ClearSky Cyberdefense Forum

MOUNTAIN VIEW, Calif. – Sept. 7, 2011 – Symantec Corp. (Nasdaq: SYMC) For the first time a Norton study calculates the cost of global cybercrime: $114 billion annually¹. Based on the value victims surveyed placed on time lost due to their cybercrime experiences, an additional $274 billion was lost². With 431 million adult victims globally in the past year and at an annual price of $388 billion globally based on financial losses and time lost, cybercrime costs the world significantly more than the global black market in marijuana, cocaine and heroin combined ($288 billion).³

Link

The confirmed count of fraudulently-issued SSL (secure socket layer) certificates now stands at 531, said Gervase Markham, a Mozilla developer who is part of the team that has been working to modify Firefox to blocks all sites signed with the purloined certificates.

Among the affected domains, said Markham, are those for the CIA, MI6, Mossad, Microsoft, Yahoo, Skype, Facebook, Twitter and Microsoft’s Windows Update service.

Technical details fo the hack to Diginotar

Link

The Chinese government has apparently leaned on some of the most prominent hacker groups to advise their members and followers to avoid hacking Chinese targets, and to be more discreet (don’t get caught) when attacking foreign targets.

Link

“If you can’t trust the trusted authority, who in the cloud can I trust? If the trusted authority can’t do enough, then how do we rely on anyone else?” asked David Sockol, president of Emagined Security, a security solution provider based in Santa Clara, Calif. “The biggest lesson learned? We can’t really trust anyone, including ourselves, and we need checks and balances.”

Link

Somehow, somebody managed to get a rogue SSL certificate from them on July 10th, 2011. This certificate was issued for domain name.google.com.

Link

The attack on Nonghyup Bank came through the infected laptop of a contractor. The hackers were able to use the laptop to disseminate viruses throughout the bank’s computer networks, and on April 12, half of its servers suddenly crashed. About 30 million people were unable to make online financial transactions or use the bank’s ATMs, and the bank lost important information

Link