Another week, another set of news, and as usual we got some pretty good stuff….so let’s get to it!
- First story of the week, is another Breach and the lucky winner this time is Home Depot. Looks like stores in all U.S regions were hit, which makes this pretty significant. Thanks to Krebs on Security for the story.
- Read More @ http://krebsonsecurity.com/2014/09/banks-credit-card-breach-at-home-depot/
- Next, a look at one of the other more prominent Chinese APT groups:APT12. A report by FireEye takes a look at the more recent campaigns of the XESHE/DynCalc/DNSCALC group. I really like reading about these groups and their operations so I tend to find these reports fascinating. Hope you do as well!
- Read More @ http://www.fireeye.com/blog/technical/botnet-activities-research/2014/09/darwins-favorite-apt-group-2.html
- Next, an article by Rapid7 that sheds light on the recent decision by Mozilla to no longer trust 1024 bit certificates. This is a significant move forward towards ensuring that stronger keys are utilized, as at this point 1024-bit keys are no longer secure enough.
- Read More @ https://community.rapid7.com/community/infosec/sonar/blog/2014/09/04/107000-web-sites-no-longer-trusted-by-mozilla
- Next, we have a pretty good one. A new HP report takes a look at the North Korean cyber warfare capabilities. The 70+ page report provides a pretty in-depth look. Very interesting read. From time to time you hear about North Korean actors attacking South Korea, which always made me wonder just what their capabilities are, so I enjoyed this quite a bit.
- Read More @ http://www.zdnet.com/north-korea-cyber-warfare-capabilities-exposed-7000033192/
- Next, another article relating to the Backoff Point of Sale malware. Kaspersky Lab sinkholed a few of the Command and Control servers for the malware, and they provided some of their findings. One of these days I really need to take a more in depth look at some of the technical analysis of this malware family, as it doesn’t look like it will be going away anytime soon.
- Read More @ http://securelist.com/blog/research/66305/sinkholing-the-backoff-pos-trojan/
- Next, a new report by TrendMicro takes a look at the state of the Chinese underground activity over the last year, and the associated trends. Good read!
- Read More @ http://www.scmagazine.com/report-chinas-underground-activity-doubled-last-year/article/369849/
- Lastly, some actual good news to close out the week on! Twitter has announced the launch of a bug bounty program. Always happy to see more companies doing this, in order to encourage responsible vulnerability disclosure efforts.
- Read More @ http://www.scmagazine.com/twitter-announces-launch-of-bug-bounty-program/article/369787/