Exploit

(get it in RSS or Atom)

How a crook could have taken over your Facebook pages

A Facebook bug hunter just found a hole through which crooks could take over your personal Facebook pages.

Facebook fixed it PDQ...

What part of "Prohibited" don't you understand? 60 Second Security

Enjoy the latest episode of our weekly 1-minute video - short and sweet security!

Google's Android "Admin" security hole - time to patch!

"Google Admin" is an Android security app for Super Adminstrators of the Google for Work tools.

But it had a security hole...

Avoid that cyberflash - 60 Second Security

Here's our weekly 1-minute video: Android, Adobe and Apple's AirDrop all get a look in this time.

Apple issues updates for lots of critical holes - patch now!

Whether you believe in Mac malware or not, you still need the latest Apple patches to close off numerous critical holes.

Another Android hole: "OCtoRuTA" - One (Java) Class to Rule Them All

Yet another large-scale vulnerability has been revealed in Android.

This one lets an otherwise innocent-looking app go rogue, and enjoy privileges normally limited to the trusted parts of Android.

Is Stagefright over yet? 60 Sec Security [VIDEO]

Here's the latest episode of our weekly 1-minute security video - enjoy.

Firefox zero-day hole used against Windows and Linux to steal passwords

Poisoned ads have been helping to siphon off passwords from Windows and Linux computers in an attack apparently aimed at developers.

60 Sec Security - Atari, Minitel, VAX, ZX Spectrum...and Jimmy Connors! [VIDEO]

The latest episode of our funny-but-serious 1-minute weekly video.

Enjoy.

Xen fixes another "virtual machine escape" bug

xen-480

Last time it was the floppy disk drive that let crooks squeeze out of jail - this time, the virtual CD-ROM is their springboard...

The "Stagefright" hole in Android - what you need to know

Android. Image courtesy of Bloomua / Shutterstock.

Here's what you can do to deal with the much-talked-up "Stagefright" messaging vulnerability on Android

Beyond the breaches: Understanding the Angler exploit kit

Crimeware expert Fraser Howard tells you what you need to know about Angler - the current "market leader" in the exploit kit scene.

A must-read report if you want to bolster your defences...

If you make everybody use weaker locks, it's burglars who benefit! 60 Sec Security [VIDEO]

Security can be fun...here's the latest episode of our weekly 1-minute video.

Enjoy!

SSCC 207 - Windows 2003 R2? The train stops here! [PODCAST]

Our weekly quarter-hour podcast where we turn the latest security news into advice you can use - and have fun at the same time.

Enjoy!

Another "Hacking Team" zero-day surfaces - this time in IE, not Flash!

Yet another zero-day has been dragged out of the data dump from hacked Italian security outfit Hacking Team.

Microsoft was all over this in double-quick time, so get the patch!

Did Firefox listen to Facebook and just kill Flash? (No, but there's another patch!)

Did Firefox listen to Facebook and just kill Flash? (No, but there's another patch!)

The OpenSSL "CVE-2015-1793" certificate verification bug - what you need to know

os-1200

OpenSSL announced on Monday that it had a "high severity" update arriving in three days' time.

That's today, and the update is out. Paul Ducklin tells you what you need to know...

Flash zero-day leaks out from "Hacking Team" hack, patch expected Real Soon Now

Last night we wrote about how Flash troubles come in threes, like those proverbial buses.

Stop the presses! Here comes another one!

Flash malware that gives you a free security update

Malware that patches Flash for you after it's broken in?

Sadly, it's not all about you...in fact, it's not about you at all.

"Something stolen, something new" - 60 Sec Security [VIDEO]

Here's the latest episode of our weekly 1-minute security video.

Fun with a serious side...enjoy!