Monday, April 01, 2013

Cyber Security News for the week of April 1, 2013


Cyber Security News of the Week

From our friends at Citadel Information Group

Cyber Security Management - Citadel On Security

Three Defense Tactics for Improved Workstation Protection: Cyber criminals target users and their workstations. This makes workstation defense a vital tactic in cyber security management. Citadel Information Group, March 27, 2013

Cyber Security Management - HIPAA

HIPAA in a HITECH World: HIPAA Violations on the Rise: Leon Rodriguez, Director Office for Civil Rights, U.S. Department of Health and Human Services shared unexpected insights from early analysis of breach statistics and the audit pilot at the American Healthcare Lawyers Association conference, HIPAA in a HITECH World, along with key messages the new ruling imparts to Covered Entities and Business Associates. This keynote address is summarized from the AHLA's HIPAA in the HITECH World conference in Baltimore, Maryland...Smart Data Collective, March 25, 2013

Cyber Attack

Cyberattacks Seem Meant to Destroy, Not Just Disrupt: American Express customers trying to gain access to their online accounts Thursday were met with blank screens or an ominous ancient type face. The company confirmed that its Web site had come under attack. The New York Times, March 28, 2013

First-Known Targeted Malware Attack On Android Phones Steals Contacts And Text Messages: Malicious software is nothing new to the cyber security world. So-called malware is what unscrupulous folk use to disrupt or gather sensitive data from our desktop computers. Targeted attacks with malware have been relatively unseen on smartphones, those other computers we carry around that are teeming with personal data. Forbes, March 26, 2013

McAfee warns of malware targeting point-of-sale systems: A new piece of custom malware sold on the underground Internet market is being used to siphon payment card data from point-of-sale (POS) systems, according to security researchers from antivirus vendor McAfee. PCWorld, March 24, 2013

Cyber Attack - SpamHaus vs CyberBunker

Devices Like Cable Boxes Figured in Internet Attack: SAN FRANCISCO - In the aftermath this week of one of the most powerful attacks on the Internet, finger-pointing quickly ensued. The New York Times, March 29, 2013

Provocateur Comes Into View After Cyberattack: Sven Olaf Kamphuis calls himself the "minister of telecommunications and foreign affairs for the Republic of CyberBunker." Others see him as the Prince of Spam. The New York Times, March 29, 2013
DDoS Spam Feud Backfires: 'Bulletproof' CyberBunker Busted: Distributed denial-of-service (DDoS) attack proponents beware: Your own websites may also be targeted for disruption. InformationWeek, March 28, 2013

Firm Is Accused of Sending Spam, and Fight Jams Internet: A squabble between a group fighting spam and a Dutch company that hosts Web sites said to be sending spam has escalated into one of the largest computer attacks on the Internet, causing widespread congestion and jamming crucial infrastructure around the world. The New York Times, March 26, 2013

Cyber Espionage

Top Chinese university linked to alleged military cybercrime unit: Reuters has turned up a research connection between Shanghai Jiaotong University and the People's Liberation Army unit suspected of participation in cyberattacks on the West. CNet, March 25, 2013

Cyber Warning

Researchers find new point-of-sale malware called BlackPOS: A new piece of malware that infects point-of-sale (POS) systems has already been used to compromise thousands of payment cards belonging to customers of U.S. banks, according to researchers from Group-IB, a security and computer forensics company based in Russia. PC World, March 28, 2013

Identity Theft

IRS expands Identity Theft Program to all 50 states: The Internal Revenue Service announced Thursday a nationwide expansion of the program designed to help law enforcement obtain tax return data vital to their local efforts in investigating and prosecuting specific cases of identity theft. WBTV, March 28, 2013

Cyber Law - Online Bank Fraud

Missouri Court Rules Against $440,000 Cyberheist Victim: A Missouri court last week handed a legal defeat to a local escrow firm that sued its financial institution to recover $440,000 stolen in a 2009 cyberheist. The court ruled that the company assumed greater responsibility for the incident because it declined to use a basic security precaution recommended by the bank: requiring two employees to sign off on all transfers. KrebsOnSecurity, March 26, 2013

Cyber Law

Draft House Judiciary cybersecurity bill would stiffen anti-hacking law: A draft cybersecurity bill circulating among House Judiciary Committee members would stiffen a computer hacking law used to bring charges against Internet activist Aaron Swartz. The Hill, March 25, 2013

Securing the Village-Events Calendar

ISSA-LA April Lunch Meeting; April 17, 2013. For more information and to register, visit ISSA-LA.

Santa Monica Rotary Club; Lunch Meeting, May 3, 2013: Dr. Stan Stahl, Citadel and ISSA-LA President, will speak on cybersecurity at the weekly meeting of the Santa Monica Rotary Club. In this non-technical talk - It Takes the Village to Secure the Village SM - Dr. Stahl discusses the financial implications of cyber crime, illustrates how cyber criminals take control of a user's computer, describes the limitations of technology, summarizes emerging cyber security laws, regulations and practices, and provides practical tips to lower the risk of becoming a victim.

ISSA-LA Fifth Annual Information Security Summit; May 21, 2013: Join over 500 of your colleagues and peers at the Universal City Hilton. Special Keynote Speaker: Howard Schmidt, former White House CyberSecurity Coordinator. For more information and to register, visit ISSA-LA.


SecurityRecruiter.com's Security Recruiter Blog