We have thousands of posts on a wide variety of open source and security topics, conveniently organized for searching or just browsing.
A security hole in Google's Gmail service, which reportedly made it easy for hackers to access users' e-mail, has been corrected, Google says. The security breach made it easy for hackers to obtain and exploit users' cookie files. . . .
A pair of Oxford University students have been suspended over a little hacking project they undertook to "expose" security flaws in the University's IT system.First-year students Patrick Foster and Roger Waite were able to snoop on traffic sent over the network - including email passwords sent in plain text, a contravention of University security policies - and unencrypted CCTV footage. . . .
Hackers have compromised the download server for the open source PostNuke content management system, redirecting users to malicious code in place of the .zip download of the PostNuke program. The hacked code was distributed for more than 32 hours before PostNuke site maintainers addressed the security breach. . . .
TIM FIRM Sun has released details of a critical bug in both its Solaris operating system and the Java Desktop System. . . .
Called W32.Funner, the worm upon infection attempts to spread itself through the host's MSN Messenger contact list. Apart from altering Windows' host file and adding nearly 1000 URLs, the worm also attempts to send c:\funny.exe to contacts in the Windows Messenger instant message program. . . .
Is it possible to deploy a secure wireless LAN with technology available today? That question preys on the minds of IT executives who are tempted to deploy enterprise WLANs, but are hesitant because of security concerns. . . .
Updated: A glitch in the platform's processing of URLs could allow intruders to access password-protected sections of a Web site simply by altering a URL. . . .
A flaw in Microsoft Word 2000, and possibly Word 2002 as well, could be used by hackers to crash PCs or perhaps run other code on the compromised machine, a security firm said Thursday. . . .
Hackers stealing company data and holding it to ransom is a growing trend, warn security experts. 'Cybernappers' take confidential data such as customer lists from backend systems unprotected by the necessary security systems. . . .
A new version of the MyDoom worm uses subject headings that deny the Holocaust ever happened and launches a denial-of-service (DoS) attack against a Web site that dedicates pages examining the motives of deniers such as British writer David Irving. . . .
PCs running Linux are growing in popularity in part because they can be loaded with a pirated copy of Windows, according to a study from analyst Gartner. . . .
Windows' JPEG vulnerability could be exploited by using Internet Explorer, a security firm claimed Wednesday, making the threat a potentially "devastating" one. But the claim may be more hype than anything, according to some rival security firms. . . .
A group of hackers calling themselves TeAmZ USA on Tuesday attacked the Web site of a Qaeda-linked group that has claimed responsibility for numerous kidnappings and beheadings of Westerners in Iraq. . . .
EasyNews, a provider of Usenet newsgroups, said it has identified two JPEG images that take advantage of a previously identified flaw in the way Microsoft software handles graphics files. Windows users could have their computers infected merely by opening one of those Trojan horse images. . . .
Nine out of ten financial web sites contain security flaws that could expose them to phishing attacks, according to a study by Next Generation Security Software (NGS). . . .
Virus writers are increasingly targeting poorly protected home PCs because company defences are proving too much of a challenge.< . . .
Ireland has become the first country on earth to cut off direct-dialed calls to entire nations in a bid to crack down on Internet-based fraud. . . .
A toolkit designed to exploit a recently-disclosed Microsoft JPEG vulnerability has been released onto the net. . . .
Since Wednesday, a rising tide of attacks which could precede the arrival of a new worm have been attempting to exploit the Windows GDI . . .
CYBER EXTORTIONISTS launched a denial of service attack against a major credit card company after the company ignored a note demanding they handed over cash or be shut down. . . .
Like staying secure? So do we.
Sign up for updates, tips, and alerts!
