Information Security Breach Report – 23 March 2015

A round up of the most recent reports of information security breaches, infosec and privacy stories from around the world.

 

Breaches, Incidents and Alerts:

Decoder of secret information stolen, security agencies panic – http://timesofindia.indiatimes.com/city/surat/Decoder-of-secret-information-stolen-security-agencies-panic/articleshow/46661745.cms

PNP website trashed by hacker – http://technology.inquirer.net/41474/pnp-website-trashed-by-hacker

Swedish city demands £40,000 to repair teenage hacking spree – http://www.theregister.co.uk/2015/03/23/swedish_city_demands_40000_to_clean_up_teenage_hacking/

CREEPS rejoice: Small biz Cisco phones open to eavesdrop 0-day – http://www.theregister.co.uk/2015/03/23/creeps_rejoice_small_biz_phones_open_to_evaesdrop_0day/

Australian online voting system may have FREAK bug – http://www.theregister.co.uk/2015/03/22/ivote_hack/

Personal email ID of Southern Command chief under attack – http://www.punemirror.in/pune/cover-story/Personal-email-ID-of-Southern-Command-chief-under-attack/articleshow/46656392.cms

UAE is top-two victim of regional cyber attacks – http://www.arabianbusiness.com/uae-is-top-two-victim-of-regional-cyber-attacks-586181.html

Tasty Spam: SMS Sex Spammer Moves into the Cloud – http://securitywatch.pcmag.com/spam/333063-tasty-spam-sms-sex-spammer-moves-into-the-cloud

Blunder leads to leak of 500 patient email addresses – http://www.pendletoday.co.uk/news/health/local-health/blunder-leads-to-leak-of-500-patient-email-addresses-1-7151169

ISIS hackers call for homegrown ‘jihad’ against U.S. military, posts names and addresses of 100 service members – http://www.nydailynews.com/news/national/isis-hackers-call-jihad-u-s-military-article-1.2157749?cid=bitly

HACKING BIOS CHIPS ISN’T JUST THE NSA’S DOMAIN ANYMORE – http://www.wired.com/2015/03/researchers-uncover-way-hack-bios-undermine-secure-operating-systems/

Operation Woolen Goldfish, a hacking campaign in the wild – http://securityaffairs.co/wordpress/35128/cyber-crime/operation-woolen-goldfish.html

Cisco Discovers New “PoSeidon” Point of Sale Malware – http://www.securityweek.com/cisco-discovers-new-poseidon-point-sale-malware

Bank of America phishing attack hits customers – http://www.net-security.org/secworld.php?id=18113&utm_source=feedburner&utm_medium=feed&utm_campaign=Feed%3A+HelpNetSecurity+%28Help+Net+Security%29

 

Miscellaneous Infosec stories:

Is the UK gaining on the US in its spate of major cyber security breaches? – http://www.information-age.com/industry/uk-industry/123459208/uk-gaining-us-its-spate-major-cyber-security-breaches

Online ad revenue at risk in war on ‘click fraud’ – http://www.reuters.com/article/2015/03/23/us-advertising-cyberfraud-idUSKBN0MJ0Z820150323?feedType=RSS&feedName=businessNews

The Growth of Cyber Crime in Finance – http://themarketmogul.com/the-growth-of-cyber-crime-in-finance/

DOCUMENTS REVEAL CANADA’S SECRET HACKING TACTICS – https://firstlook.org/theintercept/2015/03/23/canada-cse-hacking-cyberwar-secret-arsenal/

Never assume your company is too small for a security breach – https://enterprisersproject.com/article/2015/3/never-assume-your-company-too-small-security-breach

Target Settlement: What About the Banks? – http://www.bankinfosecurity.co.uk/target-settlement-what-about-banks-a-8038

No More Cyber Attacks! Blackberry On Its Way To Make The Dream Come True – http://www.gurufocus.com/news/325526/no-more-cyber-attacks-blackberry-on-its-way-to-make-the-dream-come-true

Pentagon wraps up new acquisition rules to protect weapons from cyberattacks – http://www.businessinsider.com/r-pentagon-wraps-up-new-acquisition-rules-to-protect-weapons-from-cyberattacks–2015-3?IR=T

