security

Google is looking for elite engineers capable of protecting the privacy of the company's users. The nature of the recruitment ads suggests the engineers will be defending users against all threats, even those posed by Google. The ad is for a "data ... privacy engineer." It says that the successful recruits will join a team of "back-end ninjas: protecting your privacy, ensuring your security and leaving no trace behind." Successful applicants will be required to "identify, research, and help resolve potential privacy risks across all of our products, services, and business processes in place ... (view more)

Microsoft has revealed that a new Virtual Private Network (VPN) hack could be used to steal passwords and other sensitive information. It's called a "man-in-the-middle" attack. Security researcher Moxie Marlinspike first disclosed this VPN hack in a ... security advisory earlier this month. After investigating the issue, Microsoft has acknowledged that the threat is legitimate. Hacker Could Take Control of System, Network "An attacker who successfully exploited...cryptographic weaknesses could obtain user credentials," Microsoft said in its own advisory, released earlier this week. "Those ... (view more)

It will be a busy week for IT administrators as Microsoft rolls out fixes for five critical vulnerabilities in its products -- including both Windows and Internet Explorer -- and as Adobe issues patches for similar flaws in its Reader and Acrobat ... programs. As part of its monthly Patch Tuesday update, Microsoft plans to release nine security bulletins on August 14, 2012. Five of those nine bulletins have been designated "critical", the Redmond, Washington-based firm's highest security rating. Windows, Internet Explorer Receive Updates Those five critical bulletins address serious ... (view more)

Imagine waking up one day and finding that the digital contents of your smartphone, laptop, and tablet computer have all been wiped out by hackers. This nightmare recently became reality for Wired.com writer Mat Honan, who later discovered that ... major holes in Apple and Amazon security had allowed the hack to occur. The hackers did a lot of damage. Not only did they wipe the contents of Honan's iPad, MacBook, and iPhone, but they infiltrated his Gmail account (and deleted it) and his Twitter account, where they posted a number of unseemly comments. (Source: venturebeat.com ) Amazon's Swiss ... (view more)

An international security campaign has taken down Grum, a hacker-controlled botnet responsible for the daily release of 18 billion spam emails. The takedown effort began two weeks ago, when authorities in the Netherlands pulled the plug on Grum's ... two main servers. Other servers in Panama went offline earlier this week. Grum's last servers were disconnected in Russia, effectively killing the botnet. Group Effort Stops Grum The demise of the Grum botnet was confirmed by security vendor FireEye in a recent blog post. Grum's termination apparently resulted from a group effort. To kill the ... (view more)

The US Department of Homeland Security (DHS) is reportedly working on a laser scanner that could check airline passengers for security violations from 164 feet away. However, the technology may require at least four more years of development before ... being ready for deployment. The scanner works at the molecular level, giving it the potential to probe in far more detail than is possible with existing machines. The technology is being adapted for security scanning from use in both medicine and manufacturing. The manufacturer, Genia Photonics, says its "Picosecond Programmable Laser" is able ... (view more)

Hackers have posted a list of some 453,000 Yahoo user names and their passwords. Although those responsible say they are merely trying to highlight weak security, observers say that some users could indeed be at risk. The log-in details that were ... stolen appear to come from Yahoo Voices, a site that is set up so users can post their own blogs and articles. Some of these posts earn their authors a small up-front payment, while those that attract a lot of visitors can earn the writer significant bonus payments. The hackers apparently gained access to the site's log-in database by means of a ... (view more)

Rumors of a rampant Android-based botnet that is spamming individuals around the world are now proving to be unfounded. Instead, experts have discovered that Yahoo Mail may have been compromised. Rumors of an Android-based botnet first began ... circulating last week. Reportedly, the botnet was sending out waves of pharmacy, penny stock, and e-card spam emails. Terry Zink, a program manager for Microsoft's Forefront security product team, added credibility to the rumors by claiming, "a spammer has control of a botnet that lives on Android devices. These devices login to user's Yahoo Mail account ... (view more)

A series of security breaches has exposed the credit card details of Wyndham hotel customers. As a result, the company must face the ire of the Federal Trade Commission (FTC). Hackers apparently breached the hotel chain's secured data networks on ... three separate occasions, starting in April 2008. The first attack was the largest and gave the hackers access to hotel guest data stored on the system. Because the data wasn't encrypted, the attackers were able to utilize information associated with an estimated 500,000 credit cards, which they relayed to a Russian-based site. Wyndam came under ... (view more)

Microsoft is warning its customers that a newly discovered flaw in its Internet Explorer (IE) web browser could allow hackers to execute malicious code and take control of an unsuspecting user's computer. That would give a cyber-criminal the ability ... to use the computer and all its resources for unknown, possibly illegal, purposes. Microsoft has indicated that users of every recent version of the Windows operating system (OS), including Windows XP, Windows Vista, and Windows 7, are vulnerable to such an attack. Beware Email Links from Suspicious Sources The Redmond, Washington-based software ... (view more)