- Apr 2013
- Mar 2013
- Feb 2013
- Jan 2013
- Dec 2012
- Nov 2012
- Oct 2012
- Sep 2012
- Aug 2012
- Jul 2012
- Jun 2012
- May 2012
- Apr 2012
- Mar 2012
- Feb 2012
- Jan 2012
- Dec 2011
- Nov 2011
- Oct 2011
- Sep 2011
- Aug 2011
- Jul 2011
- Jun 2011
- May 2011
- Apr 2011
- Mar 2011
- Feb 2011
- Jan 2011
- Dec 2010
- Nov 2010
- Oct 2010
- Sep 2010
- Aug 2010
- Jul 2010
- Jun 2010
- May 2010
- Apr 2010
- Mar 2010
- Feb 2010
- Jan 2010
- Dec 2009
- Nov 2009
- Oct 2009
- Sep 2009
- Aug 2009
- Jul 2009
- Jun 2009
- May 2009
- Apr 2009
- Mar 2009
- Feb 2009
- Jan 2009
- Dec 2008
- Nov 2008
- Oct 2008
- Sep 2008
- Aug 2008
- Jul 2008
- Jun 2008
- May 2008
- Mar 2008
- Nov 2007
- Oct 2007
- May 2006
- Apr 2006
- Mar 2006
- Nov 2005
- Oct 2005
- Sep 2005
- Aug 2005
- Jul 2005
- Jun 2005
- May 2005
- Apr 2005
- Mar 2005
- Feb 2005
- Jan 2005
- Dec 2004
- Nov 2004
- May 2004
- Apr 2004
- Mar 2004
- Feb 2004
- Jan 2004
- Dec 2003
- Nov 2003
- Oct 2003
- Sep 2003
- Aug 2003
- Jul 2003
- Jun 2003
- May 2003
- Apr 2003
- Mar 2003
- Feb 2003
- Jan 2003
- Dec 2002
- Nov 2002
- Oct 2002
- Sep 2002
- Aug 2002
- Jul 2002
- Jun 2002
- May 2002
- Apr 2002
- Mar 2002
- Feb 2002
- Jan 2002
Zeldon Morris stole almost $2 million from four credit unions that hired him to provide IT services.
A global coalition of privacy regulators takes Google to task for its lackluster approach to protecting its users' privacy.
Eric Rachner has accused Seattle police of deliberately concealing videotape of his 2008 arrest.
The jury in the trial of David C. Kernell, accused of hacking into Sarah Palin's Yahoo! email account, is deadlocked.
A security test led to a widespread -- and false -- rumor that 'Transformers 3' was filming in Guam.
The company has confirmed the existence of a serious cross-site scripting vulnerability.
Mocana's Kurt Stammberger says medical devices and systems are ripe for attack.
The Council of the European Union has called for a feasibility study on the idea.
Novell will support Verizon's planned Secure Access Services.
While almost three quarters of organizations think they have adequate security policies in place, more than half have lost sensitive data in the last two years.
The Federal Trade Commission is drafting a set of 'guiding principles' regarding privacy issues.
Huping Zhou is the first person ever to receive prison time for violating HIPAA's privacy stipulations.
A group called Skid Row has enabled users to play Ubisoft's games without an Internet connection.
The mobile site for Barclays Bank makes it relatively easy to access customers' private information.
The malicious PDF files deliver a variant of a Windows worm called 'Auraax' or 'Ernold.'
The security software vendor adds a pair of encryption software firms to beef up its portfolio of applications for enterprises that share data in the cloud.
Rockefeller, co-sponsor of the cybersecurity overhaul bill, urges speedy consideration of the legislation and emphasizes its importance to business and government.
David Anthony Edwards has admitted to having trained a botnet on ThePlanet.com in order to demonstrate custom-built malware.
Asia is the hotbed for spammers, but according to the latest report from Sophos, China isn't even among the Top 12 countries responsible for relaying the irritating e-mails.
Over the past six months, more and more skimming devices have been placed on ATMs, POS systems and gas pump card readers.
The company will offer compensation as well as products, services and support.
Networks pretending to be AT&T hotspots can be used to trap iPhone users.
Both organizations were recently hacked by the Iranian 'Sun-Army.'
CA security researchers say they've discovered a new botnet that bears the hallmarks of Storm.
Jaisankar Marimuthu was also ordered to pay almost $2.5 million in restitution.
The new release implements a number of improvements, fixes and stability enhancements.
Rogue anti-virus is getting better at evading detection by legitimate anti-virus solutions.
Microsoft says it is cleaning malware from a growing number of compromised PCs, but users and administrators can increase interception and improve prevention of security breaches.
The social networking site is now making some personal information public by default.
