News

2/18/10

Broad New Hacking Attack Detected

Hackers in Europe and China successfully broke into computers at nearly 2,500 companies and government agencies over the last 18 months in a coordinated global attack that exposed vast amounts of personal and corporate secrets to theft. Read more…

2/17/10

New “Bugat” Trojan Harvesting Banking Credentials

In January, SecureWorks researchers discovered a new banking trojan, “Bugat”, was being used to steal the financial credentials of customers of more than a dozen large and mid-sized US banks. Read more…

2/11/10

Old Security Flaws Still a Major Cause of Data Breaches, Says Report

In today’s cybersecurity environment, new security threats develop on a frequent basis. This fact is causing many companies to over-emphasize the latest security issues and overlook older, yet far more frequently exploited vulnerabilities. Read more…

2/8/10

PlainsCapital Suing Customer Hillary Machinery Over Cybersecurity

Beginning on November 9th, cyberthieves transferred $801,495 from Hillary Machinery Inc.’s PlainsCapital bank account. Once alerted to the issue, PlainsCapital recovered nearly $600,000 of the missing funds. Following a letter from Hillary representatives demanding the rest of the money be replaced, Read more…

2/4/10

Google to Enlist NSA to Help It Ward Off Cyberattacks

In response to a series of intrusions targeting Google source code in December 2009, The National Security Agency (NSA) and Google are in negotiations that sources say would build a better defense of Google networks while aiding the US effort to defend cyberspace. Read more…

2/3/10

RockYou Hack Reveals Most Common Password: ‘123456′

RockYou, an application and service provider for social networking sites, was hacked through an SQL injection vulnerability resulting in the hacker obtaining more than 32.6 million user credentials.  Analysis of the 32 million passwords obtained in the December 2009 RockYou hack has revealed Read more…

1/27/10

Corporate Account Takeovers Can Lead to Fraudulent Transactions

NACHA’s ACH Operations Bulletin provides information on “corporate account takeover” – a type of cyber-crime targeting small and medium-sized business customers of financial institutions.  Corporate account takeover allows cyber-criminals to gain control of Read more…

1/20/10

Application-Level Attacks Biggest Concern for ISP’s

Arbor Networks’ 5th annual report reveals that IP network operators believe service and application-level attacks will cause the most problems in 2010.  Released yesterday, the report surveyed 132 respondents from Read more…

1/15/10

Spearphishing Attacks Out of China Targeted Source Code, Intellectual Property

The mid-December wave of targeted attacks from China hit Google, Adobe, and at least 20 other large companies from the Internet, finance, technology, media, and chemical industries with custom-developed malware that was based on zero-day flaws. Read more…

11/11/09

SpearTip Featured in STL Commerce Magazine

SpearTip’s Advisory Group was featured in the November-December issue of St. Louis Commerce Magazine. The article highlights the expansion of the group with four experienced business professionals. Read more…

SpearTip is an IT security consulting firm consisting of industry leading professionals providing their expertise and offering of a full range of security services, discovery, and solutions.

Our practices are designed to achieve a high level of accuracy and security that protects your brand and allows you to focus on your business.

Security and discovery needs are constantly evolving and breaches can occur at any time; our approaches work to combat these threats.