Landmark Leadership Conferences for IT Executives
Cyber Security News of the Week, December 22, 2013
by Fred F. Farkel, Monday, December 23rd, 2013


Guest column by Citadel Information Group

Cyber Crime

Cards Stolen in Target Breach Flood Underground Markets: Credit and debit card accounts stolen in a recent data breach at retail giant Target have been flooding underground black markets in recent weeks, selling in batches of one million cards and going for anywhere from $20 to more than $100 per card, KrebsOnSecurity has learned. KrebsOnSecurity, December 20, 2013

Prosecutor Says Kate Middleton’s Phone Was Hacked: LONDON – A prosecutor in a high-profile trial on Thursday accused Rupert Murdoch’s News of the World tabloid of hacking into the voice mail of the Duchess of Cambridge when she was known as Kate Middleton, before her marriage to Prince William, second in line to the throne. The New York Times, December 19, 2013

Washington Post Servers Infiltrated, Employee Credentials Stolen: The Washington Post late today reported that its servers were hacked and employee usernames and passwords were compromised in the attack, which was detected by a contractor that monitors the news organization’s network. DarkReading, December 18, 2013

L.A. Gay & Lesbian Center Information Systems Compromised By Cyberthieves: LOS ANGELES, Dec. 10, 2013 /PRNewswire-USNewswire/ – The L.A. Gay & Lesbian Center was recently the victim of a sophisticated cyberattack that, according to data security and technology experts, was designed to collect credit card, Social Security numbers and other financial information, although there is no evidence that anyone’s information was actually accessed or acquired. Dark Reading, December 10, 2013

Cyber Privacy

N.S.A. Dragnet Included Allies, Aid Groups and Business Elite: Secret documents reveal more than 1,000 targets of American and British surveillance in recent years, including the office of an Israeli prime minister, heads of international aid organizations, foreign energy companies and a European Union official involved in antitrust battles with American technology businesses. The New York Times, December 20, 2013

$10m NSA contract with security firm RSA led to encryption ‘back door.’ As a key part of a campaign to embed encryption software that it could crack into widely used computer products, the National Security Agency arranged a secret $10m contract with RSA, one of the most influential firms in the computer security industry, Reuters has learned. The Guardian, December 20, 2013

Obama Is Urged to Sharply Curb N.S.A. Data Mining: WASHINGTON – A panel of outside advisers urged President Obama on Wednesday to impose major oversight and some restrictions on the National Security Agency, arguing that in the past dozen years its powers had been enhanced at the expense of personal privacy. The New York Times, December 18, 2013

Revelations That Ikea Spied on Its Employees Stir Outrage in France: PARIS – Virginie Paulin’s voice still trembles when she recounts how she was fired from what she considered her dream job at Ikea in France. The New York Times, December 15, 2013

NSA Can ‘Easily’ Break Cellphone Encryption, Report Says: The U.S. National Security Agency (NSA) has the technical capacity to crack the most commonly-used cellphone encryption technology, and in doing so it can decode and access the content of calls and text messages, according to a Washington Post report published Friday. Mashable, December 13, 2013

Help Bring Privacy Laws Into 21st Century: Lost in the ongoing media firestorm over the National Security Agency’s domestic surveillance activities is the discussion about concrete steps to bring the nation’s communications privacy laws into the 21st Century. Under current laws that were drafted before the advent of the commercial Internet, federal and local authorities can gain access to mobile phone and many email records without a court-issued warrant. In this post, I’ll explain what federal lawmakers and readers can do to help change the status quo. KrebsOnSecurity, December 11, 2013

Tech Giants Issue Call for Limits on Government Surveillance of Users: Eight prominent technology companies, bruised by revelations of government spying on their customers’ data and scrambling to repair the damage to their reputations, are mounting a public campaign to urge President Obama and Congress to set new limits on government surveillance. The New York Times, December 9, 2013

Identity Theft

Chase to Limit Use of Debit Cards From Target Breach: JPMorgan Chase on Saturday notified customers who used debit cards at Target stores during the recent security breach that it was limiting use of the cards to cash withdrawals of $100 a day and purchases totaling $300 a day. The New York Times, December 21, 2013

Financial Fraud

“But I don’t bank online!”: You might think that someone who doesn’t choose to have online access to his or her bank account would be safe from online banking fraud. ABA Banking, December 13, 2013

Cyber Warning

Botnet Enlists Firefox Users to Hack Web Sites: An unusual botnet that has ensnared more than 12,500 systems disguises itself as a legitimate add-on for Mozilla Firefox and forces infected PCs to scour Web sites for security vulnerabilities, an investigation by KrebsOnSecurity has discovered. KrebsOnSecurity, December 16, 2013

Securing the Village – ISSA-LA

Richard Greenberg, CISSP, Named ISSA Fellow: The Los Angeles Chapter of the Information Security Association (ISSA-LA) announced that Richard Greenberg has been named a Fellow by the Information Systems Security Association (ISSA). ISSA is the community of choice for international cybersecurity professionals dedicated to advancing individual growth, managing technology risk, and protecting critical information and infrastructure. PR Log, December 18, 2013

National Cyber Security

Officials Say U.S. May Never Know Extent of Snowden’s Leaks: WASHINGTON – American intelligence and law enforcement investigators have concluded that they may never know the entirety of what the former National Security Agency contractor Edward J. Snowden extracted from classified government computers before leaving the United States, according to senior government officials. The New York Times, December 14, 2013

The IT Summit would like to thank Citadel Information Group for allowing us to provide this information to you.

Comments Off on Cyber Security News of the Week, December 22, 2013

Comments are closed.