Best Of Web
Best Of The Web
MX LOGIC.COM
MX Logic Issues December Threat Forecast and Report
Hacks on social networks, Web 2.0 take the lead
ARS TECHNICA
Computer Scientists Find Audio CAPTCHAs Easy To Crack
Feature offered for visually impaired could be point of entry for attackers
YAHOO!
Intel, Google Asked To Help Revise EU Data Protection Laws
Advisory panel could be first step in broader reform, legislators say
NEW YORK TIMES
Thieves Winning Online War, Maybe Even In Your Computer
Internet security is broken, and nobody seems to know quite how to fix it
WASHINGTON POST
Digging Deeper Into The Checkfree Attack
Hijacking of bill payment system offers insight into a new, growing type of attack
HELP NET SECURITY
Rogue Bots And Social Networking
Ninety percent of spam is attributable to botnets, study says
PC WORLD
Court Allows Spyware Program To Go Back On Sale
CyberSpy Software can sell RemoteSpy application again
COMPUTERWORLD
Survey: The Best Privacy Advisers In 2008
Report offers closer look at the firms that help clients manage customer and employee data
U.S. ATTORNEY'S OFFICE OF SOUTHERN TEXAS
Computer Technician Sentenced To Prison For Identity Theft Of Executive
Contractor stole data on Calpine executive, court says
McAFEE AVERT LABS
Christmas Worm Uses McDonalds, Coca-Cola As Bait
Active spam campaigns use malware-laced Christmas themes
NETWORK WORLD
Botnet Master Sees Himself As The Next Bill Gates
New Zealand youth has become a minor celebrity after high-profile hacks
NEXTGOV
Air Force CIO Says Cyber Security Is Federal "Achilles' Heel"
Agencies remain at risk until best practices are pervasive, official says
PC WORLD
Firefox Users Targeted By Rare Piece Of Malware
Malicious software collects password data from banking users �� but only if they're using Firefox
ORLANDO SENTINEL
State Agency Put Social Security Numbers Of 250,000 Job Seekers Online
Agency for Workforce Innovation blames "security breach" for placing personal data on "test server"
CNET
Vietnamese Security Firm: Your Face Is Easy To Fake
Facial recognition systems only see flat images, experts say
IBM DEVELOPERWORKS
Battling Web Spam, Part 1
Assess visitor behavior and control workflow to reduce spam
NEXTGOV
Experts Spell Out Privacy Plan For Next Congress
DHS's first chief privacy officer recommends strengthening 34-year-old Privacy Act
MSNBC
eBay Users: Holiday Giveaway Hacked
eBay's "Holiday Doorbusters" giveaway promotion was overtaken by hackers who used automated scripts to game the contest, users say
FEDERAL COMPUTER WEEK
DHS Secretary Choice Has Mixed Record On Real ID
Janet Napolitano, President-elect Barack Obama's choice for homeland security secretary, signed legislation to stop the program in her state but was also one of the first promoters of a new state driver's license that would comply with Real ID
THE FINANCIAL EXPRESS
Cyber Terrorism Also Grips India
In the wake of terror attacks on Mumbai, Cyber Society of India (CYSI) says India is just as vulnerable to cyber terrorism
THE REGISTER
Online Payment Site Hijacked By Notorious Crime Gang
CheckFree was hit by a hack on Tuesday that sent customers to servers run by an Eastern European criminal gang
STUFF.CO.NZ
Experiment Highlights Computer Risks
In an experiment run by IBM and NetSafe, an unprotected computer was hacked and unusable by hackers in less than two hours
THE REGISTER
Apple Anti-Virus Advice Was Nothing New
Apple support site encouraging the use of anti-virus software on Macs only reiterated long-standing advice from Apple
COMPUTERWORLD
License Server Glitch Exposes Sonicwall Users To E-Mail Security Threats
License management server problems at SonicWall left many customers temporarily unprotected against spam, phishing and malware threats while others were unable to log into their own systems
VNUNET
Researchers Plan 'Honeypot' Security Project
SANS Institute is asking for volunteers for a new honeypot project
WALL STREET JOURNAL
Leaked Army Files Highlight Dangers Of Peer-To-Peer
Incident demonstrates that, once leaked, data can be hard to get back
WASHINGTON POST
Apple: Mac Users Should Get Antivirus Software
In shift, Apple says AV software is a good idea for its products
ARS TECHNICA
Antivirus Programs Unreliable During Critical Coverage Gap
FireEye research suggests AV dragnet has even more holes than previously suspected
GOVERNMENT COMPUTER NEWS
Antidote to DNS Cache Poisoning
Strategies for preventing your DNS server from new DNS attack
SYMANTEC BLOG
Spammers Ride the Economic Rollercoaster
Spam represented 76.4 percent of all messages in October
KASPERSKY LAB
Monthly Malware Statistics: October
Threats in the wild jumped by 4,000 in October
THE REGISTER
Windows RPC Exploit Spawns Bots And Worms
Worms, botware exploiting new Microsoft bug are spreading in the wild
WIRED
Air Force Aims to 'Rewrite Laws of Cyberspace'
Fed up with attacks aimed at its networks and systems, the U.S. Air Force looks to find ways to ID hackers, and evade or dodge hacks
ANTI-PHISHING WORKING GROUP
Phishers�� Use of Domain Names:�� Report
New first-half 2008 report sheds light on how phishers abuse domains and move around to evade shutdown
SYDNEY MORNING HERALD
Virtual Crime Is On The Rise
Virtual sex offenders, others, on the rise in virtual worlds
GOVERNMENT COMPUTER NEWS
NIST Weighs In on Cellphone, PDA Security
National Institute for Standards and Technology issues guidelines for mitigating risks with cell phones, PDA��s
SF GATE
Vengeful Computer Hacker Sentenced
Man who hacked into his former employee��s network and set it to spam has been sentenced to a year and a day in federal prison
DALLAS NEWS
Baylor Health Care Says Laptop With Patient Data Stolen
A laptop with health information on 100,000 patients was stolen from an employee's car
OUT-LAW.COM
Virgin Atlantic Sacks 13 Over Facebook Comments
Virgin Atlantic has dismissed cabin crew employees due to negative comments they posted on Facebook about safety, cleanliness of the airline��s planes
FOX NEWS
Cyber Security Questions Persist at World Bank
Hundreds of employees of an India-based contractor for the World Bank who were ordered off the agency's property last April on security grounds are still working for the bank
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2013-3342 (acrobat_reader)
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 do not properly handle operating-system domain blacklists, which has unspecified impact and attack vectors.
CVE-2013-3341 (acrobat_reader)
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3338, CVE-2013-3339, and CVE-2013-3340.
CVE-2013-3340 (acrobat_reader)
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3338, CVE-2013-3339, and CVE-2013-3341.
CVE-2013-3339 (acrobat_reader)
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3338, CVE-2013-3340, and CVE-2013-3341.
CVE-2013-3338 (acrobat_reader)
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3339, CVE-2013-3340, and CVE-2013-3341.