Best Of Web
Best Of The Web
ZDNET
iBotnet: Researchers Find Signs Of Zombie Macs
Symantec researchers find first Mac OS X botnet, which is launching denial-of-service attacks
SILICON.COM
Phishing Attacks Costing Banks $350 A Pop
Gartner says average cost of a phishing attack to the U.S. financial services industry was $351 last year -- down 60 percent
WASHINGTON POST
Hackers Test Limits Of Credit Card Security Standards
The number, scale, and sophistication of data breaches has reignited debate about PCI DSS
IEEE SPECTRUM
New Chip Brings Military Security To Commercial Processors
Commercial version of CPU Tech's military-grade secure processor is targeted at firms and agencies responsible for securing public infrastructure, such as electric power generators and subway systems
CARNEGIE MELLON CERT
CERT Releases Free Tool To Reduce ActiveX Vulnerabilities
Open-source Dranzer tool for software developers tests code for certain kinds of ActiveX vulnerabilities before software products are released
WIRED
PIN Crackers Nab Holy Grail Of Bank Security
New ATM attack doesn't require skimming
ZDNET
Scareware Pops Up At Fox News
"Malvertising" campaign affects site visitors
INTERNET NEWS
Top VoIP Threats Detailed By Security Company
Emerging technology is an attractive target, WatchGuard says
INSURANCE NETWORKING NEWS
China Cyber Attacks Should Worry Insurers
Exploits could interrupt business, cause claims
SC Magazine
Pharmacy Hackers Busted In Romania
Attackers allegedly broke into systems belonging to U.S. pharmaceutical firms
KHOU.COM
Virus Cripples DPS Computer System
Infection takes out Texas state Department of Public Safety
NETWORK WORLD
Colleges To Duke It Out Over IT Security
Competition will pit hackers vs. defenders
BBC
Amazon Blocks Phorm Advertising Scan
Web giant concerned about user privacy
EWEEK EUROPE
Spam Emails 'Match Gas Emissions'
Spam email messages produce greenhouse gas emissions each year equivalent to that of 3.1 million cars, according to research conducted on behalf of McAfee
BUSINESS WEEK
Microsoft Ordered To Pay Uniloc $388 Million
A federal judge this month ordered Microsoft to pay $388 million in damages for infringing on a patent held by Uniloc
DAILY TECH
Symantec: Malware Continues To Explode Around The World
90 percent of all threats in 2008 attempted to steal confidential information, according to new study by Symantec
SC MAGAZINE
Pharmacy Hackers Busted In Romania
Romanian authorities have arrested five people for allegedly breaking into computer systems belonging to U.S. pharmaceutical firms
COMPUTERWORLD
Privacy Rules Hamper Adoption Of Electronic Medical Records, Study Says
Researchers at MIT and the University of Virginia say increased efforts to protect privacy of health data will hamper the adoption of electronic medical records initiatives
INFORMATIONWEEK
Chinese National Arrested For Source Code Theft
A Chinese citizen on a work visa was arrested by the FBI last week for allegedly leaking to a Chinese government agency proprietary software code owned by his U.S. employer
INTERNET EVOLUTION
Foolish Logic Undermines Electrical Grid Security
U.S. government has relied on the power companies to protect themselves, despite no real improvement during the years
CNET
Why A National Data Breach Notification Law Makes Sense
Legislation would protect people in states with no such laws and extend definition of private data into areas beyond financial and healthcare
MICROSOFT.COM
Microsoft Patches Eight Vulnerabilities
Five patches considered critical
BLOG.SPYWARE GUIDE
IM Password Stealer Available From Major Download Sites
Malware kit lets users disguise app to look like popular IM programs
ORACLE.COM
Oracle Issues 43 Security Fixes
Sixteen of the new patches affect the Oracle database
IT BUSINESS EDGE
Conficker Panic Might Yield Apathy Toward Future Viruses
Future threats might be considered another cry of wolf, experts say
COMPUTERWORLD
One In Five Windows PCs Still Hackable By Conficker
About 5 percent of business machines still at risk, researchers say
MORNING STAR
Amateur Web Page Creation Fueling Viruses, Phishing Attacks
Sites built by those without programming skills often exhibit vulnerabilities, study says
FINEXTRA
Booming Underground Economy Fuels Online Threats
While attacks proliferate, hackers and criminals engage in price wars
PANDA LABS
Search Engine Attack Targets Ford Motor Co.
