Technion - Israel Institute of Technology  
236350 - Computer Security
  Spring 2012 EnglishRussianHebrewArabic  
Links - From the News
.. (parent folder)

1.5.2010 - Sony details PlayStation Network attack details
14.4.2011 - RSA readies changes to SecurID delivery processes in wake of APT attack
14.4.2011 - FBI uses C & C servers replacement to bring down Coreflood
14.4.2011 - Feds take down Coreflood botnet, infected two million computers
1.4.2011 - RSA SecureID - attack description
23.3.2011 Bogus certificates obtained for Google, Microsoft, Skype and Yahoo sites
18.3.2011 - A cyber attack causes RSA SecureID breach
5.2010 - GPS spoofing
25.3.2010 - נפרצו: פיירפוקס, אקספלורר 8 ואייפון
24.3.2010 - Law Enforcement Appliance Subverts SSL
12.3.2010 - Programmer gets 4 years in TJX hack case
8.3.2010 - Energizer Duo software suffers backdoor Trojan bother
3.3.2010 - ארה"ב חושפת: תוכנית לאומית לאבטחת מידע
לעזרה - 3.3.2010 F1 מיקרוסופט מזהירה: אל תלחצו
1.3.2010 - זהירות: נסיונות פישינג נגד לקוחות אוצר החייל
22.2.2010 - נמשכים מאמצים לחקור את הפריצה לגוגל מסין
17.2.2010 - בעיות פרטיות ואבטחה נוספות בגוגל באז
16.2.2010 - משרד המשפטים רוצה סמכויות להגנה על פרטיות
11.2.2010 - Chip-and-PIN is broken
10.2.2010 - אוסטרליה: אתרי ממשלה נפרצו במחאה על סינון הרשת
8.2.2010 - סין סגרה בי"ס להאקרים
חוקרים: דרכונים אלקטרוניים - סכנה לפרטיות - 27.1.2010
21.1.2010 - most popular password 123456 (following the story from 14.12.2009)
Imperva's report is available on http://www.imperva.com/docs/WP_Consumer_Password_Worst_Practices.pdf
16.1.2010 - Session hijacking in Facebook due to routing glitch
14.1.2010 - Security experts analyze the Chinese attack on Google
7.1.2010 - 768-bit RSA is broken
The paper: http://eprint.iacr.org/2010/006.pdf
7.1.2010 - Social Networking Hacks: Top 10 Facebook and Twitter Security Stories of 2009
23.12.09 - DDoS on DNS servers brings down Amazon and others
19.12.09 - "Iranian cyber army" hacks Twitter
The attack relied on changing DNS records (possibly by reseting Twitter admin password?)
14.12.09 - SQL Injection Vulnerability reveals 32 million email accounts
The database details were published on a blog post http://igigi.baywords.com/rockyou-com-exposed-more-than-32-millions-of-passwords-in-plaintext/ (interesting to read the comments...)
7.12.09 - Bitlocker broken?
2.12.09 - bug and security problems turned 7 million debt to zero
If you have time, go directly to the well-written verdict: http://www.netlaw.co.il/files/doc/ver_20091129_soi_v_halevi.pdf
24.11.09 - Comsign clashes with ILITA (The Israeli Law, Information and Technology Authority)
18.11.09 - Smartphones vulnerable to WiFi eavsdropping
The original report is available on http://threatcenter.smobilesystems.com/wp-content/uploads/2009/11/MIMT-Whitepaper031.pdf
14.11.09 - SSL renegotiation vulnerability used to hack Twitter accounts
Additional information about the vulnerability:
http://extendedsubset.com/Renegotiating_TLS.pdf
http://www.educatedguesswork.org/2009/11/understanding_the_tls_renegoti.html
11.11.09 - Worm targets (jail-broken) iPhones with SSH server
2.11.09 - Mossad hacked Syrian computer to uncover nuke site
31.10.09 - Over 40 Swedish sites were DDoS
29.10.09 - Podcast on social engineering (Ran Levi's "Making History" podcast)
(podcast 63 on http://www.icast.co.il/default.aspx?p=Podcast&id=50587&all=1)
10.05.2009 - error in IDF site exposed sensitive recruits details
5.5.2009 - Thief stole 8.3 million patients' drug prescription records, demanding 10M$ ransom
22.4.2009 - A 1.9 million machine botnet discovered, operating out of Ukraine
8.4.2009 - Electricity Grid in U.S. Penetrated By Spies
24.3.2009 - the simplicity of malware attacks (from haaretz)
29.1.2009 - Businesses risk $1 trillion losses from data theft
21.1.2009 - Possibly one of the biggest data breaches on record
21.1.09 - a real world example: the problem with penetrate & patch
6.1.09 - Twitter hacked with online dictionary attack
More on this in Dictionary Attacks 101: http://www.codinghorror.com/blog/archives/001206.html
2.1.2009 - An Israeli Domain Name registrar was "hacked"
This allowed the attackers to spoof Discount bank and ynetnews.com URLs.
UPDATE (thanks to Yuri Rapoport): seems like Taub computer center was affected by this attack as well (see the attached image).