Here is our latest news roundup of articles about network and SSL security. (Click here to see the whole series.)
SSL & Encryption News
- Entrust created a helpful infographic that shows what changes are planned for the industry and when those changes will occur.
Data Breaches
- Earlier this year the IRS announced that their systems had been breached, affecting 100,000 taxpayers. However, the IRS recently stated that the breach may actually affect three times their original estimate.
- Web.com, a web services provider, announced that they suffered a data breach. 93,000 customers’ credit card and personal information was compromised.
Vulnerabilities
- Microsoft released an emergency patch for a browse-and-get-owned vulnerability affecting all versions of Internet Explorer. Browse-and-get-owned vulnerabilities can infect users if they merely visit a malicious site.
Cybercrime
- Once again, attackers targeted GitHub with a DDoS attack. However, GitHub mitigated the attack in just a few hours rather than the days it took to mitigate the previous attack.
- Phishing emails disguised as a Windows 10 upgrade reach user emails. At first glance the emails appears legitimate, but they don’t stand up to serious scrutiny.
- A phishing campaign targeted E-ZPass users this month. Emails seemingly from E-ZPass, an in-car device used to electronically pay highway tolls, informed users that they owed money for tolls. Users were then directed to click on a link to make the payment.
Malware
- New RIG exploit kit affects over 1 million users through malvertising.
Research & Studies
- Kaspersky Labs released two reports, Q2 2015 DDoS Intelligence Report and Spam and Phishing Report.
- A new report by Ponemon Institute shows that phishing scams cost the average large company $3.7 million annually.
- DDoS attacks are up by 132% in Q2 2015 compared to Q2 2014, according to a report by Akamai Technologies.
- The Director of Security Analytics at Invincea stated in a recent report that June was “the worst month of malvertising basically ever.”
- Popular news and entertainment sites are home to the majority of malvertisements, according to a report by Bromium.
Events
- At the start of this month, the top security researchers and experts gathered for the 18th year of the Black Hat Conference.
- DEFCON, one of the largest hacking conferences, held their annual conference this year in Las Vegas.