Help Net Security
Taking Ownership of the Trusted Platform Module Chip on Intel Macs
I have been following the works of Trusted Computing Group (TCG) since their inception. The body, successor to the Trusted Computing Platform Alliance started by such giants …
Relaxation of PCI DSS is no surprise
The recent ease in requirements for UK retailers attempting to comply with the Payment Card Industry Data Security Standards (PCI DSS) did not surprise application security …
Why PCI isn’t enough to ensure data security today?
Ounce Labs thinks it’s critical for consumers to know that, in many instances, their credit card data is still not secure:  ” Compliance statistics are …
Elcomsoft System Recovery helps when you get locked out of Windows
Elcomsoft has released the Basic version of Elcomsoft System Recovery, an easy-to-use boot-disk application that makes it simple to access your Windows computer if …
New crimeware targeting companies
The new variant, “Prg”, researched by Finjan’s Malicious Code Research Center (MCRC) and also noted by Don Jackson of managed security specialist …
Cisco IOS Exploitation Techniques
It’s been almost two years since Michael Lynn first demonstrated a reliable code execution exploit on Cisco IOS at Black Hat 2005. Although his presentation received a …
MPack mass hacking tool – work in progress video
This video demonstrates how a system is compromised by a malicious IFRAME and how the MPack gang has accomplished this on literally thousands of websites (mostly Italian) …
Utimaco releases SafeGuard Enterprise 5.1
This cross-platform security suite for 360-degree data protection of confidential data integrates multiple new functions including flexible policy management for hard disk …
New service offers advanced notification of potential identity misuse
IdentityTruth announced the public beta launch of IdentityTruth.com, a free service to provide individuals with the earliest possible notification in advance of potential …
New trojan horse uses Shockwave video
Sophos is warning computer users about a Trojan horse that disguises its malicious intent by playing a humorous animation. The Agent-FWO Trojan horse plays the popular …
Trojan in a fake Microsoft security bulletin
Sophos is warning users of a widespread attempt to infect email recipients by sending a warning about a bogus Microsoft security patch. The emails, which have the subject line …
PCI compliance and vulnerability scanning suite for just $99
Research published recently within the security industry confirms that, while PCI is important, it is only one part of a larger vulnerability management framework for …
Featured news
Resources
Don't miss
- Hackers used Cisco zero-day to plant rootkits on network switches (CVE-2025-20352)
- Microsoft revokes 200 certs used to sign malicious Teams installers
- A new approach to blockchain spam: Local reputation over global rules
- SAP zero-day wake-up call: Why ERP systems need a unified defense
- “Perfect” Adobe Experience Manager vulnerability is being exploited (CVE-2025-54253)