Pakistan VS USA Cyber Crime Laws – http://www.slideshare.net/HassnainJamil/pakistan-vs-cyber-crime-laws

Nairobi rejects Beijing plea to extradite cyber suspects – http://mobile.nation.co.ke/news/Nairobi-rejects-Beijing-plea-to-extradite-cyber-suspects/-/1950946/2661906/-/format/xhtml/-/148la71z/-/index.html

4 Reasons Data Breaches are on the Rise – https://www.metascan-online.com/blog/4-reasons-data-breaches-are-rise

 

Tools, Tips and How it’s done:

Ten things you always wanted to know about IP Voice – http://www.theregister.co.uk/2015/03/23/ten_things_you_always_wanted_to_know_about_ip_voice/

Here’s a brief history of the long and short of hacking – http://cio.economictimes.indiatimes.com/news/digital-security/heres-a-brief-history-of-the-long-and-short-of-hacking/46659506

Boffins twist light to carry 2.05 bits in one photon – http://www.theregister.co.uk/2015/03/23/one_photon_two_bits_in_surprising_photonic_twist/

Bridging the Cyber-Security Skills Gap Using the Right Technology – http://www.informationsecuritybuzz.com/bridging-the-cyber-security-skills-gap-using-the-right-technology/

Want to hide your metadata? You probably can’t – http://www.theregister.co.uk/2015/03/23/want_to_protect_yourself_in_a_snoops_paradise_you_probably_cant/

Cybersecurity: Tackling the insider threat – http://www.businessspectator.com.au/article/2015/3/23/technology/cybersecurity-tackling-insider-threat

ASIC issues major cyber guide – http://www.insurancebusinessonline.com.au/news/asic-issues-major-cyber-guide-198382.aspx

CONNECTED CARS: Which are risks for automated vehicles? – http://securityaffairs.co/wordpress/35204/hacking/connected-cars-risks.html

PC security upgrades a welcome antidote to breaches – http://www.seattletimes.com/business/technology/pc-security-upgrades-a-welcome-antidote-to-breaches/

IoT will connect 1.1 billion devices in 2015: Gartner – http://cio.economictimes.indiatimes.com/news/internet-of-things/iot-will-connect-1-1-billion-devices-in-2015-gartner/46644971

Firms stand to lose billions through fraud: bank chief – http://www.lawgazette.co.uk/law/firms-stand-to-lose-billions-through-fraud-bank-chief/5047789.fullarticle

Social Engineering 101 Frame and Posture – https://saverocity.com/travel/social-engineering-101-frame-and-posture/

Frankenimage – Reconstructing images with pieces from an image database – http://gimlids.github.io/frankenimage/

 

Miscellaneous Privacy stories:

Defence ministry sounds red alert on web spying – http://timesofindia.indiatimes.com/india/Defence-ministry-sounds-red-alert-on-web-spying/articleshow/46657148.cms

Federal government privacy breaches soar to record high – http://ottawacitizen.com/news/politics/federal-government-privacy-breaches-soar-to-record-high

Listen – Kevin Mitnick – CeBIT Radio – Defending Privacy – https://www.mitnicksecurity.com/S=0/site/news_item/listen-cebit-worlds-most-famous-hacker-kevin-mitnick-defending-privacy

Despite Wave Of Data Breaches, Official Says Patient Privacy Isn’t Dead – http://www.databreaches.net/despite-wave-of-data-breaches-official-says-patient-privacy-isnt-dead/

 

Safeguarding Children and School E-Safety stories:

Cyber bullies playing truant with teens in wonder years – http://www.thehindu.com/news/cities/Delhi/cyber-bullies-playing-truant-with-teens-in-wonder-years/article7019821.ece?ref=tpnews

Cyber Snoops Watching Your Kids – http://pjmedia.com/tatler/2015/03/21/cyber-snoops-watching-your-kids/

 

If you would like this report sent to your inbox each morning, email me at jon.fisher@srm-solutions.com

You can see all previous issues of this blog at http://blog.srm-solutions.com/

or www.jonfisherthoughts.co.uk

My Linkedin Profile is uk.linkedin.com/in/jonfisher99/

Posted 4 years ago on · Permalink