Monday, November 19, 2012

Cyber Security News for the Week of November 19, 2012

From our friends at Citadel Information Group

Cyber Warning

E-mailed malware disguised as group coupon offers on the rise: Be sure to double check that Groupon you received in your e-mail - spammers are using the popularity of e-mailed advertisements for group discount deals to send more malware. Cnet, November 13, 2012

Identify Theft

NASA Says Staff Information Was on Stolen Laptop: NASA told its staff this week that a laptop containing sensitive personal information for a large number of employees and contractors was stolen two weeks ago from a locked vehicle. The New York Times, November 14, 2012

Cyber Security Management

IG: South Carolina Lacks IT Security Plan: South Carolina's government, victimized by a cyber-attack earlier this year that exposed the Social Security numbers of some 3.6 million taxpayers, lacks a statewide information security program, which places its digital assets at risk, the state Office of Inspector General says. GovInfoSecurity, November 14, 2012

Cyber Update

Microsoft Patches 19 Security Holes: Microsoft today issued six software updates to fix at least 19 security holes in Windows and other Microsoft products. Thirteen of those vulnerabilities earned a "critical" rating, which means miscreants or malicious code could leverage them to break into vulnerable systems without any help from users. KrebsOnSecurity, November 13, 2012

Cyber Privacy

Trying to Keep Your E-Mails Secret When the C.I.A. Chief Couldn't: If David H. Petraeus couldn't keep his affair from prying eyes as director of the Central Intelligence Agency, then how is the average American to keep a secret? The New York Times, November 17, 2012

Cyber Underworld

Infamous Hacker Heading Chinese Antivirus Firm?: What does a young Chinese hacker do once he's achieved legendary status for developing Microsoft Office zero-day exploits and using them to hoover up piles of sensitive data from U.S. Defense Department contractors? Would you believe: Start an antivirus firm? KrebsOnSecurity, November 11, 2012

National Cyber Security

Cybersecurity Bill Killed, Paving Way for Executive Order: U.S. Senate Republicans yesterday killed cybersecurity legislation backed by President Barack Obama, increasing prospects the White House will implement some of the bill's provisions through an executive order. Bloomberg, November 14, 2012

Cyber Espionage

Malware Spy Network Targeted Israelis, Palestinians: Researchers in Norway have uncovered evidence of a vast Middle Eastern espionage network that for the past year has deployed malicious software to spy on Israeli and Palestinian targets. KrebsOnSecurity, November 12, 2012

Securing the Village-Events Calendar

OWASP Monthly Meeting; Nov 28: Join OWASP at their monthly meeting.

Cyber Security Awareness-Continuing CPA Education; Dec 3, 2012: Dr. Stan Stahl, Citadel and ISSA-LA President, will speak on cybersecurity at the lunch meeting of the West San Gabriel Valley (Pasadena) Discussion Group. In this non-technical presentation, Dr. Stahl will discuss cyber security risks and what CPAs need to do to protect themselves and their clients.

Imperial Capital's 2012 Security Investor Conference; Dec 12-13, 2012: Waldorf Astoria, New York. Featured keynote speaker, Richard A. Clark.  For more information and to register, click here.

ISSA-LA December Lunch Meeting; Dec 19: Join ISSA-LA at Les Freres Taix French Restaurant for our monthly meeting.

Santa Monica Rotary Club; May 3, 2013: Dr. Stan Stahl, Citadel and ISSA-LA President, will speak on cybersecurity at the weekly meeting of the Santa Monica Rotary Club. In this non-technical talk - It Takes the Village to Secure the Village SM - Dr. Stahl discusses the financial implications of cyber crime, illustrates how cyber criminals take control of a user's computer, describes the limitations of technology, summarizes emerging cyber security laws, regulations and practices, and provides practical tips to lower the risk of becoming a victim.

ISSA-LA Fifth Annual Information Security Summit; May 21, 2013: SAVE THE DATE. Join over 500 of your colleagues and peers at the Universal City Hilton.'s Security Recruiter Blog