If you're a fan of hacking Microsoft's systems, then the company is going to reward you even more for your efforts.
No, Microsoft isn't masochistic. In actuality, its bug bounty program is designed to help the company address critical vulnerabilities and reward those who tinker with Microsoft's systems and services to find them. The goal, as with so many other bug bounty programs, is to give creative exploiters something for their efforts and to discourage them from releasing the results of their hacking to the larger underground communities and/or general public.
Russian hackers allegedly accessed the Pentagon's Joint Staff unclassified email system, which led the agency to take the service offline for nearly two weeks.
NBC News reported, through anonymous sources, that the “sophisticated cyber intrusion” occurred around July 25 and affected nearly 4,000 military and civilian personnel who work for the Joint Chiefs of Staff. The cyber attack apparently relied on an automated system that could quickly gather large amounts of data and distribute it to thousands of online accounts. The entire process could last only a minute.
Google Inc and Samsung Electronics Co will release monthly security fixes for Android phones, a growing target for hackers, after the disclosure of a bug designed to attack the world's most popular mobile operating system.
The change came after security researcher Joshua Drake unveiled what he called Stagefright, hacking software that allows attackers to send a special multimedia message to an Android phone and access sensitive content even if the message is unopened.
A design flaw in the x86 processor architecture dating back almost two decades could allow attackers to install a rootkit in the low-level firmware of computers, a security researcher said Thursday. Such malware could be undetectable by security products.
The vulnerability stems from a feature first added to the x86 architecture in 1997. It was disclosed Thursday at the Black Hat security conference by Christopher Domas, a security researcher with the Battelle Memorial Institute.
A Windows vulnerability in the SMB file-sharing protocol discovered 14 years ago and partially patched by Microsoft could still be abused via remote attacks, two security researchers demonstrated on stage at the Black Hat security conference on Wednesday.