Happy Thursday!

There's lots going on in the world of computer security, but what else is new! Things are moving and shaking in the big, wide world out there, and it's a full-time job keeping track of it all! 

In international (sort of) news, the New York Times has traced the roots of the malware that has allowed a group of hackers to access their employees sensitive information. They hired a computer security firm to find out who was behind their recent breaches of security, including the loss of dozens of passwords of their reporters and other employees. A genuine mystery has come out of the findings! For one thing, the problems began with the New York Times ran a story in which they reported that the relatives of the Chinese prime minister had recently become incredibly wealthy (read: billionaires) through a series of business deals. 

What the security firm found that the malware source was being sent through a series of American universities, the same universities that were used to send malware to the United States Armed Forces, from the Chinese government. The strain of malware they found is also specific to malware that originates in China.

The Times released a statement that the firm found no evidence that the hackers were able to access sensitive sources or evidence that was used in writing the story about the Prime Minister's family. So while there's that, there's evidence that this particular months-long attempt at hacking the New York Times is part of a much-larger "campaign" that includes various media targets and corporations. 

The Chinese government denies any involvement.

(via NY Times)

In other important news, Cisco has recently conducted a study in which they found that the most likely sources of malware may not be what we think. Where do you think malware most likely latches onto your computer? Through shady websites? Pornography? Independent drug seller websites? Gambling sites? Actually, what they found was that the greatest threat to your computer is more likely to come from much more legitimate-looking websites, such as major search engines or mainstream online stores. According to the study, you are 21 times more likely to get malware from an online shopping site than a "counterfeit software" site. 

Check out the whole article, as it contains loads of interesting findings concerning the trend among young office workers and the way they employ business-owned devices to live their personal lives. What's particularly interesting is that they found that "Generation Y" workers are more comfortable giving away their personal information in return for online socializing than they are giving their information to the IT Department, which is designed to protect their information. Along these trends, information security is only going to get more difficult to maintain among your employees. Read the article, as it's fairly educating,

(via Help Net Security)