SANS ISC: Information Security News - Internet Security | DShield

• SANS Site Network
  • Current Site
  • Internet Storm Center
  • Other SANS Sites Help
  • Graduate Degree Programs
  • Security Training
  • Security Certification
  • Security Awareness Training
  • Penetration Testing
  • Industrial Control Systems
  • Cyber Defense Foundations
  • DFIR
  • Software Security
  • Government OnSite Training

Information Security News

4 hours ago SEC Fines Yahoo $35 Million Over 2014 Breach

Regulator Accuses Yahoo - Now 'Altaba' - Of Taking Too Long To Notify InvestorsYahoo, now known as Altaba, has agreed to a $35 million civil fine with the U.S. Securities and Exchange Commission to settle accusations that the search giant failed to promptly notify investors about a December 2014 data breach.

2 hours ago AWS traffic hijack: Users sent to phishing site in two-hour cryptocurrency heist

Criminals pull off a brazen attack using weakness in core internet infrastructure.

3 hours ago Cops Take Down World's Biggest 'DDoS-For-Hire' Site They Claim Launched 4 Million Attacks

Forbes Exclusive: Webstresser.org promised massive DDoS attacks to as many as 136,000 users. It's now been dismantled in a global police operation.

3 hours ago Apple Patches macOS, iOS, Safari

Apple this week released patches to address a handful of security vulnerabilities in macOS, iOS, and Safari.

6 hours ago Webinar Today: OMG! Why Do We Need More Awareness Training?

Live Webinar: Wednesday, April 25th at 1PM ET

18 minutes ago Even North Korea's Elites Are Ditching Facebook

North Korea's elite used to love Facebook, but now they're fleeing the social network, according to a cybersecurity firm.

34 minutes ago IT must patch against Total Meltdown now: The source code is on GitHub

A patch for Meltdown created an even bigger flaw for 64-bit Win7 and Server 2008 R2. Now, it's freely available.

1 hour ago Amazon's Alexa could be tricked into snooping on users say security researchers

Researchers at Checkmarx were able to build an Alexa skill which could be used to spy on users within earshot. Amazon has now closed the loophole.

1 hour ago Hackers built a 'master key' for millions of hotel rooms

New research shows how hackers can manipulate hotel room key cards to gain access to an entire building.

1 hour ago Amazon's Alexa Hacked To Surreptitiously Record Everything It Hears

Here's how it was done and how the company that created the hack worked with Amazon to make sure it can't be done by others.

1 hour ago Hotel Rooms Around the World Susceptible to Silent Breach

2 hours ago Cryptocurrency Heist: BGP Leak Masks Ether Theft

Essential Internet Infrastructure - DNS, BGP - Remains Vulnerable, Experts WarnAn attack spoofed internet routing information, resulting in anyone who visited MyEtherWallet.com - a free, open source web app for storing and sending ether-based tokens - instead being routed to an attacker-controlled site, leading to an estimated $320,000 in losses.

7 hours ago Securing smart factories: How Schneider Electric connects devices and prevents outages

In the industrial IoT, factories and data centers face two main barriers: connectivity and poor electrical infrastructure.

7 hours ago Apple debugs debugger, plugs big holes in iOS and WebKit

Cook's Cupertino crew corrects coding cock-ups

Apple has issued a trio of updates to patch security vulnerabilities in Safari, macOS, and iOS.…