Skip to content

Gotham Security Daily Threat Alerts

by on June 7, 2013

June 6, The Register – (International) Microsoft and FBI storm ramparts of Citadel botnets. Microsoft and the FBI have disabled around 1,000 of the estimated 1,400 botnets created by the Citadel botnet malware that have stolen more than $500 million. Microsoft also filed suit against the alleged controller of the botnet, and the FBI is working with law enforcement in various countries to identify the botmaster and 81 bot herders. Source:

June 6, Softpedia – (International) Expert finds XSS flaws on Intel, HP, Sony, Fujifilm and other websites. A researcher identified cross-site scripting (XSS) vulnerabilities on the Web sites of several major companies in the information technology and entertainment industries. Source:

June 6, Threatpost – (International) ISC patches known BIND 9 DOS vulnerabilities. Internet Systems Consortium (ISC) published a security update for their BIND 9 domain system protocol software that addresses a remotely exploitable denial of service (DOS) vulnerability. Source:

June 6, Softpedia – (International) 64% of data breaches caused by human and system errors, study finds. Symantec and the Ponemon Institute released their 2013 Cost of Data Breach Study that finds that 64 per cent of data breaches were due to human and system errors, among other findings. Source:

June 5, IDG News Service – (International) Malware increasingly uses peer-to-peer communications, researchers say. Security firm Damballa reported that malware’s use of peer-to-peer (P2P) communications increased fivefold over the past year. Source:

June 5, SC Magazine – (International) One month after recent Java update, 7 percent of users patched. Researchers at Websense found that one month after an April Java update, only seven percent of users had upgraded to the latest version, leaving the rest vulnerable to known exploits. Source:

June 5, Softpedia – (Massachusetts) Malware identified on University of Massachusetts Amherst computers. The University of Massachusetts Amherst notified 1,670 patients from their Center of Language, Speech and Hearing after a malicious program was found on a workstation April 5. The malware may have compromised patient health information including Social Security numbers and insurance information. Source:

June 4, Associated Press – (National) Department of Veterans Affairs hacking includes at least eight organizations, official says. A former U.S. Department of Veterans Affairs computer security chief told Congress June 4 that at least eight foreign-sponsored organizations have hacked into Veterans Affairs computer networks and that attacks are continuing. The entire database contains personally identifiable information on roughly 20 million veterans that could be used in identity theft or other purposes. Source:

From → Security

Comments are closed.

%d bloggers like this: