This Month in SSL: March 2015

Here is our latest news roundup of articles about network and SSL security. Click here to see the whole series.

SSL & Encryption News

Data Security

  • New malware named PoSeidon uses memory scraping (a common point-of-sale Trojan technique) to exfiltrate payment card data from point-of-sale (PoS) terminals.
  • Biometric authentication is gaining momentum. A recent report estimates that by 2019, 770 million biometric apps will be downloaded.
  • Yahoo offers on-demand passwords as an alternative to traditional primary passwords.

Vulnerabilities

Data Breaches

  • On March 17, health insurance provider Premera Blue Cross announced that they had suffered a major data breach, exposing customer information. The breach affected 11 million customers.
  • After being contacted by law enforcement, NEXTEP (a point-of-sale provider), announced that they are investigating a possible data breach.
  • Mandarin Oriental hotels confirms that they suffered a data breach. The number of customers and which hotels were affected have not yet been disclosed.

Cybercrime

Internet of Things

  • Volvo is testing a real-time warning system that would allow cars that encounter hazardous conditions on the road to relay the data to other vehicles in the area through a Volvo server.

Reports/White Papers