March 9, Securityweek – (International) Email spoofing flaw found in Google Admin console. Security researchers identified a security flaw in the Google Apps Admin console that could have been exploited to gain temporary ownership of any previously unclaimed domain and used to send malicious emails that would not be flagged as suspicious because they came from trusted servers. Google has addressed the vulnerability. Source
March 7, Softpedia – (International) Two arrested in the largest data breach in the US. Two men were arrested for their roles in what authorities are calling the largest data breach in U.S. history, in which the suspects allegedly made millions of dollars between 2009-2012 by stealing over 1 billion email addresses from 8 U.S. email service providers and used their distribution platforms to send millions of spam emails containing links to Web sites that promoted products through affiliated marketing activities. Authorities continue to search for a third suspect connected to the scheme. Source
March 6, Softpedia – (International) Suspected US Department of Defense hacker arrested in UK. The British National Crime Agency arrested an individual that is believed to be responsible for breaching the U.S. Department of Defense’s Enhanced Mobile Satellite Services communication system in June 2014, in the U.K. The suspect allegedly gained access to contact details and phone numbers of 800 individuals and the International Mobile Station Equipment Identity (IMEI) codes for about 34,400 devices in the 2014 breach. Source