# SANS ISC

# threatpost.com

# Reddit netsec

# Krebs On Security

  • Why So Many Top Hackers Hail from Russia Thu, 22 Jun 2017 14:29:11 +0000
    Conventional wisdom says one reason so many hackers seem to hail from Russia and parts of the former Soviet Union is that these countries have traditionally placed a much greater emphasis than educational institutions in the West on teaching information technology in middle and high schools, and yet they lack a Silicon Valley-like pipeline to help talented IT experts channel their skills into high-paying jobs. This post examines the first part of that assumption by examining a breadth of open-source data.The supply side of that conventional wisdom seems to be supported by an analysis of educational data from both the U.S. and Russia, which indicates there are several stark and important differences between how American students are taught and tested on IT subjects versus their counterparts in Eastern Europe.
  • Credit Card Breach at Buckle Stores Sat, 17 Jun 2017 14:07:08 +0000
    The Buckle Inc., a clothier that operates more than 450 stores in 44 U.S. states, disclosed Friday that its retail locations were hit by malicious software designed to steal customer credit card data. The disclosure came hours after KrebsOnSecurity contacted the company regarding reports from sources in the financial sector about a possible breach at the retailer.
  • Inside a Porn-Pimping Spam Botnet Thu, 15 Jun 2017 14:35:27 +0000
    For several months I've been poking at a decent-sized spam botnet that appears to be used mainly for promoting adult dating sites. Having hit a wall in my research, I decided it might be good to publish what I've unearthed so far to see if this dovetails with any other research out there.In late October 2016, an anonymous source shared with KrebsOnSecurity.com a list of nearly 100 URLs that -- when loaded into a Firefox browser -- each displayed what appeared to be a crude but otherwise effective "counter" designed to report in real time how many "bots" were reporting in for duty.Here's a set of archived screenshots of those counters illustrating how these various botnet controllers keep a running tab of how many "activebots" -- hacked servers set up to relay spam -- are sitting idly by and waiting for instructions.

# Bruce Schneier's blog

# WIRED Threat Level

# exploit-db.com

# Securiteam