Attackers are actively exploiting a previously unknown vulnerability in all supported versions of Internet Explorer that allows them to surreptitiously hijack vulnerable computers, Microsoft warned Sunday.
Hacking for espionage purposes is sharply increasing, with groups or national governments from Eastern Europe playing a growing role, according to one of the most comprehensive annual studies of computer intrusions.
Spying intrusions traced back to any country in 2013 were blamed on residents of China and other East Asian nations 49 percent of the time, but Eastern European countries, especially Russian-speaking nations, were the suspected launching site for 21 percent of breaches, Verizon Communications Inc's said in its annual Data Breach Investigations Report.
Security researchers have uncovered an active malware campaign in the wild that steals the Apple ID credentials from jailbroken iPhones and iPads.
Some cloud storage providers who hope to be on the leading edge of cloud security adopt a "zero-knowledge" policy in which vendors say it is impossible for customer data to be snooped on. But a recent study by computer scientists at Johns Hopkins University is questioning just how secure those zero knowledge tactics are.
The world's top 1,000 websites have been patched to protect their servers against the "Heartbleed" exploit, but up to 2% of the top million were still vulnerable as of last week, according to a California security firm.
On Thursday, Menifee, Calif.-based Sucuri Security scanned the top 1 million websites as ranked by Alexa Internet, a subsidiary of Amazon that collects Web traffic data.
The Omani News Agency has claimed hackers were responsible for publishing offensive photographs of recently re-elected Algerian President Abdelaziz Bouteflika on its website.
The ONA website was not working on Sunday morning following the embarrassing incident in which the faces of North Korean dictator Kim Jong-un and Mohamed Abdelaziz, head of the Polisario Front and President of the Sahrawi Arab Democratic Republic, were superimposed on the profile headshot of Bouteflika, media agencies have reported.
Oracle has pushed a critical patch update for its Java SE platform that fixes at least 37 security vulnerabilities in the widely-installed program. Several of these flaws are so severe that they are likely to be exploited by malware or attackers in the days or weeks ahead. So — if you have Java installed — it is time to update (or to ditch the program once and for all).
The Keen, a top hacking team which took down Windows 8.1. Adobe Flash in just 15 seconds and Apple’s Safari Mac OS X Mavericks system in only 20 seconds during a Pwn2Own Vancouver event in March, has divulged the identity of its members, a Chinese newspaper reported on 13 April 2014.
“50 percent of us are the top scoring students in the national college entrance examination. 50 percent are majored in mathematics, and 50 percent are from Microsoft,” said Lv Yiping, key member of the Keen and co-founder and chief operating officer of the team’s Shanghai-based parent company.
PayPal was left fighting a rear-guard action last night after it emerged the fingerprint scanner seen on the Samsung Galaxy 5 smartphone can easily be bypassed.
Germany's Security Research Labs says the spoofing system allows access to a user's PayPal account, which is an important issue since a key feature of the scanner is one-step access to the PayPal money payment system - effectively replacing the user's ID and password with a fingerprint swipe.
Lacie has revealed a security breach affecting visitors to its website, who might have had their credit card details swiped.
A hacker repeatedly exploited a flaw in the Lacie website, using malware to gain access to customer details. The incident only came to light when the US Federal Bureau of Investigation (FBI) contacted Lacie on 19 March.
