Microsoft enables potential unwanted software detection for enterprise customers

Microsoft has started offering protection against potentially unwanted applications in its anti-malware products for enterprise customers.

Microsoft zaps dodgy Dell digital certificates

Microsoft has updated several of its security tools to remove two digital certificates installed on some Dell computers that could compromise data.

VPN bug poses privacy threat to BitTorrent downloaders

A bug affecting some VPN services can be used to figure out a computer's real IP addresses, including those of BitTorrent users, which could pose a huge privacy and possibly a legal risk.

Connected cars gather too much data about their drivers, say motorists associations

Car drivers may imagine they have greater privacy than public transport users, but that isn't necessarily the case in modern, connected cars, European motoring organizations warn.

By Peter Sayer | 26 November, 2015 19:21

Tags: tech hive, connected cars, data

Older Dell devices also affected by dangerous eDellRoot certificate

Users who have Dell Windows-based laptops, desktops, tablets and other devices that were bought before August should check if their systems have the self-signed eDellRoot certificate that can compromise their private communications.

By Lucian Constantin | 26 November, 2015 18:44

Tags: desktop PC, Dell, PC, security, Components, tablets, laptops, eRoot certification

Millions of embedded devices use the same hard-coded SSH and TLS private keys

Thousands of routers, modems, IP cameras, VoIP phones and other embedded devices share the same hard-coded SSH host keys or HTTPS server certificates.

US spy court appoints lawyers to panel of advisers

A secret U.S. spy court has appointed a five-member panel of advisers as part of the reform of the surveillance of the National Security Agency.

Microsoft beefs up security products to block adware

Microsoft is adding a new opt-in defense for enterprises to block adware, which is often sneakily wrapped into free downloads.

Dridex spam campaigns target the US, UK and France

The Dridex botnet, which targets financial credentials, appears to be gaining steam again, striking computers in the U.S., U.K. and France.

Lenovo patches serious vulnerabilities in PC system update tool

For the third time in less than six months PC manufacturer Lenovo has had to update the System Update tool pre-loaded on some of its products for security reasons.

SAFECode: How to ensure you’re buying safe software

The Software Assurance Forum for Excellence in Code (SAFECode) has issued guidelines to make it easier, especially for businesses trying to decide which products to buy.

By Tim Greene | 25 November, 2015 20:27

Tags: Microsoft, intel

Police arrest blackmail suspect in UK TalkTalk data breach case

Police believe they may have found the person who tried to blackmail the CEO of TalkTalk, the U.K. telecommunications company that was the target of a data breach.

This gizmo knows your Amex card number before you've received it

A device built by legendary hacker Samy Kamkar calls into question the security of payment cards as the U.S. continues to grapples with card fraud.

Hilton says malware targeted its credit card system

Hilton Worldwide says it has identified and removed malware that targeted card payment systems at some of its hotels over a 17-week period from late 2014 to mid 2015.

And then there were two: Another dangerous Dell root certificate discovered

After Dell confirmed that one of its support tools installed a dangerous self-signed root certificate and private key on computers, users discovered a similar certificate deployed by a different Dell tool.

What you need to know about Dell's root certificate security debacle

In an attempt to provide a more streamlined remote support experience, Dell installed a self-signed root certificate and corresponding private key on its customers' computers, exposing users' encrypted communications to potential spying.

By Lucian Constantin | 24 November, 2015 18:39

Tags: Dell

Dell admits installing security hole on laptops, apologizes, offers fix

Dell acknowledges the root certificate it installed on its laptops was a bad idea and has issued instructions on how to remove it.

By Tim Greene | 24 November, 2015 15:46

Tags: Dell

As China moves to payment cards, cybercriminals follow

As China increasingly embraces payment cards over cash, Trend Micro is seeing an uptick in cybercriminal activity aimed at card fraud.

Dell security error widens as researchers dig deeper

The fallout from a serious security mistake made by Dell is widening, as security experts find more issues of concern.

Dell installs self-signed root certificate on laptops, endangering users' privacy

Users are reporting that some Dell laptops sold recently come preloaded with a self-signed root digital certificate that lets attackers sniff traffic to any secure website.

Top Whitepapers

Featured Whitepapers