Security

A British newspaper has accused Facebook of reading its members' text messages. In response, Facebook says the article is misinformed and "completely wrong." Google Android Security Permissions Scrutinized The dispute involves a Sunday Times report ... based on an investigation into Android-based handsets, the results of which may also apply to Apple iPhones. The investigation scrutinized the security permissions system within Android, which breaks into several different categories the information an application may use. For each category, the application must ask for and receive permission from ... (view more)

A senior US security official has warned that a high-profile international hacker group may currently possess the ability to cause widespread power outages in the United States. However, the hackers themselves have publicly countered that claim, ... saying they would never carry out such an attack. To underline their assertion, the hackers have attacked the newspaper that first published these claims. General Keith Alexander, director of the U.S. National Security Agency, was reported in the Wall Street Journal to have made the comments about Anonymous, a loose collection of hackers who view ... (view more)

An estimated 200,000 computers may be at risk because they are running an un-patched edition of Symantec's PC Anywhere. Late last month, Symantec urged all users to cease running the program unless absolutely necessary. The firm later changed its ... mind, announcing that it was safe to run as long as new security patches were installed. PC Anywhere became vulnerable when hackers threatened to release source code originally stolen six years ago, apparently without Symantec's knowledge. The hackers attempted to extort the company for $50,000 and then released the code publicly when it refused to ... (view more)

Google has temporarily suspended one of the features on its mobile wallet system for smartphones following word the platform has at least two serious security flaws. Google Wallet allows users to make payments using "near-field communications," a ... wireless protocol like Bluetooth, but with a maximum range of just centimeters. Users can hold, tap or swipe their smartphone next to a payment device without having to worry about the signal being intercepted. 'Brute Force' Could Break Code The system can be protected with a PIN (personal identification number) code, to prevent misuse when ... (view more)

Microsoft's online store in India was compromised over the weekend by a group of Chinese hackers calling themselves the "Evil Shadow Team". The hackers were able to extract user IDs and passwords of the site. While many are questioning how the ... hackers were able to breach Microsoft's security system, more troublesome is the realization that the company might not have taken the proper steps to secure the credentials of their customers prior to the attack. Reportedly, Microsoft stored both login IDs and passwords for its users in plain text files, without any encryption system in place to ... (view more)

Hackers have published source code that could be used to hack computers running Symantec's security program PCAnywhere. The move comes after the security firm refused to meet the hackers' demand for $50,000 in ransom. As we reported last month , the ... code behind a range of Symantec products was originally stolen in 2006. It appears most likely the theft came after Indian military officials demanded access to the code before accepting it for official use. Symantec may have learned of the theft only after hackers revealed they had it, earlier this year. Symantec said in January that several ... (view more)

Google developed a service for scanning the Android Market for potentially malicious apps before they can ever get into the hands of would-be users. Called "Bouncer," the service is set to perform security scans on all new applications in addition ... to apps already featured in the Android Market. Google even plans to run scans on individual developer accounts to keep repeat offenders from coming back. Great Demand for Products Like Bouncer Google's release of Bouncer would appear to be well-timed. Last week, security firm Symantec sent out a warning after stumbling upon what they believed to be ... (view more)

Security software company Symantec has sent out a warning about what it believes to be the largest-ever malware campaign launched against Android smartphone owners. Called "Android.Counterclank," the malware was discovered hidden within 13 different ... apps (smartphone applications) released by three different publishers. Of the enticing titles, "Sexy Girls Puzzle" and "Counter Strike Ground Force" were among the most prolific in duping from one to five million people into downloading the infected software through Google's legitimate app marketplace. (Source: computerworld. ... (view more)

Security firm Symantec is urging all Windows users to disable "PCAnywhere" (a remote-control software program) on their systems immediately. The concern to disable the product dates back to 2006, when Symantec's PCAnywhere source code was stolen, ... but has never appeared in the open until now. Symantec says users running old versions of PCAnywhere could have their systems easily hijacked. A security bulletin on their site says that even the latest edition of PCAnywhere (version 12.5) is "at an increased security threat," and have urged customers to disable the software and ... (view more)

The recent shutdown of file-sharing site Megaupload by the U.S. Department of Justice (DoJ) has resulted in a number of phishing attacks, directly targeting fans of the former service. Phishing is a tactic used to acquire legitimate information, ... such as usernames, passwords and credit card numbers, by masquerading as a trustworthy person or organization. Users unknowingly provide their personal data for use in scams and frauds. A classic phishing attack (still used today) might be an email reportedly from a bank (or similar institution), stating that your account has been suspended. The email ... (view more)