This is the second “critical” out-of-band patch issued in as many months. It’s all Internet Explorer’s fault — again. Microsoft has released an emergency out-of-band patch for a “critical”-rated security vulnerability, affecting all supported versions of Windows. The software giant said in an advisory Tuesday that users visiting a specially-crafted website […]
news
31 posts
Lenovo has sold laptops bundled with irremovable software that features a bonus exploitable security vulnerability. If the crapware is deleted, or the hard drive wiped and Windows reinstalled from scratch, the laptop’s firmware will quietly and automatically reinstall Lenovo’s software on the next boot-up. Built into the firmware on the […]
Update flawed, new one needed for countless gadgets Google’s security update to fix the Stagefright vulnerability in millions of Android smartphones is buggy – and a new patch is needed. The Stagefright flaw is named after a component within the Android operating system that, among other things, processes incoming text […]
A team of European security researchers has published a paper analyzing how the battery life of mobile devices could be used to track web browsing habits of Firefox users on Linux, using the HTML5 Battery Status API (via The Guardian). The specific method they expose in their paper has been fixed by Firefox as of June […]
Days after a security flaw in Android’s media playback system Stagefright was publicly revealed, threatening nearly a billion Android devices, another wide-reaching security flaw could be used to make a victim’s Android device completely unresponsive. According to security firm Trend Micro, which publicly disclosed info about the vulnerability Wednesday, the […]
Got an Android phone? Then read on – your beloved smartphone could be at risk from an alarmingly easy hack. The flaw has been discovered in the way that Android’s Hangout app instantly processes videos and images your mobile receives attached to text messages: to make it as easy for users […]
Gone in 60 seconds. Security researchers will demonstrate at DefCon on August 8 how they can crack a modern Brink’s safe in just a minute. When it comes to security, a safe—the physical device in which money is deposited for safekeeping—is quite literally supposed to be safe. Yet, according to […]
“Requiring people to build a vulnerability may be a strategic mistake.” Michael Chertoff, the former head of the Department of Homeland Security and a former federal prosecutor, made some surprising remarks last week, coming out strongly against cryptographic backdoors that could be provided to the government upon request. “I think […]
With days before Windows 10’s official release, Microsoft details some of the many security features aimed at keeping users and their data safe. Windows 10 launches in two days as a free upgrade to eligible users, and in the hours leading up to July 29, Microsoft is working to ease […]
Anonymous has claimed responsibility for a cyber-attack on the US Census Bureau which resulted in the posting of personal employee data online. The online collective ‘fessed up in a tweet on Wednesday, with four JustPaste links to the information. The breached data appears to include email addresses, phone numbers, job titles and names of […]
Internet Explorer is still one of the most used browsers in the world. The fact that it comes pre-installed on both the desktop version of Windows and Windows Phone means that it is probably the default browser for many – and makes it a very lucrative target for hackers. HP […]
Dharma is a tool used to create test cases for fuzzing of structured text inputs, such as markup and script. It takes a custom high-level grammar format as input, and produces random well-formed test cases as output – it can be used as a grammar fuzzing tool. API programming is […]
1/2 TRILLION spent on IT upgrades, but IRS, Feds still use DOS, Windows 97 President Obama’s team has spent more than a half trillion dollars on information technology but some departments, notably the IRS, still run on DOS and Windows 97, which isn’t serviced any-more by Microsoft, according to House […]
Security researchers published limited details about four unpatched vulnerabilities in Internet Explorer because Microsoft has not moved quickly enough to fix them. The flaws could potentially be exploited to execute malicious code on computers when users visit compromised websites or open specially crafted documents. They were reported through Hewlett-Packard’s Zero […]
uTorrent is a firm favorite when it comes to BitTorrent clients, making its money through in-app ads and bundled software offered during installation. But it seems that this software may be causing some problems for uTorrent, which is now being flagged as ‘harmful’ by association. As TorrentFreak reports, uTorrent is […]
Google has updated the stable channel of Chrome to version 44.0.2403.89. In addition to new features, which Google plans to detail these days, the latest release addressed a total of 43 security issues. The list of vulnerabilities reported by external researchers includes 12 high severity bugs. Judging by the rewards […]
In the past thirty days an increase attack activity has been observed using the “njRAT” malware. This remote access trojan (RAT) has capabilities to log keystrokes, access the victim’s camera, steal credentials stored in browsers, open a reverse shell, upload/download files, view the victim’s desktop, perform process, file, and registry […]
A pair of well-known hackers have proven that they can take over a car’s vital functions–including brakes and acceleration–from anywhere with an Internet connection. A pair of well-known hackers have proven that they can take over a car’s vital functions–including brakes and acceleration–from anywhere with an Internet connection. As described […]
Worried that you might have been targeted with Hacking Team spyware, but don’t know how to find out for sure? IT security firm Rook Security has released Milano, a free automated tool meant to detect the Hacking Team malware on a computer system. It does so by looking for files […]
A company known for visibility for network management launches a cyber security tool with a similar approach. If you’re familiar with Gigamon, you likely know them as the market-leading vendor in the emerging “visibility fabric” space. The company’s products provide businesses with pervasive and intelligent network data across physical and […]
Microsoft Windows users have been told to download a security patch IMMEDIATELY following the discovery of a “critical” security flaw which has left one BILLION PC owners vulnerable. Microsoft has rolled out an emergency patch for a “critical” bug found in almost every version of Windows, including the upcoming Windows […]