Week in review: Nikon image authentication system cracked, fake AV for mobile platform and the PSN hack

Here’s an overview of some of last week’s most interesting news, articles and reviews:

Wardriving gang targeting small firms
A group of individuals who are believed to have been engaged in wardriving around Seattle and stealing personal and financial information from networks belonging to small area businesses during the last five years, are currently being investigated by the local police.

Targeted attacks increase as spam continues to fall
Targeted attacks intercepted by Symantec.cloud rose to 85 per day, the highest figure since March 2009 when the figure was 107 per day in the run-up to the G20 Summit held in London that year.

Kingpin: How One Hacker Took Over the Billion-Dollar Cybercrime Underground
If you followed our site over the years, you had the opportunity to read a little about some of the protagonists of this book: Max Vision the creator of CardersMarket, Albert Gonzales – the TJX hacker, FBI agent Keith Mularski (a.k.a. MasterSplyntr) who was behind the DarkMarket shutdown, and others. This book will immerse you in their wheelings and dealings spanning a period of a number of years, and show you how their stories ended the way they did.

Iran claims to have been targeted by second worm
If a statement from Gholam-Reza Jalali – the head of Iran’s Passive Defense Organization – is to be believed, it seems that Iran’s computers have been targeted by a new computer worm dubbed “Stars”.

90% of organizations have problems with password resets
With increasing numbers of remote and mobile workers, and more and more complex passwords to remember to log onto corporate networks, employees often need to contact IT support helpdesks to reset their forgotten passwords.

Sony PlayStation Network compromised
A week after shutting down its PlayStation Network (PSN), Sony has finally come clean and admitted that its 70 million users’ personal information has been compromised – including names and addresses, dates of birth and passwords.

Millions stolen from U.S. businesses wired to Chinese companies
Small-to-medium sized businesses and public institutions are being targeted by fraudsters that compromise corporate banking credentials and transfer corporate funds to Chinese economic and trade companies located near the Russian border, warns the FBI.

FBI decimates Coreflood botnet, hints at unprecedented actions
Some two weeks have passed since the U.S. Department of Justice and the FBI have been granted by the federal court the permission to substitute the C&C servers of the Coreflood botnet with servers of their own to send out “kill” commands to the infected computers, and the results are showing.

A closer look at CleanMyMac
CleanMyMac (v1.9.5) is a cleaning tool for Macs that combines Universal Binaries slimming, removal of unneeded Languages, cleaning Logs and Caches, Quick and Secure erasing, Extensions Management, Application Uninstallation, removal of trash left from previously uninstalled applications and more.

Fake AV for mobile platform detected
Fake antivirus software for Windows crop up daily, but it seems that mobile users will also have to start being on the lookout for such scams. CA researchers have spotted a rogue AV solution misusing the well-known Kaspersky Lab name in order to trick Russian speaking users into paying up for bogus mobile protection.

Researchers crack Nikon image authentication system
Credibility of photographic evidence may be extremely important in a variety of situations. Courts, news agencies and insurance companies may accept digitally signed photographs as valid evidence. If such evidence is forged, consequences can be severe.

Rapid adoption of hosted email compliance
Financial institutions are rapidly moving to hosted email compliance and storage services to deal with increasing costs, risks and regulations, according to a study conducted by Forrester Consulting.

Securing the cloud and securing data in the cloud are not the same
This article will take a look at five of the most impactful vulnerabilities of storing data in the cloud, and offer details on why the most important thing for CSOs and security decision makers to consider is how they will effectively secure the data itself.

DSL Reports intrusion compromises over 9000 accounts
DSL Reports – the information and review site on high speed Internet services which operates over 200 forums – has been hit with a blind SQL injection attack, which resulted in the compromise of at least 9000 accounts.

PSN hackers claim to have 2+ million credit card numbers
The PlayStation Network hack is now considered to be one among the biggest data thefts of all time, and according to the claims made by the alleged hackers on underground Internet forums, it seems that some 2.2 million credit card numbers were, indeed, stolen.




Share this