Discover Network Security News
Boffins build FREE SUPERCOMPUTER from free cloud server trials
Researchers Rob Ragan and Oscar Salazar have built a free LiteCoin-mining botnet that generates $US1750 a week using free cloud signup promotions.
Attackers raid SWISS BANKS with DNS and malware bombs
Attackers suspected of residing in Russia are raiding Swiss bank accounts with a multi-faceted attack that intercepts SMS tokens and changes domain name system settings, researchers have warned.
Evernote, Deezer and Feedly fess up to DDoS attacks
EVERNOTE, DEEZER AND FEEDLY have revealed that they have been struck by hackers, with the firms admitting on Tuesday to having suffered distributed denial of service (DDoS) attacks.
Want 'perfect' security? Then threat data must be shared
Here's a surprise for you: We actually have a fairly good understanding of who is attacking us on the Internet and why. Various entities know not only which groups are doing the attacking, but also the names of the people in those groups. They know where they live, who their family members are, where they went to school, and when they go on vacation.
DNS-Based Amplification Attacks Key on Home Routers
DNS providers Nominum have published new data on DNS-based DDoS amplification attacks that are using home and small office routers as a jumping off point.
Hypervisors: The cloud's potential security Achilles heel
A cloud is only as secure as the hypervisors that support its virtual machines and how secure are those? That's a darn good question and one we tend to avoid looking at.
Hackers hijack 300,000-plus wireless routers, make malicious changes
Researchers said they have uncovered yet another mass compromise of home and small-office wireless routers, this one being used to make malicious configuration changes to more than 300,000 devices made by D-Link, Micronet, Tenda, TP-Link, and others.
DDoSing a Cell Phone Network
The HLR/AuC is considered to be one of the most important network elements of a 3G network. It can serve up to five million subscribers and at least one transaction with HLR/AuC is required for every single phone call or data session.
Don't be a DDoS dummy: Patch your NTP servers, plead infosec bods
Security researchers have responded to recent denial of service attacks against gaming websites and service providers that rely on insecure Network Time Protocol servers by drawing up a list of vulnerable systems.
Cloud-based security services poised for rapid growth
The rush of businesses to move their operations to the cloud is creating a slipstream that's pulling security services into the nimbus.
The downfall of hacker collective Antisec
Hacker chronicler Quinn Norton spent months in 2011 and 2012 talking to members of the hacktivist collective Antisec, the division of Anonymous responsible for the leaked corporate emails that earned Jeremy Hammond a 10-year prison sentence.
OpenStack Cloud Vendors Vigilant in the Face of NSA Snooping
The Edward Snowden revelations about NSA snooping in the cloud are not having an impact on OpenStack cloud vendors, including Rackspace and Dreamhost.
Three types of DNS attacks and how to deal with them
The Syrian Electronic Army, a pro-Assad hacking group, altered the DNS records used by the New York Times, Twitter, and the Huffington Post. The changes forced one site offline and caused problems for the others. Here are three ways such attacks happen, and how they can be mitigated
Network Security Remains a Blind Spot for Businesses
Areas of blind spots within the typical enterprise are many, including applications, network traffic, network devices and user activity.
Cloud insecurity? It's a perception problem
I've long been a believer that a judgement gap, influenced largely by negative media coverage, is what continues to hold back cloud adoption among small organizations. And judging from the results of a recent study completed by comScore, my intuition has been fairly on track.
Q&A: ownCloud Provides Secure File Sharing for the Enterprise
File storage and sharing using consumer-oriented cloud services can be a security problem for companies that want to avoid sensitive data leaks. ownCloud aims to solve the issue by offering commercial cloud services installed within a company's own datacenter.
Commission wants to turn tables on IP thieves by crippling PCs with extortion-style lock-outs
Buried in a 100-page report issued last week by the Commission on the Theft of American Intellectual Property was a recommendation to copy a tactic cyber scammers use to extort money from innocent victims.
Google's Cloud Drops Custom Linux For Debian
Google has been using its own custom version of Linux, Google Compute Engine Linux, as it loads its customers' applications into its infrastructure as a service.