Gordon M. Snow is now assistant director of the FBI's Cyber Division.
SpyEye's 'Kill Zeus' feature is actually helping the Zeus toolkit makers.
The site recently disclosed the passwords of an undisclosed number of customers by mistake.
The judge has ordered that evidence should only be made available to those connected to the civil lawsuit.
CNET's Seth Rosenblatt says users should stop counting on McAfee for security software.
The company has developed a security plan following the recent discovery of users' credit card information on Google.
After a quality-assurance gaffe distributed a faulty virus update last week, security vendor McAfee and its customers look back at what went wrong.
Mac users are not affected, according to Bitdefender researchers.
An unidentified Verizon employee isn't particuarly happy with researchers who disclose vulnerabilities.
Version 1.0.6 of the VLC media player patches nine security flaws.
Version 5.3 of the iPhone app adds a pattern-based option for accessing a user's password database.
The company has issued a statement apologizing for the error.
A group of Google engineers responded to Facebook's latest updates by deactivating their accounts.
The FBI has charged Anthony Digati with 'cyber-extortion.'
Following a takedown in Hong Kong, the server was simply moved to a hosting firm in China.
InfoSec practitioners gather in Orlando to better defend against emerging privacy, Web 2.0, and Internet security threats.
The credit card numbers of four Blippy users were recently revealed through a Google search.
Jon Callas has been hired by Apple to work on operating system security.
The company says the update failed to address the underlying issue effectively.
A new version of the open source Metasploit Framework penetration testing tool is set to debut next month with the release of the open core Metasploit Express.
Symantec researchers report that the NHS has been hit by the Qakbot worm.
The US Department of Commerce has announced an initiative to look into the way the Internet economy is impacting the privacy of individuals.
Coles stores were temporarily shut down after a McAfee update crashed their sales terminals.
Kirllos is selling the credentials at an asking price of $25 to $45 per 1,000 accounts.
The First National Bank of Fort Smith accepts no responsibility for the loss.
David Kernell stands accused of hacking into Sarah Palin's webmail account.
When will they learn? A Massachusetts-based neurosurgeon had his unencrypted laptop stolen during a lecture tour in South Korea, putting more than 3,500 patients' most sensitive data at risk.
Samarth Agrawal has been arrested on charges of stealing the code for Societe Generale's high-frequency trading software.
Trusteer is already detecting the malware on one in 3,000 PCs.
David Kernell faces four felony charges that could put him in prison for 50 years.
The company has canceled plans to release the Forefront Protection Manager.
A Russia-back proposal has failed to win sufficient support at the United Nations.
Federal CIO lays out a new directive requiring agencies to implement real-time digital monitoring of their information systems.
A McAfee update cripples Windows XP SP3 PCs, but not computers running Windows Vista or Windows 7.
The company has reminded users to use strong passwords to protect the device.
Data backup and recovery are key parts of any business's security strategy. Zmanda, an open source, cloud-based data backup company, is an affordable option for SMBs.
Two security researchers have discovered a way to determine the location of any GSM handset, and to find the name of the subscriber associated with any mobile number.
Officials from 10 countries have sent an open letter to Google CEO Eric Schmidt expressing privacy concerns.
The XSS bug allowed attackers to steal login credentials.
The malware, Trojan.Agent.20577, changes the Windows hosts file.
Rio Tinto, BHP Billiton and Fortescue Metals have all been hit by Chinese cyber attacks.
Two men accused to creating and operating CallService.biz have been arrested overseas.
Security features include beefed up support for NAP--Microsoft's endpoint security solution--as well as improvements to group policies, remote access features, and firewalls.
SEO attacks are using a wide variety of ways to spell the name of the Icelandic volcano.
The insurer returned a rented copier to the leasing company with personal information on its hard drive.
The scam presents university students with a fake student loan web page.
Three different solutions target cloud providers, enterprises, and smaller companies.
Approximately 2,000 Russian tourists were stranded overnight.
The mobile operating system was hacked using text messages.
The mobile chat platform doesn't allow its users to change their passwords.
The insurer donated a filing cabinet to a local nonprofit, not realizing it contained personal information on approximately 12,000 members.
Last year's high-profile cyber attacks emanating from China appear to have infiltrated the top-secret password service at Google, according to a new report.
The company has released beta versions of Norton Internet Security 2011 and other upcoming products.
Bob Harrison is planning to retire at the end of April.
The company has acknowledged the second attack in as many weeks.
The student had stolen a teacher's password and used it to make changes in the school district's Blackboard system.
Nicolai Marquardt is working with Microsoft Research on the project.
Thousands of photos were apparently taken of students in their homes.
The company says the vulnerability could allow a 'complete compromise of the affected system.'
