Best Of Web
Best Of The Web
INFO SECURITY
Disney Exposed Social Security Numbers Of 20,000 Employees, Lawsuit Alleges
Employees of two California hotels file class action lawsuit on behalf of employees
SENSAGE
Balancing Digital Lifestyles, Necessary Law Enforcement, And Personal Privacy
Bill would require ISPs to store large amounts of data on IP addresses and call detail records
SOPHOS
Blackhat SEO Topping The Charts
Bad guys find ways to bury their attacks in searches of popular people and topics
FEDERAL TIMES
DHS Plans Expansion Of Cybersecurity Workforce
DHS cybersecurity staff will grow more than 50 percent in the coming year, official says
SUN SENTINEL
Identity Theft Victims Beg Senate Panel For Help
Floridians lost tax refunds to fraud rings, Washington leaders told
INFOSEC ISLAND
Cookiejacking Exploit Threatens Facebook Accounts
Researcher finds flaw in Internet Explorer that could allow harvesting of digital authentication credentials
NETWORK WORLD
Microsoft Finds 427,000 Email Addresses On Knocked-Out Rustock Server
Digital forensics team says evidence points to Russian hackers
SOLERA NETWORKS
Doing More With Less
A look at doing security analytics without breaking the bank -- or your staff
TREND MICRO
Three Steps To Protect Yourself From Facejacking
A few simple steps can protect your Facebook account -- even if the attacker has your password
Campaign is protest of Protect IP Act
Cybercrime: A Tech View And Alternative Perspective
A look at the development of cybercrime markets and directions for the future
CHANNEL 4 NEWS
China Admits Cybersecurity Unit
For the first time, Chinese government comments on its elite unit of cyberwarriors
EWEEK
Ten Biggest Data Breaches Of 2011 So Far
Sony, Epsilon head the list of the compromised
ZSCALER
State Of The Web: Q1 2011
A look at browser usage, applications, and Web traffic and their potential impact on security
COMPUTERWORLD
Senate Panel Approves Controversial Copyright Bill
Protect IP Act would allow Department of Justice to order ISPs to cut service to sites that might be violating copyrights
INFOSEC ISLAND
Anonymous Launches DDoS Attack On USChamber.com
Campaign is protest of Protect IP Act
BANK INFO SECURITY
Bank Of America Breach: "A Big, Scary Story"
$10 million loss highlights risks, sophistication of internal breaches
KOLD NEWS 13
Hackers Create Fake Boarding Passes
Photoshopped boarding passes exploit holes in airport security system
TREND MICRO
Trend Micro Researchers Identify Vulnerability In Hotmail
Targeted attack involves email sent via Webmail service
FEDERAL NEWS RADIO
Senate Committee Finds Few Hurdles In White House Cyber Proposal
Homeland Security and Governmental Affairs Committee offers support for plan
TG DAILY
Anonymous Targets Obama Administration Over Censorship Claims
Proposed legislation would enable ISPs to censor websites that infringe on copyrights
SYMANTEC
Android Threat Set To Trigger On End Of Days, Or Day's End
Trojanized version of legitimate app targets mobile devices
THE REGISTER
Researchers Find Irreparable Flaw In Popular CAPTCHAs
Decaptcha pierces Live.com, Yahoo!, Digg
THE REGISTER
New Hack On Comodo Reseller Exposes Private Data
Number of compromised SSL certificate authority resellers now up to four
GOOGLE
S. Korea To Step Up Security Against Cyberattacks
Efforts designed to protect government against North Korean attacks
THE REGISTER
Norway's Military Computers Targeted In Serious Attack
The Norwegian military said it suffered a major targeted computer attack in late March -- one day after the country's F-16 fighter jets participated in bombings on Libya,
CNET
Sony Subsidiary So-Net Reports Data Breach
Japanese ISP So-net Entertainment, a subsidiary of Sony Corp., had its e-mail accounts and customer rewards points stolen earlier this week by hackers
TECHWORLD
Microsoft Accused Of Fudging IE9 Malware Blocking Stats
Sophos researcher says blocked download claims by Microsoft on IE9 tell only half the story
SOFTPEDIA
Goal.com Continues To Infect Visitors
Armorize warns that Goal.com's security problems are not over and the website continues to infect visitors -- now with scareware
BANKINFOSECURITY
Michaels Breach: Who's Liable?
