Best Of Web
Best Of The Web
YAHOO
APWG Report: New Records For Phishing & Targeted Brands In Q3, As eCrime Expands Unchecked Or Deterred
The number of unique phishing reports in third quarter 2009 reached a record 40,621 in August, while the number of unique phishing Websites reported reached a record 56,362, the Anti-Phishing Working Group reports
GCN
NIST Completes First Release Of Smart Grid Framework
Cybersecurity of the smart grid is a "critical priority," the framework says, and it requires building security into the architecture
THREAT POST
Tor Servers Hacked
Two of the seven directory authority servers used by the Tor Project for its anonymous browsing service have been compromised, along with a new server the project uses to host metrics and graphs
SC MAGAZINE
Political Hackers Deface Network Solutions-Hosted Sites
Hundreds of sites affected by attackers bear messages related to Middle Eastern politics
COMPUTERWORLD
Eighty Percent Of Government Websites Miss DNS Security Deadline
DHS is among the stragglers that have not implemented DNS updates
MICROSOFT
Out-Of-Band Security Patch For Windows IE Vulnerability Issued
Flaws could allow remote code execution, Microsoft says
SC MAGAZINE AUSTRALIA
CCTV Captures Thief Injecting Firm With Malware
Hacker broke into a recruitment firm and spent three hours installing remote access software
TECHWORLD
Hackers Are Cracking Bank Security
Traditional methods of authentication are no longer effective, Gartner report says
COMPUTERWORLD
Heartland's $60 Million Breach Settlement Offer Not Enough, Lawyers Say
Financial institutions argue that they spent much more in breach-related costs
CNET
Microsoft Urges Laws To Boost Trust In The Cloud
Microsoft counsel calls on lawmakers to tackle issues of privacy and security
THE INQUIRER
Ancient Windows Flaw Found After 17 Years
Windows NT trap handler flaw was there all along, but never identified
H ONLINE
Windows Hole Discovered After 17 Years
A newly published vulnerability in Windows allows users with restricted access to escalate their privileges to system level
PC WORLD
Hackers Hit Network Solutions Customers
Several hundred Websites hosted by Network Solutions were defaced in an attack; company says it appears the hack come via a single site
CNET
Apple Releases Mac OS X Security Update, Boot Camp 3.1
New update fixes issues within the core system and includes a patch for CoreVideo vulnerability
THE REGISTER
Poisoned PDF Pill Used To Attack U.S. Military Contractors
Attackers are waging ongoing cyber-espionage attack using infected PDF files posing as messages from the DoD
REUTERS
Google Attack Puts Spotlight On China's 'Red' Hackers
There are tens of thousands of Hong Ke hackers, and there's a grey area between patriotic hackers and the state
CNN
Journalists In China Face E-Mail Hijacking
Foreign correspondents in at least two Beijing news bureaus have had their Google e-mail accounts attacked
COMPUTERWORLD
D-Link Issues Fixes For Router Vulnerabilities
Flaw would allow hackers to access administrative settings
ZDNET BLOG
Virus Attack Hits Vista Machines, Cripples University Network
University of Exeter's network was shut down in the wake of a massive virus infection
DW-WORLD
Computer Experts Find Potential Security Breach In Airport Workers' IDs
Vulnerability found in several major German airports
NEWS.COM AUSTRALIA
French Government Calls On Users To Abandon Internet Explorer
Recent hacks incite European governments to recommend trashing popular browser
TIMES OF INDIA
China Tried To Hack India's Computers
India's national security adviser says country was among those targeted in recent hacks
ZDNET
Analysts Will Grill Google Execs On China This Thursday
Wall Street experts will ask hard questions in upcoming meeting
NBC 12
Phishing Scam Targets Veterans
Exploit takes the form of a text message regarding VA benefits
MASHABLE
Five More Reasons Why IE6 Must Die
New security issues could put final nail in the coffin for browser version
SMART COMPANY AUSTRALIA
Yahoo! Attacks Chinese Government For Cyberattacks, Defends Google
Controversy follows when Yahoo! sides with fellow search engine
NEW YORK TIMES
Software Firms Fear Hackers Who Leave No Trace
Source code hacks probably have already happened, experts say
CNET
Microsoft's Ballmer: We're Staying In China
"Cyberattacks are an unfortunate way of life," says the CEO of Microsoft, which will remain in China and obey its laws
THE REGISTER
Pizza Delivery Man Cops To Life In Darkmarket
Former London pizza delivery man faces 10 years in prison after admitting he helped found the notorious DarkMarket forum for computer crime
BBC
China Gives First Response To Google Threat
Official says China's Internet is "open" and the nation "proscribes any form of hacking activity"
NETWORK WORLD
Conficker Worm Hasn't Gone Away, Akamai Says
Worm was active and spreading during the third quarter, although total numbers have dropped in recent months
CNN
Body Scanners Can Store, Send Images, Group Says
Scanners must have ability to store and send images in test mode, leaving images open to abuse and hacking, Electronic Privacy Information Center says
WIRED
DARPA: U.S. Geek Shortage Is A National Security Risk
DoD's research arm is asking for proposals for ways to attract teens to careers with an emphasis on computing -- or else DoD systems will one day be at risk
BIT DEFENDER
Thirteen Percent of Systems In U.S. Infected By Flammable ZBot Malware Cocktail
U.S. has the most machines infected by dangerous Zbob malware, followed by Spain, according to a report from BitDefender
NEXGOV
Federal IT Spending To Increase Almost 4 Percent In Fiscal 2010
Government spending on information technology will reach $75.7 billion in fiscal 2010, according to Government Insights
WEBSENSE
Black Hat SEO Causing Malicious Search Results For Recent Haiti Earthquake
Searches about disaster may result in rogue antivirus exploits, researchers say
COMPUTERWORLD UK
Baidu Attack Hit U.S. Domain Registrar, Researcher Says
Attack was likely carried out by modifying Baidu's records at Register.com, according to expert
HEALTH IMAGING
Connecticut Attorney General Uses HITECH To Sue Over Patient Data Breach
Health Net of Connecticut draws lawsuit after exposure of more than 400,000 patient records
COMPUTER WEEKLY
McKinnon Wins Review Of Extradition For Hacking
Once again, reputed uber-hacker gains a hearing from British government
GOVERNMENT COMPUTER NEWS
Adobe: Eclipsing Microsoft As Patch Concern?
Microsoft has quiet month, but Adobe continues to endure heavy hacker fire
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2013-3496 (vipnet_client, vipnet_coordinator, vipnet_personal_firewall, vipnet_safedisk)
Infotecs ViPNet Client 3.2.10 (15632) and earlier, ViPNet Coordinator 3.2.10 (15632) and earlier, ViPNet Personal Firewall 3.1 and earlier, and ViPNet SafeDisk 4.1 (0.5643) and earlier use weak permissions (Everyone: Full Control) for a folder under %PROGRAMFILES%\Infotecs, which allows local users to gain privileges via a Trojan horse (1) executable file or (2) DLL file.
CVE-2013-2849 (chrome)
Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome before 27.0.1453.93 allow user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a (1) drag-and-drop or (2) copy-and-paste operation.
CVE-2013-2848 (chrome)
The XSS Auditor in Google Chrome before 27.0.1453.93 might allow remote attackers to obtain sensitive information via unspecified vectors.
CVE-2013-2847 (chrome)
Race condition in the workers implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via unknown vectors.
CVE-2013-2846 (chrome)
Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2013-2840.