Could a vulnerability tax spur vendors to improve security?
He has recently been appointed as Apple’s global director of security and he is expected to begin his work in March, but former National Security Agency cryptographer …
Vulnerabilities in Cisco WebEx conferencing applications
Core Security Technologies disclosed stack overflow vulnerabilities affecting the Cisco WebEx applications used to conduct Web-based video conferencing. They identified two …
New malware strains wreaking havoc on Facebook
PandaLabs announced the discovery of security exploits via popular social media sites Facebook and Twitter. In the last several days, two new malware strains have been …
PlentyofFish CEO accuses Argentian hackers of elaborate extortion scheme
The Argentinian hackers that hacked The Pirate Bay back in July are at it again. They have supposedly hacked the popular free online dating site PlentyofFish and, according to …
ATM skimmers don’t even have to be on the ATM
Careful ATM users know enough to give a hasty visual check to the machine before using it and to hide the keyboard while entering their PIN. Unfortunately, sometimes even that …
Free XSS flaws detection service
Cross-site scripting (XSS) errors are responsible for more than half of all web application vulnerabilities1. So, in this age of accountability and expectations for secure, …
EFF exposes extensive FBI violations
In 2009, the Electronic Frontier Foundation filed a suit against a number of federal agencies that deal with intelligence gathering, requesting that they release documents and …
Microsoft Windows MHTML XSS vulnerability
A vulnerability has been reported in Microsoft Windows, which can be exploited by malicious people to conduct cross-site scripting (XSS) attacks, according to Secunia. The …
Week in review: Android malware, Facebook security features and Zuckerberg’s page hack
Here’s an overview of some of last week’s most interesting news and articles: Lush hack due to numerous security vulnerabilities The Web site of Lush, the natural …
Nmap 5.50 released
Nmap is a free and open source utility for network exploration or security auditing. A primary focus of the 5.50 release is the Nmap Scripting Engine, which has allowed Nmap …
Top cybercrime host and others get shut down
VolgaHost, the “World’s number one bad host”, has been taken offline on January 17th, reports malicious host-tracking outfit HostExploit. A few weeks before …
Spammers take advantage of the Facebook API bug?
It seems that high-profile accounts and Facebook pages might not be the only ones messed with by individuals taking advantage of the bug found in Facebook’s API. All …
Featured news
Resources
Don't miss
- Product showcase: iStorage diskAshur PRO3
- As AI tools take hold in cybersecurity, entry-level jobs could shrink
- Critical CrushFTP vulnerability exploited. Have you been targeted? (CVE-2025-54309)
- How to land your first job in cybersecurity
- World Health Organization CISO on securing global health emergencies