SANS Newsbites

According to the US-China Economic and Security Review Commission's annual report to Congress, US Defense Department (DoD) computer systems have been the target of cyber incidents 43,785 times in the first half of 2009; if the trend continues, cyber attacks against DoD systems will increase 60 percent over last year.......

A US District judge in Detroit today handed down prison sentences ranging from 32 months to 51 months to four men involved in a spamming stock fraud scheme.......

Attackers broke into computers at the Climatic Research Unit of the University of East Anglia in Britain and stole thousands of emails and other documents which they then posted to the Internet.......

A cross-site scripting (XSS) vulnerability can be exploited to allow attacks on web pages that are otherwise safe.......

Microsoft has acknowledged the existence of a zero-day flaw in older versions of Internet Explorer (IE).......

A worm targeting jailbroken iPhones is designed to steal online banking login credentials.......

A rash of fraudulent ATM withdrawals is believed to be connected to victims' previous transactions at Hancock Fabrics stores in California, Wisconsin and Missouri.......

Opera has released version 10.......

The FBI is looking into an alleged breach of privacy law at University Medical Center in Las Vegas, Nevada.......

The US House Committee on Science and Technology has passed the Cybersecurity Enhancement Act of 2009, which "is based on the concept that in order to improve the security of our networked systems .......

In testimony before the Senate Subcommittee on Terrorism and Homeland Security, National Security Agency (NSA) information assurance director Richard Schaeffer said that his agency helped Microsoft harden Windows 7 and that it is also helping Apple, Sun Microsystems, and Red Hat with similar endeavors.......

A bill introduced in the US House of Representatives would prohibit the use of peer-to-peer (P2P) filesharing technology in government computers and those used by government contractors except in cases where its use has been officially approved.......

A hard drive containing personal and medical information of 1.......

Three men have been charged in connection with a redirection attack on Comcast's website.......

A 19-year old man from New Jersey has been sentenced to one year in federal prison for his role in a distributed denial-of-service DDoS attack against the Church of Scientology website that took place in January 2008.......

A German bank has recalled 60,000 credit cards after learning that the card numbers may have been compromised in a security breach at a Spanish payment company.......

A security consultant who purchased an ATM secondhand through Craigslist found that it still held a log of hundreds of transaction details.......

Police in the UK have charged two people in connection with using the Zeus Trojan horse program.......

T-Mobile has acknowledged that an employee stole customer records and sold them to data brokers who in turn sold the information to T-Mobile competitors.......