All Vulnerabilities and Threats Stories

Five Schemes For Redeeming Trust In SSL

    February 21, 2012
Creativity loves constraint and for security thinkers trying to shore up Web authentication today, that constraint is SSL/TLS

Exploit Unleashed That Crashes pcAnywhere

    February 21, 2012
'PCAnywhere Nuke' code can create a denial of service against fully patched versions of the application

Tech Insight: Getting The Picture With Data Visualization

    February 18, 2012
Data visualization can be useful in log review, forensic analysis, and other security activities where large amounts of data must be vetted and analyzed

Acunetix Web Rolls Out Vulnerability Scanner 8

    February 16, 2012
Acunetix WVS can automatically identify URL parameters and manipulate them to detect vulnerabilities

Public Key Used To Secure HTTPS Fails 'Sanity Check'

    February 15, 2012
Researchers find two out of every 1,000 public keys can be easily cracked

Nearly 80% Of All Bugs Are In Third-Party Apps

    February 14, 2012
Secunia annual report says only 10 percent of bugs in 2011 were in Microsoft software

DDoS Tools Aplenty On The Market For Hactivists

    February 09, 2012
Many DDoS tools now available for online use, downloading, or renting

M86 Security Releases New Biannual Labs Report

    February 08, 2012
Report details significant growth in cybercrime in the second half of 2011

How (And Why) Attackers Choose Their Targets

    February 07, 2012
To build a sure defense, you need to know what makes you a juicy target. Here are some tips

Report: Smaller DDoS Attacks Can Be Deadlier

    February 06, 2012
Reports busts several myths about the way the industry views the impact of distributed DDoS attacks

Vulnerabilities Reported In Mac Encryption Products

    February 01, 2012
Passware Kit Forensic v11.3 recovers Mac OS user login passwords

Researchers Postpone Release Of Free Smart Meter Security Testing Tool

    January 31, 2012
Amid smart grid vendor's concerns about ShmooCon talk, public disclosure of research into smart meter infrared ports put on hold

Sophos Reveals Assessment On Threat Landscape In Security Threat Report 2012

    January 25, 2012
2011 was characterized by a rise in cybercrime

Famed Hacking Contest Gets Facelift

    January 23, 2012
‘Pwn2Own’ will up the ante with more prolonged contest, fewer targets, more payout for first-, second-, third-place winners -- plus an extra Google bounty for cracking Chrome

SharePoint Users Develop Insecure Habits

    January 20, 2012
Survey finds almost half of SharePoint users disregard the security within SharePoint

Trend Micro Marks 2011 "The Year Of Data Breaches"

    January 20, 2012
Report revisits past predictions, and summarizes notable threat incidents and security wins throughout 2011

New Version Of Carberp Trojan Targets Facebook Users

    January 19, 2012
Malware attempts to steal money by duping the user into divulging an e-cash voucher

Victim Businesses Teaming Up To Fight Cybercriminals

    January 17, 2012
Major global corporations call for more collaboration among organizations hit by cyberattacks, but the devil's in the details

BSA Details Cybersecurity Priorities In Letter To Senate

    January 12, 2012
Holleyman outlines six recommendations that would constitute a comprehensive upgrade of America’s cybersecurity capabilities

Spam--Key Trends In 2011 And Predictions For 2012

    January 12, 2012
Significant fluctuations in spam volumes

Prolexic Issues Dirt Jumper Threat Advisory And Releases Free Security Scanner

    December 29, 2011
Dirt Jumper is a prepackaged toolkit that has evolved from the Russkill strain of malware

Hitachi ID Systems Releases 2011 Data Security Survey Results

    December 29, 2011
Participants reported data security concerns ranging from data breaches to compromise of privileged passwords

McAfee Reveals Its 2012 Threat Predictions

    December 28, 2011
Predictions include an increase of attacks on oil, gas, and water utility organizations

Possible New Zero-Day Windows 7 Flaw Under Investigation

    December 22, 2011
Specially crafted webpage viewed with Safari causes 'blue screen of death,' remote execution

MacScan 2.9.2 Released Protecting Mac OS X From Malware And Privacy Threats

    December 20, 2011
Latest version adds additional browser support

Zero Day Initiative: One Year After Throwing Down The Disclosure Gauntlet

    December 19, 2011
Vulnerabilities reported mostly in big-name software vendors' products, and SCADA zero-day flaws on the rise, according to ZDI's annual report

