Headline Feeds|
FBI Sounds Alarm on Hotel WiFi Caper May 14, 2012 
The U.S. Federal Bureau of Investigation has warned overseas travelers
to be careful when using hotel WiFi networks. "Recent analysis from the FBI and other government agencies demonstrates that malicious actors are targeting travelers abroad through pop-up windows while establishing an Internet connection in their hotel rooms," a bulletin from the Internet Crime Complaint Center said last week.
|
The Malicious Hacker's Ever-Sharper Eye May 07, 2012 
Targeted attacks on organizations and Web-born infections like the recent Flashback outbreak on Macintosh computers will continue to poison the security landscape in 2012, according to Symantec's John Harrison. Targeted attacks -- attacks aimed at specific individuals within an organization -- were a "rising tide" last year, averaging 94 a day by November, according to Symantec.
|
|
Got Your Number: Skype Investigates IP Discovery Flaw May 01, 2012 
Skype is investigating a tool published recently on Pastebin that captures the last-known IP address of the VoIP service's users. "This is an ongoing, industry-wide issue faced by all peer-to-peer software companies," said Adrian Asher, Skype's director of product security. "We are committed to the safety and security of our customers and we are taking measures to help protect them."
|
Not Much Hyperventilating Over Hacker's Hypervisor Code Theft April 26, 2012 
A hacker with the handle "Hardcore Charlie" has stolen source code for VMware's ESX hypervisor and posted it on the Internet. A hypervisor provides a virtualization layer between operating systems and the underlying hardware, creating a virtual machine. This lets users run multiple virtual machines on one processor.
|
|
Data Breach? Try Rubbing Some Free Credit Services on It March 05, 2012 
Before your company finds itself embroiled in a lawsuit over a data breach that spills personal information about your customers all over the Internet, you might want to take a look at some recent research by Carnegie Mellon and Temple Universities. Data breach victims are six times less likely to file litigation against a company if they receive free credit monitoring following a breach, according to the analysis.
|
Loophole Could Give Android Devs a Private Picture Show March 02, 2012 
Similar to Apple's iOS, Android is apparently vulnerable to apps secretly copying photos. Android developer Ralph Gootee created a test app that masquerades as a simple timer but steals the most recent image on the user's smartphone and posts it on a public photo-sharing site. Critics said the development further emphasizes the danger of Google's hands-off approach to the Android Market.
|
|
FBI Chief Calls Cyberthreats Public Enemy No. 1 March 02, 2012 
In the near future, cyberthreats will be the leading threat to the United States, FBI Director Robert Mueller warned in a speech on Thursday at the RSA Conference in San Francisco. Traditional crime, from mortgage and healthcare fraud to child exploitation, have moved online, while terrorists have become increasingly cyber-savvy, Mueller said.
|
Are Security Vendors Living in Glass Houses? February 28, 2012 
What would happen if you paid taxes or protection money but didn't get protected because your protectors themselves were getting clobbered? Worse still, what if they didn't tell you they had been compromised and that you might not be safe? That situation played out recently after yet another company suffered a system breach and kept largely silent on the matter.
|
|
The Great Google Cookie Caper February 21, 2012 
Google's privacy practices came under fire again last week for undermining the privacy practices of someone else. Namely, Apple. Apple is one of the few browser makers that turns off by default a website's ability to push third-party cookies to a Web surfer. Cookies can perform a valuable service to users.
|
Apple Wanders Into Mountain Lion Territory February 18, 2012 
Apple let OS X Lion out of its cage just last July, but the company's already started talking up the next version of its operating system, which it'll call "Mountain Lion." The details and developer preview that Apple has come out with indicate that even more iOS DNA is being mixed into OS X this time around, with more shared features and functions.
|
|
Banks in the Crosshairs: 8 Ways Cybercriminals Outfox Strong Security Controls February 18, 2012 
These days, cybercriminals are successfully circumventing advanced security controls with the precision of a sniper. In the crosshairs are banks, financial institutions, governments and enterprises. In a recent Gartner survey, 76 U.S. banks indicated that malware-based attacks were a growing problem and that fraudsters were able to defeat defenses such as advanced profiling systems.
|
Random Public Crypto Keys Aren't So Random February 15, 2012 
Public key cryptography, a system used to secure online traffic, carries a significant flaw, a group of European and American mathematicians and cryptographers has found. Public key cryptography requires the sender and the receiver of a message to each have a digital key to encrypt and decrypt it, respectively.
|
|
Google Zips Up Wallet February 15, 2012 
In the wake of two security flaws reported in its Google Wallet mobile payment system last week, Google has clamped down on the system and is scrambling to come up with a fix. One of the two flaws affects only rooted devices. But it's the second that troubles Google more.
|
Hackers Jimmy Into Microsoft's Indian E-Commerce Digs February 14, 2012 
Malicious hackers attacked Microsoft's India online retail store on Sunday evening, publishing obscured screenshots that appeared to contain personal user information. A Chinese hacker group known as "Evil Shadow Team" took responsibility for the breach, posting a message on Microsoft's website stating that the "unsafe system will be baptized."
|
|
Cracking Open Google Wallet February 13, 2012 
Mobile shopping received a setback last week when security researchers discovered flaws in Google Wallet that could potentially expose its PIN to enterprising hackers. When Google introduced its wallet, it bragged that it was secure because transaction information was stored in a "secure element" in Wallet-enabled phones.
|
Google Wallet a Pushover for Pickpockets February 10, 2012 
News of two security flaws in Google Wallet, which lets smartphone owners pay for purchases through the devices, has caused some concern about the nascent mobile payment product. One works on rooted devices; the other works on any smartphone with the Google Wallet capability.
|
|
DDoS the Weapon of Choice for Hackers Driven by Politics, Not Profits February 08, 2012 
Politics, rather than good old-fashioned theft, is increasingly the motivation of malicious hackers who attack websites using DDoS techniques. Arbor Networks has found that ideological hacktivism was the motivation behind most distributed denial of service attacks in 2011. Attacks for profit or competitive reasons still happen, but the rise of the political hacker is changing the threat landscape.
|
Anon Lets Fly With Symantec Code After Ransom Talks Collapse February 07, 2012 
A hacker who was negotiating a ransom for stolen source code to a Symantec product released the data via peer-to-peer networks on Tuesday after negotiations fell through. The code is for security vendor Symantec's pcAnywhere remote access software.
|
See More Articles in Exploits & Vulnerabilities Section >>
