# SANS ISC

# threatpost.com

# Reddit netsec

# Krebs On Security

  • United Airlines Sets Minimum Bar on Security Wed, 24 Aug 2016 16:13:46 +0000
    United Airlines has rolled out a series of updates to its Web site that the company claims will help beef up the security of customer accounts. But at first glance, the core changes -- moving from a 4-digit PINs to password and requiring customers to pick five different security questions and answers -- may seem like a security playbook copied from Yahoo.com, circa 2009. Here's a closer look at what's changed in how United authenticates customers, and hopefully a bit of insight into what the nation's fourth-largest airline is trying to accomplish with its new system.
  • A Life or Death Case of Identity Theft? Wed, 24 Aug 2016 00:56:53 +0000
    Identity thieves have perfected a scam in which they impersonate existing customers at retail mobile phone stores, pay a small cash deposit on pricey new phones, and then charge the rest to the victim's account. In most cases, switching on the new phones causes the victim account owner's phone(s) to go dead. This is the story of a Pennsylvania man who allegedly died of a heart attack because his wife's phone was switched off by ID thieves and she was temporarily unable to call for help.
  • Malware Infected All Eddie Bauer Stores in U.S., Canada Thu, 18 Aug 2016 21:17:12 +0000
    Clothing store chain Eddie Bauer said today it has detected and removed malicious software from point-of-sale systems at all of its 350+ stores in North America, and that credit and debit cards used at those stores during the first six months of January may have been compromised in the breach. The acknowledgement comes nearly six weeks after KrebsOnSecurity first notified the clothier about a possible intrusion at stores nationwide.

# Bruce Schneier's blog

# WIRED Threat Level

# exploit-db.com

# Securiteam