Best Of Web
Best Of The Web
HOST EXPLOIT
15,000 Victims Of Fraud In First Half Of 2010
Online shopping, auction frauds top the list, study says
THE ATLANTIC
What's This Mysterious White House Cyber Event All About?
Participants say Obama administration is doing another review on cyber policy
HEALTHCARE INFO SECURITY
HIPAA Privacy, Security Updates Unveiled
Proposed rules could strengthen enforcement of compliance
COMPUTERWORLD UKE
Phone Ransom Trojan Disables PC, Asks For $4
Bizarre piece of ransomware puzzles security researchers
GOVERNMENT COMPUTER NEWS
Forensic Web Service Could Reconstruct The Scene Of The Cybercrime
NIST considers Web forensics tool
THE HILL
White House Meeting Will Stress Economic Side Of Cybersecurity
Officials consider economic incentives to encourage private-sector investment in cybersecurity
THE REGISTER
Zeus Baddies Unleash Nasty New Bank Trojan
Toolkit targets U.S., U.K., Spanish, and German banks
THE REGISTER
Facebook For Hackers Shut Down In Pakistan
Five arrested as Pakbugs cybercrime forum is cracked
COMPUTERACTIVE
How To Recognize And Avoid Online Scams
A look at the most common categories of scams, and what to do about them
COMPUTERWORLD UK
NSA Denies Nationwide Electronic Spy Network Claim
"Perfect Citizen" project involves no surveillance or monitoring, agency says
YAHOO!
Malware Support Even Better Than Security Vendors
Rogue software sometimes offers better customer service than the real thing
GOVERNMENT INFO SECURITY
Pros And Cons Of A Cybersecurity Bill
Expert offers detailed analysis of legislation in Congress
ZDNET
Report: Apple Had The Most Vulnerabilities Throughout 2005-2010
Oracle was No. 2 on the hit parade, researchers say
KREBS ON SECURITY
Pirate Bay Hack Exposes User Booty
Security weaknesses in popular file-sharing site may have exposed personal info of 4 million users
FEDERAL COMPUTER WEEK
Homeland Security To Take FISMA Lead
Officials clarify federal government agencies' roles in cybersecurity efforts
DEFENSE SYSTEMS
Cybershield For Private Sector Sparks Big Brother Fears
NSA "Perfect Citizen" plan causes some observers to worry about a surveillance state
ANCHORAGE DAILY NEWS
25,000 Sign Up For State Credit Protection After Data Lost
Breach causes high percentage of Alaska employees to seek identity theft protection
NETWORK WORLD
Facebook Slapped With Class-Action Privacy Lawsuit
Social networking firm says there is "no merit" to allegation that it mishandled user data
BIZ REPORT
Anchor Intelligence: Attempted Click Fraud Up 26 Percent
Increase may be due to resurgent botnet traffic, research firm says
HELP NET SECURITY
Employees Bypass Security Roadblocks To Engage In Social Networking
Workarounds are contributing to growth of malware distributed via social networks, study says
EXAMINER.COM
Virus Report: Rogue Progams Disabling Windows XP On The Rise
Malware works around most security controls built into the OS, report says
NETWORK WORLD
Cisco Warns Attendees That The Cisco Live Database Was Hacked
Cisco Live conference attendee database was hit by a hacker who was able to access badge numbers, name, title, company address, and email addresses
WIRED
FBI Raids 'Elektronic Tribulation Army' Over Witness Intimidation
FBI agents raided the homes of three alleged members of a hacker gang that harassed a security expert who helped put the group's leader in jail
COMPUTERWORLD
Researcher Cracks 'Secret' Code In U.S. Cyber Command Logo
A security researcher cracked the code embedded in the seal of the U.S. Cyber Command (Cybercom) -- it represents the MD5 hash of the group's mission statement
ITPRO
Microsoft Names And Shames 25 Pirate Retailers
Microsoft has published the identities of U.K. shops and online retailers that are selling illegal copies of its software
HUNT ON PRIVACY BLOG
Mexico's Data Protection Law Now In Effect
The Mexican Senate unanimously approved a landmark federal data protection law governing the collection, processing, and disclosure of personal data by the private sector
COMPUTERWORLD AUSTRALIA
Security Pro Says New SSL Attack Can Hit Many Sites
A security consultant has come up with a way to exploit a recently disclosed bug in the SSL protocol that would let attackers wage powerful phishing attacks
