Best Of Web
Best Of The Web
BBC
China Delays Internet Filter Plan
China puts on hold a controversial plan requiring all new computers sold in the country to be equipped with Internet filtering software
SUPERMARKET NEWS
Heartland Receives Encrypted Card Data From Retailer
Heartland says it has completed the first phase of an end-to-end encryption pilot project designed to enhance its security
HEISE ONLINE
Swatting Phreaker Swatted And Heading To Jail
A 19-year-old phreaker was sentenced to more than 11 years in prison for making phony emergency calls that sent special police units or SWAT teams to investigate
INFORMATIONWEEK
Zeus Trojan Variant Steals FTP Login Details
Malware was found harvesting FTP account information from compromised computers by Prevx, which says the number of affected accounts is roughly 74,000
THE REGISTER
Mitnick Site Targeted In DNS Attack On Web Host
Kevin Mitnick's Website is compromised by attackers who accessed a domain name server maintained by the site's Web hosting company, redirecting visitors to porn
DEFENSE SYSTEMS
New Proposal Would Require Cybersecurity Workers Be Certified
Senate measure would require national licensing, certificatio,n and periodic recertification program for cybersecurity professionals
GOOGLE
Google Spam Report
Old-style spam surged in the second quarter, according to new Google spam email data
SOPHOS BLOG
Michael Jackson Email-Aware Worm Hits Inboxes
Email that claims to come from sarah@michaeljackson.com says an attached ZIP file contains secret songs and photos of the King of Pop
RISKY BIZ
Juniper Networks Gags "ATM Jackpot" Researcher
A live ATM machine hack by a Juniper researcher scheduled for Black Hat next month has been pulled at the request of the ATM's manufacturer
MOZILLA
New Content Security Policy Revealed
Mozilla is proposing a new mechanism to combat cross-site scripting that browsers can choose to enforce
SPYWARE GUIDE
Hackers Target Neopet Users
A new malware scheme targets kids' social network
SCHNEIER ON SECURITY
The Problem With Password Masking
Clear-text passwords reduce errors, and shoulder-surfing isn't very common, Schneier says
INFORMATIONWEEK
Web Filtering Company Reports Cyber Attack To FBI
Solid Oak Software, which claims China's Green Dam software illegally uses its code, says it's under cyber attack
SECURITY PRO NEWS
MessageLabs Gives Botnet Rundown
Cutwail botnet is responsible for 45 percent of all spam
FEDERAL COMPUTER WEEK
Improved FISMA Scores Don't Add Up To Better Security, Auditor Says
GAO official says metrics don't measure how well security controls are established in agencies
WIRED
Superhacker Max Butler Pleads Guilty
Butler admits to stealing nearly 2 million credit card numbers from banks, businesses, and other hackers, and tallying up $86 million in fraudulent charges
THE NEW YORK TIMES
U.S. And Russia Differ On A Treaty For Cyberspace
Russia wants an international treaty akin to one for chemical weapons, and the U.S. wants improved cooperation among international law enforcement agencies
SOFTPEDIA
Cybercrooks Target Harry Potter Fans
Malware is being sent via a new Harry Potter movie streaming application
VNUNET
Microsoft Issues Critical Sharepoint SP2 Fix
Microsoft has released a patch for a licensing flaw in its SharePoint software
ZDNET UK
G20 Protesters Hit Gov't With Email Attacks
The U.K. government suffered targeted email attacks by G20 protesters in April, according to MessageLabs, which handles the government's email security
BNET
Data Privacy Rules Coming As Massachusetts Trumps The Feds
A bill under consideration by Congress may be moot due to a Massachusetts regulation with the same basic provisions
MASHABLE
Warning: Twittersblogs Is Another Twitter Phishing Scam
Hundreds of tweets have spread so far linking to a phony subdomain of twitterblogs.com
ECOMMERCE TIMES
New ICANN Chief Eager To Mediate Internet Policy Wars
Former U.S. director of cybersecurity may have to referee for warring factions in the Internet policy front
SOPHOS BLOG
Britney Spears Isn't Dead -- But Her Twitpic *Is* Hacked
An attacker posted a tweet to Spears's Twitter stream earlier today that she had died
GOVERNMENT COMPUTER NEWS
International Politics Slows Full Deployment Of DNSSEC
Non-U.S. governments wary of U.S. controlling the Internet, sources say
NEWSFACTOR
Pro-Iranian Regime Hackers Invade U.S. Computers
Message on Oregon university computers tells Obama to mind his own business
NETWORK WORLD
Sophos Warns Of Michael Jackson Spam Emails
Former U.S. cybersecurity official says there are holes in current government defenses
COMPUTERWORLD UK
European Commission Wants Cross-Border Security IT Agency
Initial job is to manage IT systems used by border authorities, but scope of project could expand
COMPUTERWORLD UK
UK Security Agencies To Combat Cyberattacks, Prime Minister Says
New Cyber Security Operations Center will coordinate government efforts
WHICH
Fraud Victims Struggle To Get Money Back
One in five financial fraud victims not reimbursed, new research says
CIO
Seven Ways To Protect Your Brand From Cybersquatters
You may not know it, but your business is more at risk than ever from cybersquatters
THE STAR PHOENIX
Hacker Threats Underestimated: Expert
Former U.S. cybersecurity official says there are holes in current government defenses
CORNELL DAILY SUN
Security Breach Leaves 45,000 At Risk Of Data Theft
Laptop theft from Cornell University employee exposes unencrypted records
ASSOCIATED PRESS
Britain Looks To Hackers To Foil Cyber Foes
U.K. government is recruiting former hackers for new cyberdefense unit
PHILIPPINE DAILY INQUIRER
Bankers Group Warns Against ATM Scams
Customers should act with caution at the ATM, group advises
RENESYS BLOG
The Proxy Fight For Iranian Democracy
Proxies play key role in citizens' ability to use Internet technologies
SHANGHAI DAILY
Developer Of China's Green Dam Web Filter Is Hacked, Threatened
Software company chief says he has received death threats, multiple cyberattacks
THE REGISTER
Crypto Guru Urges Incentives For SSL Cert Recall
Cryptographic flaw in MD5 hashing algorithms could allow forging of digital certificates
FINEXTRA
Handelsbanken And EDB Launch Card Blocking Service
New capability would allow cardholders to prevent use of their credit cards in specific geographic regions
ESECURITY PLANET
Is Whitelisting As Safe As Antivirus?
CoreTrace aims to shake up AV market
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2013-3496 (vipnet_client, vipnet_coordinator, vipnet_personal_firewall, vipnet_safedisk)
Infotecs ViPNet Client 3.2.10 (15632) and earlier, ViPNet Coordinator 3.2.10 (15632) and earlier, ViPNet Personal Firewall 3.1 and earlier, and ViPNet SafeDisk 4.1 (0.5643) and earlier use weak permissions (Everyone: Full Control) for a folder under %PROGRAMFILES%\Infotecs, which allows local users to gain privileges via a Trojan horse (1) executable file or (2) DLL file.
CVE-2013-2849 (chrome)
Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome before 27.0.1453.93 allow user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a (1) drag-and-drop or (2) copy-and-paste operation.
CVE-2013-2848 (chrome)
The XSS Auditor in Google Chrome before 27.0.1453.93 might allow remote attackers to obtain sensitive information via unspecified vectors.
CVE-2013-2847 (chrome)
Race condition in the workers implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via unknown vectors.
CVE-2013-2846 (chrome)
Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2013-2840.