Information Security News

It would seem that some one, unknown to us as we have searched and searched and can not confirm this or who they are, but they have claimed to of hacked Universal Music Portugal and dumped a load of accounts on to pastebin as well.

Recent charges claiming that Google or Apple are monopolies, are monopolistic or wield monopoly power are simply false. And those who use the M word about these companies are misleading you, writes columnist Mike Elgan.

SYS-CON Media (press release) (blog)

F5 Friday: Goodbye Defense in Depth. Hello Defense in Breadth.
SYS-CON Media (press release) (blog)
#adcfw #infosec F5 is changing the game on security by unifying it at the application and service delivery layer. Over the past few years we've seen firewalls fail repeatedly. We've seen business disrupted, security thwarted, and reputations damaged by ...

Twitter's move to comply with government requests and block tweets in specific countries could blunt its edge as a political tool, but there may be an upside in helping to unmask censorship, some privacy experts said Friday.

Researchers from Lookout Security disagreed with rival Symantec that 13 apps on the Android Market were malicious, instead saying that they showed the same behaviors as other ad-supported apps.

xdev who is part of @b4lc4nh4ck has hacked and dumped a few a heap of accounts from a bmwmoa.org, BMW Motorcycle Owners of America forums. The leak contains 2000+ accounts with this just being a small part of the full 43000 from the vBulletin based forums.

Malicious webpages masquerading as browser updates are being used by attackers as launch pads for Trojan viruses and exploit kits.

More than a dozen malicious Android applications on the Android Market contain a hidden Trojan that can steal information, download more files and display advertisements on the device.

Presented By:

The next level in education with NEC

		We bring you tailor-made solutions built on an in-depth understanding of your unique needs. Learn how NEC?s solutions and expertise in voice and data communications, networks and data storage can elevate your performance at www.nec.com/education
		www.nec.com/education

Ads by Pheedo

Resume Makeover: How an Information Security Professional Can Target CSO Jobs
CIO Australia
Executive resume writer Donald Burns helps an information security professional position his resume for management-level infosec jobs. Cole Hanson's career goal is to become an information security executive. Currently, he serves as a high-level ...

and more »

SEPO aka @anon_4freedom has been on a mission the past few weeks and now has hacked and dumped a load of data from an airport website. the airport is BRNO Airport and the data contains database information and 100 or so administration accounts,

SEPO aka @anon_4freedom has contuined to hack websites and leak data and keeping in fashion they are still targeting higher profile websites such as one of the most recent attacks.

Adscend Media, the defendant in lawsuits filed this week by Facebook and the Washington attorney general, on Friday denied the allegations in the complaints and shifted blame to its affiliates.

Juniper Networks' challenges are due to timing with new product rollouts and shifts in investments from customers and channel partners.

Salesforce.com customers are sounding off about the fact that an upcoming Analytics Edition of the CRM (customer relationship management) software will have an additional price tag, saying that the functionality it includes should be part of their base subscriptions.

The largest-ever Android malware campaign may have duped as many as 5 million users into downloading infected apps from Google's Android Market, Symantec said today.

Cisco is in the midst of a major initiative to better integrate its various collaboration products and to give their interfaces a uniform, consistent design in order to make them easier to use and more effective at helping employees work with each other.

This week's tsunami of tech earnings, led by Apple's jaw-dropping quarterly report, has given market watchers something to cheer about and also points to industry shifts around tablets and cloud computing.

Facebook scammers have started redirecting victims through Amazon's cloud in order to bypass malicious URL filters, according to security researchers from antivirus vendor F-Secure.

Mission Control and other snazzy new Lion features may have gotten all the press, but columnist Ryan Faas has uncovered a slew of lesser-known features that every OS X Lion user should know about.

The Internet juggernaut Facebook could file papers for an initial public offering as early as Wednesday, hoping to raise as much as US$10 billion, the Wall Street Journal reported Friday.

Apple reclaimed the top spot in a brand listing by collecting an estimated $900 million worth of traditional media, social media and Twitter coverage in the fourth quarter of 2011, a measurement company said today.

Aneesh Chopra, who has served for the past two-and-a-half years as the first CTO for the U.S. government, is stepping down in early February.

