Welcome to the first edition of our new weekly series of posts “Cool News Story Bro!”. The idea with this section is pretty simple. We try to keep up with security news, and we would like to share some of the more interesting (to us, at least) and relevant stories we read about from the previous week. We will provide a sentence or two as to why we found the story relevant or interesting, and a link to the source where you can read the entire article (because we want the author to get the credit, of course). Simple, right? So, let’s kick this off!
- This was an interesting article, by Brian Krebs, one of my favorite security bloggers. It takes an inside look into the economy of professional card shops (shops that specialize in selling stolen credit cards). It’s always interesting to see the inner workings of the economy that supports these types of crimes.
- Read More @ http://krebsonsecurity.com/2014/06/peek-inside-a-professional-carding-shop/
- So, I will admit I am a fan of MBAM (MalwareBytes Anti-Malware) since back in the day when I used to do tech support. They also tend to have some pretty good posts on their blog as well. So, when I came across this article it peaked my interest. Basically, it’s their version of a tool like EMET, except it supports Java. Since the home version is free, I figured it would be worthwhile to play around with it. It was tested by Kafeine from Malware.dontneedcoffee.com, and fared well against the Exploit Kits thrown at it. Their claim that it stops Zero-Day exploits is yet to be confirmed though, but at the very least it’s another layer of security for your average home user, because AV is hardly enough these days.
- Read More @ http://blog.malwarebytes.org/news/2014/06/introducing-malwarebytes-anti-exploit
- Another week, another breach. This time the lucky winner is P.F Chang’s Chinese restaurant chain. The significance of this one is pretty obvious. If you like to eat out, and are a fan of Chinese food…you might be affected, so we will spread the word, courtesy of Brian Krebs again.
- Read More @ http://krebsonsecurity.com/2014/06/p-f-changs-confirms-credit-card-breach/
- This is interesting simply due to the cryptic nature of the events surrounding the TrueCrypt project. There has been a lot of talk and theories about what happened, and no clear answer has emerged. As a fan of TC, and someone who hopes that the project is kept alive somehow, I am quite interested in seeing how this story develops. Latest development seem to indicate that it might be heading to Switzerland, as a pair of Swiss researchers are attempting to do what they can do keep it alive.
- Read More @ http://nakedsecurity.sophos.com/2014/06/12/is-truecrypt-pining-for-the-fjords