February, 2015:

• NEWS ALERT: Uber says info on 50K drivers exposed, files suit
• NEWS ALERT: Hacktivists claim to have accessed files from private U.S.-based defense group
• Researchers investigate link between Axiom spy group, Anthem breach
• Madonna hacker indicted in Israeli court
• Top Android tablets for children riddled with security lapses, study finds
• Bulk Reef Supply website compromised, credit cards at risk
• Medical identity theft up 22 percent in 2014, annual report says
• Reddit to donate money to EFF and Tor Project, among others
• PlugX APT group uses backdoor in India campaign
• Report: Majority of health-related websites leak data to third parties
• State breakdowns: Anthem breach by the numbers
• In historic vote, FCC approves strong net neutrality rules
• EPIC files complaint over Samsung Smart TV privacy policy
• Botnet of Joomla servers furthers DDoS-for-hire scheme
• Facebook paid $1.3 million in 2014 for bug bounty submissions
• Fears of cybersecurity attacks increase among U.S. workers, survey finds
• Firm finds 'high risk' bugs in SAP BusinessObjects software
• Target breach costs company $191M, financials show
• Google cancels annual Pwnium competition to accept year-round bug discoveries
• Reddit shifts stance, updates privacy policy
• Intel Security president named ForeScout CEO
• Study: SMBs lack thorough understanding of state data breach notification laws
• Gemalto says past intrusions could be related to NSA, GCHQ op
• Bug in popular WordPress plugin opens up websites to SQL injection attacks
• Three reasons native mobile apps need extra security love
• Europol, private sector target Ramnit botnet ensnaring 3.2 million computers
• Up to 18.8 million non-Anthem members possibly affected in breach
• Malware on Lime Crime website, payment cards compromised
• Several vulnerabilities, some critical, addressed in Firefox 36
• U.S. offers its largest bounty for Zeus hacker Borgachev
• Florida law enforcement docs show widespread stingray use, secrecy
• Study: Thousands more vulnerabilities reported in 2014 than previous years
• Calif. woman sues Lenovo and Superfish
• Lizard Squad targets Google Vietnam homepage; redirects users
• Chrome users better protected against sites containing 'unwanted software'
• LinkedIn settles in class-action suit related to 2012 breach
• M-Trends report: Nearly 70 percent of breached firms alerted by outside source
• Understanding SSL best practices
• California dentist announces theft of server containing patient information
• Breach affects 10K motorists in U.K.
• Think you should just be worried about fines? Think again. And think like an attacker.
• Fraudster mistakenly spreads Ramnit via Zeus toolkit
• New Jersey Congressmen to reintroduce privacy bill
• Older vulnerabilities a top enabler of breaches, according to report
• After Superfish-Lenovo incident, Facebook probes larger issue of SSL-sniffing adware
• Google Cloud Security Scanner released in beta
• Faulty Norton security update leads to Internet Explorer crash
• How to help remove the big risks from big data
• Thousands impacted in Texas health clinic system breach
• Illinois police department pays ransom after Cryptoware infection
• Cloud IAM is set to break the sound barrier
• Disconnect yawns between CISOs, exec leadership, study says
• Gemalto investigates claims that gov't spies hacked SIM card encryption keys
• Hackers still meddling in State Dept. network, three months in
• BlackShades co-creator, Alex Yucel, pleads guilty
• FireEye shares details on 'Masque Attack II' affecting iOS devices
• White House names first U.S. Chief Data Scientist
• Possible database compromise prompts Canadian Bitcoin exchange to shut down
• Report: mRATs continue to threaten Android, iOS devices
• Managing open source security
• Netgear router issues could allow auth bypass, info disclosure
• Average DDoS attack size at 7.39 Gbps in Q4 2014, according to report
• Lenovo PCs shipped with 'Superfish,' adware that opens users to MitM attacks
• Why developers need to think about security
• 5 file transfer strategies to strengthen your organization's security and compliance
• Revenge porn site operator, Hunter Moore, pleads guilty
• Cracking the confusion between encryption and tokenization
