attacker

attacker

Smart TV Exploit Means Hackers Can Watch You Watch TV

www.techdirt.com
Remember all the hubbub (now there's a word I never thought I'd use; thanks a lot, aging process) over Comcast's kind of, maybe plan to spy on subscribers through their cable box as they watch TV, fold their laundry, or engage in coitus? There was quite an outcry at the...
Smart TV Exploit Means Hackers Can Watch You Watch TV

The Internet is disturbing! New online game lets you play as Joseph Stack, Austin plane attacker: http://bit.ly/bs5lRC (so wrong)

www.newgrounds.com
The Internet is disturbing! New online game lets you play as Joseph Stack, Austin plane attacker: http://bit.ly/bs5lRC (so wrong)

Compromised phpMyAdmin download reinforces importance of verifying checksums

www.extremetech.com
The latest stable version of phpMyAdmin — the popular, GUI-based MySQL database software — was released late last month, but thanks to a compromised download mirror, users running the newest version may still be vulnerable to hackers. At some point after September 22, an unknown attacker managed to insert a...
Compromised phpMyAdmin download reinforces importance of verifying checksums

Emergency Flash update fixes security bug being used to hijack PCs

arstechnica.com
Adobe has released an emergency update for its Flash Player that fixes a security bug that's being actively exploited to hijack Windows computers running the ubiquitous software. The "object confusion vulnerability" resides in all Flash versions, including those for devices running Mac OS X, Linux, Google's Android OS, and...
Emergency Flash update fixes security bug being used to hijack PCs

This site lets you 'hack' your Facebook to trick your friends

thenextweb.com
“Facebook hacking” usually doesn’t mean a remote attacker actually broke into your account to wreak havoc left, right, and center. Among the users of the social network, the term really just means you forgot to logout of your Facebook account, and your friends took advantage by posting (usually embarrassing) status...
This site lets you 'hack' your Facebook to trick your friends

Hacker steals $250k in Bitcoins from online exchange Bitfloor

arstechnica.com
The future of the up-and-coming Bitcoin exchange Bitfloor was thrown into question Tuesday when the company's founder reported that someone had compromised his servers and made off with about 24,000 Bitcoins, worth almost a quarter-million dollars. The exchange no longer has enough cash to cover all of its deposits, and...
Hacker steals $250k in Bitcoins from online exchange Bitfloor

Firefox 3.6.2 Fixes Critical Security Hole

mashable.com
Mozilla addressed a critical security vulnerability with a minor Firefox update, bringing the browser to version 3.6.2. The vulnerability could potentially allow an attacker to “crash a victim’s browser and execute arbitrary code on his/her system.”Users of Firefox 3.6 will have this update automatically downloaded and installed, but you...
Firefox 3.6.2 Fixes Critical Security Hole

Critical Flaw Found In Virtually All AV Software

tech.slashdot.org
Securityemo writes "The Register is running an article about a new method to bypass antivirus software, discovered by Matousec. By sending benign code to the antivirus driver hooks, and switching it out for malicious code at the last moment, the antivirus can be completely bypassed. This attack is apparently much...
Critical Flaw Found In Virtually All AV Software

Microsoft releases fix-it for Internet Explorer 8 vulnerability

www.pcworld.com
Microsoft has released a temporary fix for a zero-day vulnerability in Internet Explorer 8, which was used by hackers in a prominent attack against the U.S. Department of Labor's website.The problem is particularly dangerous since it can allow an attacker to install malware merely by visiting a tampered web...
Microsoft releases fix-it for Internet Explorer 8 vulnerability

DDoS-for-hire service works with blessing of FBI, operator says

arstechnica.com
A website that accepts payment in exchange for knocking other sites offline is perfectly legal, the proprietor of the DDoS-for-hire service says. Oh, it also contains a backdoor that's actively monitored by the FBI. Ragebooter.net is one of several sites that openly accepts requests to flood sites with huge...
DDoS-for-hire service works with blessing of FBI, operator says

McAlpine is right to sue the tweeters and not Twitter

www.guardian.co.uk
That old saw about not blaming your tools for bad workmanship springs to my mind whenever people complain about Twitter.I cannot see how a wonderful facility, a digital blessing to our generation, should be blamed because people happen to use it irresponsibly. In the aftermath of the Newsnight drama, when...
McAlpine is right to sue the tweeters and not Twitter

Researcher advises against use of Sophos antivirus on critical systems

arstechnica.com
Antivirus provider Sophos has fixed a variety of dangerous defects in its products that were discovered by a security researcher who is recommending many customers reconsider their decision to rely on the company. "Sophos claim that their products are deployed throughout healthcare, government, finance, and even the military," Tavis Ormandy...
Researcher advises against use of Sophos antivirus on critical systems

