Best Of Web
Best Of The Web
WIRED
Pakistan Declares Death Penalty For "Cyber Terror"
Executions only allowed if hack leads to death of others, Pakistani president says
FCW.COM
Computer Security Flaws Put Los Angeles Airport at Risk
Airport�� is lax on security for servers, routers, and switches, DHS report says
MICROSOFT.COM
Microsoft Releases Security Patches For XML, SMB
Flaws in XML Core Services, SMB could allow remote code execution
HELP NET SECURITY
Former Inmate Accused Of Hacking Prison Computers
Ex-prisoner indicted for stealing and distributing personal data of prison staff
HACKOSIS
Brute Force Calculator
How long would it take someone to hack your password? This calculator will tell you
PR WEB
Privacy and Consumer Information At Risk In Schools
School-related breaches account for one third of all breaches reported, study says
CNET
Security Expert Talks Russian Gangs, Botnets
Botnet expert Joe Stewart offers update on Coreflood, other threats
COMPUTERWORLD UK
Massive Web Attack Targets Thousands Of Servers
A SQL injection Web attack has compromised some 10,000 servers, according to Kaspersky Lab
MICROSOFT
Microsoft Releases SDL Tools, Programs to the Public
Microsoft today released its Microsoft SDL Pro Network, the Microsoft SDL Optimization Model, and the Microsoft SDL Threat Modeling Tool v3
WIRED
Incredibly Dangerous Android Bug Executes Every Keystroke as Root User
Keystrokes are simultaneously sent to a command line shell and executed as the root user
THE REGISTER
VISA Visa Trials PIN Payment Card To Fight Online Fraud
Four European banks are testing Visa cards with a one-time code generator aimed at stopping online credit card fraud
HEISE SECURITY
Hackers Exploit PDF Security Flaws
Attackers are using the newly revealed vulnerability in Adobe Reader 8, according to the Internet Storm Center
VIETNAM NET
Vietnam Secures Top Prizes In Int��l Network Security Contest
Vietnamese hacking teams won first and second place at the Capture the Flag contest at Hack in the Box
THE CAPITAL TIMES
Local Firm Releases First Computer Security Product
Startup NovaShield released its new anti-malware software that takes a different approach than traditional AV
THE SCOTSMAN
Hacker Hopes Hit Internet Song Will Help To Beat Extradition Rap
Accused hacker Gary McKinnon has recorded pop tune 'Only A Fool' and posted it on MySpace
VNUNET
Alarms Sounded Over Flash Drive Infections
The US Computer Emergency Response Team (US-Cert) is warning users and administrators about a malware outbreak spreading via USB keys
COMPUTERWORLD
Obama Administration To Inherit Tough Cybersecurity Challenges
'Fundamental ignorance' by the Bush administration on modern threats leaves Obama administration with a big to-do list
TECHWORLD
IETF Ponders DNS Threat To Internet
The Internet Engineering Task Force is weighing whether to tweak DNS to make it more secure or adopting the emerging DNSSec standard
INFORMATIONWEEK
China Targets U.S. Computers For Espionage, Report Warns
U.S.-China Economic and Security Review Commission's Annual Report to Congress says prominent defense contractors such as Raytheon, Lockheed Martin, Boeing, and Northrop Grumman, were victims of cyberespionage
NORTH COUNTRY GAZETTE
Russian Ringleader of Major ID Theft Ring Sentenced
A 24-year-old Russian has been sentenced to up to 10 years in prison after his guilty plea of stealing $1.5 million and attempting to steal another $10.7 million wealthy individuals
ZD NET
Apple Plugs 21 Mac OS X Security Holes
There's a peck of vulnerabilities to be patched, Apple says
WALL ST. JOURNAL MARKET WATCH
Ponemon And TRUSTe Announce 2008 List Of Most Trusted Companies For Privacy
American Express, eBay, and IBM top list
WEBSENSE.COM
Google-Sponsored Links Spreading Rogue Anti-Virus Software
Winrar download is abused in order to spread malware
THE LOCAL
Government Loses Files So Secret Their Contents Are Unknown
Three hundred lost files were top secret, German government says
PRO BLOG DESIGN
11 Ways To Improve WordPress Security
Some quick fixes to block the holes that may occur during or after WordPress installation
THE NATIONAL
Police Seize Gang Tied To $62 Million Credit Fraud
Three gang members allegedly stole data from thousands of UAE bank customers
TECH NEWS WORLD
Data Breaches: Ignorance Is Dangerous
A look at the impact of states' data breach laws in recent years
THE REGISTER
McCain Campaign Sells Unwiped Blackberry for $20
A BlackBerry containing phone numbers and hundreds of emails from John McCain's presidential campaign was obtained by a Fox reporter
THE SUNDAY BUSINESS POST ONLINE
Microsoft Website Hit By Hackers Group
Microsoft Ireland's homepage was hacked last week by a group calling itself the Terrorist Crew
GOVERNMENT COMPUTER NEWS
IE8: Survey Finds It Safe, But Unpopular
The latest release of Internet Explorer 8 (Beta 2 ) is the safest but least popular browser, according to survey
DW-WORLD.DE
Berlin Bank Accused of Country's Largest Data Leak
Landesbank Berlin has reportedly lost credit card customer data, including PIN numbers, of 10,000 customers
CHAPIN INFORMATION SERVICES
Google Chrome Receives Lowest Password Security Score
Chrome's password management features has several bugs, including a problem that leaves user passwords at risk
DNAINDIA.COM
Indian Infotech Sector Is Main Focus Of Chinese Spying
With many Indian companies becoming victims of Chinese espionage, Indian intelligence officers are watching influx of Chinese nationals into India��s IT hub
BETANEWS
French Embassy Site Faces Denial Of Service Attack
The French embassy in China has been hit by a DDoS attack
MX LOGIC IT SECURITY BLOG
In-Calendar "Marketing" - The New Spam Goodness?
Spammers are finding new ways of bypassing spam filters via calendars
SUN HERALD
RBS WorldPay Discloses Compromise Of Data Security
Personal data of as many as 1.5 million customers may have been compromised
CYBERINSECURE.COM
Google Flooded With More Than A Million Open Redirects
Simple search finds hundreds of thousands of redirects that infect users with malware
NETWORK WORLD
Researchers Seek Advanced Network Prioritization, Security Technology
DARPA sets tall order for next-generation network
BALTIMORE SUN
Internet Company Held In Contempt Of Court
Accused of being a purveyor of "scareware," Innovative Marketing refuses to shut down
WIRED
Hacked Phone System Leaves Company With $50,000 Bill
Attackers made hundreds of calls to Bulgaria
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2013-3270 (vnx_control_station, celerra_control_station)
EMC VNX Control Station before 7.1.70.2 and Celerra Control Station before 6.0.70.1 have an incorrect group ownership for unspecified script files, which allows local users to gain privileges by leveraging nasadmin group membership.
CVE-2013-1014 (itunes)
Apple iTunes before 11.0.3 does not properly verify X.509 certificates, which allows man-in-the-middle attackers to spoof HTTPS servers via an arbitrary valid certificate.
CVE-2013-1011 (itunes)
WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1.
CVE-2013-1010 (itunes)
WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1.
CVE-2013-1008 (itunes)
WebKit, as used in Apple iTunes before 11.0.3, allows man-in-the-middle attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via vectors related to iTunes Store browsing, a different vulnerability than other WebKit CVEs listed in APPLE-SA-2013-05-16-1.