Each week, the PhishLabs team posts The Week in Cybercrime (TWIC) to recap noteworthy cybercrime articles and reports (open source).
ProtonMail comes back online, shores up DDoS defenses (CSO)
ProtonMail, the Switzerland-based encrypted email service, has found its footing again after a wild ride over the past week.
After Paris Attacks, Beware Rush to Weaken Crypto (Bank Info Security)
The Paris attacks have provoked security questions about whether European countries can - and should - be sharing better actionable intelligence on terrorism-related suspects. In addition, some officials in Europe and the United States have used the attacks to repeat their calls for strong cryptography and encrypted communications tools to be weakened, and for governments to be allowed to collect, monitor and analyze more bulk communications data.
Exploit Kit DNS Activity Soars 75% in Q3 (Info Security)
The third quarter saw the creation of DNS infrastructure for exploit kits rise 75% from the same time a year ago, pointing to a coming storm of cyber attacks, according to security vendor Infoblox.
Secure Network Time Protocol goes beta (ZDNet)
Without Network Time Protocl (NTP) the Internet couldn't work. With it, though, some of the worst Distributed Denial of Service (DDoS) attacks ever have crippled parts of the Internet. The answer? The NTP Security Project's first public development release of NTPsec.
Report: Everyone Should Get a Security Freeze (Krebs on Security)
This author has frequently urged readers to place a security freeze on their credit files as a means of proactively preventing identity theft. Now, a major consumer advocacy group is recommending the same: The U.S. Public Interest Research Group (US-PIRG) recently issued a call for all consumers to request credit file freezes before becoming victims of ID theft.
Criminal are mostly hacking-by-numbers with exploit kits (The Register)
UK police have busted nine people over allegedly spoofing phone calls from victims' banks to drain them of a total of £60 million ($92 million).
eBay scammer steals identity of agent investigating him (Naked Security)
He had the eBay/PayPal/parcel insurance scam chugging away, with dozens of accounts set up to file claims on packages. In actuality, the packages were empty boxes, sent to switched addresses, that purportedly never showed up.
Three Secure Holiday Shopping Moves (Forbes)
You’re going to get annoyed this holiday season dealing with new chip-card readers, now making their way into stores. I know I have. It will take time before they perfect this technology.