A newly discovered zero-day exploit against Yahoo Messenger can allow an attacker to hijack users' status updates, according to researchers at anti-virus firm BitDefender.
Users will be required to update to the latest, non-vulnerable version of Windows Live Messenger -- or they risk being denied access to the instant messaging service.
Microsoft has filed a lawsuit against a company that allegedly delivered spam over instant messenger, known as "spim," to thousands of its 320 million Windows Live Messenger users.
Soon after Google apologized for a Gmail outage this week, it was hit by a phishing attack spreading through its instant messenger platform.
In its largest security update in 18 months, Microsoft on Tuesday delivered 11 patches to resolve 26 vulnerabilities in its operating system and related components.
Malicious code attacks through instant messaging services have tripled between March and April.
The Secure Enterprise 2.0 Forum, which looked at the advantages and security risks of Web 2.0 technology use in the enterprise, debuted today in New York.
The TJX data breach has made wireless encryption a priority for retailers and other enterprises. Frank Washkuch Jr. finds out why.
AIG's CSO Paul DeGraaff says security professionals must gauge the risks of a younger workforce, Dan Kaplan.reports.
Spammers have developed bots that are capable of signing up and creating random accounts on Microsoft's Windows Live Mail service, according to security researchers at Websense.
This week's news that Apple's QuickTime media player contains a new and "extremely dangerous" flaw served as a perfect lead-in to the release of the latest SANS Top 20, which lists client-side vulnerabilities among the most dangerous threats facing end-users.
A trojan has used MSN Messenger to multiply the number of PCs added to a botnet 24 times in one day.
A California man is facing a maximum of 60 years in prison and a $1.75 million fine after agreeing to plead guilty to using botnets to steal PC users' personal and financial information.
Clothing retailer Gap Inc. revealed that a laptop containing the Social Security numbers of 800,000 job applicants was stolen from a third-party vendor. The laptop contained info of job applicants who applied to the company's Old Navy, Banana Republic, Gap and Outlet stores. The vendor, not identified by Gap, contacted law enforcement authorities about the breach. The data was not encrypted.
A legion of data exposures have occurred over the past year, with many affected companies not only being forced to address customer and investor concerns, but also pay fines and adhere to prolonged sets of requirements administered by the Federal Trade Commission. So just how is news of such breaches, exposures and possible thefts affecting the way organizations -- large and small -- focus on information security plans?
Apple's upcoming release of a software development kit (SDK) for the iPhone may allow developers to write applications for the mobile device, but it could also open a Pandora's box of potential security issues.
AOL patched a flaw allowing remote code execution when it released AOL Instant Messenger (AIM) 6.5, but researchers are still urging caution for enterprise users of the application.
As long as people have competed against others, whether commercially, militarily or athletically, their organizations have possessed information or practices that need to be kept secret.
Millions of computers with registered copies of AOL Instant Messenger (AIM) are at risk to a variety of attacks via a vulnerability in AIM 6.1, AIM beta 6.2, AIM Pro and AIM Lite, according to researchers at Core Security.
Microsoft has made this week’s Patch Tuesday release a bit easier on IT professionals.
Security experts are advising users of MSN Messenger to be wary of untrusted web cam conversations after exploit code was posted today for a zero-day vulnerability in the instant messaging (IM) application.
Its the economy, stupid. It worked for spammers now, and it will work for spammers in the future.
Sign up to our newsletters
SC Magazine Articles
- APT operation 'Double Tap' exploits serious Windows OLE bug
- 'DoubleDirect' MitM attack affects iOS, Android and OS X users
- Android malware 'NotCompatible' evolves, spawns resilient botnet
- The Internet of Things (IoT) will fail if security has no context
- Regin: nation-state possibly behind the stealthy modular spying malware
- Operators disable firewall features to increase network performance, survey finds
- DDoS attacks cost organizations $40,000 per hour, survey finds
- Waste no time patching Windows Schannel, OLE bugs, experts warn
- Study: 68 percent of healthcare breaches caused by loss or theft of devices, files
- Spin.com redirects to Rig Exploit Kit, infects users with malware, Symantec observes
- Study: 'High priority' issues hamper endpoint security solution implementation
- Researchers identify POS malware targeting ticket machines, electronic kiosks
- Pirated Joomla, WordPress, Drupal themes and plugins contain CryptoPHP backdoor
- DDoS attacks grew in size, threats became more complex, Q3 reports say
- Man gets 18 months in prison for accessing Subway POS devices, loading up gift cards