The Pakistan Cyber Army May Be Coming For Your Small Business Website

betabeat.com
Protests against the anti-Muslim “film” Innocence of Muslims have yet to metastasize into a something larger and scarier but religiously motivated hackers are waging a sustained war online. Muslims citing the offensive videos have been hacking, DDoSing and defacing hundreds of websites big and small. While DDoS (Directed Denial of...
The Pakistan Cyber Army May Be Coming For Your Small Business Website
iOS 5.0.1 bug bypasses security passcode to provide access to contacts and phone app

Hackers Point Large Botnet At WordPress Sites To Steal Admin Passwords And Gain Server Access

techcrunch.com
If you’re running a WordPress site, now would be a good time to ensure you are using very strong passwords. According to reports from HostGator and CloudFlare, there is currently a significant attack being launched at WordPress blogs across the Internet. For the most part, this is a brute-force dictionary-based...
Hackers Point Large Botnet At WordPress Sites To Steal Admin Passwords And Gain Server Access

Malware warning: There's a bot going around Facebook Chat, Skype, other IM services

thenextweb.com
A newly discovered botnet is adding victims to its list by claiming to be an interesting video from a Facebook user. That’s nothing new. Here’s what makes this malware unique: it can spread via multiple instant messaging services, including Facebook Chat, Skype, Google Talk, Pidgin, Windows Live Messenger, Yahoo Messenger,...
Malware warning: There's a bot going around Facebook Chat, Skype, other IM services
Google pays out $11,500 in bug bounty for Chrome 20

New Internet Explorer Security Bug Could Affect Millions

www.readwriteweb.com
Microsoft said it was investigating a new zero-day vulnerability in Internet Explorer that could affect millions of users, running the latest versions of Internet Explorer on Microsoft's most popular operating systems. Specifically, Microsoft warned that the bug could affect users running Internet Explorer 6, 7, 8, and 9, using the...
New Internet Explorer Security Bug Could Affect Millions
Apple says iOS 6 to fix in-app-purchase fraud, gives developers a temporary fix

Internet Explorer flaw allows websites to track your mouse cursor, even when you aren't browsing

thenextweb.com
A new Internet Explorer vulnerability has been discovered that allows an attacker to track your mouse cursor anywhere on the screen, even if the browser is minimized. All supported versions of Microsoft’s browser are reportedly affected: IE6, IE7, IE8, IE9, and IE10. The flaw was first discovered by Spider.io a...
Internet Explorer flaw allows websites to track your mouse cursor, even when you aren't browsing

Juniper: Mobile Malware Increased 155% in 2011

www.readwriteweb.com
Malware permeated the mobile ecosystem in 2011. The issue is not going away either. Smartphones have an unprecedented amount of personal data that malicious hackers are drooling to obtain. Everyday they are coming up with more sophisticated attacks and scheming ways on how to infiltrate that data trove in your...
Juniper: Mobile Malware Increased 155% in 2011
Virgin Mobile fails web security 101, leaves six million subscriber accounts wide open
Malicious code leaks from Microsoft or one of its trusted partners

Shylock Malware Injects Rogue Phone Numbers in Online Banking Websites

www.pcworld.com
New configurations of the Shylock financial malware inject attacker-controlled phone numbers into the contact pages of online banking websites, according to......
Shylock Malware Injects Rogue Phone Numbers in Online Banking Websites

Hands-on with five antivirus apps for the Mac

arstechnica.com
So Mac invulnerability to malware is a myth, at least according to security researchers from Kaspersky Lab. And although such a blunt statement may be a blow to the ego of some Mac users, it remains true. Security researchers from all walks have long argued that it was only a...
Hands-on with five antivirus apps for the Mac

Serious Apache Exploit Discovered

tech.slashdot.org
bennyboy64 writes "An IT security company has discovered a serious exploit in Apache's HTTP web server, which could allow a remote attacker to gain complete control of a database. ZDNet reports the vulnerability exists in Apache's core mod_isapi module. By exploiting the module, an attacker could remotely gain system privileges...
Serious Apache Exploit Discovered
Critics: Substandard crypto needlessly puts Evernote accounts at risk

Adobe issues security update for Flash player, warns against IE exploit

www.engadget.com
Internet Explorer associated with an exploit? Color us shocked. Facetiousness aside, it's seriously about time you switched over to Chrome or Firefox (as a mitigation tool; not a foolproof solution), and if you're a desktop user relying on Flash Player, well... it's about time you updated that, too. Adobe...
Adobe issues security update for Flash player, warns against IE exploit

App.net beefs up security with two-factor authentication and application-specific passwords

thenextweb.com
App.net on Wednesday announced two new features for its service: two-factor authentication and application-specific passwords. Both measures should significantly beef up security on the social network, a welcome move following the recent slew of Twitter account hacks last month. For those who don’t know, two-factor authentication protects your account by...
App.net beefs up security with two-factor authentication and application-specific passwords
CloudFlare goes down for an hour, taking its 785K customers with it
× Just a test of the new info bar. What do you think?