'

Zero Day Weekly: LOT hack doubts, OPM fallout, Facebook swipes Yahoo CISO

A collection of notable security news items for the week ending June 26, 2015. Covers enterprise, controversies, application and mobile security, malware, reports and more.

Marissa Mayer Facebook Zero Day Weekly

Welcome to Zero Day's Week In Security, our roundup of notable security news items for the week ending June 26, 2015. Covers enterprise, controversies, reports and more.

Special Feature

IT Security in the Snowden Era

The Edward Snowden revelations have rocked governments, global businesses, and the technology world. Here is our perspective on the still-unfolding implications along with IT security and risk management best practices that technology leaders can put to good use.

Read More

  • On Thursday, Newsweek published what they claim is an exclusive story centered on Chinese hackers that have penetrated an untold number of FBI personnel files in a data breach with "potentially dangerous national security implications." One security reporter is adamant that Newsweek got it wrong.
  • On Tuesday, Symantec released a whitepaper on the Dyre malware banking trojan and its impact on the financial fraud landscape, noting that the malware targets all three major browsers (Internet Explorer, Firefox, and Chrome), and that it has been configured to target customers at more than 1,000 banks and other firms around the globe -- making it the financial trojan of choice among cybercriminals.
  • The owner and co-creator of the Blackshades remote administration tool (RAT) was sentenced to 57 months in prison on Tuesday, according to an FBI release. The malware was sold to thousands worldwide and used to infect more than half a million people.
  • Phil Zimmermann spoke to Tech Republic on encryption, privacy, and avoiding a surveillance state in Defending the last missing pixels. Since writing the PGP encryption software in the 1990s, Phil Zimmermann has been a key figure in the internet privacy debate. With that argument heating up again, his perspective is more relevant than ever.
  • Eighteen months after his arrest, a Turkish national accused of masterminding a worldwide string of ATM heists netting as much as $55 million (once described as the world's "number two hacker") has been sent to the US to face trial. Ercan Findikoğlu (aka "Segate" and "Predator") faces as much as 247 years in prison.
  • Government officials from China and the United States have agreed to establish a code of conduct outlining "appropriate behavior" in cyberspace. US Secretary of State John Kerry told reporters Wednesday that the two countries must cooperate to address cybersecurity concerns. The announcement followed two days of discussions in Washington where representatives from both governments gathered for the annual China-U.S. Strategic and Economic Dialogue.
  • Facebook has filled a void in its executive suite by luring over an executive from Yahoo. Yahoo's now-former CISO Alex Stamos announced appropriately enough via his Facebook page on Wednesday that he has been hired by the social network as its new chief security officer.
  • Cloud access security app provider Elastica is partnering up with Cisco and Telstra to expand its footprint into Australia. Elastica will leverage its newly signed strategic alliance with Telstra and recently announced reseller agreement with Cisco to provide customers with access to its cloud security broker solutions.