Zeljka Zorz
Log audit reveals developer outsourced his job to China
Log analysis can reveal a lot of security mistakes and fails, but a lot of security sins, too. Take for example the incident recently shared by Verizon’s Risk Team: …
Automated YouTube account generator offered to cyber crooks
You’re a spammer / malware peddler / phisher, and want to register hundreds of bogus accounts on a popular online service such as YouTube in order to lead users to your …
Microsoft patches critical IE 0-day used in watering hole attacks
Microsoft has released an out-of-band patch for the Internet Explorer 0-day recently discovered to have been misused in a series of targeted watering hole attacks linked to …
Fake MSN/Hotmail email alert phishes for user info
Despite the fact that spam levels decreased by 53% in 2012 as compared to 2011, targeted spam and phishing attacks via e-mail are on the rise. Some of these campaigns consist …
Aaron Swartz’s death triggers MIT investigation, website hack
The news that well-known Web activist and developer Aaron Swartz took his own life on Friday resounded across the Internet at an amazing speed during this past weekend. Many …
Oracle patches critical 0-day with new Java update
Oracle has released Java 7 Update 11, the computing platform’s newest version that patches the recently discovered and currently widely misused zero-day vulnerability, …
Disable Java! Recent 0-day exploit is included in exploit kits
The Java zero-day that has recently been spotted being exploited in the wild has turned into big, big news as a number of popular exploit kits have been fitted with the …
Fake LinkedIn notifications lead to phishing and malware
LinkedIn users are once again targeted with a massive and widespread spam campaign that takes the form of a notification about a supposedly received message from a potential …
Spoofed Google Chrome update page serves malware
Malware peddlers are taking advantage of yesterday’s release of the latest version of Google Chrome and have already set up a spoofed page of the initial rollout page in …
DDoS attackers on U.S. banks get help from hired botnets
It’s already common knowledge that major commercial bank in the U.S. are under a new series of DDoS attacks. As with the first one, the responsibility for this one that …
FISAA legalizes surveillance of EU citizens and their cloud data, claims study
When the Foreign Intelligence Surveillance Amendments Act (FISAA) was extended for another 5 years thanks to a majority vote in the U.S. Senate late last year, there …
Apple moves to prevent popular app scam tactic
In an effort to prevent malicious apps from being inadvertently allowed to go on sale on the Apple App Store, the company has decided to make it difficult for developers to …
Featured news
Resources
Don't miss
- Google fixes actively exploited Chrome zero-day vulnerability (CVE-2025-10585)
- LinkedIn now uses your data for AI by default, opt out now!
- Behind the scenes of cURL with its founder: Releases, updates, and security
- Product showcase: Exaforce – The full lifecycle AI SOC platform
- AI made crypto scams far more dangerous