Best Of Web
Best Of The Web
MX LOGIC.COM
MX Logic Issues December Threat Forecast and Report
Hacks on social networks, Web 2.0 take the lead
ARS TECHNICA
Computer Scientists Find Audio CAPTCHAs Easy To Crack
Feature offered for visually impaired could be point of entry for attackers
YAHOO!
Intel, Google Asked To Help Revise EU Data Protection Laws
Advisory panel could be first step in broader reform, legislators say
NEW YORK TIMES
Thieves Winning Online War, Maybe Even In Your Computer
Internet security is broken, and nobody seems to know quite how to fix it
WASHINGTON POST
Digging Deeper Into The Checkfree Attack
Hijacking of bill payment system offers insight into a new, growing type of attack
HELP NET SECURITY
Rogue Bots And Social Networking
Ninety percent of spam is attributable to botnets, study says
PC WORLD
Court Allows Spyware Program To Go Back On Sale
CyberSpy Software can sell RemoteSpy application again
COMPUTERWORLD
Survey: The Best Privacy Advisers In 2008
Report offers closer look at the firms that help clients manage customer and employee data
U.S. ATTORNEY'S OFFICE OF SOUTHERN TEXAS
Computer Technician Sentenced To Prison For Identity Theft Of Executive
Contractor stole data on Calpine executive, court says
McAFEE AVERT LABS
Christmas Worm Uses McDonalds, Coca-Cola As Bait
Active spam campaigns use malware-laced Christmas themes
NETWORK WORLD
Botnet Master Sees Himself As The Next Bill Gates
New Zealand youth has become a minor celebrity after high-profile hacks
NEXTGOV
Air Force CIO Says Cyber Security Is Federal "Achilles' Heel"
Agencies remain at risk until best practices are pervasive, official says
PC WORLD
Firefox Users Targeted By Rare Piece Of Malware
Malicious software collects password data from banking users �� but only if they're using Firefox
ORLANDO SENTINEL
State Agency Put Social Security Numbers Of 250,000 Job Seekers Online
Agency for Workforce Innovation blames "security breach" for placing personal data on "test server"
CNET
Vietnamese Security Firm: Your Face Is Easy To Fake
Facial recognition systems only see flat images, experts say
IBM DEVELOPERWORKS
Battling Web Spam, Part 1
Assess visitor behavior and control workflow to reduce spam
NEXTGOV
Experts Spell Out Privacy Plan For Next Congress
DHS's first chief privacy officer recommends strengthening 34-year-old Privacy Act
MSNBC
eBay Users: Holiday Giveaway Hacked
eBay's "Holiday Doorbusters" giveaway promotion was overtaken by hackers who used automated scripts to game the contest, users say
FEDERAL COMPUTER WEEK
DHS Secretary Choice Has Mixed Record On Real ID
Janet Napolitano, President-elect Barack Obama's choice for homeland security secretary, signed legislation to stop the program in her state but was also one of the first promoters of a new state driver's license that would comply with Real ID
THE FINANCIAL EXPRESS
Cyber Terrorism Also Grips India
In the wake of terror attacks on Mumbai, Cyber Society of India (CYSI) says India is just as vulnerable to cyber terrorism
THE REGISTER
Online Payment Site Hijacked By Notorious Crime Gang
CheckFree was hit by a hack on Tuesday that sent customers to servers run by an Eastern European criminal gang
STUFF.CO.NZ
Experiment Highlights Computer Risks
In an experiment run by IBM and NetSafe, an unprotected computer was hacked and unusable by hackers in less than two hours
THE REGISTER
Apple Anti-Virus Advice Was Nothing New
Apple support site encouraging the use of anti-virus software on Macs only reiterated long-standing advice from Apple
COMPUTERWORLD
License Server Glitch Exposes Sonicwall Users To E-Mail Security Threats
License management server problems at SonicWall left many customers temporarily unprotected against spam, phishing and malware threats while others were unable to log into their own systems
VNUNET
Researchers Plan 'Honeypot' Security Project
SANS Institute is asking for volunteers for a new honeypot project
WALL STREET JOURNAL
Leaked Army Files Highlight Dangers Of Peer-To-Peer