HellRTS.D is a variant of an early Mac OS X malware first spotted in 2004.
The aim is to ensure that implanted medical devices can be accessed in an emergency.
Damon Patrick Toey was also fined $100,000.
According to Trend Micro, the malware is designed to embarrass its victims, then extort money from them.
After criticism for its secrecy, draft language in ACTA will be released this week. Participants confirm that searches of travelers' devices won't be required at borders.
New SECURE service provides an automated way for online advertisers and publishers to find and remove malware from digital advertising content.
Certegy Check Services to pay almost $1 million in fees and will shore up its data security systems as part of a settlement after millions of consumer records were exposed in 2007.
The company addresses a security hole first uncovered by Charlie Miller last month, and provides some details about what had been at risk.
Sites maintained by the British newspaper were hacked by the previously unknown Romanian National Security group.
The malware is delivered as a Windows batch file packed alongside the jailbreaking app.
Java 6 Update 20 patches a recently disclosed vulnerability.
The Fireshark plugin was developed by Websense security researcher Stephan Chenette.
The vulnerabilities could be used to slip malware past anti-virus software.
Days after a major security update, Oracle issues another patch for a critical Java flaw.
Security Update 2010-003 patches a vulnerability that was revealed at Pwn2Own.
Tenable Network Security has released Nessus 4.2.2.
The total is three times the number that was originally reported.
Up to 88 percent of Fortune 500 companies may be affected by botnet activity from PCs compromised by Zeus.
Recruits will receive training on basic principles such as the use of firewalls and passwords.
The new flaw is being actively exploited on popular Web sites.
The new attack targets Standard Chartered Bank clients.
Booz Allen Hamilton was recently awarded two separate Department of Defense contracts.
The company's Australian IT security manager says News Limited has been the target of several DDoS attacks.
Version 6.0.7 addresses a number of bugs, including several stability issues.
A lawsuit seeking class action status has been filed against the company over its methods of promoting third party services.
Lt. Gen. Keith Alexander says a new Department of Defense position is more about coordinating with other agencies in cyber attacks than waging Internet warfare.
In the majority of cases, the failure was the result of false positives.
D.A. Davidson has been fined for failing to protect client data from Latvian hackers in 2007.
The botnet was recently identified by researchers at Arbor Networks.
The new private browsing mode in Adobe Flash Player 10.1 may create a headache for banks and online merchants.
A new algorithm masks the parts of a patient's records that aren't relevant to a particular inquiry.
Rodney Reed Caverly stole $304,000 from more than 100 Bank of America ATMs.
Hackers recently hit the open source foundation with a targeted XSS attack.
The Ministry of Defense has reported 347 incidents of lost data in 2009.
The automaker has announced a range of enhanced SYNC functionality--and new in-car security features--for the 2011 model year.
Eric Schmidt says the company has accelerated plans to move to Web-based systems like Chrome OS netbooks.
Players of the Facebook game are being warned about pop-ups touting fake anti-virus software.
The malware threatens victims with a copyright infringement lawsuit.
The open source operating system uses the concept of security by isolation.
A plea agreement reveals the approximate amount of the theft.
Nicolae Popescu apparently walked out of the courthouse without the police being notified.
According to CA researchers, the fake AV in question is named CleanUp Antivirus.
The updates patch 10 security vulnerabilities in a variety of products.
The solution alerts account owners whenever a new payee or funds transfer destination is added to their account.
A Vietnamese official defended her country against claims by both Google and McAfee that the government had been targeting dissidents protesting mining operations in that country.
The thieves filed more than 1,900 fraudulent tax returns, directing refunds to more than 170 bank accounts.
Sites offering an XBox Live application for Windows PCs try to trick users into downloading a password-stealing trojan.
Security firm Secunia rates the problem 'highly critical.'
The flaw could allow an attacker to compromise a PC if the victim visits a Web page hosting malicious code.
A new wave of spam targets Facebook users with the promise of (no surprise) free porn.
The malware forces compromised smartphones to make expensive international calls.
The attacks don't modify or create files -- they simply redirect visitors to a site that tries to install a malicious ActiveX plugin.
The schedule is designed to make the patch process more predictable.
The NetVault-IP is designed to secure, store and recharge up to 40 iPads.
Two hackers have repeatedly defaced the actor's official web site.
The company will issue 11 security bulletins on Tuesday, five of which address critical vulnerabilities.
The company will release a critical security update for Acrobat and Reader next Tuesday.
An act of 'electronic civil disobedience' may result in criminal charges.
Rodney Reed Caverly will plead guilty to hacking Bank of America ATMs.
The virus scanner has been updated to version 0.96.
Microsoft prepares for another big drop of patches, but don't worry. It won't be as large as some recent Patch Tuesday events, though Microsoft is addressing a lingering bug from early March.
