(get it in RSS or Atom)

Anatomy of a LOGJAM - another TLS vulnerability, and what to do about it

We've had BEAST, Lucky Thirteen, BREACH, BEAST, POODLE, Heartbleed and, it's LOGJAM.

Paul Ducklin explains, and tells you what you can do about it.

Spear-phishers grab emails from internet overseer ICANN

ICANN logo

Yes, the DNS overlord fell for spear phishing. No, the internet's spine was NOT broken, given that the intruders only gained "read", not "write", access. Thank goodness!

Craigslist back up and running after DNS hijack

'Digital Gangster' hijacks Craigslist

If you had trouble getting onto Craigslist to sell your apple green velvet armchair over the weekend, join the club: the site was hijacked on Sunday night.

Anonymous threatens Singapore with hacking attacks, calls for November 5 protest... perhaps


An anonymous person, claiming to be Anonymous, recently fired off a hacking threat against Singapore's financial systems.

Should this threat be taken seriously?

Attacker grabs data for 3.6 million South Carolina taxpayers; governor wants to see culprit "brutalized"

Attacker grabs data for 3.6 million South Carolina taxpayers; governor wants to see culprit "brutalized"

She's got a right to be incensed, with 77% of the state's population's Social Security numbers being snatched out from under the Department of Revenue. But what's the appropriate penalty for the department, for the crime of leaving the data unprotected?

Court website attacked after Pussy Riot punk band convicted

Court website attacked after Pussy Riot punk band convicted

The fallout over the controversial conviction of the Russian punk band Pussy Riot continued on Tuesday, with hackers compromising and defacing the webpage of Moscow's Khamovnichesky Court.

SpyEye bank Trojan hides its fraud footprint


The latest variants of the information stealing SpyEye Trojan are now specializing in hiding fraudulent transactions from your online banking statements. Should we rethink giving up on our paper statements?

Windows Phone 7.5 susceptible to SMS hack


A researcher has discovered a flaw in Windows Phone 7.5 "Mango" that can crash the message center by simply receiving a malformed SMS, Tweet or Facebook message.

LG hacked - website defaced to show simulated intrusion

LG hacked - web site defaced to show simulated intrusion

One of the websites belonging to global electronics giant LG has been hacked by a collective calling itself the Intra Web Security Exploit Team.

Watch a video of what the attackers did. And learn how to avoid ending up in this situation yourself!

Macbooks, Korea, Spamford busted, phones lost, Anonymous threat - 60 Sec Security


No, the headline isn't a misprint. 90 Second News is now 60 Second Security!

Lots of readers said they'd like to see our 'news-with-a-conscience' videos more than once a month. So here you go. 60 Second Security, once every two weeks.

The EU parliament computer network is under attack

ACTA wars: two_stickmen_fighting

The European Parliament's computer network is under attack, and reports suggest it is similar to the cyber attack the EU Commission faced last week. An EU parliamentary spokesperson confirmed that the attack was still underway as of this morning.

Internet Explorer attacked in Europe - by Firefox!

Internet Explorer attacked in Europe

According to recent web statistics, Firefox sneaked into first place over Internet Explorer for the first time ever at the end of 2010.

What does this mean to security professionals? What does it mean to you?

Hack in the Box attack - presenter threatened with arrows

Hack in the Box attack - presenter threatened with arrows

Marco Slaviero, a presenter at Hack in the Box 2010 in Kuala Lumpur, Malaysia, had a narrow escape yesterday after a number of outsized presentation arrows ganged up and threatened to attack him during his talk. Powerpoint was initially suspected.