Best Of Web
Best Of The Web
INFOWORLD
Siemens Confirms German Customer Hit By Stuxnet Espionage Worm
Siemens won't name the company, while Symantec is now logging about 9,000 infection attempts per day by the worm
NETWORK WORLD
United Nations Making Slow Progress On Cybersecurity
Fifteen countries, including the U.S, Russia, and China, have agreed on recommendations to the United Nations secretary general for negotiating an International computer security treaty
PC WORLD
Obama Says He Can't Intervene In British Hacker Case
President Barack Obama said Tuesday that he can't intervene in the case of British hacker Gary McKinnon, who is charged with breaking into U.S. military computers
THE BREACH BLOG
Employee Posts Sensitive Maryland Department Of Human Resources Data Online
A Maryland employee posted 2,900 social security numbers and other personal information online onto his company��s website
WIRED
Search Top Secret America's Database Of Private Spooks
Newly published searchable database shows what government employees and contractors are up to
HOST EXPLOIT
AOL Responsible For Mass Disclosure Of Data
Federal judge holds service provider liable for loss of 658,000 customers' info
THREAT CENTER LIVE
Widespread Compromise Impacts Thousands Of Legitimate Websites
Searches for celebrities and porn may reroute users to rogue antivirus offers
RESELLER NEWS
Staff, Ex-Employees Main Culprits In Data Theft
Disgruntled employees are the most likely leaks of sensitive data, according to study
NATIONAL PUBLIC RADIO
Cyberwarrior Shortage Threatens U.S. Security
Lack of skilled experts inhibiting defense efforts, experts say
PC WORLD
After Worm, Siemens Says Don't Change Passwords
Changing passwords could cause problems in Siemens systems, officials say
SECURELIST
Stuxnet And Stolen Certificates
New threat uses driver signed by a trusted third party
SOFTPEDIA
Google Reports Surge In Spam Using Obfuscated JavaScript
Less junk email, but more email-borne viruses this quarter, researchers say
COMPUTERWORLD
Dell Offers Free Web Browser Security Tool
Free browser security software adds a protective "sandbox" on the desktop to isolate the user's desktop from malware or other malicious activity
ZENIT
Vatican Targeted In Cyber Attack On Google
The Vatican was targeted in an attack that redirected "Vatican" Google searches www.pedofilo.com, which displayed a blank page
SOFTPEDIA
New Koobface Variant Installs Highly Invasive Rogueware
New Koobface variant drops a scareware program that prevents almost all programs from running
NPR
Cyberwarrior Shortage Threatens U.S. Security
Not enough knowledgeable workers coming into the field to support national security objectives going forward, government officials say
YOUWEREWARNED
You Never Know Who Is Spying On You
The twelfth member of the busted Russian spy ring worked for Microsoft, but he was under surveillance during most of his stay in the U.S.
COMPUTERWORLD
Colorado Warns Of Major Corporate ID Theft Scam
The state's 800,000 or so registered businesses are being warned of forged business identities being used to fraudulent purchases from several big-box retailers in recent months, including Home Depot, Lowe's, Office Depot, Apple, and Dell
HOST EXPLOIT
EU Authorities: Implementation Of Net Surveillance Directive Is Unlawful
Landmark announcement says that the way European Member States have implemented data retention obligations in the 2006 EU Data Retention Directive is unlawful
THE GUARDIAN
Virus Phone Scam Being Run From Call Centres In India
Britons are targeted by cold callers pretending to be from Microsoft, calling to fix a fake computer problem
CYBERINSECURE.COM
Government .gov Domains Hijacked, Point To Adult Content And Push Adware
Exploits appear to be designed to push FLVDirect adware
NETWORK WORLD
Privacy Watchdog ESRB Itself Leaks A Thousand Emails
Employee hits "reply all," ironically exposing the identities of people concerned about online privacy
INFO SECURITY
Information Security: Read All About It
When there's a threat, news travels fast. But how well does the press cover security issues?
THE ONION
The Vanguard Of Security Technology
A humorous look at the TSA's next generation of airport defenses
ESECURITY PLANET
Small Businesses, Southern States Targeted By Spammers
Spammers appear to be targeting those with the weakest defenses, Symantec report says
COMPUTERWORLD
Some Experts Question Efforts To Identify Cyberattackers
Attribution continues to be a chief issue in cyberattacks
SOPHOS
Data-Stealing "Smart Dust" -- Should We Be Worried?
Futuristic hacking idea probably can be swept away for now
ARS TECHNICA
Users Of Location Services Worried About Robberies, Stalking
Geolocation services present security risks, study says
CNET
Finjan Sues McAfee, Symantec Over Patents
After Microsoft licensed its patents in 2005, company says other security vendors should follow suit
THREAT POST
Talk On Chinese Cyber Army Pulled From Black Hat
Concerns raised by Chinese, Taiwanese governments, according to report
KASPERSKY
'Myrtus And Guava' Malware Launches Via USB Devices
Malicious driver also carries valid digital signature, researchers say
ZDNET
Ex-MI6 Man Admits To Official Secrets Breach
Employee downloaded a list of staff and operatives to a USB drive, then attempted to sell it
COMPUTER ACTIVE
Visa Improves Online Security With Codesure
Chip-and-pin bank card also includes one-time password generator
SEARCH SECURITY
Poisoned Mel Gibson Search Results Yield Fake Adobe Flash Installer
Search for "Mel Gibson tapes" brings poisoned pages, TrendLabs says
HOST EXPLOIT
Men Say HP Put Them Through 'Nightmare'
Alleged hackers say charges brought against them were false
SOPHOS
The 'Never Gonna Drink Coca Cola Again' Facebook Scam
Link promises "horrific" video, but leads to horrific malware
PC WORLD
Seeing Tough Times Ahead, Symantec Plans Layoffs
Symantec will cut 4.5 percent of the cost of its workforce and outsource some of its IT and finance operations
INFO SECURITY
New Phishing Attack Disguised As PDF Reader Update
Attacks are on the upswing since June, Symantec research says
GOVERNMENT COMPUTER NEWS
Is Your Smart Phone Infected With Malware?
Most users wouldn't know if it were, survey says
SUPERSTORE SEARCH
The Top 10 Items Stolen Online
PlayStation, Wii at the top of the list, statistics say
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2013-3496 (vipnet_client, vipnet_coordinator, vipnet_personal_firewall, vipnet_safedisk)
Infotecs ViPNet Client 3.2.10 (15632) and earlier, ViPNet Coordinator 3.2.10 (15632) and earlier, ViPNet Personal Firewall 3.1 and earlier, and ViPNet SafeDisk 4.1 (0.5643) and earlier use weak permissions (Everyone: Full Control) for a folder under %PROGRAMFILES%\Infotecs, which allows local users to gain privileges via a Trojan horse (1) executable file or (2) DLL file.
CVE-2013-2849 (chrome)
Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome before 27.0.1453.93 allow user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a (1) drag-and-drop or (2) copy-and-paste operation.
CVE-2013-2848 (chrome)
The XSS Auditor in Google Chrome before 27.0.1453.93 might allow remote attackers to obtain sensitive information via unspecified vectors.
CVE-2013-2847 (chrome)
Race condition in the workers implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via unknown vectors.
CVE-2013-2846 (chrome)
Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2013-2840.