Fahmida Y. Rashid

The hackers who breached the Nasdaq stock exchange network last year had installed remote-monitoring software that allowed them to spy on corporate directors, according to Reuters. The unknown attackers were able to install the monitoring tool and steal confidential documents and communications of board directors on the compromised platform, Reuters reported Oct. 20. Investigators have […]

The fact that the newly discovered Duqu worm has portions of Stuxnet code has led many security researchers to call it Stuxnet 2.0, and speculate that the same team was responsible for both pieces of malware. Based on recent analysis, some researchers now believe the relationship is a little bit more distant. While Duqu “bears […]

Things Not to Do When Job Hunting Wrote a Word macro virus that printed out his resume and demanded a job or he would write another malware to delete hard drives.Michael Buen, the author of the WM97/Michael-B Word macro virus, printed out his resume on Fridays towards the end of the month in infected documents. […]

Symantec researchers have discovered a new worm in the wild that has the potential to attack and cripple industrial control systems, much like Stuxnet did. The new worm, dubbed Duqu, shares a lot of the code with Stuxnet, leading Symantec researchers to believe it was either created by the same team or by another group […]

McAfee announced two new products based on the DeepSAFE technology which protects user computers from sophisticated malware that attacks the hardware level. Deep Defender and Deep Command platforms will allow security tools to run at the processor level, McAfee said at the McAfee Focus 11 conference on Oct. 18. The announcement was made during McAfee […]

Cisco rolled out new network switches, including a new firewall product, to expand its data center portfolio with virtual security offerings. Cisco unveiled the ASA 1000V, a virtual version of the current Adaptive Security Appliance on Oct. 18. Deployed as a virtual machine on a server, the appliance would extend security protection to the edge […]

As Symantec continues its analysis of Duqu, the latest malware targeting industrial control firms and based on the Stuxnet worm, other security researchers believe that certificate authorities are among the affected victims. Symantec posted its preliminary analysis of the Duqu worm on Oct. 18. Duqu’s focus appears to be on industrial control systems, but unlike […]

Oracle released 23 security patches that addressed 57 vulnerabilities, of which 21 have been classified as “critical,” as part of its Critical Patch Update on Oct. 18. The various vulnerabilities affected hundreds of Oracle products, according to the company. Oracle calculates a risk score based on the Common Vulnerability Scoring System to assess the severity […]

The “hacktivist” collective Anonymous is capable of crippling critical infrastructure, but the odds of developing a Stuxnet-style attack on industrial Supervisory Control and Data Acquisition systems were slim, according to a Department of Homeland Security bulletin. The four-page report from the department’s National Cyber-Security and Communications Integration Center was posted on the Public Intelligence Website […]

Dell launched “phase 2” of its Dell Data Protection Encryption portfolio to provide organizations with a “new level of security” to secure data stored on a wide variety of endpoints. Dell announced “simple, comprehensive and flexible encryption” features to expand its data protection and encryption portfolio Oct. 12 at its DellWorld conference in Austin, Texas. […]