Symantec pcAnywhere Insecure File Permissions Vulnerability

Lawmakers in Hawaii quietly dropped a bill that would have required Internet service providers to collect the browsing histories of Internet users in the state and store the data for at least two years.

vBSEO 'proc_deutf()' Remote Code Execution Vulnerability

HP Diagnostics Server 'magentservice.exe' Remote Stack Buffer Overflow Vulnerability

AdaCore Security Advisory SA-2012-L119-003 Hash collisions in AWS

GovInfoSecurity.com

Push on for Comprehensive Infosec Bill
GovInfoSecurity.com
By Eric Chabrow, January 28, 2012. The White House wants Congress to enact comprehensive cybersecurity legislation this year, favoring an approach taken by the Democratic-led Senate than a more piecemeal path backed by the Republican-controlled House ...

and more »

Symantec researchers have uncovered additional clues that point to Chinese hacker involvement in attacks against a large number of Western companies, including major U.S. defense contractors.

Security researchers from antivirus vendor Trend Micro have come across a Web-based attack that exploits a known vulnerability in Windows Media Player.

Postfix Admin Multiple SQL Injection and Cross Site Scripting Vulnerabilities

Asterisk SRTP Video Denial Of Service Vulnerability

ComponentOne FlexGrid ActiveX Control Buffer Overflow Vulnerability

Mobile application supports Android smartphones and tablets with virus scanning and protection from Web threats and SMS attacks.

Businesses should disable pcAnywhere, says Symantec
Infosecurity Magazine (US)
Symantec has confirmed that sample source code provided by the hacker known as YamaTough to Infosec Island is genuine Norton AV source code from the 2006 version of its product. As yet, little else is known. Last January, Infosecurity magazine ...

and more »

On Monday I told you how to turn your PC into a DVR by connecting an inexpensive, antenna-powered TV tuner. I also said I'd be back on Wednesday to explain how to connect that PC to your TV. Then I plumb forgot.

A reader letter makes Gibbs sum up why SOPA and PIPA are such bad ideas.

We show you how to set it up and what kind of performance you can expect.

Information Security News

Universal Music Portugal hacked and accounts leaked

Are Google and Apple really 'monopolies'?

F5 Friday: Goodbye Defense in Depth. Hello Defense in Breadth. - SYS-CON Media (press release) (blog)

Twitter's country-specific blocking brings hazards and hope

Lookout Security rebuts rival's Android malware claims

BMW Motorcycle Owners of America Hacked And thousands of Accounts Leaked By xdev @b4lc4nh4ck

Fake Firefox update delivers malware, exploit kits

Malicious Android applications may have infected millions, Symantec warns

Resume Makeover: How an Information Security Professional Can Target CSO Jobs - CIO Australia

Brno Airport Web Site hacked and Data leaked by @anon_4freedom

Suzuki Deutschland Hacked and Data leaked by @anon_4freedom

Adscend denies Facebook, AG allegations

Juniper's financial challenges continue

Salesforce.com customers say new analytics should be included in core fees

Massive Android malware op may have infected 5 million users

Cisco aims to simplify, unify collaboration products' design, interfaces

Wall Street Beat: Tech shines as earnings come in strong

Facebook scammers redirect victims through Amazon's cloud

Dig deep into Lion: The best overlooked, underrated features

Facebook IPO could come next week

Apple reclaims top brand spot after iPhone 4S launch, Jobs' death

White House CTO Chopra leaving his post

Vuln: Symantec pcAnywhere Insecure File Permissions Vulnerability

Hawaii legislators bid aloha to controversial data retention bill

Vuln: vBSEO 'proc_deutf()' Remote Code Execution Vulnerability

Vuln: HP Diagnostics Server 'magentservice.exe' Remote Stack Buffer Overflow Vulnerability

Bugtraq: AdaCore Security Advisory SA-2012-L119-003 Hash collisions in AWS

Push on for Comprehensive Infosec Bill - GovInfoSecurity.com

Researchers unearth more Chinese links to defense contractor attacks

Drive-by-download attack exploits critical vulnerability in Windows Media Player

Vuln: Postfix Admin Multiple SQL Injection and Cross Site Scripting Vulnerabilities

Vuln: Asterisk SRTP Video Denial Of Service Vulnerability

Vuln: ComponentOne FlexGrid ActiveX Control Buffer Overflow Vulnerability

McAfee adds SMS filtering, smartphone threat intelligence to Android security app

Businesses should disable pcAnywhere, says Symantec - Infosecurity Magazine (US)

Connect Your Tuner-Equipped PC to Your HDTV

The real reasons why SOPA and PIPA are real bad

How to set up Intel Smart Response SSD caching technology