GOVINFOSECURITY
Jobs Aplenty For The IT Security Pro
Dice.com has seen a 17 percent growth in the number of IT security jobs posted on its website during the past year
INFOWORLD
Microsoft To Patch Google Engineer's Zero-Day Next Week
Microsoft will issue four security updates next week to patch five vulnerabilities in Windows and Office, including the bug that a Google researcher revealed publicly last month
COMPUTERWORLD
Updated BlackBerry Security Features Aimed At Boosting Corporate Use
Research in Motion's newest version of the BlackBerry Enterprise Server comes with security features, including a tool that lets users separate personal from corporate
SAIGON DAILY
Vietnam Arrests 99 Foreigners For Hacking Bank Accounts
Vietnamese police have arrested people from China and Taiwan for allegedly hacking into bank accounts, the Vietnamese Ministry of Public Security announced
THREAT POST
New Firefox Plug-In Will Defeat Flash Attacks
A German researcher will release at Black Hat USA this month a new browser plug-in designed to prevent many common types of Flash attacks
GAWKER
iPad 'Hacker' Claims Civil Rights Violations, Disputes Anti-Semitism Charges
A member of the group that exposed a major AT&T/iPad security flaw and was later arrested for drug possession blogged this week that he was targeted because he had taken on Apple and AT&T
SOPHOS BLOG
Germans Take Aim At Facebook Over Privacy
Hamburg's Data Protection Authority is worried that Facebook is storing the data of third parties who have not signed up to Facebook, but whose details have been added to the site by friends for marketing purposes
TECH CRUNCH
Skype��s Innermost Security Layers Claimed To Be Reverse-Engineered
A hacker claims he has reverse-engineered the proprietary encryption protocols of Skype that prevents developers from building their own Skype desktop clients or Web-based services
THE WALL STREET JOURNAL
U.S. Plans Cyber Shield For Utilities, Companies
The federal government's new "Perfect Citizen" program, employing surveillance by the NSA, will detect cyberassaults on private companies and government agencies running critical infrastructure
AVG BLOG
Remote Control Facebook
New video lure scam remotely controls Facebook
BOSTON.COM
State's Error Unveiled Social Security Numbers
The state of Massachusetts exposed the personal information of 139,000 investment advisers on a CD-ROM
COMPUTERWORLD
IT Staffer At New York Bank Pleads Guilty To Data Theft, Fraud
A former IT staffer with the Bank of New York Mellon has plead guilty to stealing sensitive information of 2,000 bank employees and then using that data to steal more than $1 million from charities
V3
Malware Takes Aim At Defense Contractors
Researchers from Symantec Hosted Services spotted a sophisticated targeted attack that compromised one Defense firm's site and then used it to host a malware attack on another contractor
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
- HP Newsletter with Gartner Research: Maximizing Your Infrastructure through Virtualization
- Understanding Holistic Database Security 8 Steps to Successfully Securing Enterprise Data Sources
- A How-To Guide on Using Cloud Services for Security-Rich Data Backup
- Holistic Risk Management: Perspectives from IT Professionals
- Aligning IT with strategic business goals: A proactive approach to managing IT risk to your business
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2012-4697
TURCK BL20 Programmable Gateway and BL67 Programmable Gateway have hardcoded accounts, which allows remote attackers to obtain administrative access via an FTP session.
CVE-2011-4520
Heap-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page.
CVE-2011-4519
Stack-based buffer overflow in an ActiveX component in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to cause a denial of service via a crafted web page.
CVE-2011-4518
Directory traversal vulnerability in the PmWebDir object in the web server in MICROSYS PROMOTIC before 8.1.5 allows remote attackers to read arbitrary files via unspecified vectors.
CVE-2012-6563
engine/lib/access.php in Elgg before 1.8.5 does not properly clear cached access lists during plugin boot, which allows remote attackers to read private entities via unspecified vectors.