You are here

Security Headlines

The Security News listserv shares security information with a variety of audiences: agency managers, technical staff and security staff. Individuals may subscribe to the Security News by sending a blank email to Join-Security-News@lists.ia.gov.

Payroll Scam

University employees are receiving fraudulent e-mails indicating a change in their human resource status. The website provided appears very similar to the legitimate site in an effort to steal the employee’s credentials. Once the employee enters his/her login information, the scammer takes that information and signs into the employee’s official human resources account to change the employee’s direct deposit information.
Source: IC3 http://www.ic3.gov/media/2015/150113-2.aspx

U.S. Penalizes North Korea in Retaliation for Sony Hack

The U.S. has retaliated against North Korea for its alleged hacking of Sony Pictures Entertainment, aiming economic sanctions at Pyongyang’s arms industry, which is its primary foreign exchange earner, and the country’s intelligence operations.
Source: Wall Street Journal http://www.wsj.com/articles/u-s-penalizes-north-korea-in-retaliation-for...

Guide to DDoS Attacks

This Center For Internet Security (CIS) Multi-­‐State Information Sharing And Analysis Center (MS-­‐ISAC) Document is a guide to aid our partners in their remediation efforts of Distributed Denial Of Service (DDoS) attacks.
Source: Center for Internet Security http://msisac.cisecurity.org/documents/GuidetoDDoSAttacks.pdf

OS X NTP Security Update

Apple released an update to address issues in ntpd that would have allowed an attacker to trigger buffer overflows.
Source: Apple http://support.apple.com/en-us/HT6601