SecurityWeek

TinKode, the Romanian behind attacks against NASA, Oracle, the Pentagon, and U.S. Army, was sentenced this week to a two-year suspended sentence, according to local media reports.

New details have emerged about the attack toolkit that was used to launch the distributed denial of service (DDoS) attacks against a number of US-based financial institutions late last month.The majority of the banking attack traffic does not appear to have been generated by client bots, but rather from compromised servers in data centers, Carl Herberger, vice-president of security solutions at Radware, told SecurityWeek on Thursday.

During a Wave of Trojan Attacks, a Virtual-machine-synching Module Would "Duplicate" Victim PCs and Use a Genuine IP Address When Compromising Accounts...A gang of cyber thugs has threatened to launch a series of Trojan attacks against at least 30 U.S. banks, according to RSA. Word of what the security firm is saying could be a "blitzkrieg-like" series of attacks was published by the RSA FraudAction Research Labs on Thursday.

MANILA - Philippine President Benigno Aquino defended a new cybercrime law Friday amid a storm of protests from critics who say it will severely curb Internet freedoms and intimidate netizens into self-censorship.

BeyondTrust has released a new version of its free “Community Edition” Retina vulnerability assessment tool. With Retina Community, enterprises can perform on-the-fly assessments without waiting for the next audit, the company said.

WASHINGTON - The United States needs to develop offensive weapons in cyberspace as part of its effort to protect the nation from cyber attacks, a senior military official said Thursday. "If your defense is only to try to block attacks you can never be successful," General Keith Alexander, director of the National Security Agency and commander of the US Cyber Command, told a Washington symposium.

MOSCOW - Russian diplomats and security chiefs denied Thursday sending their spies to the United States to purchase high-tech military electronics and detonators in faked civilian deals.

Microsoft is prepping seven security bulletins for next week's Patch Tuesday, as well as moving forward with plans to make an update restricting the use of digital certificates available through the Windows Update mechanism.

Security vendor Bit9 has added a new managed service and an updated version of its flagship whitelisting software to help enterprises fight advanced persistent threats.

Banking Trojans offered up via the BlackHole exploit kit created pages dominated the malware scene over the third quarter, according to a new threat report from managed security services firm Solutionary.

Microsoft today said that it has acquired PhoneFactor, a provider of phone-based multi-factor authentication (MFA) technology. Founded in 2001, Overland Park, Kansas-based PhoneFactor counts hundreds of customers that use its technology which enables customers to deploy multi-factor authentication across a wide range of platforms and applications.

As long as human intelligence remains an unsolved mystery, we cannot expect a security system to provide us with a complete solution...Over the past few years the market has developed new expectations from the network and applications security industry.