ScarCruft APT Group Used Latest Flash Zero Day in Two Dozen Attacks – Threatpost

/in

PCWorld

ScarCruft APT Group Used Latest Flash Zero Day in Two Dozen Attacks
Threatpost
Kaspersky speculates that this group could also be behind another zero-day, CVE-2016-0147, a vulnerability in Microsoft XML Core Services that was patched in April. In a report from Kaspersky Lab, researchers said the vulnerability is in Flash code
Flash Player zero-day exploit is being used in the wild by a cyberespionage groupPCWorld
East Euro crims pwning 'high profile' victims with Flash zero dayThe Register
Adobe patches critical zero-day vulnerability in Flash PlayerSC Magazine
Infosecurity Magazine –ZDNet –Softpedia News
all 51 news articles »

“zero day” – read more

This Week In Credit Card News: Fewer Subprime Borrowers; Average Data Breach Cost Is $4 Million – Forbes

/in

This Week In Credit Card News: Fewer Subprime Borrowers; Average Data Breach Cost Is $ 4 Million
Forbes
Millions of U.S. Consumers Are Escaping Subprime. The percentage of Americans with subprime credit scores has fallen to the lowest level in more than a decade, a development that could give bank lending and the overall economy a boost. The share of …

and more »

“data breach” – Google News

Let’s Encrypt accuses Comodo of trying to swipe its brand

/in

Let’s Encrypt, a free certificate authority launched by the Internet Security Research Group in November 2014 and backed by some of the biggest names in the industry, today revealed that rival CA Comodo is attempting to “improperly” trademark the Let’s Encrypt brand.

And it’s difficult to see how that isn’t the case.

From a blog post by ISRG executive director Josh Aas:

Some months ago, it came to our attention that Comodo Group, Inc., is attempting to register at least three trademarks for the term “Let’s Encrypt,” for a variety of CA-related services. These trademark applications were filed long after the Internet Security Research Group (ISRG) started using the name Let’s Encrypt publicly in November of 2014, and despite the fact Comodo’s “intent to use” trademark filings acknowledge that it has never used “Let’s Encrypt” as a brand.

To read this article in full or to leave a comment, please click here

Network World Paul McNamara

State Data Breach Notification Laws – Overview of Requirements for Responding to a Data Breach – The National Law Review

/in

State Data Breach Notification Laws – Overview of Requirements for Responding to a Data Breach
The National Law Review
With the ever-changing complexity of state data breach notification laws, companies facing a data breach need resources that will help them understand the issues. This summary provides an overview of the similarities and differences in data breach laws …

“data breach” – Google News