Security Alerts & News
by Tymoteusz A. Góral

History
#28 Think, Learn, Act – Training for aspiring cyber criminals in the Brazilian underground
Various kinds of cybrecrime training courses and how-to guides are available online. For a relatively small fee, anyone can learn how to commit fraud and become a criminal.
#27 Android.Bankosy: All ears on voice call-based 2FA
An information stealing Android threat (detected by Symantec as Android.Bankosy) added functionality to its code that can enable it to deceive voice call-based two-factor authorization (2FA) systems.
#26 Simple eBay security flaw exposed millions of users to spear phishing campaigns
Only after threat of public exposure has eBay patched a severe XSS security vulnerability which exposed potentially millions of users to phishing campaigns and subsequent data theft.
#25 Turkish hacker receives record 334 years in prison over data theft
Turkish national Onur Kopçak will likely spend the rest of his life behind bars for dabbling in credit card seizure and phishing campaign promotion, having landed a record 334-year prison sentence.
#24 Et tu, Fortinet? Hard-coded password raises new backdoor eavesdropping fears
Less than a month after Juniper Network officials disclosed an unauthorized backdoor in the company's NetScreen line of firewalls, researchers have uncovered highly suspicious code in older software from Juniper competitor Fortinet.
#23 Microsoft security bulletin summary for January 2016
Six critical vulnerabilities patched by Microsoft in January, and more.
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12