Infosec Weekly Radar, January 16 -22 , 2012

A lot of security breaches have been posted on the news for this week, some are as usual related to Anonymous. So let’s start:

Anonymous Changes DDoS Tactics in Megaupload Retaliation
Anonymous hackactivists group have changed their way for launching DDoS attack, on previous operation we have found that they are using a ready websites that allow any person to start DDoSing their victims by just completing the online form its kind a feel in the blank DDoS. Now they need to make it easier so the new way all what any anon need to do is to click on a web link to launch the DDoS attack.

http://threatpost.com/en_us/blogs/anonymous-changes-ddos-tactics-megaupload-retaliation-012112

F-Secure outline the 2011 Mac malware scene

Many people choose to purchase Mac computer as it is called a virus free machine and they don’t have to care about security, here F-Secure released a report about their finding in term of Mac Malwares on 2011. Report shows 58 malware detected from April to the end of year 2011.

http://www.f-secure.com/weblog/archives/00002300.html

#OpFreePalestine, several Israeli websites hacked, defaced and went down including high profile

Well more incidents that are happening these days on Israelis facilities: “Internet hackers used local computer systems in attacks on Israeli corporate websites, according to the chief executive officer of network-security vendor Check Point Software Technologies Ltd”

http://www.businessweek.com/news/2012-01-18/check-point-ceo-says-hackers-used-israeli-computers-in-attacks.html

Hoping to Teach a Lesson, Researchers Release Exploits for Critical Infrastructure Software

Critical infrastructure softwares are always at risk after Stuxnet and DuQu here is new exploit for them:  “A group of researchers has discovered serious security holes in six top industrial control systems used in critical infrastructure and manufacturing facilities and, thanks to exploit modules they released on Thursday, have also made it easy for hackers to attack the systems before they’re patched or taken offline.”

http://www.wired.com/threatlevel/2012/01/scada-exploits/

Bank of Jordan Phishing Attack

Phishing campaign is targeting Bank of Jordan customers, Nice Tips posted to Protect from phishing scams: “Never click on Hyperlinks within emails, instead, copy and paste them into your browser , Use SPAM Filter Software ,Use Anti-Virus Software ,Use a Personal Firewall , Keep Software Updated (operating systems and web browsers) ,Always look for “https://” and padlock on web sites that require personal information , Keep your computer clean from Spyware , Educate Yourself of fraudulent activity on the Internet , Check & monitor your credit report “

http://www.fraudwatchinternational.com/phishing/individual_alert.php?fa_no=240136

That’s all for this week, if you have more infosec articles and news , feel free to share them with readers.

Share