Jump to content
  • entries
    47
  • comments
    3
  • views
    26207

Security Stories You May Have Missed Over the Holidays


Ioannis Zontos

713 views

 Share

If your office gets quiet around the week leading up to Christmas and New Years, as many seem to, you may have missed a few interesting security stories during this lull. Let me catch you up in one fell swoop.

Below, I quickly highlight a menagerie of interesting security stories, which you may have missed over the past two weeks:

· Unpatched Vulnerability in Windows Win32k.sys Component - A "researcher" calling himself webDEViL found a memory corruption flaw in Windows' win32k.sys component. By enticing you to a web site containing malicious code, an attacker could exploit this flaw to execute malicious code on your computer, with your privileges. exploit the flaw via Safari till now…

· Siemens Accused of Security Cover-up - Stuxnet malware - the possibility of digital SCADA and ICS attacks. A security researcher accuses Siemens of lying about a security flaw in one of their products. In short, Billy Rios (the researcher) is unhappy that a Siemens PR person claimed there are no open issues regarding authentication bypass bugs in Siemens products. As a result, Rios decided to publicly disclose just such an issue.

· The US Can Now Launch Cyberwars - Cyberwar is at hand - A recent change to the U.S. National Defense Authorization Act supports this notion. It states that the Department of Defense can conduct offensive cyberspace operations with the President's approval !!!

· Free iPad 2 Offer Lures Gaga Fans - Many users following Lady Gaga on Twitter and Facebook almost had their credentials stolen by following links about a free iPad 2 promotion.

· Anonymous Still Up to No Good - During the holiday, Anonymous breached Stratfor, a "global intelligence" company in Texas. They reportedly stole 200GB of email, and a client list of 4000, including credit cards info. In the last week, Anonymous has also threatened to attack Sony and Nintendo due to their support of SOPA. As I predicted for 2012, I expect to continue to see these sort of Anonymous-related hacktivism incidents throughout the year.

 Share

0 Comments


Recommended Comments

There are no comments to display.

Guest
Add a comment...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

Loading...
×
×
  • Create New...