Incident demonstrates that, once leaked, data can be hard to get back
WASHINGTON POST
Apple: Mac Users Should Get Antivirus Software
In shift, Apple says AV software is a good idea for its products
ARS TECHNICA
Antivirus Programs Unreliable During Critical Coverage Gap
FireEye research suggests AV dragnet has even more holes than previously suspected
GOVERNMENT COMPUTER NEWS
Antidote to DNS Cache Poisoning
Strategies for preventing your DNS server from new DNS attack
SYMANTEC BLOG
Spammers Ride the Economic Rollercoaster
Spam represented 76.4 percent of all messages in October
KASPERSKY LAB
Monthly Malware Statistics: October
Threats in the wild jumped by 4,000 in October
THE REGISTER
Windows RPC Exploit Spawns Bots And Worms
Worms, botware exploiting new Microsoft bug are spreading in the wild
WIRED
Air Force Aims to 'Rewrite Laws of Cyberspace'
Fed up with attacks aimed at its networks and systems, the U.S. Air Force looks to find ways to ID hackers, and evade or dodge hacks
ANTI-PHISHING WORKING GROUP
Phishers�� Use of Domain Names:�� Report
New first-half 2008 report sheds light on how phishers abuse domains and move around to evade shutdown
SYDNEY MORNING HERALD
Virtual Crime Is On The Rise
Virtual sex offenders, others, on the rise in virtual worlds
GOVERNMENT COMPUTER NEWS
NIST Weighs In on Cellphone, PDA Security
National Institute for Standards and Technology issues guidelines for mitigating risks with cell phones, PDA��s
SF GATE
Vengeful Computer Hacker Sentenced
Man who hacked into his former employee��s network and set it to spam has been sentenced to a year and a day in federal prison
DALLAS NEWS
Baylor Health Care Says Laptop With Patient Data Stolen
A laptop with health information on 100,000 patients was stolen from an employee's car
OUT-LAW.COM
Virgin Atlantic Sacks 13 Over Facebook Comments
Virgin Atlantic has dismissed cabin crew employees due to negative comments they posted on Facebook about safety, cleanliness of the airline��s planes
FOX NEWS
Cyber Security Questions Persist at World Bank
Hundreds of employees of an India-based contractor for the World Bank who were ordered off the agency's property last April on security grounds are still working for the bank
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
- Three Principles to Improve Data Security and Compliance
- Aligning IT with strategic business goals: A proactive approach to managing IT risk to your business
- Connecting the Dots: Are You Seeing the Complete Big Data Picture?
- How crowdsourced testing has changed the game for innovative software companies
- Ensuring Your Apps Work in the Real World
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2013-3562
Multiple integer signedness errors in the tvb_unmasked function in epan/dissectors/packet-websocket.c in the Websocket dissector in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (application crash) via a malformed packet.
CVE-2013-3561
Multiple integer overflows in Wireshark 1.8.x before 1.8.7 allow remote attackers to cause a denial of service (loop or application crash) via a malformed packet, related to a crash of the Websocket dissector, an infinite loop in the MySQL dissector, and a large loop in the ETCH dissector.
CVE-2013-3560
The dissect_dsmcc_un_download function in epan/dissectors/packet-mpeg-dsmcc.c in the MPEG DSM-CC dissector in Wireshark 1.8.x before 1.8.7 uses an incorrect format string, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.
CVE-2013-3559
epan/dissectors/packet-dcp-etsi.c in the DCP ETSI dissector in Wireshark 1.8.x before 1.8.7 uses incorrect integer data types, which allows remote attackers to cause a denial of service (integer overflow, and heap memory corruption or NULL pointer dereference, and application crash) via a malformed packet.
CVE-2013-3558
The dissect_ccp_bsdcomp_opt function in epan/dissectors/packet-ppp.c in the PPP CCP dissector in Wireshark 1.8.x before 1.8.7 does not terminate a bit-field list, which allows remote attackers to cause a denial of service (application crash) via a malformed packet.