by Constantine von Hoffman

Virulent Bank Robbing Code Released by Hacker: Round-up of Week’s IT Security News

Dec 16, 20112 mins
CybercrimeFraudIntrusion Detection Software

FBI nabs 'Anonymous' hacker who went after site of KISS leader Gene Simmons

Hyper intelligent bank account robbing code unleashed by hacker. “Cross-site scripting (XSS) flaws allow attackers to present content under their control in the context of a vulnerable yet trusted site, thus tricking marks into handing sensitive information to miscreants. As well as creating a means to present pop-ups that link to a hacker-controlled site, XSSes can also lead to cookie theft.”


FBI Arrests ‘Anonymous’ Member for Attack Against The ultimate KISS off?

Malicious apps pulled from Android market over hidden SMS functionality. The apps, which Google has already pulled, are counterfeit versions of popular games, including Angry Birds. Would have sent messages to numbers that charge fees.

FBI acknowledges more hacker attacks on public utilities. Michael Welch, the deputy assistant director of the FBI’s Cyber Division, confirms more attacks than were previously known. DHS’s Industrial Control Systems Cyber Emergency Response Team reiterates warning from last year that SCADA systems can be detected by a new breed of Internet scanners such as Sh0dan (PDF).

Internet Explorer users not as smart when it comes to security. Of course not. No real Geek would use IE.

Handful of Chinese hackers responsible for majority of attacks. Majority of attacks and intrusions from China conducted by as few as a dozen hacker groups, many in coordination with or under the direction of Chinese government.

Congress officially approves military action in cyberspace. Defense authorization act states that “Congress affirms that the Department of Defense has the capability, and upon direction by the President may conduct offensive operations in cyberspace to defend our Nation, allies and interests.” Still no definition of what a cyber act of war is. Also: U.S. Army inaugurates first dedicated computer network operations brigade.

FTC reportedly probing Carrier IQ over tracking software in phones. Software lets companies track cell phone use without permission.