• Chesapeake suit claims former CEO stole trade secrets
• The 7 deadly IT sins: Know them. Fear them. Fix them
• The insiders: A rogue's gallery
• Mobile security in action: How enterprises are getting ahead of threats
• Transforming government services by leveraging trusted digital identities
• University of Maine laptop and media card stolen, contained student data
• Alleged Russian hacker Drinkman charged in U.S. court, pleads not guilty
• Customers cry foul in two more Anthem suits
• Tech companies, media join Twitter's fight to divulge NSL info
• Superseding indictment charges 18 in fraudulent tax return scheme
• Jamie Oliver website, RedTube distributes malware via malicious iFrames
• Check Point acquires Israeli security startup, Hyperwise
• RBS, NatWest to leverage iPhone Touch ID scanner for mobile app
• Microsoft replaces buggy PowerPoint 2013 update
• Big Fish Games notifies customers of payment card breach
• 2015 threat intelligence ebook
• Malware operations targeting orgs in Israel, Egypt traced to Gaza
• Lizard Squad reportedly strikes again in DDoS attack on Xbox Live
• Researchers identify advanced espionage team, the 'Equation' group
• Microsoft announces Windows 10 will feature biometric security
• Data at risk following burglary at Liberty Tax Service office in California
• Analysts find link between POS malware and Carbanak gang
• Former Megaupload employee pleads guilty to copyright infringement
• Why government cybersecurity measures should take cues from industry-driven rules
• Carbanak APT campaign made off with $1B from banks globally
• CSE spies on global file uploads
• Canada losing cybersecurity war
• Obama Executive Order paves way for threat intelligence sharing
• Tennessee healthcare group notifies employees of payroll breach
• Breach index: Mega breaches, rise in identity theft mark 2014
• Ransomware delivered via fake Chrome and Facebook emails, tied to PayPal phishing
• Facebook pays researcher $12,500 for discovering photo bug
• Researchers observe spike in tax return phishing schemes
• U.K. to make 'revenge porn' a crime
• Threat intelligence firm One World Labs appoints new CEO
• Sony should be looking at its own employees — not North Korean hackers
• Microsoft phishing emails target corporate users, deliver malware that evades sandboxes
• Popular dating apps tested, over 60 percent have medium to severe flaws
• Forbes.com attackers exploited zero-days in Flash, IE
• Android mobile root privilege exploit used for malicious purposes
• Alleged BlackShades creator backs out of plea deal
• Smartphone thefts decline following introduction of "kill switch"
• Seventy percent of malicious files go undetected by antivirus products
• OpenDNS tracks PayPal spoofs built off Wix.com
• Attack spike against Utah gov't computers may be work of hacktivists
• The new 80-20 rule for data center cybersecurity
• Time to eliminate the value of SSNs
• NIST requests final comments on ICS security guide
• NYDFS issues report, announces targeted security assessments for insurance companies
• U.S. IT security professionals face range of attacks from abroad, report finds
• Bill C-51 widens government surveillance powers
• Facebook to intro ThreatExchange platform
• States complain about timing of Anthem's breach notification
• EFF throws support behind Calif. electronic privacy law
• Sophos announces appointment of new CTO
• White House to hold cybersecurity summit, Apple's Cook to speak
• Samsung updates Smart TV privacy policy to clarify collection of user data
• On Patch Tuesday, Microsoft unveils fix for critical Windows flaw 'JASBUG'
• Simplocker Android ransomware variant identified, tougher to decrypt files
• Report: Anthem may have up to $200M in cyber insurance
• White House to create new cyber agency
• NM lawmaker resurrects data breach bill
• Pro-ISIS group compromises Newsweek Twitter account
• Phoenix House notifies current and former employees of potential data incident
• HP bolsters encryption business with Voltage Security acquisition
• Bitglass joins Cloud Security Alliance
• Journalists say gov't spying impact on work minimal, report finds
• Twitter issues transparency report; global information requests jumped by 40 percent
• Car hacking report explores lack of real-time response capabilities
