Monthly Archives: September 2012
Telvent tells customers that it's discovered that attackers breached its internal firewall and security systems, implanted malicious software, and stolen project files linked to its smart grid product. Experts detected digital fingerprints implicating a Chinese hacking group.
The US Federal Trade Commission has reached a settlement with a remote monitoring software firm and its customers over what the agency said was flagrant computer spying on customers of the rental stores.
Christopher Soghoian gave the keynote presentation at the VB2012 conference in Dallas, exploring the growing industry in selling details of exploitable vulnerabilities to the highest bidder.
Free speech or weapons in need of regulation?
Being careful where you download from isn't always enough.
SourceForge, the hosting service for phpMyAdmin, has disclosed that the official phpMyAdmin 22.214.171.124 distribution was Trojanised some time last weekend.
Earth Day really did make a difference - at least in the world of internet security.
That's one of the conclusions revealed in a paper presented today at the Virus Bulletin (VB2012) conference in Dallas, Texas.
By its own account, the IEEE is the world's largest professional association for the advancement of technology.
Not quite the organisation you'd expect to store 100GB of HTTP logs in a world readable internet facing directory.
The same team of Polish researchers who discovered a critical security hole in Oracle’s Java software say that they uncovered another such hole, which could be used to bypass the secure application “sandbox” on most recent versions of Java.
Eric Wheeler's CNET article spelled out the apocalyptic future that awaits us if we don't stop Do Not Track. But is it actually true?
Are Android phones about to be wiped off the face of the earth? Will hackers be triggering a factory reset on your phone whenever they feel like it?
That's the question going around since New Zealand geek Dylan Reeve put a "test your Android mobe for imminent disaster" page on his website.
US Sen. Joe Lieberman says people in the know are tracing the attacks to the government's cyber army and theorizes that the DDoSes are retaliation for economic sanctions and/or Stuxnet.
UK Cybercrime investigator and Sophos consultant Bob Burls has been on the inside of some of the biggest law enforcement takedowns of the last decade.
Sophos has received reports that some Google searches for "Sophos Technical Support" lead to bogus pages purporting to be official Sophos Support contact information. Remember, Sophos Support provides free support to all customers and partners experiencing any software issues, including the Shh/Updater-B false positive.
Here's a tale from the Australian outback about a ransomware demand. The victim was asked for $3000.
He paid up. But would you? Should you? Or is there a better way?
Disposable or limited-use contactless fare cards used in New Jersey and San Francisco have insecure implementations of the Mifare Ultralight chip that can be reset to get free rides, security researchers have shown.