Cool News Story Bro! Week of 9-05-2014

by Otakun
Categories: News
Comments: Leave a Comment

Hello again!

Another week, another set of news, and as usual we got some pretty good stuff….so let’s get to it!

  1. Banks: Credit Card Breach at Home Depot

    1. First story of the week, is another Breach and the lucky winner this time is Home Depot. Looks like stores in all U.S regions were hit, which makes this pretty significant. Thanks to Krebs on Security for the story.
    2. Read More @ http://krebsonsecurity.com/2014/09/banks-credit-card-breach-at-home-depot/
  2. Darwin’s Favorite APT Group

    1. Next, a look at one of the other more prominent Chinese APT groups:APT12. A report by FireEye takes  a look at the more recent campaigns  of the XESHE/DynCalc/DNSCALC group. I really like reading about these groups and their operations so I tend to find these reports fascinating. Hope you do as well!
    2. Read More @ http://www.fireeye.com/blog/technical/botnet-activities-research/2014/09/darwins-favorite-apt-group-2.html
  3. 107,000 web sites no longer trusted by Mozilla

    1. Next, an article by Rapid7 that sheds light on the recent decision by Mozilla to no longer trust 1024 bit certificates. This is a significant move forward towards ensuring that stronger keys are utilized, as at this point 1024-bit keys are no longer secure enough.
    2. Read More @ https://community.rapid7.com/community/infosec/sonar/blog/2014/09/04/107000-web-sites-no-longer-trusted-by-mozilla
  4. North Korea cyber warfare capabilities exposed

    1. Next, we have a pretty good one. A new HP report takes a look at the North Korean cyber warfare capabilities. The 70+ page report provides a pretty in-depth look. Very interesting read. From time to time you hear about North Korean actors attacking South Korea, which always made me wonder just what their capabilities are, so I enjoyed this quite a bit.
    2. Read More @ http://www.zdnet.com/north-korea-cyber-warfare-capabilities-exposed-7000033192/
  5. Sinkholing the Backoff POS Trojan

    1. Next, another article relating to the Backoff Point of Sale malware. Kaspersky Lab sinkholed a few of the Command and Control servers for the malware, and they provided some of their findings. One of these days I really need to take a more in depth look at some of the technical analysis of this malware family, as it doesn’t look like it will be going away anytime soon.
    2. Read More @ http://securelist.com/blog/research/66305/sinkholing-the-backoff-pos-trojan/
  6. Report: China’s underground activity doubled last year

    1. Next, a new report by TrendMicro takes a look at the state of the Chinese underground activity over the last year, and the associated trends. Good read!
    2. Read More @ http://www.scmagazine.com/report-chinas-underground-activity-doubled-last-year/article/369849/
  7. Twitter announces launch of bug bounty program

    1. Lastly, some actual good news to close out the week on! Twitter has announced the launch of a bug bounty program. Always happy to see more companies doing this, in order to encourage responsible vulnerability disclosure efforts.
    2. Read More @ http://www.scmagazine.com/twitter-announces-launch-of-bug-bounty-program/article/369787/


Leave a Reply

Your email address will not be published. Required fields are marked *

Today is Monday