tags could could give an attacker the ability to launch distributed denial of service attacks against external sources, using the power of the massive network to amplify the attack. ThreatPost, April 25, 2014

Financial Cyber Security

SEC seeks data on cyber security policies at Wall Street firms: Cyber defenses at more than 50 broker-dealers and investment advisers will be assessed by federal examiners. ComputerWorld, April 21, 2014

FDIC Urges Financial Institutions to Utilize Available Cyber Resources: The Federal Deposit Insurance Corporation issued the following news release:. The Federal Deposit Insurance Corporation today urges financial institutions to actively utilize available resources to identify and help mitigate potential cyber-related risks. As discussed in yesterday’s meeting of the FDIC Advisory Committee on Community Banking,… InsuranceNewsNet, April 11, 2014

Cyber Security Management

Employees Slacking on Security of Their Mobile Devices: Many employees still don’t take BYOD security seriously, a new survey shows: Nearly 45% have accessed sensitive corporate data on their personal devices via unsecured networks, such as those at airports or coffee shops. DarkReading, April 24, 2014

Cyber Security Management – Cyber Update

APPLE FIXES SERIOUS SSL ISSUE IN OSX AND IOS: Apple has fixed a serious security flaw that’s present in many versions of both iOS and OSX and could allow an attacker to intercept data on SSL connections. The bug is one of many that the company fixed Tuesday in its two main operating systems, and several of the other vulnerabilities have serious consequences as well, including the ability to bypass memory protections and run arbitrary code. ThreatPost, April 22, 2014

Cyber Security Management – HIPAA

FBI Warning Highlights Healthcare’s Security Infancy: Cyberattacks likely to increase against healthcare providers, FBI warns, and experts say it’s no surprise since industry’s security posture is about a decade behind that of the financial services sector. DarkReading, April 25, 2014

Securing the Village

Why Obama needs to take on cybersecurity like Kennedy took on the moon: In 1961, President Kennedy declared that it was America’s intention to send a man to the moon, and within eight years, we had done it. His aim wasn’t simply to gain bragging rights – instead, he and many others believed that our national security was at stake. VentureBeat, April 25, 2014

After Heartbleed, Tech Giants Fund Open Source Security: In the wake of the Heartbleed vulnerability, 12 tech giants — including Facebook, Google, IBM, and Microsoft — each pledge $100,000 annually to improve core open source technology such as OpenSSL. DarkReading, April 25, 2014

Today on CLBR: The State of Cyber Security with Stan Stahl: Stan Stahl, President of Citadel Information Systems, returns to discuss the latest Cyber Security issues and the upcoming ISSA-LA Information Security Summit VI which is the premier information security event in Los Angeles. CyberLawRadio, April 22, 2014

Cyber Misc

Friends, and Influence, for Sale Online: Whoever said, “Money can’t buy you friends,” clearly hasn’t been on the Internet recently. The New York Times, April 20, 2014

Cyber Calendar

ISSA-LA Sixth Annual Information Security Summit, May 16, Universal City Hilton. Speakers include Richard Clarke, former Assistant to the President; Jackie Lacey, Los Angeles County District Attorney;Jeremiah Grossman, Founder & iCEO, WhiteHat SecurityMarcus RanumCSO, Tenable; Marc MaiffretCTO, Beyond Trust; Jim Manico, Secure Coding Instructor and Author, Global OWASP Board of Directors; Ira WinklerISSA International PresidentAndrea HoyISSA International Vice-President. For more information and to register, visit ISSA-LA.

Copyright © 2014 Citadel Information Group. All rights reserved.

The IT Summit would like to thank Citadel Information Group for allowing us to provide this information to you. The post Cyber Security News of the Week, April 27, 2014 appeared first on Citadel Information Group.

Comments Off on Cyber Security News of the Week, April 27, 2014

Comments are closed.