A Chicago consumer whose information was exposed in the Michaels card breach has filed a federal lawsuit against the retailer, claiming it should have better protected customer data
NAKED SECURITY BLOG
Sony BMG Greece The Latest Hacked Sony Site
Sony BMG's website in Greece has been hacked and information dumped online including the usernames, names, and email addresses of users registered on SonyMusic.gr
REUTERS
LinkedIn Site Has Security Vulnerabilities-Expert
LinkedIn's professional networking website has security flaws that makes users' accounts vulnerable to attack by hackers who could break in without ever needing passwords, according to a security researcher
GEEK.COM
New Malware Tricks Users Into Thinking Hard Drive Failure Is Imminent
Cybercriminals are notifying users that a hard drive is about to fail and offer users phony recovery tools for a fee
V3.CO.UK
ITU Teams Up With UN And Symantec In Cybercrime Fight
Organizations say they will pool resources to aid in legislation, law enforcement
MYCE
Dropbox Misrepresented Security Features, Researcher Claims
Cloud storage provider's security practices don't match its advertising, according to letter to FTC
SILICON REPUBLIC
Sony Servers Now Hit By Phishing Scam
Phishing site found on Sony servers in Thailand and Italy
CSO ONLINE
Microsoft Links Fake Mac AV To Windows Scareware Gang
New Mac attack bears strong resemblance to those built by formerly Windows-centric gang
HELP NET SECURITY
Mobile Malware On The Rise
Kaspersky expects that number of mobile malware signatures will double in 2011
DAILY HERALD
Federal Lawsuit Blames Michaels For PIN Thefts
Suit seeks $5 million in damages for those whose credit cards were compromised
THE HILL
Top DHS Cybersecurity Official Explains Departure
Reitinger plans to spend more time with family; former Air Force cybersecurity leader Gilligan said to be replacement candidate
CIO
Israel, Iran Announce Strategies To Counter Cyberthreats
Israel plans to set up national task force; Iran sets up first cybercommand
Best Of Web Archive:
Most Recent | 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 | 11 | 12 | 13 | 14 | 15 | 16 | 17 | 18 | 19 | 20 | 21 | 22 | 23 | 24 | 25 | 26 | 27 | 28 | 29 | 30 | 31 | 32 | 33 | 34 | 35 | 36 | 37 | 38 | 39 | 40 | 41 | 42 | 43 | 44 | 45 | 46 | 47 | 48 | 49 | 50 | 51 | 52 | 53 | 54 | 55 | 56 | 57 | 58 | 59 | 60 | 61 | 62 | 63 | 64 | 65 | 66 | 67 | 68 | 69 | 70 | 71 | 72 | 73 | 74 | 75 | 76 | 77 | 78 | 79 | 80 | 81 | 82 | 83 | 84 | 85 | 86 | 87 | 88 | 89 | 90 | 91 | 92 | 93 | 94 | 95 | 96 | 97 | 98 | 99 | 100 | 101 | 102 | 103 | 104 | 105 | 106 | 107 | 108 | 109 | 110 | 111 | 112 | 113 | 114 | 115 | 116 | 117 | 118 | 119 | 120 | 121 | 122 | 123 | 124 | 125 | 126 | 127 | 128 | 129 | 130 | 131 | 132 | 133 | 134 | 135 | 136 | 137 | 138 | 139 | 140 | 141 | 142 | 143 | 144 | 145 | 146 | 147 | 148 | 149 | 150 | 151 | 152 | 153 | 154 | 155 | 156 | 157 | 158 | 159 | 160 | 161 | 162 | 163 | 164 | 165 | 166 | 167 | 168 | 169 | 170 | 171 | 172 | 173 | 174 | 175 | 176 | 177 | 178 | 179 | 180 | 181 | 182 | 183 | 184 | 185 | 186 | 187 | 188 | 189 | 190 | 191 | 192 | 193 | 194 | 195 | 196 | 197 | 198 | 199 | 200 | 201 | 202 | 203 | 204 | 205 | 206 | 207 | 208 | 209 | 210 | 211 | 212 | 213 | 214 | 215 | 216
Free Research and Reports
Whitepapers
Upcoming Events
Dark Reading Digital Magazine
In This Issue
- How Hackers Fool Your Employees: People are your most vulnerable endpoint. Make sure your security strategy addresses that fact.
- Not All Or Nothing: Effective security doesn't mean stopping all attackers.
Tech Insight
Bugs
Enterprise Vulnerabilities From DHS/US-CERT's National Vulnerability Database
CVE-2013-3342 (acrobat_reader)
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 do not properly handle operating-system domain blacklists, which has unspecified impact and attack vectors.
CVE-2013-3341 (acrobat_reader)
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3338, CVE-2013-3339, and CVE-2013-3340.
CVE-2013-3340 (acrobat_reader)
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3338, CVE-2013-3339, and CVE-2013-3341.
CVE-2013-3339 (acrobat_reader)
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3338, CVE-2013-3340, and CVE-2013-3341.
CVE-2013-3338 (acrobat_reader)
Adobe Reader and Acrobat 9.x before 9.5.5, 10.x before 10.1.7, and 11.x before 11.0.03 allow attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, a different vulnerability than CVE-2013-2718, CVE-2013-2719, CVE-2013-2720, CVE-2013-2721, CVE-2013-2722, CVE-2013-2723, CVE-2013-2725, CVE-2013-2726, CVE-2013-2731, CVE-2013-2732, CVE-2013-2734, CVE-2013-2735, CVE-2013-2736, CVE-2013-3337, CVE-2013-3339, CVE-2013-3340, and CVE-2013-3341.