Internet Explorer To Get 'Silent' Updates

    December 15, 2011
Microsoft will provide automatic upgrades to IE users – but enterprises can opt out

The Art Of Profiling Cybercriminals

    December 08, 2011
New psychological and criminological studies attempt to get a glimpse of the human behind the hack

More Vendors Reacting Poorly To Disclosure

    December 01, 2011
From Charlie Miller's latest attack on Apple's App Store to the outing of Carrier IQ, companies seem to be taking a step back and punishing researchers who disclose vulnerabilities

Slide Show: Top 10 Holiday Phishing Scams

    November 30, 2011
Scams that demonstrate the ways attackers are crafting their messages during the holidays

WatchGuard Ships Next-Generation Firewall For Enterprises

    November 30, 2011
WatchGuard XTM 2050 supports multigigabit packet filtering throughput

HP Refutes Inaccurate Claims; Clarifies On Printer Security

    November 30, 2011
No customer has reported unauthorized access, the company said in a statement

Federal Courts Order Seizure Of 150 Website Domains Involved In Selling Counterfeit Goods

    November 28, 2011
Visitors to the sites will now find a seizure banner

Presumed iTunes Gift Certificate Contains Malware

    November 22, 2011
E-mail with subject line 'iTunes Gift Certificate' promises $50 gift certificate

BEAST Browser Security Threat Is Not As Fierce As It Looks, Says Context Information Security

    November 21, 2011
SSL vulnerability allows an attack on a browser to decrypt cookies and compromise HTTPS

Windows 8 To Streamline Patching Reboots

    November 17, 2011
Only one restart per month to coincide with Patch Tuesday

Facebook: Porn, Violent Images Were Self-Inflicted

    November 16, 2011
Surprising images on Facebook walls are result of "self-cross-site scripting" vulnerability, social media giant says

Mineral Tree Launches SMB Payment Solution For Security And Efficiency

    November 10, 2011
MineralTree launches company with Silicon Valley Bank as first partner

Cloud Services Credentials Easily Stolen Via Google Code Search

    November 09, 2011
After finding many cloud access credentials using simple code search, researchers conclude public cloud services are not safe for storing sensitive data

Palo Alto Networks Finds Unknown Malware Rampant In Enterprise Networks

    November 08, 2011
WildFire cloud-based analysis engine found that seven percent of all unknown files analyzed contained malware

Report: Security From The Inside Out

    November 08, 2011
New report offers retrospective on recent insider attacks, threats, and defenses

Product Watch: New Free Duqu Scanner Released

    November 04, 2011
NSS Labs offers open-source tool for finding new Duqu drivers

DDI Announces Discovery Of IBM Websphere Application Server Vulnerability

    November 03, 2011
Security issue was revealed using NIRV

PandaLabs Found 5M+ New Malware Samples In Q3 2011

    November 03, 2011
Trojans accounted for more than 75 percent of new malware samples created during the quarter

Major Companies 'Fail' Social Engineering Test

    October 31, 2011
All of the employees at 14 major corporations that were targeted in a major social engineering contest fell for the URL lure

Prolexic Predicts Increasing DDoS Attack Durations Against Companies During Holiday Season

    October 31, 2011
Company launches marketing campaign to help e-commerce companies prepare

Fraudlogix Introduces Fraud Index

    October 27, 2011
Tool provides near real-time indicators of fraud across the affiliate marketing industry

Tool Lets Single Laptop Take Down An SSL Server

    October 25, 2011
Free tool demonstrates yet another strike against SSL security

TDL4 Botnet Now Even Harder To Kill

    October 24, 2011
Infamous botnet revamped to make its malware even more difficult for enterprises, security researchers, to detect

Metasploit For The Masses

    October 21, 2011
New version of free Metasploit tool aimed at newbie penetration testers

Mobile Malware On The Move, McAfee Report Says

Strategies For Fighting Mobile Device-Borne Malware

Most Small Healthcare Practices Hacked In The Past 12 Months

MORE KEYHOLE

• Dark Reading Home
• Attacks / breaches
• Vulnerabilities
• Application Security
• Client Security
• Perimeter Security
• Security Management
• Storage Security
• Encryption
• NAC
• Antivirus
• Privacy
• Blogs
• Security discussions

• Newsletters
• Video
• Webcasts
• Live events
• TechWeb Digital Library
• Registration/membership
• About us


• Sales and marketing contacts
• Send us a tip or comments
• Site map
• Technology Marketing Solutions