April, 2013:

• New Ramnit variant seeks to evade two-factor authentication
• FinFisher command-and-control hubs turn up in 11 new countries
• Post-connect network visibility: A fox in the henhouse for network security
• Report: Twitter warns news outlets to be on guard against account takeover attempts
• Researchers investigate Adobe vulnerability that enables a PDF to be tracked
• Dutch man alleged with carrying out widescale DDoS on Spamhaus arrested
• LivingSocial updates encryption practices after password breach affects 50m
• Federal judge rejects FBI request to hack alleged fraudster
• Controversial government program gives ISPs immunity from wiretapping laws
• Study: DDoS attacks increase across industries
• Travnet trojan compresses files to send more info to data thieves
• Keys pleads innocent to Anonymous conspiracy charges
• Study finds hosting providers offer phishing paradise
• Adobe names Brad Arkin its first-ever CSO
• Going digital poses a challenge for critical infrastructure operators
• Panel: Expect productivity gains with BYOD
• 2013 eBook on surviving SIEM
• Two-factor authentication may have done little to stop the AP Twitter hijack
• Alleged LulzSec leader charged with hacking Australian government site
• Microsoft issues replacement for botched patch
• Security pros must be master negotiators to gain executive support
• Fake AP tweet says Obama injured in White House explosion
• New Java exploit on the loose following recent security update
• Latest Gozi trojan variant comes packaged with rootkit
• Verizon study finds China-based groups behind 96 percent of espionage attacks
• Reuters fires Keys amid Anonymous-linked indictment
• Java 8 release pushed back due to security concerns
• DDoS attacks continue to grow in size
• BadNews infections in Google Play spread premium-rate SMS trojan
• The power and danger of using the cyber "T" word
• ACLU asks FTC for help forcing mobile carriers to patch bugs faster
• Reddit site downed by DDoS attacks
• New BlackHole email campaign found
• LulzSec Sony Pictures intruder sentenced to a year in prison
• CISPA passes House amid continued concerns over inadequate privacy safeguards
• Threats from the web becoming more prevalent than network worms
• Sentences announced for defendants of Chicago skimming spree
• Video: The risks surrounding digital certificates
• Trojan uses "magic" code to infect organizations around globe
• Counter malware threats and protect your business
• Boston Marathon blasts breed malware ruses, surge in dubious websites
• Oracle releases 42 fixes for Java bugs as part of wider security update
• White House threatens CISPA veto, again
• 2013 eBook on cyber espionage
• "Syrian Electronic Army" defaces NPR website, Twitter accounts
• "Watering hole" websites present largest innovation for targeted attacks
• Schnucks supermarket chain discloses breach that stole 2.4 million credit card numbers
• Investment regulator loses portable device containing personal data
• China, U.S. agree to work together on cyber security
• WordPress attacks showcase botnet owner's expanding tricks
• 2013 ebook on GRC
• Study: Bing delivers five times as many infected sites as Google
• Obama proposes $800m cyber budget increase for Pentagon
• Researcher demonstrates Android app that could hack airplanes
• Video: The challenges third-parties pose for SMBs
• Microsoft shelves patch, asks customers to uninstall, after error discovered
• Hack of college database jeopardizes sensitive data of 125k students
• CISPA moves forward, but rejected amendments frustrate privacy advocates
• Bitcoin mining botnet has become one of the most prevalent cyber threats
• House Intelligence Committee OKs amended version of controversial CISPA
• Video: Privileged access in the enterprise
• Judge rules hospital can ask ISP for help in ID'ing alleged hackers
• Three LulzSec members plead guilty in London
• WordPress tightens security with two-factor authentication
• Microsoft fixes three "critical" flaws with Patch Tuesday release
• Security for the real world
• Spear phishing campaign targeted energy sector
• White House says new Chinese IT equipment rule may disrupt business without helping security
• Laptop stolen from S.C. medical center contains data on 7k veterans
• Court says Hannaford breach lawsuit doesn't meet standards of class-action
• Android trojan spreads through Cutwail spam botnet
• Judge says lawsuit against comScore can proceed as class action
• Medical records of 2k patients left unprotected on contractor's server
• Roughly 20 charged in Eastern Europe with building Carberp banking trojan
• "Right to Know" bill proposes more transparency for California data collectors
• April's Patch Tuesday from Microsoft includes another Internet Explorer patch
• Protect critical data: Avoid common pitfalls of network security
• Malware tries to invade technology companies once every 60 seconds
• Firefox 20 released, makes "private browsing" easier
• Sophos' flagship web security product open to attack
• Video: Corporations defending IT infrastructure
• Android malware targeting Tibetans has state-sponsored fingerprints
• Public safety personnel targeted by DoS attacks flooding phone lines
• Market for DDoS prevention to hit $870 million
• Electronic road signs hacked in Illinois
• China unhappy with new U.S. requirement that its IT gear must face review
• Spotting the "black swans" of security
• Doctor's stolen laptop found at pawn shop; data of 652 patients exposed
• Sidestepping the humdrum
• You are an APT target
• Beyond BYOD
• Deciphering cloud strategy
• Urgent care: Safeguarding data at health care providers
• Suspect everything: Advanced threats in the network
• Cyber war, this is not
• Decoding the cloud
• BlackBerry back in the game
• News briefs: Mandiant uncovers espionage, Evernote is breached, and more
• Debate: China is the top cyber threat to the United States
• Threat of the month: Universal Plug and Play vulnerabilities
• Cleaning up the CVSS
• Company news: dinCloud's new CTO, and Bluebox Security's new research team
• Me and my job: Blake Frantz, Center for Internet Security
• Skills in demand: IT-GRC data and metrics analysts
• SIEM City
• Stopping distributed denial-of-service attacks