Subscribe to DFI News
View Sample

DFI News

Obama Lets NSA Exploit Some Internet Flaws

April 14, 2014 8:44 am | by David Sanger, The New York Times | Comments

Stepping into a heated debate within the nation’s intelligence agencies, President Obama has decided that when the National Security Agency discovers major flaws in Internet security, it should — in most circumstances — reveal them to assure that they will be fixed, rather than keep mum so that the flaws can be used in espionage or cyber attacks.


Hackers Forge Credit Cards with South Korean Data

April 11, 2014 10:23 am | by Reuters | Comments

Hackers stole the personal information of about 200,000 South Korean credit card users, using some to make fake cards and rack up fraudulent charges of about 120 million won ($115,400), an official of the country's financial regulator say.   


Has the NSA Utilized the Heartbleed Bug?

April 11, 2014 10:06 am | by Kim Zetter, Wired | Comments

The Heartbleed bug is also unusually worrisome because it could possibly be used by hackers to steal your usernames and passwords — for sensitive services like banking, ecommerce, and web-based email — and by spy agencies to steal the private keys that vulnerable web sites use to encrypt your traffic to them.


Man Denies Inserting Heartbleed Security Flaw Deliberately

April 11, 2014 9:49 am | by Ben Grubb, The Sydney Morning Herald | Comments

The German software developer who introduced a security flaw into an encryption protocol used by millions of websites globally says he did not insert it deliberately as some have suggested.                 


Military Academies Take on the NSA

April 10, 2014 3:56 pm | by Michael Hill, Associated Press | Comments

A team of caffeine-fueled cadets is spending long days this week in a computer lab trying to fend off threats cooked up by experts at the National Security Agency. The annual Cyber Defense Exercise will determine which of the five service academies can create computer networks that can best withstand the four-day barrage.


Cooling the US-China Cyber War

April 10, 2014 10:42 am | by Joe Silver, Ars Technica | Comments

Are cyber attacks, security breaches, and mounting distrust between the US and Chinese governments ushering in a new Cold War era? Given US officials’ rhetoric and actions in recent months, it might appear that such a sustained state of political and military tensions between the two superpowers is a serious threat.


Whitehat Hacker Nabbed for Good Deed

April 10, 2014 10:16 am | by Zeljka Zorz, Help Net Security | Comments

Daving Helkowski, a software architect/engineer working for software consultancy Canton Group, has made a serious mistake that has already cost him his job and might end up costing him even more.               


Internet Users Can't Thwart 'Heartbleed' Bug Yet

April 10, 2014 9:50 am | by Jim Finkle, Reuters | Comments

Security experts warn there is little Internet users can do to protect themselves from the recently uncovered "Heartbleed" bug that exposes data to hackers, at least not until vulnerable websites upgrade their software.         


(ISC)² to Develop Cybersecurity Education throughout Global Academic Community

April 10, 2014 9:34 am | by (ISC)² | Comments

Accredited academic institutions now have access to new resources and support from (ISC)², the not-for-profit membership body of certified information and software security professionals, with the launch of its Global Academic Program. 


Nuix Reaches Milestone Helping Children through Room to Read

April 9, 2014 3:29 pm | by Nuix | Comments

Nuix has announced its philanthropic product Proof Finder has reached a new milestone, raising $150,000 for Room to Read. Room to Read is a global non-profit organization transforming the lives of children across Asia and Africa by focusing on literacy and gender equality in education.


US Tries to Assure China on Cyber Attacks

April 9, 2014 10:14 am | by David Sanger, The New York Times | Comments

In the months before Defense Secretary Chuck Hagel’s arrival in Beijing, the Obama administration tried to allay Chinese concerns about plans to more than triple the number of American cyber warriors to 6,000 by the end of 2016.      


Emergency SSL/TLS Patching Under Way

April 9, 2014 9:27 am | by Kelly Jackson Higgins, Dark Reading | Comments

The race is on to fix SSL-based websites and software in the wake of a newly revealed and dangerous flaw in the popular OpenSSL library for encrypting HTTP traffic, with nearly one-third of major websites potentially at risk.       


Cyber Crooks Go for Big Data Thefts

April 8, 2014 4:18 pm | by Infosecurity | Comments

Symantec’s latest Internet Security Threat Report shows a significant shift in cybercriminal behavior, revealing that cyber criminals are plotting for months before pulling off huge data heists, moving away from quick hits with smaller rewards.


OpenSSL Cryptographic Flaw Opens Web to Eavesdropping

April 8, 2014 10:36 am | by Dan Goodin, Ars Technica | Comments

Researchers have discovered an extremely critical defect in the cryptographic software library an estimated two-thirds of Web servers use to identify themselves to end users and prevent the eavesdropping of passwords, banking credentials, and other sensitive data.


Elusive Russians Linked to Neiman Marcus Breach

April 8, 2014 10:22 am | by Michael Riley, Bloomberg | Comments

Hackers who raided the credit-card payment system of Neiman Marcus Group Ltd. belong to a sophisticated Russian syndicate that has stolen more than 160 million credit-card numbers from retailers over seven years, according to people with knowledge of the matter.



You may login with either your assigned username or your e-mail address.
The password field is case sensitive.