Trending Security News

Sometimes the juxtaposition of stories you read is kind of interesting. Over at Network World, Tim Greene authored an article Bot army being assembled, awaiting orders. While CNET News reported Heidi Klum the 'most dangerous' celeb on the Net. It appears as if Klum, a model, actress, and television host is quite a popular subject of online searches, and about 10 percent of search results on her are reported to be malicious – leveraging the “social engineering” power of Ms. Klum. The top 10 list of the most likely celebrity searches to result in exposure to malware reads like a Who’s Who of popular culture. So quite inadvertently (maliciously, from the hacker’s standpoint) the identities of Heidi Klum, Cameron Diaz, Piers Morgan and other celebrities have been engineered into virtual recruiting agents for various malicious purposes. All of this is further driven home as InformationWeek reports that Social Engineering Leads APT Attack Vectors.

Bot Net Army and Heidi Klum

• Bot army being assembled, awaiting orders – Network World
• Botnet army poised to attack, firm says – TechJournal
• Heidi Klum the 'most dangerous' celeb on the Net – CNET News

Security Research & Intelligence

• Social Engineering Leads APT Attack Vectors – InformationWeek
• Spam Report: USA No Longer The World's Most Obnoxious Nation – Threat Report
• Intel demos DeepSafe hardware-aided security technology – CNET News
• 'Consumerization of IT' Taking Its Toll on IT Managers – CIO
• Cyber-Fraud Trends, Defenses Debated at Cyber-Defense Summit – eWeek.com

Cyber Threat

• Executives Discussed Security Breaches, Attacks During APT Summit – eWeek.com
• uTorrent, possibly BitTorrent Web sites hacked – CNET News
• The Past, Present and Future of Software Security – Threat Post
• Seven Ways You Give Thieves Dibs On Your Database – Dark Reading
• Dutch Regulator Bars DigiNotar From Issuing Qualified Certificates – Threat Post
• QR Tags Can Hide Malicious Links, Experts Warn – Threat Post
• Managing The Risk Of Flaws In Third-Party Software – Dark Reading
• Mobile Banking: The New Risks – Bank Info Security
• How Online Privacy Has Become an Oxymoron – Threat Post
• Intel: Data loss from cyberattacks is inevitable – ZDNet UK

Government, Legislation & Policy

• Does keeping cyberattacks secret endanger US? – Government Computer News
• Federal officials warn of mounting cyber threat against financial firms – Hillicon Valley
• Computer-based attacks emerge as threat of future, general says – The Washington Times
• U.S., Australia to add cyber realm to defense pact – CNET News
• NATO seeks Indian cooperation in cyber warfare – domain-b.com
• Senator wants federal law to protect your data – MSNBC
• Enisa: Industry must shore up app-store security – ZDNet UK
• How FedRAMP could boost agencies' trust in the cloud – Government Computer News

Blog Picks

• Cyber War posts by Marcus Ranum – Jack Daniel
• Memories of the Nimda virus – Naked Security

Microsoft Research, Papers and Media

• Cybersecurity/Internet Health
  • Rethinking the Cyber Threat (paper)
  • Collective Defense: Applying Public Health Models to the Internet (paper)
  • Video: Collective Defense: Enabling Healthy Devices (video)
• Security Intelligence
  • NEW: Lessons from Least Malware Infected Countries (series)
  • Battling the ZBot Threat (paper)
• Trustworthy Computing
  • Imagine Video: Microsoft Trustworthy Computing (video)
• Cybersecurity/Trusted Supply Chain:
  • Supply Chain Risk Management keynote at the East-West Institute’s Second Worldwide Cybersecurity Summit (video)
  • Cyber Supply Chain Risk Management: Toward a Global Vision of Transparency and Trust (paper)
  • Toward a Trusted Supply Chain: A Risk Based Approach To Managing Software Integrity (paper)