BF-SIRT Newsletter 2014-38

Welcome to the newsletter! This week we have stories such as how Breach at Goodwill Vendor Lasted 18 Months and that Citadel Trojan phishes its way into petrochem firm’s webmail. We also have information as to how SNMP DDoS Scans Spoof Google Public DNS Server and that a Study concludes ‘Heartbleed’ flaw was unknown before disclosure. From our own posts we have mentioned the latest iOS 8 update.

Top 5 Security links
Information Sharing on Threats Seen as a Key for Auto Makers
Securing virtual machines: Considerations for the hybrid cloud
Everything you need to know about POS malware
Breach at Goodwill Vendor Lasted 18 Months
Citadel Trojan phishes its way into petrochem firm’s webmail

Top 5 Business Intelligence links
Study concludes ‘Heartbleed’ flaw was unknown before disclosure
Researchers unlock TorrentLocker encryption
Hacked Brazilian Newspaper Site Targets Router DNS Settings
SNMP DDoS Scans Spoof Google Public DNS Server
Hackers penetrated systems of key defense contractors

Basefarm Posts
iOS 8