Aleksey Volynskiy is the second defendent to be sentenced for the scheme.
Pennsylvania's attorney general warns that the number of phishing calls seeking bank information has recently increased.
The 2009 update to the National Infrastructure Protection Plan has been well received by the GAO.
The gangs phished eBay account credentials, then used those accounts to sell fake or non-existent goods.
While no iPad malware has yet been identified, the security firm says the solution will protect users if and when that threat materializes.
TrendLabs researchers are warning of malware disguised as an Adobe update.
The CCDCOE is looking at key questions and concepts relating to the future of cyberwar.
Exploiting a feature gives hackers a new way to prey on Acrobat and Reader users.
The chief information officer at CMS says even large companies are having basic problems with security.
A stolen notebook PC -- containing the unencrypted data of thousands of patients -- underlines a need for stronger laptop security measures.
The company has admitted that it issued a mysterious root authentication credential in Firefox and Mac OS X.
The town's online bank account was hacked, resulting in the theft of almost $100,000.
A warning has been added, but the vulnerability remains.
British businesses that expose their clients' information now face fines of up to £500,000.
The investment company says that backup tapes containing detailed account information were stolen last fall.
The socialite recently hacked the Twitter accounts of Kim Kardashian and Joel Madden as an April Fool's prank.
Foreign elements are employing a variety of methods to try to access information on U.S. military technology.
The latest scam targeting Twitter users involves an offer of a free iPad.
Researchers detail the efforts of the Shadow network, a sophisticated group of hackers working out of China who have managed to snag troves of sensitive information through a far-ranging cyber espionage operation.
A new service helps malware writers determine whether their creations are detectable by current anti-virus solutions.
The court ruled that employees have a right to privacy when using a personal e-mail account on a company-owned computer.
The company's Random Password Generator is a free tool that helps users create and manage strong passwords.
A class action lawsuit contends that Countrywide Financial employees stole and sold customers' personal financial information.
Roel Schouwenberg reports that solid state drives better during an anti-virus scan than when idle.
Registrar Gandi.net recently revoked GoogleSharing's SSL certificate.
Within days of its initial release, the iPad has already been jailbroken.
The new venture brings together several small security companies that are experts in their specific niche.
A Wall Street Journal op-ed warns that the U.S. is insufficiently prepared for cyberwar.
The college will start offering an online Master of Science in Cybersecurity Intelligence and Forensics this fall.
In addition to phishing Facebook accounting data, the campaign also makes use of a malware exploitation kit.
The company is spreading the word that Facebook fan pages offering a free $500 Whole Foods gift card are a scam.
The grant is dedicated towards setting up the National Electric Sector Cyber Security Organization.
The update prevents executables from being run without the user's permission.
A big security update for QuickTime and iTunes affects both Windows and Mac users.
Carnegie Mellon University researchers have developed a location-based encryption model to protect data in lost or stolen laptops.
The latest malware trap on the popular social networking site promises a $500 gift card to the upscale grocery store. But all you really get is your personal data exposed.
Malware is being delivered via e-mails claiming to include an attached 3-D Easter greeting card.
The e-mails attempt to trick eBay customers into downloading malware.
Julien Sobrier reports that only 0.06 percent of the shortened URLs are malicious.
All of the $378,470 stolen in January has been restored.
The announcement follows Oracle's recent release of Java 6 Update 19.
Senator Patrick Leahy wants to hold hearings on updates to the Electronic Communications Privacy Act of 1986.
The Department of Homeland Security is preparing a report on the efforts to combat the botnet.
A rivalry is brewing between the malware writers.
Zero-day malware attacks targeting an Internet Explorer flaw hit users in China and Korea the hardest.
All four focus on issues related to China.
Key elements include better coordination across government departments and improving the response of law enforcement to cybercrime.
A security update patches 10 browser vulnerabilities.
Java 6 Update 19 contains critical security updates.
Nearly 17 million Internet users in China have no Internet security software.
Washington is the latest state to pass legislation targeting lax defenses against ID theft and cybercrime among retailers.
The company has updated QuickTime to version 7.6.6.
The vulnerabilities could allow a hacker to turn someone's power on or off.
The company has introduced a new Google Message Security reporting feature called Health Check.
- What are the top Android security apps?
- What are the top Android security risks?
- What are today's top cyber threats?
- What's the most secure way to delete data?
- How does hard drive encryption work?
- Is old software inherently insecure?
- Are Macs immune to malware?
- How can BYOD risk be managed?
- Which web browser is the most secure?
- How do I protect my iOS device?
- What are the top iPhone security apps?
- How do I secure my wireless network?
- Are public Wi-Fi hotspots safe?