Landmark Leadership Conferences for IT Executives
Cyber Security News of the Week, August 25, 2013
by Fred F. Farkel, Monday, August 26th, 2013


Guest column by Citadel Information Group

Cyber Security News of the Week

Cyber Attack

How Hacktivists Have Targeted Major Media Outlets: From the Washington Post and CNN to the Twitter feeds of the Associated Press and Reuters, hacktivists have news outlets-and their social-media presence-in their crosshairs Dark Reading, August 21, 2013

Cyber Privacy

Latest NSA Revelations Could Help Pending Lawsuits:

Declassified secret U.S. court documents showing the National Security Agency (NSA) violated the Constitution in collecting the Internet communications of Americans could help lawsuits challenging the government surveillance. CIO, August 22, 2013

David Miranda, schedule 7 and the danger that all reporters now face: In a private viewing cinema in Soho last week I caught myself letting fly with a four-letter expletive at Bill Keller, the former executive editor of the New York Times. It was a confusing moment. The man who was pretending to be me – thanking Keller for “not giving a shit” – used to be Malcolm Tucker, a foul-mouthed Scottish spin doctor who will soon be a 1,000-year-old time lord. And Keller will correct me, but I don’t remember ever swearing at him. I do remember saying something to the effect of “we have the thumb drive, you have the first amendment”. The Guardian, August 19, 2013

Why It Will Be Difficult to Create Secure Email: Two major secure e-mail services shut down earlier this month, with the people who run them claiming that e-mail inherently lacks privacy, and to keep operating would give their clients a false sense of security. Bloomberg, August 19, 2013

Security Researcher Hacks Mark Zuckerberg’s Wall To Prove His Exploit Works: Earlier this week, security researcher Khalil Shreateh discovered a Facebook bug that allowed a hacker to post on anyone’s wall – even if they weren’t that person’s friend.

TechCrunch, August 18, 2013

Cyber Warning

‘Instagram for PC’ Application is a Marketing Scam: IDG News Service – An advertisement circulating on Facebook and Twitter for a desktop version of the photo-sharing application Instagram is a scam, according to security vendor Symantec. CIO, August 21, 2013

Cyber Warning – Online Bank Fraud

A Closer Look: Perkele Android Malware Kit: In March 2013 I wrote about Perkele, a crimeware kit designed to create malware for Android phones that can help defeat multi-factor authentication used by many banks. In this post, we’ll take a closer look at this threat, examining the malware as it is presented to the would-be victim as well as several back-end networks set up by cybercrooks who have been using mobile bots to fleece banks and their customers. KrebsOnSecurity, August 19, 2013

Cyber Security Management

How the Snowden Effect is Paralyzing CIOs: Whether you describe Edward Snowden as a hero or a criminal, there is no denying the impact that this self-described computer wizard is having on IT leaders. After all, if even the NSA can fall victim to a tech-savvy millennial, how can they defend their data? CIO, August 21, 2013

Cyber Security Management – Cyber Update

Cisco Patches Serious Vulnerabilities in Unified Communications Manager: IDG News Service – Cisco Systems has released new security patches for several versions of Unified Communications Manager (UCM) to address vulnerabilities that could allow remote attackers to execute arbitrary commands, modify system data or disrupt services. CIO, August 22, 2013

Cyber Security Management – Cyber Defense – PCI 3.0 Draft

PCI 3.0 Draft Guidelines Released: Version 3.0 of the PCI Data Security Standard is coming, and draft guidelines reflect the impact of recent retail breaches. PCI GM Bob Russo explains big changes to ensuring payment card security. BankInfoSecurity, August 19, 2013

Cyber Security Management – Cyber Insurance

Rise in data breaches drives interest in cyber insurance: CSO – Growing awareness of cyber threats and reporting requirements by regulators are driving a newfound interest in insurance products covering data breaches and other computing risks. NetworkWorld, August 15, 2013

National Cyber Security

White House Taps McAfee CTO for Cybersecurity Post: The Obama administration officially tapped a senior executive at the computer-security giant McAfee to be the Department of Homeland Security’s top cybersecurity official. The Wall Street Journal, August 19, 2013

Exit Interview: DHS’s Bruce McConnell: Though others deemed Bruce McConnell as one of the government’s most innovative security thought-leaders, he says his vision of how best to secure IT evolved during his just-ended 4-year tenure at DHS as a senior cybersecurity policymaker. GovInfoSecurity, August 12, 2013

Cyber Underworld

Ex-Soviet hackers play outsized role in cyber crime world: MOSCOW (Reuters) – If you want to hack a phone, order a cyber attack on a competitor’s website or buy a Trojan program to steal banking information, look no further than the former Soviet Union. Yahoo News, August 22, 2013

Cyber Research

A Hack-Proof Internet Exists, Thanks to Quantum Physics: Leave it to the quantum physicists at Los Alamos National Labs to have run for the past two years something that sounded like science fiction: a quantum Internet that promises perfectly secure online communications. BusinessWeek, May 13, 2013

Cyber Misc

Hackers Pay Bounty to Man Who Broke Into Zuckerberg’s Facebook Page: When Khalil Shreateh hacked into Mark Zuckerberg’s Facebook page over the weekend, the company declined to pay him the reward it normally offers to those who find security vulnerabilities. Facebook (FB) apparently frowns on testing hacks on real people, including the chief executive. Bloomberg, August 21, 2013  [Kudos to Marc Maiffret for making this happen.]

How Not to DDoS Your Former Employer: Pro tip: If you’re planning to launch a debilitating denial-of-service attack against your former employer, try not to “like” the Facebook page of the DDoS-for-hire Web service that you intend to use in the assault. KrebsOnSecurity, August 20, 2013

The IT Summit would like to thank Citadel Information Group for allowing us to provide this information to you.

Comments Off on Cyber Security News of the Week, August 25, 2013

Comments are closed.