Best Of Web
Best Of The Web
H SECURITY
One Arrest And Further Threats In German Police Hacker Case
"No Name Crew" threatens to publish further data
SOFTPEDIA
Australian Public Broadcaster's Website Infects Visitors
Special Broadcasting Service (SBS) has warned its Web visitors to scan their computers for malware after its website was compromised with malware that distributes a Trojan
SYMANTEC BLOG
Survey: People Know Online Risks But Often Ignore Them
The Symantec Online Internet Safety Survey found that while 80 percent of respondents know to look for the padlock icon signifying Secure Sockets Layer (SSL) encryption, only 55 percent said they would abort a transaction if they didn't see it
NAKED SECURITY BLOG
Toshiba Website Hacked
A Toshiba America Information Systems' Web server was hacked, and the email addresses, telephone numbers, and passwords of hundreds of customers were compromised
SC MAGAZINE
Mozilla BrowserID "Seriously Flawed," Privacy Advocate Says
Mozilla's new BrowserID identity management scheme aimed at replacing username and password authentication is not the answer, expert says
THREAT POST
Study Finds Online Ad Firms Don't Abide By 'Do Not Track' Requests
A study by Stanford University Law School's Center for Internet and Society found that many online advertising networks still use and push out Web tracking cookies even after users have indicated that they don't want to be tracked
US-CERT
Apple Releases iOS 4.3.4 and iOS 4.2.9
Apple has issued iOS 4.3.4 for the iPhone (GSM model), iPod touch, and iPad, and iOS 4.2.9 for the iPhone (CDMA model) to address multiple vulnerabilities that could allow an attacker attacker to execute arbitrary code or operate with escalated privileges
CNET
Hotmail Puts A Block On Flimsy Passwords
Hotmail will stop users from using easy-to-hack passwords, like "password", "123456," "ilovecats," and "gogiants," Microsoft says
THE GUARDIAN
Lady Gaga's Website Hacked By Swagsec Cyber Attackers
Names and email addresses of thousands of Lady Gaga fans were stolen after the performer's website was hacked
ISN
Cybersecurity And The Future Of The Internet
The debate over the risks associated with cyberwar -- and the response to those risks -- will have a profound effect on the Internet's evolution
OFFICE OF INADEQUATE SECURITY
UniCare Life & Health Insurance Class Action Settlement
Company settles with plaintiffs seeking damages from leak of members' private information
RISK MANAGEMENT MONITOR
The Financial Industry: Cybersecurity Laggards
Despite risks, financial institutions slow to adopt security measures -- and breaches result
MICROSOFT
Mitigating Software Vulnerabilities
How exploit mitigation technologies can help reduce or eliminate risk
NATIONAL DEFENSE
U.S. Cyberwar Plans Fail To Deter Attacks, Says Marine General Cartwright
Vice chairman of Joint Chiefs compares current defense strategy to Maginot Line
ARS TECHNICA
Crime Doesn't Pay? It Does If You're A Phone Crammer
Practice of charging phone customers for services they never use is very lucrative, Senate study reveals
REUTERS
U.S. And China Face Vast Divide On Cyber Issues
Early efforts to reach agreements illustrate how far apart the two countries are
FBI
Taking A Trip To The ATM? Beware Of "Skimmers"
Law enforcement agency offers advice on avoiding scams at automated teller machines
BANK INFO SECURITY
Five Must-Have Skills For Fraud Examiners
Careers open for pros who can track a digital trail
FAST COMPANY
The Chinese Way Of Hacking
A look at what's special about Chinese cybercriminals -- and the country's bored teenagers
THREAT POST
McCain Pushes For Select Committee To Address WikiLeaks, Anonymous Attacks
Committee would review cybersecurity legislation, new threats from hacktivists
MASHABLE
Mobile Hacking: How Safe Is Your Smartphone?
Experts say that it's still fairly easy to hack your phone, but unless you're a celebrity, you're probably not a target
IT WORLD
Free Identity Theft Protection Offers Grow -- Are They Any Good?
Sony, Comcast, and your local bank are offering free ID theft protection. Should you trust them?
CNN
Figures Show Thousands Of Security Breaches At Airports
Nation's airports have suffered more than 25,000 breaches since 2001
EWEEK EUROPE
Encryption Password Sparks U.S. Constitutional Battle
Proposed legislation will be highly controversial, legal experts say
COMPUTERWORLD
EU Considers Stricter Breach Notification Rules
Regulations could extend to social networking, online banking
HELP NET SECURITY
Spammers Switch To Compromised Accounts, Shift Away From Botnets
Botnet takedowns are pushing spammers in a new direction, study says
HELP NET SECURITY
Three Jailed For Online Banking Attack
Convictions are first in the U.K. to jail sophisticated attackers conducting organized phishing campaign
THE HILL
Pentagon To Unveil Cyberspace Strategy Thursday
Plan will likely focus on defense of military networks, not offensive attack strategies
CNET
Encryption Defense Attorney Fights DoJ Demands
Argument continues as to whether government can force users to decrypt their hard drives
HOST EXPLOIT
Hacking, Bad Hosting, And False Positives
A look at hosting provider security and the frequency of malware on hosted sites
CRN
German Police Hacked, Suspect Tracking Data Stolen
Usernames, passwords, and coordinates stolen in data haul
HELP NET SECURITY
140,000 Children Could Be Identity Fraud Victims
Growing number of frauds are perpetrated on minors, new study says
RT
London Court Defers Decision On Assange Extradition
Written judgment to be handed down at a later, unspecified date
DEFENCE IQ
Estonian Advisors Unveil Lessons Learned From 2007 Botnet Attacks
Cyber conflict teaches valuable lessons in Web defense
GOVERNMENT COMPUTER NEWS
Stuxnet: Can Act Of Digital Terrorism Be Justified?
Virulent malware might have gone beyond its original purpose
ARS TECHNICA
AntiSec Target Learns The Hard Way That Whitelists Are Greater Than Blacklists
IRC Federal suffers from SQL injection vulnerabilities, learns from experience
BANK INFO SECURITY
Fighting Malware: A Team Effort
New BITS report stresses collaboration
ISC DIARY
Copyright Alert System: What Say You?
Jury is still out on notion of ISPs helping to enforce copyright laws
NEW ZEALAND HERALD
Hacking Scandal Sends News Shares On $8.6 Billion Slide
Phone hacking by journalists could have huge impact on broader publishing company
NETWORK WORLD
Did Harvard Researchers Breach Students� Privacy?
Anonymity issues in Facebook-driven studies cause concerns about the use of social networks for research
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
- Three Principles to Improve Data Security and Compliance
- Aligning IT with strategic business goals: A proactive approach to managing IT risk to your business
- Connecting the Dots: Are You Seeing the Complete Big Data Picture?
- How crowdsourced testing has changed the game for innovative software companies
- Ensuring Your Apps Work in the Real World
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- The Future Of Web Authentication: Password technology is out of steam. We need safer ways to prove who's who online.
- Rethink ID Management: If the technology continues to improve, it might soon be OK for all of us to be one person on the Web.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2013-1022 (quicktime)
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted mvhd atoms in a movie file.
CVE-2013-1021 (quicktime)
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted JPEG data in a movie file.
CVE-2013-1020 (quicktime)
Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via crafted JPEG data in a movie file.
CVE-2013-1019 (quicktime)
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with Sorenson encoding.
CVE-2013-1018 (quicktime)
Buffer overflow in Apple QuickTime before 7.7.4 allows remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted movie file with H.264 encoding.