May 2013 Issue

Threat of the month

Subscribe
Archive

Subscribe	Advertising

Archive	Login \| Register

Hacked court system website leads to 160k stolen SSNs

A special ebook from SC Magazine: Education

eSymposium: Privacy and security May 21

SC Editions

Dan Kaplan, Executive Editor

March 06, 2009

New PDF exploit potential

As businesses await the Adobe Acrobat and Reader zero-day vulnerability patch (coming March 11), researcher Didier Stevens this week detailed a way to exploit the bug without users clicking on any malicious PDF document. Essentially, when a PDF is listed in Windows Explorer, a shell extension will read the document to provide more information, such as file size or type, thus executing code without any user interaction, Stevens said. — DK

Next Article in News

Focus is on Windows bugs in the next round of Microsoft patches

SC Magazine Articles

Privacy-bolstering "Apps Act" introduced in House

The bill would provide consumers nationwide with similar protections already enforced by a California law.

Microsoft readies permanent fix for Internet Explorer bug used in energy attacks

Microsoft is prepping a whopper of a security update that will close 33 vulnerabilities, likely including an Internet Explorer (IE) flaw that has been used in targeted website attacks against the U.S. government.

Weakness in Adobe ColdFusion allowed court hackers access to 160K SSNs

Up to 160,000 Social Security numbers and one million driver's license numbers may have been accessed by intruders.

Editorial