Vulnerability

(get it in RSS or Atom)

Microsoft Word Intruder Revealed - inside a malware construction kit

What happens when cybercrooks take a leaf out of the Advanced Persistent Threatsters' book?

Gabor Szappanos of SophosLabs investigates...

Uber hires the guys who hacked a Jeep to develop safer driverless cars

car-hack-1200

Charlie Miller and Chris Valasek, security researchers who caused huge headaches for Fiat Chrysler when they showed the world how to remotely hack a Jeep, have hacked their way into new jobs with Uber.

PayPal patches potential payment-stealing vulnerability

An XSS hole could apparently have allowed a crook to pop up a realistic PayPal "pay page" and steal the victim's card data.

Paul Ducklin takes a look...

How a crook could have taken over your Facebook pages

A Facebook bug hunter just found a hole through which crooks could take over your personal Facebook pages.

Facebook fixed it PDQ...

Meet "SexyCyborg" and her high-heeled shoes... with hacking tools inside!

Meet "SexyCyborg" and her high-heeled shoes... with hacking tools inside!

American TV show, Mr Robot, inspires Chinese web developer to create her own hacking toolkit - hidden away in her high heels.

Google's Android "Admin" security hole - time to patch!

"Google Admin" is an Android security app for Super Adminstrators of the Google for Work tools.

But it had a security hole...

Avoid that cyberflash - 60 Second Security

Here's our weekly 1-minute video: Android, Adobe and Apple's AirDrop all get a look in this time.

Apple issues updates for lots of critical holes - patch now!

Whether you believe in Mac malware or not, you still need the latest Apple patches to close off numerous critical holes.

A virus on a *Mac*? Is NOTHING sacred? [Chet Chat Podcast 211]

The latest episode of our weekly security podcast - a quarter-hour of news with attitude! Enjoy.

Update Tuesday, Firefox's zero-day, more Android bugginess, a firmware virus for your Mac ...and a tax fraudster busted.

Another Android hole: "OCtoRuTA" - One (Java) Class to Rule Them All

Yet another large-scale vulnerability has been revealed in Android.

This one lets an otherwise innocent-looking app go rogue, and enjoy privileges normally limited to the trusted parts of Android.

Is Stagefright over yet? 60 Sec Security [VIDEO]

Here's the latest episode of our weekly 1-minute security video - enjoy.

Firefox zero-day hole used against Windows and Linux to steal passwords

Poisoned ads have been helping to siphon off passwords from Windows and Linux computers in an attack apparently aimed at developers.

Officials blame Russia for Pentagon Joint Chiefs of Staff email hack

Officials blame Russia for Pentagon Joint Chiefs of Staff email hack

Russia has been blamed for launching a "sophisticated cyberattack" against the Pentagon's Joint Chiefs of Staff unclassified email system.

Stagefrightened Google, Samsung to push out monthly Android fixes

The aptly named Stagefright vulnerability scared them into action. Let's hope that fear shakes up all the vendors and carriers so the fixes get to us ASAP.

SSCC 210 - So many cool new Windows 10 features to opt out of! [PODCAST]

Enjoy the latest episode of our award-winning weekly security podcast - a quarter-hour of entertaining education.

Hacked: yup, even your skateboard isn't safe

Hacked: yup, even your skateboard isn't safe

Security researchers have revealed the latest IoT security blunder by hacking electric skateboards via a Bluetooth controller.

Interested in Mac viruses? Here's Thunderstrike 2, a.k.a. the "firmworm"

When one door closes, another one opens.

Thunderstrike, the Mac firmware hole from early in 2015, is back for its sequel, Thunderstrike 2.

Counterterrorism expert wants to arm US companies with hack-back capabilities

Hacker. Image courtesy of Shutterstock

Deputizing for-profit companies to give out cyberwarrants and trusting that they have the capability to even determine the source of a cyberattack: Bad idea, good idea?

60 Sec Security - Atari, Minitel, VAX, ZX Spectrum...and Jimmy Connors! [VIDEO]

The latest episode of our funny-but-serious 1-minute weekly video.

Enjoy.