HTTP Strict Transport Security (HSTS) was designed to help secure websites (those using HTTPS) by declaring to web browsers that they should communicate only via HTTPS with the server toRead More →
Developers at Automattic, the parent company behind the blogging platform WordPress, fixed a nasty stored cross-site scripting error this week in Akismet, an anti-spam plugin that figures into millions ofRead More →
A banking trojan, detected by ESET as Win32/Brolux.A, is targeting Japanese internet banking users and spreading through at least two vulnerabilities: a Flash vulnerability leaked in the Hacking Team hackRead More →
Researchers show how mass decryption is well within the NSA’s $11 billion budget. For years, privacy advocates have pushed developers of websites, virtual private network apps, and other cryptographic softwareRead More →
The impunity of drone operators may have run its course, as a science and technology firm has just unveiled means to reign in rogue UAVs (Unmanned Air Vehicles). This droneRead More →
You may be under the impression that the new EMV chip system for credit card payments is nice and secure. But the UK’s been using it since 2003 — soRead More →
Over the years, the McAfee Labs team has worked with IT security vendors, law enforcement and others to identify and evaluate numerous websites, chat rooms, and other online platforms, communities,Read More →
Chinese team Pangu today released the first untethered jailbreak for iOS 9 devices, including the iPhone 6s and iPhone 6s Plus. The jailbreak tool is currently available for Windows only,Read More →
Cyber security audit and ethical hacking training professionals normally use scanner to scans the networks. Scanning every IP address on the internet isn’t an easy job, and if you don’tRead More →
Global law enforcement agencies have arrested a gang member behind the theft of £20 million ($30.7 million) via a piece of malicious software that records banking details, and are onRead More →
An ingenious hack could allow unwanted access to Siri commands by simply sending radio waves to a pair of unshielded iPhone earbuds. While the hack is needlessly complex – theRead More →
Magento has contacted the websites that appear to be vulnerable, Trustwave said. An open-source tool for importing content into the Magento e-commerce platform, called Magmi, has a zero-day vulnerability, accordingRead More →
Inspired by Thor from The Avengers, one man has built a real-life Mjölnir that is unliftable by anyone but him, so long as it’s on a metal surface. Mjölnir isRead More →
The Vawtrak bug back and meaner than ever, say Proofpoint researchers. A once-dormant banking trojan has reared its ugly head once again, according to a new report. Researchers at Proofpoint,Read More →
Putrid Piper picked apart a packet for just $15. KU Leuven Phd student Mathy Vanhoef has smashed conventional wireless security thought by creating continual, targeted and virtually indefensible stealth jammingRead More →
Flat, firewall-free network was a walk in the park, boffins say. Cyber Defence Summit An un-named Casino with next-to-no security has lost 150,000 credit cards after being raided by aRead More →
Attacks used to hijack end users’ computers when they visit booby-trapped sites. Attackers are exploiting a previously unknown vulnerability in fully patched versions of Adobe’s Flash Player so they canRead More →
A common rule of thumb is that those who stick with the Google Play Store are safe from malware and other dangers. This is mostly the case, but once in a blueRead More →
The maker of USB Killer is here with the USB Killer version 2.0 – a more advanced version of the computer frying USB drive. The Killer USB v2.0 is more refinedRead More →
Depressingly familiar and stupid mistakes in EEG kit, health org’s storage of recorded brains. BruCon: Behold the future: attackers can already get between brain-waves and hospital kit, and it’s justRead More →
