Just as viruses mutate and become harder to attack, hackers have mutated their methods of stealing personal data.
In May, an intruder stole 40 million MasterCard and Visa-branded accounts stored in electronic vaults owned by CardSystems in Tucson, Ariz. The data broker acts as middleman between merchants and banks.
Internet computer gear maker Cisco Systems Inc., which last week went to court to keep a security flaw in its routers under wraps, on Thursday said its Web site had been "compromised" and users' passwords changed as a precaution. Cisco spokeswoman Mojgan Khalili declined to comment on whether any data or passwords of employees, customers and other registered users had been compromised by the vulnerability, which came to Cisco's attention on Monday through a third party security research group.
"Cisco patched the vulnerability and immediately corrected the problem," Khalili said.
A flaw has been discovered on eBay's website that would have allowed fraudsters to successfully redirect the sign-on process to a phishing site.
Reported by British antiphishing outfit Netcraft, the clever scam apparently started with fraudsters sending e-mails asking eBay users to update their accounts. So far so normal, as such fake eBay e-mails are currently one of the phishing world's persistent lines of attack.
A serious flaw has been discovered in a core component of Windows 2000, with no possible work-around until it gets fixed, a security company said.
The vulnerability in Microsoft's operating system could enable remote intruders to enter a PC via its Internet Protocol address, Marc Maiffret, chief hacking officer at eEye Digital Security, said on Wednesday. As no action on the part of the computer user is required, the flaw could easily be exploited to create a worm attack, he noted.
A serious security flaw in Computer Associates backup products could put corporate systems at risk of cyberattack, security companies have warned.
The vulnerability lies in CA's BrightStor ARCserve Backup Agents and BrightStor Enterprise Backup Agents, according to an alert from the French Security Incident Response Team released Wednesday. The software handles backups of critical systems, FrSirt said.
CA issued software patches to fix the problem on Tuesday.