By sniffing out the details of network communications, University of New Haven researchers have uncovered a host of data-leakage problems in Instagram, Vine, Nimbuzz, OoVoo, Voxer and several other Android apps.
Security advisories for OpenSSL should not be used for competitive advantage, according to the development project behind the widely used cryptography component.
The warning comes from the OpenSSL Project, which has published for the first time guidelines for how it internally handles security problems, part of an ongoing effort to strengthen the project following the Heartbleed security scare in April.
Home Depot revealed Monday that a security breach of customer payment data did occur at its stores, confirming suspicions raised last week that millions of its customers could be at risk of fraud.
Following an announcement last Tuesday it was investigating "unusual activity" related to customer payment cards, the Atlanta-based home improvement retailer said any customer who used a credit or debit card in its US stores since April could be affected by the breach.
It has not been a pretty week for Home Depot. Last Tuesday security researcher Brian Krebs reported that there were signs of a massive breach at the retailer and then later, that the breach looked to be especially large, impacting just about all of the retailer’s stores across the country.
Home Depot said it was investigating the “unusual activity.”
The Health and Human Services Department (HHS) said that HelthCare.gov, the nation's health insurance enrollment website, was breached in July and that the attackers uploaded malware to the server.
The breach, which is the first successful intrusion into the website, was discovered on August 25 by a CMS security team after an anomaly was detected in the security logs of one of the servers on the compromised system.