• Researchers identify buffer overflow vulnerability in Advantech device
• Lawsuits filed against Anthem, phishing scams abound
• From Big Data to smart data for security analytics
• POS malware threatens payment cards used at Gateway Arch shops
• Majority of broker-dealers report having experienced a cyber attack
• Researchers uncover new approach to Boleto fraud
• Symantec to pay $17M in damages for patent violations
• Chipotle Twitter account hacked, racist messages posted
• New approaches for handling growing data security concerns
• Community debates encryption's value in Anthem incident
• Tax fraud concerns prompts TurboTax developer to pause state e-filings
• A look at Anthem's PR response following the data breach
• Adobe releases out-of-band update for Flash Player
• Business groups lobby White House to help ease Chinese restrictions
• Buyers seeking Anthem data on underground forums, marketplaces
• Google advisory committee releases 'Right to be Forgotten' report
• Researchers analyze Bedep malware linked to Flash Player attacks
• Manhattan DA announces hundreds of charges against Apple gift card thieves
• Zero-day bug identified in popular FancyBox WordPress plugin
• Readying the enterprise for mobile
• President Obama pushes for student data privacy legislation
• Experts weigh in on Anthem breach, speculate on how attackers broke in
• Anthem breach prompts White House adviser to nudge Congress
• Exclusive: Mandiant speaks on Anthem attack, custom backdoors used
• Silk Road operator Ross Ulbricht convicted on all charges
• Anthem breach: what we know so far
• Bicameral, bipartisan seeks to modernize electronic privacy law
• Judge grants 'preliminary' approval in LinkedIn class-action settlement
• Email privacy bill gains more support in House
• 4 DevOps survival tips for security specialists
• Adobe rolling out new Flash Player version, includes fix for latest zero-day bug
• 'Operation Pawn Storm' espionage campaign infecting iOS devices
• Report compares exploit skills of APT actors, other malware groups
• Internal DC Public Schools website publicly accessible, stored variety of data
• AOL advertising network again used to distribute malware
• Spam campaign spreads Dyre trojan via fax messages
• Report: Banks, again, link credit card fraud to White Lodging hotels
• RSA executive chairman announces plans to retire at end of February
• Target names Tesco's McNamara as CIO
• EFF files brief regarding 'facial challenge' with U.S. Supreme Court
• Act would require gov't to get warrant for electronic content, geolocation data
• Man found guilty of operating revenge porn site, faces up to 20 years in prison
• Hacker comandeers baby monitor, terrifies nanny
• Firm warns of Google Play apps spreading adware
• Stolen devices contained data, 2,700 Senior Health Partners members notified
• 2015 DDoS ebook
• BMW issues security patch for bug allowing attackers physical access into vehicles
• White House proposes $105M budget to create new digital agencies
• Report: Target hackers steal card data from another parking company
• UMass Memorial Medical Group announces potential insider breach
• More than 100K Facebook users infected by porn malware
• Hackers used social engineering to glean military intel on Syrian opposition
• Apple fixes 33 security bugs with iOS 8.1.3 update
• Researchers observe new Flash Player zero-day bug being exploited
• Google launches Vulnerability Research Grants program
• Usability as a protection feature
• Breach response: Are you prepared?
• It's going to take savvier preparation
• Unifying principle: Federal data breach law
• Cool in a crisis: Breach response
• On air: Social media safeguard
• Making the grade: CIPA compliance
• Defense from the top: FISMA
• Help wanted: Hiring crisis
• The security model is broken
• Information privacy and Big Data
• Are mobile apps risky business?
• News briefs: North Korea behind the Sony breach and a landmark HIPAA settlement
• Tidal waves of spoofed traffic: DDoS attacks
• Company news: New additions at ThreatStream, Arbor Networks and more
• Me and my job: Kristi Carrier, quality auditor, Nuspire Networks
• Threat intelligence emerges
• Skills in demand: Information security analysts - health care