Web searches for Ford vehicles put malware sites at the top
TECHWORLD
Startup Puts Web Browsers In The Cloud
A newly launched French firm is offering a browser service it calls a solution to Web browser security woes
SHANGHAI DAILY
Low-Tech Hackers Cut Internet, Phone Links In Silicon Valley
Criminals severed eight fiber-optic cables in Silicon Valley last week, knocking out service for tens of thousands of homes and businesses
ZDNET
Patch Tuesday Heads-Up: 8 Bulletins, 5 Critical
Microsoft tomorrow will fix remote code execution and denial-of-service vulnerabilities affecting Windows, Office, and Internet Explorer
TWITTERCISM
How To Remove StalkDaily.com From Your Infected Twitter
The Twitter worm is now dead, but here are steps to take in case you were infected
NETWORK WORLD
Cisco Scammers Coming Out Of The Woodwork
Michael Daly admitted defrauding Cisco of $15 million in equipment sales while others also resold Cisco networking equipment for profit
BLOG INFOSEC
I3P Cyber Security Research Recommendations
The Institute for Information Infrastructure Protection has published a report that came out of a forum co-chaired by Sens. Joseph Lieberman and Susan Collins
KSL
Computer Consultant Accused Of Taking $1 Million From Credit Union
An IT consultant was arrested for allegedly diverting $1 million in extra deposits from Family First Credit Union in Orem
CNET
Conficker Worm Bites University Of Utah
University's three hospitals also affected as outbreak was spotted last Thursday
BANK INFO SECURITY
Hannaford Data Breach Case Ruling Coming
A judge will decide in the next few days whether class action suit should go to trial
CHANNEL 4 NEWS
FBI And Oprah Warn Of Email Scam
Phony messages promise tickets to Oprah's show if the user buys a plane ticket
WSOCTV
Cyber Spying Rampant Worldwide
Government reports 5,500 cyberattacks in 2008
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2013-3496 (vipnet_client, vipnet_coordinator, vipnet_personal_firewall, vipnet_safedisk)
Infotecs ViPNet Client 3.2.10 (15632) and earlier, ViPNet Coordinator 3.2.10 (15632) and earlier, ViPNet Personal Firewall 3.1 and earlier, and ViPNet SafeDisk 4.1 (0.5643) and earlier use weak permissions (Everyone: Full Control) for a folder under %PROGRAMFILES%\Infotecs, which allows local users to gain privileges via a Trojan horse (1) executable file or (2) DLL file.
CVE-2013-2849 (chrome)
Multiple cross-site scripting (XSS) vulnerabilities in Google Chrome before 27.0.1453.93 allow user-assisted remote attackers to inject arbitrary web script or HTML via vectors involving a (1) drag-and-drop or (2) copy-and-paste operation.
CVE-2013-2848 (chrome)
The XSS Auditor in Google Chrome before 27.0.1453.93 might allow remote attackers to obtain sensitive information via unspecified vectors.
CVE-2013-2847 (chrome)
Race condition in the workers implementation in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service (use-after-free and application crash) or possibly have unspecified other impact via unknown vectors.
CVE-2013-2846 (chrome)
Use-after-free vulnerability in the media loader in Google Chrome before 27.0.1453.93 allows remote attackers to cause a denial of service or possibly have unspecified other impact via unknown vectors, a different vulnerability than CVE-2013-2840.