ICYMI: Phishing in the Yemen, Google privacy & women in security

This week's In Case You Missed It looks at Yemen's cyber-army, Google's latest efforts with online privacy and finally some good news for women in security.

ICYMI: Phishing in the Yemen, Google privacy & women in security
ICYMI: Phishing in the Yemen, Google privacy & women in security

Yemen 'Cyber Army' hacks Saudi government

Pro-Yemeni hacktivists calling themselves the Yemen Cyber Army (YCA) took classified computer files from several Saudi Arabian government agencies including the Ministry of Foreign Affairs and the Interior Ministry and Defence Ministry last week.

The data breach was confirmed by the authorities, according to Security Affairs which cited Osama bin Ahmad al-Sanousi, a senior official at the Kingdom's Foreign Ministry. Nearly a million (990,584) records were revealed, comprising personal details of what were claimed to be Foreign Ministry staff and diplomats, spies and Saudi intelligence operatives.

SC Awards Europe 2015 winners announced

Hundreds of industry guests gathered in the ballroom of the Grosvenor Hotel, Park Lane on 2 June to recognise and celebrate excellence, innovation and achievement in the information security industry.

SC Magazine UK Editor-in-Chief Tony Morbin welcomed guests, with a reminder about how a year of major high profile breaches and subsequent industry growth has now put information security firmly on the boardroom agenda. He then introduced Ian Glover, president of CREST, who emphasised the professionalisation of the industry, and the further steps needed to ensure it is a viable and attractive career option for today's school students. Then after dinner, compere Ed Byrne entertained guests and presented the Award winners with their trophies.

My Account: A new Google hub for privacy settings

Google launched 'My Account', a new hub for privacy and security settings from which users can manage their information shared with different Google products, such as Maps and Search, as well as adjust the security settings for these services.

My Account is divided into three sections:

  • Sign-in and security settings
  • Personal information and privacy settings
  • Account preferences

A link to the new privacy site is also included. This link has a list of answers to FAQs such as, “What data does Google collect?” and “Does Google sell my personal information?”

Women in security earn up to 30% more than men, finds report

The ‘Why women in security are being paid more' report by recruitment agency BeecherMadden is based on more than 400 responses, and was presented at last week's Infosecurity Europe conference including the finding that women in the sector are earning up to 30 percent more than men, despite women nationally earning 19.7 percent less across all sectors.

The recruitment firm found that around 14 percent of information security workers are women, with this around the same percentage at CISO level, and indicated that most do not have a computer science degree or technical background. As a result, they said that women are well represented in consulting but less so in very technical roles.

Tiny Tinba malware gets tough, new variants infect European banks

Researchers at IBM Security Trusteer said this week that new and nasty variants of the Tinba Trojan, said to be the world's smallest malware, are emerging, and they're targeting European banks.

Writing on the company's Security Intelligence blog, product and risk management expert Ori Bach gave an overview of how the ‘tiny banker' malware, which was first discovered in 2012 when it was the smallest Trojan in circulation with a file size of just 20KB, has been spreading ever since its source code was publicly leaked in July 2011.

He says that gangs have subsequently been able to rework and tweak the ready-made malicious code at no extra cost, while citing the firm's own evidence last September that there were ‘several' campaigns launching Tinba attacks around the globe. These variations, says Bach, sported “significant improvements to the original code.”

Eight months on, and IBM Security Trusteer researchers have gone on to discover a new Tinba infection campaign targeting Poland, Italy, the Netherlands and Germany. Nearly half of recognised incidents were focused on Poland (45 percent), with Italy a distant second (21 percent). Websense confirmed Poland as the number one infected country in an email to SC.

close

Next Article in News Bytes

Sign up to our newsletters