SecurityWeek

Fraudsters Know That When There’s a Chance Someone is Watching, Loose Talk Can Cost Cash.

Security researchers are reporting the emergence of another variant of the Flashback Trojan targeting Mac machines. According to Intego, the new variant continues to use a patched Java vulnerability to infect users. No password is required for it to install, and it places files in the victim’s home folder at the following concerns:• ~/Library/LaunchAgents/com.java.update.plist• ~/.jupdate

Guardian Analytics, a provider of behavior-based fraud detection solutions, today announced the general availability of FraudMAP Mobile, a purpose-built solution to identify suspicious banking activity coming from a mobile device.

Network security vendor Fortinet today introduced a series of dedicated appliances designed to help organizations defend against DDoS attacks.Designed for enterprises, hosting providers, and cloud service providers, the new FortiDDoS family of appliances takes advantage of custom ASICs (custom chips designed for a particular use) that the company says are capable of mitigating DDoS attacks while maintaining latency less than 26 microseconds.

Nissan Motor Co. has come forward with news that malicious attackers had successfully breached its networks recently, but that the company believes the hackers did not get away with what they wanted.Andy Palmer, Executive Vice President of Nissan Motor Co., did say, however, that the hackers managed to plant malware inside the organization and likely got their hands on user IDs and hashed passwords in an incident that occurred on April 13, 2012.Palmer provided the following statement on the incident:

Vormetric, a provider of encryption and key management solutions, today introduced the latest version of its encryption solution which the company says can significantly reduce the cost and application impact associated with encrypting data across the enterprise.

Symantec announced this week that it is combining the VeriSign checkmark, which it inherited as a result of its acquisition of VeriSign’s Authentication Services business in 2010, with its Norton brand to create a single seal dubbed the “Norton Secured Seal.”

Multiple Targets Hit During Cyber Attack Targeting Iranian Oil IndustryIran disconnected computer systems at a number of its oil facilities in response to a cyber attack during the weekend, according to reports.

After celebrating the one-year mark for its Web bug bounty program back in February of this year, along with the announcement that, at the time, the search giant had paid out more than $400,000 in rewards to researchers, Google how has upped the ante in hopes that security researchers will further work to find and disclose more critical vulnerabilities on its systems in hopes of making the Google world more secure.

Boulder, Colorado-based SIEM vendor LogRhythm, and Qualys, a provider of cloud-based security and compliance management solutions, today announced a partnership under which LogRhythm’s SIEM platform will be integrated with the QualysGuard Vulnerability Management platform.

The FBI is advising people to check their computers for DNSChanger malware before infected computers are essentially shut off from the Internet.

Mobile security firm, NQ Mobile, today announced that Gavin Kim has joined the company as Chief Product Officer. In the created newly position, Kim will lead the company’s product, solutions and strategic partnerships, providing new opportunities for customer and business growth in the United States and global markets.