All posts by Chris Tribbey

Why Businesses Can’t Ignore U.S. Cybersecurity Framework (InformationWeek)

The Obama administration's new voluntary cybersecurity framework for critical infrastructure providers, announced Feb. 12, won't please everyone. But it does bring together for the... More

Hackers Circulate Thousands of FTP Credentials; New York Times Among Those Hit (PC World)

Hackers are circulating credentials for thousands of FTP sites and appear to have compromised file transfer servers at The New York Times and other organizations, according to a se... More

Tech Industry Praises Cybersecurity Framework From White House (CIO)

Members of the tech industry heralded the White House's announcement of a set of voluntary guidelines for businesses to improve their cybersecurity posture, suggesting that the doc... More

Email Attack on Vendor Set Up Breach at Target (KrebsOnSecurity)

The breach at Target Corp. that exposed credit card and personal data on more than 110 million consumers appears to have begun with a malware-laced email phishing attack sent to em... More

Bizarre Attack Infects Linksys Routers with Self-Replicating Malware (Ars Technica)

Researchers say they have uncovered an ongoing attack that infects home and small-office wireless routers from Linksys with self-replicating malware, most likely by exploiting a co... More

Certificates Spoofing Google, Facebook, Could Trick Mobile Users (Threat Post)

Dozens of phony SSL certificates were discovered this week mocking legitimate certs from banks, e-commerce sites, ISPs and social networks. If a user stumbled over one of the bogus... More

New Mac OS X Malware Steals Your Bitcoins (ReadWrite)

There’s a new piece of Mac malware that can spy on your Web browser to steal your Bitcoins. The trojan, which was discovered by SecureMac on Sunday, is disguised as a downloadab... More

Best Habits of Effective Security Pros (CSO)

It's easy for security professionals who are passionate about their careers to get caught up in the technology, but success today requires a lot more than technical savvy. Here are... More

Vulnerability and Patch Report, Feb. 16, 2014 (Citadel Information Group)

Important Security Updates Adobe Shockwave Player: Adobe has released version 12.0.9.149 to fix two highly critical vulnerabilities reported in previous versions of Shockwave Play... More

CDSA Taps Richard Atkinson as New Chairman

By Chris Tribbey The Content Delivery & Security Association (CDSA) Board of Directors has elected Adobe’s Richard Atkinson as its new chairman. Atkinson, the global direct... More

Obama Cyber Security Plan Seen Lacking Perks for Business (Bloomberg)

President Barack Obama’s plan to get utilities, banks and other essential services to bolster defenses against hackers will be filled with technical standards and guidance on res... More

Building a Cyber Security Roadmap: Monitor, Center for National Policy Seminar (Christian Science Monitor)

American defense thinkers rate it as the nation’s top threat – everything from cyber-espionage to a massive attack on critical national infrastructure like the power grid. Ame... More

Cyber Security Best Practices for a Hack-Free Sochi Games (IT World Canada News)

With thousands of athletes, officials and spectators at Sochi, Russia for the Winter Olympic Games there are a lot of laptops, tablets and mobile devices – tempting targets for c... More

Penn. Vendor Confirms Link to Target Data Probe (MPR News)

A western Pennsylvania heating and refrigeration contractor said it was the victim of a "sophisticated cyber attack operation" that is being investigated by the Secret Service and ... More

Heat System Called Door to Target for Hackers (New York Times)

Investigators say they believe they have identified the entry point through which hackers got into Target’s systems, zeroing in on the remote access granted through the retailer... More

Clueless Federal Government’s Cyber Security is Like One Giant Hack-Me Cluster Flub (Computer World)

If you use ‘password,’ one the worst passwords, as your password, fail to keep antivirus protection updated and don’t bother to deploy security patches to close critical vuln... More

Good News and Bad News on Cybersecurity Priorities and Spending in 2014 (Network World)

With the Winter Olympics in full-swing, the cybersecurity community anxiously awaits another global event, the 2014 RSA Conference. Like Sochi, the RSA Conference comes with its ow... More

N.S.A. Program Gathers Data on a Third of Nation’s Calls, Officials Say (New York Times)

The National Security Agency’s once-secret program that is collecting bulk records of Americans’ domestic phone calls is taking in a relatively small portion of the total volum... More

Vulnerability and Patch Report, Feb. 9, 2014 (Citadel Information Group)

Important Security Updates Adobe Flash Player: Adobe has released updates for its Flash Player to fix an extremely critical vulnerability. Updates are available through the progra... More

EVENTS

MEMBERS