Attacker
4631 Stories
Gmail 'vulnerability' turns out to be phishing scam
News Google's probe into reports that a vulnerability was being used to hijack domains finds instead a scheme to trick users into revealing sensitive information.
Tags: E-mail clients, Web services, Spam and phishing, Phishing, Security, Google Inc., Vulnerability, Attacker, e-mail, Web Address
Attacker reportedly holds US state's patient data hostage
News Virginia Prescription Monitoring Program site remains down after attacker allegedly breaks into the Web site and deletes data, demanding a ransom to get it back.
Tags: Hacking, Data security, Backup, FBI, Washington Post Co., Password, Virginia, Attacker, patient, health care
Audit: No customer data exposed in Kaspersky breach
News Database security expert David Litchfield analyzes attack on security firm Web site and finds no sensitive data was accessed.
Tags: Data security, Network security, Customer Data, Security, Database, Attack, Bitdefender, SQL, Kaspersky, Attacker
Google patches severe Chrome vulnerabilities
News Maliciously crafted JavaScript and XML could let an attacker take over a person's computer through the stable version of Chrome, Google warns.
Tags: Web browsers, Network security, PC security, Sandbox, Web Browser, Vulnerability, computer, Attacker, patch management, program manager
Researchers can attack mobile phones via spoofed SMS messages
News Researchers at the Black Hat security conference showed how an attacker could spoof a SMS message that appears to be sent from the carrier or some other trusted source.
Tags: Viruses and worms, Spam, PayPal, Message, Cell Phone, Carrier, Attack, Server, phone, Attacker
Windows 7 critical holes fixed in record Patch Tuesday
News In its biggest Patch Tuesday ever, Redmond stitches up a pair of Windows 7 holes, along with fixing up a number of zero-day flaws elsewhere.
Tags: Security Management, Network security, PC security, Server Message Block, Microsoft IIS Server, Security, Microsoft Corp., Vulnerability, Microsoft Windows 7, Server
Researchers offer tools for eavesdropping and video hijacking
News UCSniff can be used to spy on video conference calls while VideoJak allows for hijacking of video streams.
Tags: PC security, Data security, Authentication and encryption, Network security, Tool, Video, security guard, Attacker, chief technology officer, network
Researchers exploit flaws in SSL, domain authentication system
News Dan Kaminsky and Moxie Marlinspike explain how flaws in the way domain names are verified on the Internet could allow attackers to impersonate a site and steal information from unsuspecting Web surfers.
Tags: Network security, Data security, Authentication and encryption, Web sites, Authentication, Security, SSL, Domain Name, Web Browser, Vulnerability
Microsoft to patch new DirectX hole
News New hole in DirectX could allow an attacker to take control of a computer if the user visits a site and runs a maliciously crafted QuickTime file.
Tags: Microsoft Windows, Software, Security, Security implementation/standards, Windows Vista, Windows XP, Apple QuickTime, DirectX, Vulnerability, Admin User
Microsoft to release three security updates Tuesday
News Company says three security updates will patch one "critical" and two "important" vulnerabilities in Windows.
Tags: PC security, windows alerts, Microsoft Corp., Security, Zero-day Bug, critical update, Server, Attacker, Microsoft Windows 2000, Microsoft Excel
Microsoft plugs remote execution, spoofing holes in Windows
News Software maker issues patches for critical and important holes in Windows, but fails to plug Excel hole that is being exploited.
Tags: PC security, Microsoft Corp., Security, Zero-day Bug, Microsoft Windows Metafile, Vulnerability, WINS, Server, Attacker, patch management
Chink in encryption armor discovered
News An underlying flaw in the OpenSSH encryption protocol has been revealed by academics.
Tags: Authentication and encryption, OpenSSH, SSH, IT Professional, Encryption, Information Security, Flaw, Server, Attacker, RFC
Microsoft patches four critical IE, Exchange holes
News Critical vulnerabilities could allow an attacker to take control of an affected computer remotely. Patches also released for holes in SQL Server and Office.
Tags: Network security, windows alerts, Microsoft Windows, Microsoft Corp., Security, Vulnerability, Microsoft Exchange 2000 Server, Admin User, Security Bulletin MS09-004, Server
Flaw exposes Chrome, Firefox to clickjacking
News Security researchers have discovered a vulnerability that exposes Google's Chrome browser and Firefox 3.0.5 to a clickjacking attack.
Tags: Web browsers, Web sites, Security, Google Chrome, Web Browser, Google Inc., Attack, Spokesperson, Flaw, Clickjacking
Gmail exploit may allow attackers to forward e-mail
News A Gmail security vulnerability may allow an attacker to set up filters on users' e-mail accounts without their knowledge, according to a proof of concept.
Tags: Security Management, E-mail clients, Web services, Network security, Authentication, Variable, Security, Web Browser, Google Inc., Server
