PayPal’s Two-Factor Authentication Defeated, Again
A security flaw in PayPalsauthentication systemallows an attacker to gain access to an account that has two-factor authentication (2FA) turned on without having to enter the second validation code.A...
View ArticlePwnie Express Targets Remote Locations With New Cloud-based Security...
Pwn Pulse Combines “Hack-in-a-box” Sensors with Central Management for Remote Location Intelligence
View ArticleAPT Group Hijacks Popular Domains to Mask C&C Communications: FireEye
Researchers at FireEye have examined a new campaign in which advanced persistent threat (APT) actors used some clever techniques to avoid being detected.
View ArticleBuy All the Cybersecurity Vulnerabilities: Black Hat Keynote
Black Hat keynote speaker Dan Geer has some radical ideas to reshape modern security, including a suggestion that the United States purchase security vulnerabilities and make them public.
View ArticleMicrosoft to block outdated Java versions in Internet Explorer
Next week’s Patch Tuesday updates will include a much-needed fix for Internet Explorer, blocking outdated versions of Java and preventing one of the most popular vectors for installing malware.
View ArticleRussian hackers show who values passwords
Authentication tools emerging to minimize hack exposure, but can they kill end-user apathy
View ArticleUS contractor firm that vetted Snowden suffers major breach; data likely...
A major contractor of the US Dept. of Homeland Security suffers a major breach, months after it was accused of faking hundreds of thousands of background checks.
View ArticleSymantec CEO credits enterprise growth amid positive Q1 earnings report
Acknowledging demand for cybersecurity products worldwide is certainly helping, Symantec said it will continue to focus on five key product areas.
View ArticleTop gov’t spyware company hacked; Gamma’s FinFisher leaked
The maker of secretive FinFisher spyware — sold exclusively to governments and police agencies — has been hacked, revealing its clients, prices and its effectiveness across an unbelievable span of...
View Article500,000 Android Devices Infected in Six Hours by SMS Worm in China
The Chinese Valentines Day was on August 2 this year and it was the perfect opportunity for cybercriminals to conduct nefarious activities, as they delivered an SMS worm for Android that spread faster...
View ArticleRussian hackers stole more than 1 billion usernames and passwords
A gang operating in Russia is reportedly in possession of a staggering 1.2 billion usernames and passwords in a massive hack involving more than 420,000 websites, including many operated by...
View ArticleUS Plextor Website Hacked by CoMoDo Islamic Hackers
The website for the United States of the world-renowned computer hardware manufacturer Plextor has been taken over by a group of hackers identifying themselves as CoMoDo (unrelated to the US-based...
View ArticleDrupal and WordPress Coordinate Security Updates to Fix DoS Flaw
For the first time ever, the security teams at Drupal and WordPress have worked together on addressing a remotely exploitable vulnerability that affects tens of millions of websites that use their...
View ArticleGoogle boosts secure websites in search results
Google is urging website developers to adopt HTTPS, a form of website encryption that secures data send over the web, to protect user data from hackers.
View ArticlePaw Security Hackers Attack Chinese Websites
The hacker collective Paw Security started an offensive against China, attacking government websites, as well as those of different Chinese companies. On August 5, the group announced on Twitter that...
View ArticleNew FireEye Services Help Insurance Industry Manage Exposure to Cyber Threats
Threat protection solutions provider FireEye has announced a new line of services designed specifically tohelp brokers and underwriters gain visibility into enterprises’ exposure to cyber threats.
View ArticleXiaomi RedMi 1S Phone Sends Details to Mothership
Following reports regarding privacy concerns that Xiaomi mobile phones send personal user information to a remote server operated by the manufacturer, security researchers tested one device and...
View ArticleAttackers Used Multiple Zero-Days to Hit Spy Agencies in Cyber-Espionage...
Kaspersky Lab said that it has discovered how victims of a massive cyber espionage campaign were infected, shedding light on questions previously left unanswered in earlier research.
View ArticleSecurity Consultant Gains Control of Luxury Hotel Rooms
A former security researcher at Fujitsu Laboratories, Jesus Molina, described to his audience at Black Hat conference in Las Vegas this year how he found a way to control different comforts in a luxury...
View ArticleMicrosoft to Block Outdated ActiveX Controls in Internet Explorer
In an effort to provide an enhanced level of protection to Internet Explorer users, Microsoft has decided to introduce a new feature that’s designed to block ActiveX controls that are out of date, the...
View Article