Enclave Security "A Leader in Data Protection Services"

• Home
• Auditing
• Services
• Blogs
• Resources
• About Us

Subscribe to This Feed

Recent Posts

• Malware hosted on Google Code project site: Cyber Security Highlights September 3rd
• BadB now charged in RBS WorldPay ATM case: Cyber Security Highlights Sept 2, 2010
• HP holds Navy network Hostage for $3.3 billion: Cyber Security Highlights
• Nuclear plants prepare for cyber attacks: Cyber Security Highlights August 31, 2010
• iPad spam: Cyber Security Highlights August 27th

Categories

• 20 Critical Controls
• 44th Presidency Cybersecurity efforts
• Advanced Persistent Threat
• Assurance
• Audit
• Background Checks
• CISA
• Cyber Warfare
• Cybercrime
• Data Leakage Protection (DLP)
• DHS Infrastructure Reports
• Encryption
• Free Audit Checklists
• Health Information Technology
• Information Security Awareness
• Legal & Privacy
• Malware
• Medical Identity Theft
• Microsoft Windows
• Policy
• Progressive Reforms
• SANS Institute
• Secure Development Lifecycle (SDL)
• Sharpen the Saw
• Social Engineering
• Tools
• Training
• Web 2.0
• Writing Secure Code

Attend an Event

Enclave on Twitter

« Info Sec Highlights from the DHS Open Source Report December 8th, 2009 | Main | Info Sec Highlights from the DHS Open Source Report 12-21-2009 »

Info Sec Highlights from the DHS Open Source Report December 9th, 2009

By Kelli Tarala | December 9, 2009

Cloud-Based Service for Wireless Password Cracking
The WPA Cracker is a cloud-based service that accesses a 400-CPU cluster. For $34, it can run a password against all 135 million entries in about 20 minutes. Those willing to wait 40 minutes can pay $17 to access the system at half mode. This service is notable because its dictionary has been set up specifically for cracking Wi-Fi Protected Access passwords.

Full Story:
http://www.theregister.co.uk/2009/12/07/cloud_based_password_cracking/

Adware Touts $1 Bribe to Prospective Zombies
The bribe comes attached to malware, C4DLMedia , an application bundle that includes adware and agents that change browser home pages.  The offer of payment is buried in the application’s terms and conditions.

Full Story:
http://www.theregister.co.uk/2009/12/08/bribeware/

Cisco Releases Report: Social Media and Data Theft Trojans on the Rise.
Cisco systems released their annual report this week outlining a rise in new, sneakier cybercrimes that feature social media such as the Koobface Worm and Zeus password-stealing Trojan. According to Cisco, Zeus variants infected almost 4 million computers in 2009. Eastern European gangs use Zeus to hack into bank accounts and then use operatives to move the money out of the United States.

Full Story:
http://www.computerworld.com/s/article/9141942/Social_network_and_banking_scams_are_on_the_rise_says_Cisco

Download the Cisco Report:
http://cisco.com/en/US/prod/vpndevc/annual_security_report.html

Microsoft Warns of Malware-Laced Counterfeit Software
Microsoft is citing a 2006 IDC study that found 25% of counterfeit software attempted to install unwanted or malicious code when downloaded. In response to customer complaints, Microsoft launched educational initiatives and enforcement actions in over 70 countries to raise awareness and to protect consumers.

Full Story:
http://www.darkreading.com/security/vulnerabilities/showArticle.jhtml?articleID=222000906

Full DHS Open Source Report December 9th, 2009

www.enclavesecurity.com/blogresources/cdr_120909.pdf

 

Topics: DHS Infrastructure Reports, Data Leakage Protection (DLP) |

Comments are closed.