Fake LinkedIn notifications lead to malware

Malware peddlers are targeting LinkedIn users with rather legitimate-looking messages supposedly coming from the social networking site: If the look of the message seems …

Google Chrome sandbox apparently cracked

French security firm VUPEN has announced that its researchers have managed manufacture an exploit able to bypass Google Chrome’s sandbox, ASLR and DEP. It is precisely …

Spotify has been displaying malicious ads

Streaming music service Spotify has been displaying malicious ads to users of their Free version. The ads lead to websites that used the Blackhole Exploit Kit to infect users …

Pwn2Own: iPhone and Blackberry hacked

On the second day of the Pwn2Own contest held at the CanSecWest conference, iPhone and Blackberry devices have been successfully exploited, while the scheduled Android and …

Free, open source exploit kit offered online

Among the various exploit kits for sale out there it seems there is one that aspiring cyber crooks can use for free. Researchers from M86 have stumbled upon it by chance, and …

Two BBC sites serving malware via injected iFrame

A piece of malware detected by only 21 percent of the anti-virus solutions used by VirusTotal is currently being pushed onto unsuspecting visitors of the BBC 6 Music and BBC …