A posting from Naked Security on Why Twitter’s two-factor authentication isn’t going to stop media organisations from being hacked:
Twitter has announced the availability of two factor authentication (2FA) for its service, meaning that users can opt-in to something stronger than just a username and password to protect their accounts.
In a blog post, Twitter explains how the new security [...]

A posting from Dark Reading in there Application Security section:
During the past decade, developers have increasingly leaned on third-party components, such as open-source libraries, to dramatically lighten the load during coding. These components can help reduce time spent adding basic or universal features and functions so that developers can focus their work on the innovative code [...]

A posting Dark Reading in the Risk Management  section:
A growing need for security discipline and the availability of better threat data are changing the old, monolithic Governance, Risk and Compliance concept into a near-term enterprise risk management project, experts say.
GRC, a methodology for building global IT policies, priorities and practices around key risk and compliance factors, [...]

A posting from CNet News in there Security and Privacy section:
After the hacking collective Anonymous launched a Twitter campaign pledging to go after the Guantanamo Bay Naval Base in Cuba, the U.S. military barred all Wi-Fi access on the base, according to the Associated Press. All social media, including Facebook and Twitter, also has been banned.
Army Lt. [...]

A posting from Naked Security : Did you open your email inbox this morning to find an email like the following?
Kindly open to see export License and payment invoice attached, meanwhiole we sent the balance payment yesterday.
Please confirm if it has settled in your account or you can call if there is any problem.
Thanks
Karen parker
 
Whatever [...]

An interesting article in NBC News in there Technology Section:  Several power utilities say they face a barrage of cyberattacks on their critical systems, a report by two Democratic lawmakers found, echoing warnings from the Obama administration that foreign hackers were trying to bring down the U.S. power grid.
Rep. Henry Waxman, D-Calif., released the report, co-authored [...]

A posting from Informationweek Security : A high-profile information security attack against Google in late 2009 — part of what was later dubbed Operation Aurora — was a counterespionage operation being run by the Chinese government.
Former government officials with knowledge of the breach said attackers successfully accessed a database that flagged Gmail accounts marked for court-ordered wiretaps. Such [...]

Anonymous Hackers TangoDown the Official Website of Rome’s Court

Hacker hacked Toyota UK Blog and leaked personal info

A posting from Naked Security about DDoS-for-hire service is legal:  Paying a site to DDoS other sites is perfectly legal, the proprietor behind one such outfit told security journalist Brian Krebs.
Besides which, he says, his service, called RageBooter, even features a nifty backdoor that lets the FBI monitor customer activity.
The conversation took place recently between Krebs and Justin [...]

A posting from Dark Reading on Black Hat:  Major information security event Black Hat has announced three more featured talks — just the start of an avalanche of new briefings being announced on the Black Hat USA website. We’re highlighting three of them here — focusing on diverse subjects spanning home security system hacking, bootkit threats across multiple OSes, and [...]

An interesting article from Dark Reading in there Security Monitoring section :
The massive avalanche of data in March that crashed down on Spamhaus, the maintainer of a number of spam blacklists, made headlines as the largest distributed denial-of-service (DDoS) attack witnessed to date.
Along with the ongoing campaign against financial institutions by a group of attackers calling themselves the [...]

A posting  from InfromationWeek in there Security section:  pple is overwhelmed by requests from law enforcement agencies to decrypt seized iPhones, and its waiting list is so long that it may take months before new requests get handled.
That revelation, first reported by CNET, was gleaned from a search warrant affidavit for a seized iPhone last summer by a federal [...]

A posting from Cnet News in there Security and Privacy section:
AN FRANCISCO–Two of Google’s top Chrome and Google Apps security experts confessed that the problem of passwords will continue to plague the people who use them and computer security for the foreseeable future.
On the second day of the company’s I/O conference here on Thursday, Eran Feigenbaum, the [...]

A posting from Naked Security:
The Syrian Electronic Army has struck again – this time adding the scalp of the prestigious Financial Times to its collection of hijacked accounts belonging to well-known media organisations.
Hackers from the Syrian Electronic Army appear to have stolen the usernames and passwords of FT staff with access to the newspaper’s social media accounts, and [...]

An interesting article from NBC News  in there Technology section:
WASHINGTON (Reuters) – Six months after a U.S. cybersecurity bill died in the Senate, some Obama administration officials and lawmakers are optimistic they can get a new law passed amid heightened public awareness of hacking attacks and cyber espionage.
With top intelligence officials warning that cyber attacks have replaced terrorism as [...]

An interesting article from Dark reading in there Security Monitoring section:
In March, the massive avalanche of data that crashed down on Spamhaus, the maintainer of a number of spam blacklists, made headlines as the largest distributed denial-of-service attack witnessed to date.
Along with the ongoing campaign against financial institutions by a group of attackers calling themselves the Cyber Fighters of [...]

Criminals and hackers have been extremely sophisticated in creating phony, but authentic looking e-mails that seemed to have originated from legitimate companies. If you receive an e-mail that you believe to be a phishing attempt, do not reply to it since by doing so will just validate the e-mail address is correct. Trust me, you do not want that to happen.

Microsoft recently announced that it had found a malicious browser extension making the rounds on Mozilla Firefox and Google Chrome that, when downloaded, attempted to hijack users’ Facebook profiles.

A posting from Naked Security about Mozilla pushes out new Firefox and Thunderbird:  Not to be outdone by Microsoft’s and Adobe’s Patch Tuesday releases, Mozilla pushed out its latest browser and email client updates today. The Firefox browser goes to 21.0, on Android as well as on desktops. (You don’t install browsers on your servers, do you?) The Thunderbird email client is only available in an Extended Support Release [...]

A posting from Dark Reading  in there New section: Major information security event Black Hat has announced that General Keith Alexander — Commander, U.S. Cyber Command/Director, National Security Agency/Chief, Central Security Service (NSA/CSS) — will present the Day One keynote address at Black Hat USA 2013 in Las Vegas this July.
In 2010, the U.S. Senate confirmed GEN Alexander [...]