security

Wed
14
Mar
Dennis Faas's picture

Microsoft Fixes Major PC Flaw with Security Update

Microsoft says it has fixed only one 'critical' security flaw this Patch Tuesday. However, it appears to be a highly significant vulnerability. For those not familiar with the terminology, 'critical' vulnerabilities are those rated to be most in ... need of addressing. Flaw Could Allow Remote Code Execution The 'critical' security flaw is a remote code execution vulnerability in Microsoft's Remote Desktop Protocol (RDP). Every version of Windows is reportedly left vulnerable by the problem. So long as the vulnerability remains unpatched, Microsoft says, a hacker who is able to convince a computer ... (view more)

Tue
13
Mar
Dennis Faas's picture

Weak Passwords Put Businesses at Risk: Study

A new study conducted by Trustwave, an IT research firm, is providing a startling look at the security vulnerabilities and hacking trends within computer systems used in the business world. For example, the Global Security Report for 2012 shows that ... the most popular computer password selected by business users is "Password1". Of the 2.5 million passwords Trustwave studied in total, about 5 per cent contained the word "password." (Source: slashgear.com ) According to Trustwave, "Password1" is so popular because "it satisfies the default Microsoft Active Directory complexity setting," ... (view more)

Fri
09
Mar
Dennis Faas's picture

NASA Cyber Attacks On The Increase: Report

According to NASA (the National Aeronautics and Space Administration), in recent years, it has become an increasingly popular target for high-tech hackers. In 2007 and 2008, China was suspected to have hacked into NASA satellites , though no formal ... evidence linking China to the attacks has been brought forward. The agency says its systems were hacked approximately thirteen times in 2011 alone. "The threat to NASA's information security is persistent and ever-changing," noted Congressman Paul Braun at a recent meeting of the House Science, Space and Technology subcommittee. "Unless NASA is ... (view more)

Thu
08
Mar
Dennis Faas's picture

Leading Hacker Was Undercover FBI Informant

Members of the international hacking group LulzSec ("Lulz Security") have discovered their worst nightmare may have come true. It appears that one of the group's leading figures was working as an undercover FBI (Federal Bureau of Investigation) ... informer for the past nine months. The news emerged this week with the arrest of five suspects in the United States, the United Kingdom and the Republic of Ireland. All those arrested are said to be members of the LulzSec group, which emerged last summer and quickly made a name for itself as a leading organization of highly proficient hackers ... (view more)

Thu
23
Feb
Dennis Faas's picture

PcAnywhere Still A Widespread Threat

An estimated 200,000 computers may be at risk because they are running an un-patched edition of Symantec's PC Anywhere. Late last month, Symantec urged all users to cease running the program unless absolutely necessary. The firm later changed its ... mind, announcing that it was safe to run as long as new security patches were installed. PC Anywhere became vulnerable when hackers threatened to release source code originally stolen six years ago, apparently without Symantec's knowledge. The hackers attempted to extort the company for $50,000 and then released the code publicly when it refused to ... (view more)

Mon
20
Feb
Dennis Faas's picture

Google Wallet Payment System Vulnerable to Attack

Google has temporarily suspended one of the features on its mobile wallet system for smartphones following word the platform has at least two serious security flaws. Google Wallet allows users to make payments using "near-field communications," a ... wireless protocol like Bluetooth, but with a maximum range of just centimeters. Users can hold, tap or swipe their smartphone next to a payment device without having to worry about the signal being intercepted. 'Brute Force' Could Break Code The system can be protected with a PIN (personal identification number) code, to prevent misuse when ... (view more)

Tue
14
Feb
Dennis Faas's picture

Microsoft Security Oversight Leads to Website Hack

Microsoft's online store in India was compromised over the weekend by a group of Chinese hackers calling themselves the "Evil Shadow Team". The hackers were able to extract user IDs and passwords of the site. While many are questioning how the ... hackers were able to breach Microsoft's security system, more troublesome is the realization that the company might not have taken the proper steps to secure the credentials of their customers prior to the attack. Reportedly, Microsoft stored both login IDs and passwords for its users in plain text files, without any encryption system in place to ... (view more)

Thu
09
Feb
Dennis Faas's picture

PC Anywhere Code Leaked After Failed Ransom Bid

Hackers have published source code that could be used to hack computers running Symantec's security program PCAnywhere. The move comes after the security firm refused to meet the hackers' demand for $50,000 in ransom. As we reported last month , the ... code behind a range of Symantec products was originally stolen in 2006. It appears most likely the theft came after Indian military officials demanded access to the code before accepting it for official use. Symantec may have learned of the theft only after hackers revealed they had it, earlier this year. Symantec said in January that several ... (view more)

Fri
27
Jan
Dennis Faas's picture

Symantec Users Urged to Shut Down PCAnywhere

Security firm Symantec is urging all Windows users to disable "PCAnywhere" (a remote-control software program) on their systems immediately. The concern to disable the product dates back to 2006, when Symantec's PCAnywhere source code was stolen, ... but has never appeared in the open until now. Symantec says users running old versions of PCAnywhere could have their systems easily hijacked. A security bulletin on their site says that even the latest edition of PCAnywhere (version 12.5) is "at an increased security threat," and have urged customers to disable the software and ... (view more)

Fri
13
Jan
Dennis Faas's picture

Windows Media Player Fix 'Critical', Says Microsoft

Patch Tuesday for January 2012 was released this week by Microsoft and includes seven updates designed to fix eight Windows security vulnerabilities. One patch in particular fixes a serious Windows Media Player exploit. The flaw could allow a hacker ... to take remote control of a PC running Windows. For those who don't follow Microsoft security news, Patch Tuesday refers to the second Tuesday of every month -- the day on which the Redmond-based firm normally releases a series of software updates intended to fix known problems in its various programs. The majority of patches are usually for ... (view more)

Pages

Subscribe to RSS - security