Despite widespread paranoia that social networks are putting businesses at risk, companies continue to give employees open access to them. The latest Security Threat Report (PDF) from security research firm Sophos...
Scammers exploit Apple iPad fever
Filed under: Software, Hacks, Odds and ends, Apple, Security
And now we're at the point in the iPad cycle where there's just enough information out there about it that people are interested, but not enough that they can discern...Suckers Victims lost $9.3 billion to 419 scammers in 2009
Advance-fee fraud (AFF), also known as 419 scams and Nigerian scams, exploded in 2009, with victims losing more money than ever before. This is according to the latest analysis from Dutch...
Security researchers blast credit card verification system
Some credit card companies use a system called 3-D Secure (3DS) that adds an extra step to transactions that are carried out on the Internet. Visa and MasterCard tout their security, but...
Researchers jail spam bots, reverse engineer their payload
If you have access to a server-side spam mailbox, you're likely to find it filled with sets of messages that are variations on a theme: similar products, similar sites offering them,...
Google: Toolbar data persistence a bug, fix available
Google's Toolbar for Internet Explorer and Firefox serves as a gateway to a variety of software services provided by the search giant, many of which require a user to provide Google with...
One day after latest fix, Microsoft investigates new IE flaw
A day after releasing an out-of-band security bulletin for a vulnerability in Internet Explorer notably exploited in the recent series of Chinese-based attacks against Google and 30 other tech companies, new flaws have been discovered in Microsoft's browser.
Boston-based research firm Core Security Technologies has outlined a set...
Could Microsoft have fixed "Google hack" prior to attacks?
When Microsoft released the highly-publicized patch for Internet Explorer yesterday, the software giant admitted that it was aware of the flaw for quite some time. "As part of that investigation, we...
32 million passwords show most users careless about security
We've covered this ground before, but never quite on this scale. The best passwords are arbitrary strings that mix letters, digits, and other characters, and are unique to each account. But the human brain isn't wired to remember arbitrary strings, and the explosion of locations that require a...
feature: Locating and managing the IS security function
Deciding that you need an Information Systems (IS) security function within your business is easy. Deciding where to put it and how to manage it isn’t nearly as straightforward. Security, IT, and even Engineering all bring...
Microsoft patches "Google hack" flaw in Internet Explorer
Microsoft has issued an Advanced Notification for the out-of-band security bulletin it is releasing tomorrow for Internet Explorer at approximately 10 am PST. The patch will fix vulnerabilities in IE6, IE7, and IE8 on supported editions of Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows Server 2008,...
Microsoft investigates 17-year-old Windows flaw
Reports have surfaced about a new security hole that has been in Windows since the release of Windows NT 3.1 on July 27, 1993. The vulnerability is present in all 32-bit versions of Windows released since then, including all supported versions: Windows 2000, Windows XP, Windows Server 2003, Windows Vista, Windows...
