- ./lets-encrypt: Mozilla, Akamai, Cisco, the EFF and IdenTrust announced a new Certificate Authority (CA) which will launch in May 2015. The Let’s Encrypt project is aiming to reduce complexity, bureaucracy, and cost of the certificates that HTTPS requires. A short Demo-Video.
- Citadel Update: IBM researchers have found signs that the well-known trojan is now being used to attack widely used password managers.
- Stuxnet: Even though Stuxnet was discovered more than four years ago, Kaspersky revisited the subject and published new technical information about some previously unknown aspects of the Stuxnet attack.
- CryptoPHP: is a new threat that uses backdoored Joomla, WordPress and Drupal themes and plug-ins to compromise webservers on a large scale. Fox-IT published a 52-page whitepaper (PDF).
- PWC published their Global State of Information Security Survey 2015. According to the survey total financial losses attributed to security compromises increased 34% over 2013. Here you can download a paper with the key findings.
- Maybe the coolest exploit of the year: Space Invaders on a Cisco Catalyst Switch.
German:
- Anonip: Die Swiss Privacy Foundation veröffentlicht Tool zur Anonymisierung von Logfiles (für IPv4 und IPv6).