The hundreds of ctargeted in a large-scale cyberespionage operation dubbed Red October were not only attacked using malicious Excel and Word documents as previously believed, but also by using Web-based Java exploits, according to ...
Tags: cyberespionage, Red October Cyberespionage Attacks, cyber security
Oracle on Sunday issued an emergency Java update to patch two critical vulnerabilities, including one that had been exploited in ongoing and accelerating attacks. Also yesterday, a researcher noted for uncovering scores of Java bugs ...
Tags: Oracle, emergency Java, Java bugs
A cyber espionage network has been allowed to flourish in Eastern Europe, former Soviet republics and Central Asian countries since 2007, security firm Kaspersky Lab reported this week. The group, called Red October, has been stealing ...
Tags: cyber, espionage network, Eastern Europe
IDG News Service - Foxit Reader, a PDF viewer application often used as an alternative to the more popular Adobe Reader, contains a critical vulnerability in its browser plug-in component that can be exploited by attackers to execute ...
An exploit for a previously unknown and currently unpatched vulnerability in Java is being used by cybercriminals to infect computers with malware, according to security researchers. An independent malware researcher who uses the online ...
Tags: exploit, unpatched vulnerability, Java, cybercriminals
Though U.S. officials have consistently blamed Iran for the ongoing stream of distributed denial of service attacks (DDoS) against major U.S. banks, a number of security experts now say that there is not enough evidence to assign the blame ...
Tags: Iran, bank attacks, financial services networks, cyber security
Computerworld - Though U.S. officials blamed Iran for an ongoing stream of distributed denial of service attacks (DDoS) against major U.S. banks, security experts say there's not enough evidence yet to assign blame. The security experts ...
Tags: Iran, Bank DDOS Attacks, Washington Post
IDG News Service - Turktrust, the Turkish certificate authority (CA) responsible for issuing an intermediate CA certificate that was later used to generate an unauthorized certificate for google.com, claims that the bad Google certificate ...
Tags: Google certificate, Google, Microsoft, Internet
A zero day exploit in Internet Explorer,which Microsoft released a temporary fix for last week,has resurfaced as the fix itself has now been cracked. The original vulnerability was discovered two weeks ago,and so far no permanent ...
Tags: zero day exploit, Internet Explorer, Microsoft, vulnerability, malware
For all the apocalyptic prognostications, 2012 turned out to be a relatively uneventful year from an information security standpoint. A cyber Pearl Harbor did not happen. Stuxnet and its kin did not take out any power grids or shut down ...
Tags: apocalyptic prognostications, 2012, information security, cyber
New laws coming into effect this year will ban employers from demanding access to prospective and current employee social networking accounts. Facebook had announced in March 2012 that it was receiving a "distressing increase in reports" ...
Tags: Facebook, profiles, information, privacy, employers
Cyber extortionists shilling "ransomware" have upped the ante by pushing users' panic buttons with claims that their malware will wipe hard drives, a security firm said Monday. The claim is bogus, said Symantec, and is simply a ploy by ...
Tags: cyber extortionists, users, ransomware, panic buttons, malware, hard drives
IDG News Service-Facebook has restricted the rate at which users can perform phone number searches on its mobile website in order to block a recently disclosed method of harvesting phone numbers. "The ability to search for a person by ...
Tags: facebook, harvest phone numbers
A group of hackers on Thursday published a list of over 453,000 log-in credentials on the Internet that were allegedly stolen from a database associated with an unnamed Yahoo service. The group of hackers calls itself "the D33Ds Company" ...
Tags: hackers, Yahoo, database, leaked information, MySQL
Computerworld - Burlington, Wash. officials have notified hundreds of employees and residents that their bank account information was compromised last week when hackers broke into city systems and stole more than $400,000 from a city ...
Tags: Burlington, hackers, Bank of America, $400, 000, alert