Brian Krebs InfoSec Links May 7, 2014
Cause Brian Krebs is awesome.
Phishers Divert Home Loan Earnest Money - Brian Krebs - Krebs on Security
In this scheme, the attackers intercept emails from title agencies providing wire transfer information for borrowers to transmit earnest money for an upcoming transaction. The scammers then substitute the title company’s bank account information with their own, and the unsuspecting would-be homeowner wires their down payment directly to the fraudsters.
Emails are being intercepted and the account information changed so that the home buyers send the money to the criminal and not the loan agency. That's really scary and shows that if it's financially profitable criminals will find a way to exploit the system.
Adobe Update Nixes Flash Player Zero Day - Brian Krebs - Krebs on Security
Update Adobe Flash Player on your computers. Do it. Do it NOW!
The Target Breach, By the Numbers - Brian Krebs - Krebs on Security
Krebs breaks down some of the numbers involved in the Target breach that took place from November 27 to December 15, 2013. The most glaring one is the number of Chief Information Security Officers (CISO) or Chief Security Officers (CSO), which was zero, according to the AP. If true, that's pretty sad for the second-largest discount retailer in the United States. And it's not that a CISO or CSO would have stopped the breach, but does give us a peek into Target's thoughts on information security.
This post first appeared on Exploring Information Security.