2014-06-27

Mainstream Extortion

The year 2014 may well go down in the history books as the year that extortion attacks went mainstream. Fueled largely by the emergence of the anonymous online currency Bitcoin, these shakedowns are blurring the lines between online and offline fraud
Full story also introducing telephone's DDoS attacks!
 

Most attacked ports

Port 445 (MS SMB) and Port 5000 (universal plug and play) are the most attacked ports.

2014-06-24

"10 Ways to Fix Cybersecurity" What the leaders say?

A must read article that breaks down the answers from industry (so-called) leaders around security. And you realize there is less advise and more sales-pitch in there.

2014-06-21

Hacker puts 'full redundancy' codespaces.com out of business

A code-hosting and project management services provider was forced to shut down operations indefinitely after a hacker broke into its cloud infrastructure and deleted customer data, including most of the company's backups.
Important learning:

  1. Cloud DOES not make you any more secure, in many ways it makes you less secure
  2. Don't put all your eggs in one basket - host backups at a different location, with a different service provider
Story here and here

2014-06-05

Singaporean's Singpass Compromised

Singpass, the Singaporean national ID card, has been compromised. Early reports suggest a breach of about 1560 accounts.