Phishing

Department of Defense Sets Ground Rules for Hackers

In-brief: The U.S. Department of Defense published guidelines on Monday for independent security researchers to disclose vulnerabilities in DoD’s public facing systems. The program, managed by the firm HackerOne, provides a legal route for hackers to disclose vulnerabilities to the military.

Chronic Condition: Study Finds Medical Device Flaws Go Unfixed

In-brief: Old and outdated software continues to plague medical environments, opening the doors to infections and data loss, even by long-forgotten computer viruses, according to a report by the security firm TrapX.

Trump Dump: Russian Hackers Infiltrate DNC, Steal Research on GOP Candidate

In-brief: sophisticated hacking crews with ties to the Russian government compromised computer networks run by the Democratic National Committee and absconded with oppositional research on presumptive Republican nominee Donald Trump.

Updated: Vulnerability on 3m Systems Could Spread Ransomware To Schools

In-brief: Researchers at Cisco Systems said that they had identified more than 3 million “at risk” application servers running a vulnerable component that has been linked to ransomware infections. More than 1,600 of those systems have already been compromised, including many school libraries. Updated to add comment from Follett Corp. PFR 4/18/2016

Phishing

Targeted Attacks Follow Tibetans To The Cloud

In-brief: A report by The Munk Center finds attackers believed to be affiliated with China are shifting tactics as Tibetans and the Tibetan Government in Exile rely more on the cloud to communicate.