| |
|
New Internet Explorer 0-day Vulnerability and Targ
|
|
News of targeted attacks on Google, Adobe and other large companies were made public last week. The initial assumption was that the attacks were done with malicious PDF files but on Thursday Microsoft released information that the attacks were done with a new security vulnerability in Internet Explorer. This is interesting as the majority of targeted attacks are using email attachments sent to one or a few recipients at a target organization. These attachments are typically PDF, Microsoft Word,,
view details
|
|
|
Attackers conceal exploit sites with Twitter API
|
|
Trends technique suffers hacktile dysfunction.
Drive-by exploit writers have been spotted using a popular Twitter command to send web surfers to malicious sites, a technique that helps conceal the devious deed.,
view details
|
|
|
Scam hits more e-mail accounts
|
|
The scale of a phishing attack originally thought to be directed at Hotmail may be larger than previously thought. BBC News has seen a list of more than 20,000 more names and passwords that have been posted online.
The list contains e-mail addresses and passwords from Hotmail, Yahoo, AOL, Gmail and others service providers. The list was published on the same website as the original list of 10,000 Hotmail login details.
Some of the accounts appear to be old, unused or fake. However, BBC New,
view details
|
|
|
Apache web server hit by hack attack
|
|
The website of the popular open source web server has been hit by hackers.
Apache has confirmed it was hit using a compromised SSH key to access one of its servers, which forced the shutdown of its website and most apache.org services.,
view details
|
|
|
Apple's Snow Leopard Security Concerns
|
|
Adobe CS3 users are expressing dismay that Snow Leopard compatibility hasn't been tested while hackers tempt Mac users with malware in Snow Leopard clothing.
Apple's Snow Leopard update for Mac OS X ships later this week, but compatibility and security worries have already arrived.,
view details
|
|
|
Vuln exposes eBay developer accounts
|
|
Password changes ordered
eBay security officials are requiring members of its developer program to change their passwords following the discovery of a vulnerability that could allow attackers to intercept sensitive account details.
"eBay has recently identified a means by which someone could gain access to eBay Developers Program account information," Kumar Kandaswamy, manager of the eBay Developers Program, wrote in an advisory posted on the auctioneer's website. "Out of an abundance of c,
view details
|
|
|
Hacker Says iPhone 3GS Encryption Is 'Useless' for
|
|
Apple claims that hundreds of thousands of iPhones are being used by corporations and government agencies. What it won’t tell you is that the supposedly enterprise-friendly encryption included with the iPhone 3GS is so weak it can be cracked in two minutes with a few pieces of readily available freeware.,
view details
|
|
|
Firefox 3.5.1 Fixes Security Vulnerability
|
|
Mozilla has updated its Firefox browser to plug a critical security hole days after attack code for the vulnerability surfaced on the Web.,
view details
|
|