We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
From the department of cosmic justice comes this gem, spotted by researchers from Symantec: a trojan that targets Windows, Mac, and Linux computers contains gaping security vulnerabilities that allow rival criminal gangs to commandeer the infected machines.
What does $8000 buy you nowadays? Enough iPads to equip the entire family, with matching MacBook Airs thrown in for good measure? A couple of 3D TVs? If you're a cybercriminal, it'll buy you a pretty sweet hacker's toolkit.
Two blokes who made a mockery of Apple's faith-based Ipad security are getting the book thrown at them in a US court. Daniel Spitler and Andrew Auernheimer took just five days to nick the data of 120,000 Ipad users and pass it on to the Gawker website. They shared the code they used to do it with their mates.
U.S. investigators will be holding a press conference this afternoon to announce criminal charges related to the alleged theft of email addresses and other personal information from 120,000 iPad users. The theft occurred back in June of this year, when hackers compromised AT&T's servers with an automated script.
The University of Sydney has called in two internet security firms to beef up protection of its computer networks after its home page was sabotaged and corporate webpages were altered during the weekend.
Members of a credit union that serves active-duty military personnel and others connected to the Pentagon are at risk for identity theft after a laptop was hacked, exposing the personal and financial records of an undisclosed number of troops and their families.
More than three years after the iPhone was first hacked, computer security experts think they've found a whole new way to break into mobile phones -- one that could become a big headache for Apple, or for smartphone makers using Google's Android software.
Scammers are trying to steal banking information using fake e-mails that look like they've come from the U.S. Federal Deposit Insurance Corporation, the FDIC warned Wednesday. The phishing e-mails tell the victim his account has been suspended "due to account activity that violates the Patriot Act," and instructs him to use a system called IDVerify to confirm bank account information.
The website for do-it-yourself giant Home Depot has been
A Catholic school board has taken action after learning a young hacker in accessed confidential records, including provincial test scores. John Mackle, education director at the Peterborough Victoria Northumberland and Clarington Catholic District School Board, said the Grade 8 pupil at St. Anne's School in Peterborough's north end found his way -- via his laptop, a piece of downloaded software and the board's internal network -- into a board file server containing provincewide test results.
Hackers compromised North Korean media profiles on Saturday to mock the country's heir apparent, Kim Jong Un, on his birthday. North Korea's YouTube channel was commandeered to post satirical footage depicting a caricature of Kim Jong Un at the wheel of a luxury sports car and out of control, mowing down women and children at the side of the road.
A security researcher has found a gap in the way Adobe Systems has fortified its Flash Player for better security, which could result in data being stolen and sent to a remote server. Billy Rios, a researcher who is a security engineer for Google, published on his personal blog a way to get around Flash Player's local-within-filesystem sandbox.
The Johannesburg Road Agency is in talks with suppliers to try and stop thieves targeting its shiny new traffic lights for the SIM cards they contain. The Agency has been forking out thousands of rand on phone calls the thieves subsequently make using the snaffled SIMs.
A hacker has published what he claims to be the root key of the PlayStation 3, leading to what some have speculated could be full root access to the game console without the need for external media.
At the 27th Chaos Communication Congress (27C3) in Berlin, security researcher Julia Wolf of US company FireEye pointed out numerous, previously hardly known, security problems in connection with Adobe's PDF standard. For instance, a PDF can reportedly contain a database scanner that becomes active and scans a network when the document is printed on a network printer.
The typical end-of-year security story generally involves a looming cyber threat or yet another major misstep by Microsoft. Well, there's good news on the security front this year -- and, like our other picks, it's gone largely unnoticed. A major hole in security has been plugged with the full deployment of Domain Name System Security Extensions (DNSSec) at the Internet's authoritative root zone.
At this week's Chaos Communication Conference, a group of hackers known as fail0verflow appeared to crack the PS3's randomized key cryptography and access the system's master code. The team demoed the alleged security flaw by creating a hack and installing Linux on the system.
Microsoft needs to start beefing up the security of its Windows Phone 7 App Marketplace. An ethical hacker provided WPCentral, a Windows Phone centric site, with a video showing proof-of-concept program that could grab any App from Marketplace and be installed for free sans any DRM security.
Federal investigators have seized servers allegedly abused to launch a denial of service attack against PayPal earlier this month. An affidavit obtained by the Smoking Gun contains testimony by federal agents convinced that systems at Texan hosting firm Tailor Made Services are likely to contain clues in the hunt for hacktivists who launched an attack against PayPal in response to its decision to freeze an account used by WikiLeaks.
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
