Bogus Facebook app harvests user login credentials
A bogus application harvesting Facebook users’ login credentials has recently appeared on the social network, according to Symantec researchers. Luring in users with …
Multiple vulnerabilities in Moonlight
Some vulnerabilities have been reported in Moonlight, which can be exploited by malicious people to disclose potentially sensitive information, bypass certain security …
Most global energy organizations suffered a breach
More than 75 percent of global energy organizations surveyed admit to having suffered at least one data breach over the last 12 months. Furthermore, 69 percent of …
The true scale of the insider threat
UK employees are likely to either maliciously or accidentally disclose confidential information about their employers to unauthorized personnel. A LogRhythm survey of 3000 UK …
MITM attacks made possible by SSL certs issued for unqualified names
The recent compromise of a Comodo affiliate Registration Authority which resulted in the issue of nine rogue SSL certificates for seven popular domains has jolted the security …
Interpol chief calls for global electronic identity card system
The head of INTERPOL has emphasized the need for a globally verifiable electronic identity card (e-ID) system for migrant workers at an international forum on citizen ID …
Security solutions for intelligent risk mitigation
Cisco announced a series of safety and security product innovations powered by a medianet architecture to help cities, enterprises, small businesses and partners transform the …
New Chinese bootkit opens the door to multiple infections
A new bootkit – kernel-mode rootkit variant – has been recently spotted by a Kaspersky Lab researchers, and it looks like is currently targeting only Chinese …
Google tests malicious download warning for Chrome
A new feature that is aimed at protecting Chrome users against the inadvertent download of malicious files is being rolled out by Google. “It’s easy to find sites …
Arkeia Network Backup 9.0 released
Arkeia Software released Network Backup 9.0 with Progressive Deduplication technology, two-phase backups for shorter backup windows, agent-side AES-256 encryption for maximum …
SpyEye-fueled man-in-the-mobile attack targets bank customers
The customers of a European bank have recently been targeted by a man-in-the-mobile attack featuring a SpyEye variant. “The bank uses SMS based mTANs to authorize …
WordPress 3.1.1 fixes security issues
WordPress 3.1.1 is now available. This maintenance and security release fixes almost thirty issues in 3.1. Fixes: Some security hardening to media uploads Performance …
Featured news
Resources
Don't miss
- Critical Control Web Panel vulnerability is actively exploited (CVE-2025-48703)
- 18 arrested in €300 million global credit card fraud scheme
- PortGPT: How researchers taught an AI to backport security patches automatically
- AI can flag the risk, but only humans can close the loop
- VulnRisk: Open-source vulnerability risk assessment platform