Stories by Lucian Constantin

Cisco fixes privilege escalation flaws in AnyConnect Secure Mobility Client

The Cisco AnyConnect Secure Mobility Client was updated to fix vulnerabilities that could allow attackers to gain system or root privileges on Windows, Linux and Mac OS X computers.

New Android vulnerabilities put over a billion devices at risk of remote hacking

Newly discovered vulnerabilities in the way Android processes MP3 and MP4 files can allow attackers to compromise devices by tricking users to visit specifically-crafted Web pages.

Dyreza malware steals IT supply chain credentials

New versions of the Dyreza computer Trojan are configured to steal credentials for order fulfillment, warehousing, inventory management, ecommerce and other IT and supply chain services.

A Linux botnet is launching crippling DDoS attacks at more than 150Gbps

The security response team from Akamai Technologies have observed multiple attacks originating from a Linux botnet recently that have ranged from a few gigabits per second to over 150.

Newly found TrueCrypt flaw allows full system compromise

James Forshaw, a member of Google's Project Zero team, has recently discovered two serious vulnerabilities in the driver that the TrueCrypt full disk encryption program installs on Windows systems.

After pushing malware, ad networks also used for DDoS

Experts believe a recent large-scale distributed denial-of-service attack was launched through malicious ads displayed on mobile devices.

Silent Circle aims at the enterprise market with Blackphone 2

The Blackphone 2 is designed to meet the management and security needs of enterprises, while not alienating workers who will end up using it for their personal affairs as well.

Cookie handling in browsers can break HTTPS security

Man-in-the-middle attackers can inject cookies over HTTP connections in order to extract information from encrypted HTTPS traffic.

New malware program infects ATMs, dispenses cash on command

A new malware program called GreenDispenser infects automated teller machines (ATMs) and allows attackers to extract cash on command.

Ransomware pushers up their game against small businesses

File encrypting ransomware creators are increasingly focusing their attention on small and medium-sized businesses because they're more likely to pay up the ransom fees.

US govt's OPM underestimated the number of stolen fingerprints by 4.5 million

The fingerprints of 5.6 million people have been stolen as a result of hackers penetrating the computer systems of the U.S. Office of Personnel Management earlier this year.

Thousands of iOS apps infected by XcodeGhost

Security researchers have identified over 4000 iOS apps that have malicious code added by a rogue version of the Xcode development tool.

HP adds protection against firmware attacks to enterprise printers

Hewlett-Packard has started building defenses against hackers directly into its printers' firmware.

Hack iOS 9 and get $1 million, cybersecurity firm says

Zerodium, an exploit acquisition company, promises to pay $1 million to researchers who provide it with an exclusive, browser-based and untethered jailbreak for the latest Apple iOS 9 operating system.

Critical Flash Player updates patch 23 flaws

Adobe Systems released new updates for Flash Player to patch critical vulnerabilities that could allow attackers to install malware on computers.

Top Whitepapers

Featured Whitepapers